Book Image

The Kubernetes Workshop

By : Zachary Arnold, Sahil Dua, Wei Huang, Faisal Masood, Mélony Qin, Mohammed Abu Taleb
Book Image

The Kubernetes Workshop

By: Zachary Arnold, Sahil Dua, Wei Huang, Faisal Masood, Mélony Qin, Mohammed Abu Taleb

Overview of this book

Thanks to its extensive support for managing hundreds of containers that run cloud-native applications, Kubernetes is the most popular open source container orchestration platform that makes cluster management easy. This workshop adopts a practical approach to get you acquainted with the Kubernetes environment and its applications. Starting with an introduction to the fundamentals of Kubernetes, you’ll install and set up your Kubernetes environment. You’ll understand how to write YAML files and deploy your first simple web application container using Pod. You’ll then assign human-friendly names to Pods, explore various Kubernetes entities and functions, and discover when to use them. As you work through the chapters, this Kubernetes book will show you how you can make full-scale use of Kubernetes by applying a variety of techniques for designing components and deploying clusters. You’ll also get to grips with security policies for limiting access to certain functions inside the cluster. Toward the end of the book, you’ll get a rundown of Kubernetes advanced features for building your own controller and upgrading to a Kubernetes cluster without downtime. By the end of this workshop, you’ll be able to manage containers and run cloud-based applications efficiently using Kubernetes.

Related Content you might be interested in

Current Title:

Small book image
The Kubernetes Workshop
Zachary Arnold | Sahil Dua | Wei Huang | Faisal Masood | Mélony Qin | Mohammed Abu Taleb
Sep, 2020 | 780 pages
Small book image
Certified Kubernetes Administrator (CKA) Exam Guide
Meacutelony Qin
Nov, 2022 | 322 pages
Small book image
The Kubernetes Bible
Nassim Kebbani | Russ McKendrick | Piotr Tylenda
Feb, 2022 | 680 pages
Small book image
The DevOps 2.3 Toolkit
Viktor Farcic
Sep, 2018 | 418 pages
Table of Contents (20 chapters)
Preface
About the Book
1
1. Introduction to Kubernetes and Containers
1. Introduction to Kubernetes and Containers
Introduction
The Evolution of Software Development
Virtual Machines versus Containers
Docker Basics
The Essence of Linux Container Technology
The Need for Container Orchestration
Welcome to the Kubernetes World
Summary
Free Chapter
2
2. An Overview of Kubernetes
2. An Overview of Kubernetes
Introduction
Setting up Kubernetes
Kubernetes Components Overview
Kubernetes Architecture
Migrating Containerized Application to Kubernetes
Delivering Kubernetes-Native Applications
Pod Life Cycle and Kubernetes Components
Summary
3
3. kubectl – Kubernetes Command Center
3. kubectl – Kubernetes Command Center
Introduction
How kubectl Communicates with Kubernetes
Setting up Environments with Autocompletion and Shortcuts
Common kubectl Commands
Populating Deployments in Kubernetes
Summary
4
4. How to Communicate with Kubernetes (API Server)
4. How to Communicate with Kubernetes (API Server)
Introduction
The Kubernetes API Server
Kubernetes HTTP Request Flow
The Kubernetes API
Scope of API Resources
API Groups
API Versions
Interacting with Clusters Using the Kubernetes API
Direct Access to the Kubernetes API Using Authentication Credentials
Summary
5
5. Pods
5. Pods
Introduction
Pod Configuration
Life Cycle of a Pod
Probes/Health Checks
Summary
6
6. Labels and Annotations
6. Labels and Annotations
Introduction
Labels
Annotations
Summary
7
7. Kubernetes Controllers
7. Kubernetes Controllers
Introduction
ReplicaSets
Deployment
StatefulSets
DaemonSets
Jobs
Summary
8
8. Service Discovery
8. Service Discovery
Introduction
Service
Ingress
Summary
9
9. Storing and Reading Data on Disk
9. Storing and Reading Data on Disk
Introduction
Volumes
Persistent Volumes
Dynamic Provisioning
Summary
10
10. ConfigMaps and Secrets
10. ConfigMaps and Secrets
Introduction
What Is a ConfigMap?
What Is a Secret?
Summary
11
11. Build Your Own HA Cluster
11. Build Your Own HA Cluster
Introduction
How the Components of Kubernetes Work Together to Achieve High Availability
Building a High-Availability Focused Kubernetes Cluster
Summary
12
12. Your Application and HA
12. Your Application and HA
Introduction
An Overview of Infrastructure Life Cycle Management
Terraform
Kubernetes Ingress
Highly Available Applications Running on Top of Kubernetes
Working with Stateful Applications
Summary
13
13. Runtime and Network Security in Kubernetes
13. Runtime and Network Security in Kubernetes
Introduction
Threat Modeling
Cluster Security
Kubernetes RBAC
NetworkPolicies
PodSecurityPolicy
Summary
14
14. Running Stateful Components in Kubernetes
14. Running Stateful Components in Kubernetes
Introduction
Stateful Apps
Understanding StatefulSets
Further Refactoring Our Application
Helm
Summary
15
15. Monitoring and Autoscaling in Kubernetes
15. Monitoring and Autoscaling in Kubernetes
Introduction
Kubernetes Monitoring
Autoscaling in Kubernetes
Summary
16
16. Kubernetes Admission Controllers
16. Kubernetes Admission Controllers
Introduction
How Admission Controllers Work
Creating Controllers with Custom Logic
How a Webhook Works
Validating a Webhook
Summary
17
17. Advanced Scheduling in Kubernetes
17. Advanced Scheduling in Kubernetes
Introduction
The Kubernetes Scheduler
The Pod Scheduling Process
Managing the Kubernetes Scheduler
Pod Affinity and Anti-Affinity
Pod Priority
Taints and Tolerations
Using a Custom Kubernetes Scheduler
Summary
18
18. Upgrading Your Cluster without Downtime
18. Upgrading Your Cluster without Downtime
Introduction
The Need to Upgrade Your Kubernetes Cluster
Kubernetes Components – Refresher
The Upgrade Process
Upgrading Kubernetes Master Components
Upgrading Kubernetes Worker Nodes
Summary
19
19. Custom Resource Definitions in Kubernetes
19. Custom Resource Definitions in Kubernetes
Introduction
What Is a Custom Controller?
Standard Kubernetes API Resources
Why We Need Custom Resources?
How Our Custom Resources Are Defined
Summary

The Evolution of Software Development

Along with the evolution of virtualization technology, it's common for companies to use virtual machines (VMs) to manage their software products, either in the public cloud or an on-premises environment. This brings huge benefits such as automatic machine provisioning, better hardware resource utilization, resource abstraction, and more. More critically, for the first time, it employs the separation of computing, network, and storage resources to unleash the power of software development from the tediousness of hardware management. Virtualization also brings in the ability to manipulate the underlying infrastructure programmatically. So, from a system administrator and developer's perspective, they can better streamline the workflow of software maintenance and development. This is a big move in the history of software development.

However, in the past decade, the scope and life cycle of software development have changed vastly. Earlier, it was not uncommon for software to be developed in big monolithic chunks with a slow-release cycle. Nowadays, to catch up with the rapid changes of business requirements, a piece of software may need to be broken down into individual fine-grained subcomponents, and each component may need to have its release cycle so that it can be released as often as possible to get feedback from the market earlier. Moreover, we may want each component to be scalable and cost-effective.

So, how does this impact application development and deployment? In comparison to the bare-metal era, adopting VMs doesn't help much since VMs don't change the granularity of how different components are managed; the entire software is still deployed on a single machine, only it is a virtual one instead of a physical one. Making a number of interdependent components work together is still not an easy task.

A straightforward idea here is to add an abstraction layer to connect the machines with the applications running on them. This is so that application developers would only need to focus on the business logic to build the applications. Some examples of this are Google App Engine (GAE) and Cloud Foundry.

The first issue with these solutions is the lack of consistent development experience among different environments. Developers develop and test applications on their machines with their local dependencies (both at the programming language and operating system level); while in a production environment, the application has to rely on another set of dependencies underneath. And we still haven't talked about the software components that need the cooperation of different developers in different teams.

The second issue is that the hard boundary between applications and the underlying infrastructure would limit the applications from being highly performant, especially if the application is sensitive to the storage, compute, or network resources. For instance, you may want the application to be deployed across multiple availability zones (isolated geographic locations within data centers where cloud resources are managed), or you may want some applications to coexist, or not to coexist, with other particular applications. Alternatively, you may want some applications to adhere to particular hardware (for example, solid-state drives). In such cases, it becomes hard to focus on the functionality of the app without exposing the topological characteristics of the infrastructure to upper applications.

In fact, in the life cycle of software development, there is no clear boundary between the infrastructure and applications. What we want to achieve is to manage the applications automatically, while making optimal use of the infrastructure.

So, how could we achieve this? Docker (which we will introduce later in this chapter) solves the first issue by leveraging Linux containerization technologies to encapsulate the application and its dependencies. It also introduces the concept of Docker images to make the software aspect of the application runtime environment lightweight, reproducible, and portable.

The second issue is more complicated. That's where Kubernetes comes in. Kubernetes leverages a battle-tested design rationale called the Declarative API to abstract the infrastructure as well as each phase of application delivery such as deployment, upgrades, redundancy, scaling, and more. It also offers a series of building blocks for users to choose, orchestrate, and compose into the eventual application. We will gradually move on to study Kubernetes, which is the core of this book, toward the end of this chapter.

Note

If not specified particularly, the term "container" might be used interchangeably with "Linux container" throughout this book.

Previous Section
End of Section 3
Next Section