Book Image

The Kubernetes Bible

By : Nassim Kebbani, Piotr Tylenda, Russ McKendrick

4 (3)

Book Image

The Kubernetes Bible

4 (3)

By: Nassim Kebbani, Piotr Tylenda, Russ McKendrick

Overview of this book

With its broad adoption across various industries, Kubernetes is helping engineers with the orchestration and automation of container deployments on a large scale, making it the leading container orchestration system and the most popular choice for running containerized applications. This Kubernetes book starts with an introduction to Kubernetes and containerization, covering the setup of your local development environment and the roles of the most important Kubernetes components. Along with covering the core concepts necessary to make the most of your infrastructure, this book will also help you get acquainted with the fundamentals of Kubernetes. As you advance, you'll learn how to manage Kubernetes clusters on cloud platforms, such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP), and develop and deploy real-world applications in Kubernetes using practical examples. Additionally, you'll get to grips with managing microservices along with best practices. By the end of this book, you'll be equipped with battle-tested knowledge of advanced Kubernetes topics, such as scheduling of Pods and managing incoming traffic to the cluster, and be ready to work with Kubernetes on cloud platforms.

Preface

Who this book is for

What this book covers

To get the most out of this book

Download the example code files

Download the color images

Conventions used

Share Your Thoughts

Section 1: Introducing Kubernetes

Section 1: Introducing Kubernetes

Free Chapter

Chapter 1: Kubernetes Fundamentals

Chapter 1: Kubernetes Fundamentals

Understanding monoliths and microservices

Understanding containers and Docker

How can Kubernetes help you to manage your Docker containers?

Exploring the problems that Kubernetes solves

Understanding the history of Kubernetes

Chapter 2: Kubernetes Architecture – From Docker Images to Running Pods

Chapter 2: Kubernetes Architecture – From Docker Images to Running Pods

Understanding the difference between the master and worker nodes

The kube-apiserver component

Exploring the kubectl command-line tool and YAML syntax

The Etcd datastore

The Kubelet and worker node components

The kube-scheduler component

The kube-controller-manager component

How to make Kubernetes highly available

Chapter 3: Installing Your First Kubernetes Cluster

Chapter 3: Installing Your First Kubernetes Cluster

Technical requirements

Installing a single-node cluster with Minikube

Launching a multi-node Kubernetes cluster with Kind

Installing a Kubernetes cluster using Google GKE

Installing a Kubernetes cluster using Amazon EKS

Installing a Kubernetes cluster using Azure AKS

Section 2: Diving into Kubernetes Core Concepts

Section 2: Diving into Kubernetes Core Concepts

Chapter 4: Running Your Docker Containers

Chapter 4: Running Your Docker Containers

Technical requirements

Let's explain the notion of Pods

Launching your first Pods

Labeling and annotating the Pods

Launching your first job

Launching your first Cronjob

Chapter 5: Using Multi-Container Pods and Design Patterns

Chapter 5: Using Multi-Container Pods and Design Patterns

Technical requirements

Understanding what multi-container Pods are

Sharing volumes between containers in the same Pod

The ambassador design pattern

The sidecar design pattern

The adapter design pattern

Chapter 6: Configuring Your Pods Using ConfigMaps and Secrets

Chapter 6: Configuring Your Pods Using ConfigMaps and Secrets

Technical requirements

Understanding what ConfigMaps and Secrets are

Configuring your Pods using ConfigMaps

Managing sensitive configuration with the Secret object

Chapter 7: Exposing Your Pods with Services

Chapter 7: Exposing Your Pods with Services

Technical requirements

Why would you want to expose your Pods?

The NodePort service

The ClusterIP service

The LoadBalancer service

Implementing ReadinessProbe

Securing your Pods using the NetworkPolicy object

Chapter 8: Managing Namespaces in Kubernetes

Chapter 8: Managing Namespaces in Kubernetes

Technical requirements

Introduction to Kubernetes namespaces

How namespaces impact your resources and services

Configuring ResourceQuota and Limit at the namespace level

Listing ResourceQuota

Deleting ResourceQuota

Introducing LimitRange

Listing LimitRange

Deleting LimitRange

Chapter 9: Persistent Storage in Kubernetes

Chapter 9: Persistent Storage in Kubernetes

Technical requirements

Why you would want to use PersistentVolume

Understanding how to mount a PersistentVolume to your Pod claims

Understanding the life cycle of a PersistentVolume object in Kubernetes

Static and dynamic PersistentVolume provisioning

Section 3: Using Managed Pods with Controllers

Section 3: Using Managed Pods with Controllers

Chapter 10: Running Production-Grade Kubernetes Workloads

Chapter 10: Running Production-Grade Kubernetes Workloads

Technical requirements

Ensuring HA and FT on Kubernetes

What is ReplicationController?

What is ReplicaSet and how does it differ from ReplicationController?

Further reading

Chapter 11: Deployment – Deploying Stateless Applications

Chapter 11: Deployment – Deploying Stateless Applications

Technical requirements

Introducing the Deployment object

How does a Deployment object manage revisions and version rollout?

Deployment object best practices

Further reading

Chapter 12: StatefulSet – Deploying Stateful Applications

Chapter 12: StatefulSet – Deploying Stateful Applications

Technical requirements

Introducing the StatefulSet object

Managing StatefulSet

Releasing a new version of an app deployed as a StatefulSet

StatefulSet best practices

Further reading

Chapter 13: DaemonSet – Maintaining Pod Singletons on Nodes

Chapter 13: DaemonSet – Maintaining Pod Singletons on Nodes

Technical requirements

Introducing the DaemonSet object

Creating and managing DaemonSets

Common use cases for DaemonSets

Alternatives to DaemonSets

Further reading

Section 4: Deploying Kubernetes on the Cloud

Section 4: Deploying Kubernetes on the Cloud

Chapter 14: Kubernetes Clusters on Google Kubernetes Engine

Chapter 14: Kubernetes Clusters on Google Kubernetes Engine

Technical requirements

What are GCP and GKE?

Preparing your environment

Launching your first GKE cluster

Deploying a workload and interacting with your cluster

More about cluster nodes

Further reading

Chapter 15: Launching a Kubernetes Cluster on Amazon Web Services with Amazon Elastic Kubernetes Service

Chapter 15: Launching a Kubernetes Cluster on Amazon Web Services with Amazon Elastic Kubernetes Service

Technical requirements

What are AWS and Amazon EKS?

Preparing your local environment

Launching your Amazon EKS cluster

Deploying a workload and interacting with your cluster

Deleting your Amazon EKS cluster

Further reading

Chapter 16: Kubernetes Clusters on Microsoft Azure with Azure Kubernetes Service

Chapter 16: Kubernetes Clusters on Microsoft Azure with Azure Kubernetes Service

Technical requirements

What are Microsoft Azure and AKS?

Preparing your local environment

Launching your AKS cluster

Deploying a workload and interacting with your cluster

Deleting your AKS cluster

Further reading

Section 5: Advanced Kubernetes

Section 5: Advanced Kubernetes

Chapter 17: Working with Helm Charts

Chapter 17: Working with Helm Charts

Technical requirements

Understanding Helm

Releasing software to Kubernetes using Helm

Helm chart anatomy

Installing popular solutions using Helm charts

Further reading

Chapter 18: Authentication and Authorization on Kubernetes

Chapter 18: Authentication and Authorization on Kubernetes

Technical requirements

Authentication and user management

Authorization and introduction to RBAC

Azure Kubernetes Service and Azure Active Directory integration

Further reading

Chapter 19: Advanced Techniques for Scheduling Pods

Chapter 19: Advanced Techniques for Scheduling Pods

Technical requirements

Refresher – What is kube-scheduler?

Managing Node affinity

Using Node taints and tolerations

Scheduling policies

Further reading

Chapter 20: Autoscaling Kubernetes Pods and Nodes

Chapter 20: Autoscaling Kubernetes Pods and Nodes

Technical requirements

Pod resource requests and limits

Autoscaling Pods vertically using a Vertical Pod Autoscaler

Autoscaling Pods horizontally using a Horizontal Pod Autoscaler

Autoscaling Kubernetes Nodes using a Cluster Autoscaler

Further reading

Chapter 21: Advanced Traffic Routing with Ingress

Chapter 21: Advanced Traffic Routing with Ingress

Technical requirements

Refresher: Kubernetes services

Introducing the Ingress object

Using nginx as an Ingress Controller

Azure Application Gateway Ingress Controller for AKS

Further reading

Other Books You May Enjoy

Other Books You May Enjoy

Packt is searching for authors like you

Share Your Thoughts

Customer Reviews

4 (3)

5 star

33.3%

4 star

33.3%

3 star

33.3%

2 star

0

1 star

0

Azure Kubernetes Service and Azure Active Directory integration

Tier 1 cloud service providers such as Microsoft Azure, Google Cloud Platform, and Amazon Web Services have their own managed Kubernetes cluster offerings. We covered the Kubernetes deployments for these three cloud platforms in the previous chapters. What is important here is that managed Kubernetes clusters come with a lot of additional integrations with other cloud services. In this section, we will show you how to use AAD integrations for AKS to provide authentication using OpenID Connect and authorization using Azure RBAC. This approach unifies user management and access control across Azure resources, AKS, and Kubernetes resources.

Important note

At the time of writing, integration with AAD for authentication in AKS is in general availability and may be enabled on demand. Azure RBAC for Kubernetes authorization is currently in preview and can be enabled only when creating a new cluster. It will be possible...