#Kubernetes Kubernetes 101 : A simple overview Kubernetes manages a cluster which contains nodes . Below is a simple diagram that summarizes its role: The nodes host pods , which run containers . Kuberne March 17, 2024 Share
#Istio, #Kubernetes Istio 101 : Allowing outbound traffic out of Istio's mesh Istio allows all traffic going out of the service mesh. All traffic goes through the envoy proxy - default service proxy for istio -. We could stop tra March 16, 2024 Share
#Istio, #Kubernetes Istio 101 : Defining the response to Error codes in web applications - EnvoyFilter - In order to help istio handle network problems, we could use for example the automatic retries . Within the automatic reply parameter, we could also set September 07, 2023 Share
#Istio, #Kubernetes Istio 101 : "Envoy" sidecar injection into a kubernetes deployment Injection of sidecar in a kubernetes application, means that istio is going to modify the deployment's Yaml file of our pods to include a side car January 10, 2023 Share
#Kubernetes Kubernetes 101 : Scaling a stateful set The below diagram represents the scaling down of a statefulset named db1 : Before scaling down our statefulset , we check the pods and we see that there December 23, 2022 Share
#Kubernetes Kubernetes 101 : Securing your pods - Security Contexts - Kubernetes provides us with a security mechanism that makes it possible for us to limit what the programs running inside containers could do. A securit July 08, 2022 Share
#Kubernetes Kubernetes 101 : Using admission controllers to secure the pods and the nodes After the client application has been authenticated and allowed to carry out its task within the kubernetes cluster, the admission controller steps in July 07, 2022 Share
#Kubernetes Kubernetes 101 : Role-based access control aggregation - RBAC - rules We can combine different ClusterRoles through the use of labels . The ClusterRole " pods " allows us to list pods , the ClusterRole " services July 01, 2022 Share
#Kubernetes Kubernetes 101 : Maximum and minimum resources for a pod - LimitRange - We can specify the minimum and maximum CPU and memory consumption for pods in the LimitRange kubernetes object. The variable " spec.limits[].min &qu June 30, 2022 Share
#Kubernetes Kubernetes 101 : API server communications - HTTP and REST APIs - The API server is the beating heart of the kubernetes cluster. It manages - list, delete, update, ... - the kubernetes API resources - pods, deployment June 29, 2022 Share
#Kubernetes Kubernetes 101 : Default resource limits and requests - LimitRange - To keep the pods that don't have a resource limits/requests defined from consuming all the resources, we can specify default resource limits/reque June 28, 2022 Share
#Kubernetes Kubernetes 101 : How do we access the pods from outside the kubernetes cluster Kubernetes has two objects that allow us to have access to it from the outside. Services : like a loadBalancer or a layer " 4 " TCP/UDP nodePort June 27, 2022 Share
#Kubernetes Kubernetes 101 : Sidecar containers - Sharing storage with a sidecar container - Instead of modifying the image of a container , we could add logging or database functionalities to it for example by running a sidecar container along June 10, 2022 Share
#Kubernetes Kuberenetes 101 : OpenSSL - Creating users - We start by creating a directory on the master node that will hold our keys and we " cd " into it. We create a private key for Albert : We then c June 08, 2022 Share
#Kubernetes Kubernetes 101 : Service Accounts Kubernetes uses a service account to authenticate services and applications process with the API server . The service account can be assigned to a pod f June 07, 2022 Share