0% completed

All LessonsFree Lessons (8)

How Did We Get Here?

Introduction A Short History of Infrastructure Management A Short History of Deployment Processes Schedulers What is Kubernetes?

Pods

Getting Started with Pods A Quick Way to Run Pods Defining Pods through Declarative Syntax Components and Stages Involved in Pod Scheduling Playing Around with the Running Pod Running Multiple Containers in a Single Pod Single-Container vs. Multi-Container Pods Monitoring Health Quiz Yourself on Pods What's Next?

ReplicaSets

Getting Started with ReplicaSets

Creating ReplicaSets

Sequential Breakdown of the Process

Operating ReplicaSets

Quiz Yourself on ReplicaSets

Services

Getting Started with Communication Creating Services by Exposing Ports Sequential Breakdown of the Process Creating Services through Declarative Syntax Splitting the Pod and Establishing Communication through Services Creating the Split API Pods Defining Multiple Objects in the Same YAML File Discovering Services Comparison with Docker Swarm Quiz Yourself on Services What's Next?

Deployments

Getting Started with Deploying Releases Deploying New Releases Sequential Breakdown of the Process Updating Deployments Defining a Zero-Downtime Deployment Creating a Zero-Downtime Deployment Rolling Back or Rolling Forward?Playing Around with the Deployment Rolling Back Failed Deployments Merging Everything into the Same YAML Definition Updating Multiple Deployments Scaling Deployments Comparison with Docker Swarm Quiz Yourself on Deployments What's Next?

Ingress

Getting Started with Ingress Services and External Access Enabling Ingress Controllers Creating Ingress Resources Based on Paths Sequential Breakdown of the Process Creating Ingress Resources Based on Domains Creating an Ingress Resource with the Default Backend Comparison with Docker Swarm Quiz Yourself on Ingress What's Next?

Volumes

Getting Started with Volumes Accessing a Host’s Resources through hostPath Volumes Running the Pod after mounting hostPath Using hostPath Volume Type to Inject Configuration Files Working with the New Prometheus Configuration Non-persisting State Persisting State through the emptyDir Volume Type Quiz Yourself on Volumes What's Next?

ConfigMaps

Getting Started with ConfigMaps Injecting a Configuration from a Single File Injecting Configurations from Multiple Files Injecting Configurations from Key/Value Literals Injecting Configurations from Environment Files Converting ConfigMap Output to Environment Variables Defining ConfigMaps as YAML The Best Way to Configure an Application Comparison with Docker Swarm Quiz Yourself on ConfigMaps What's Next?

Secrets

Getting Started with Secrets Exploring Built-In Secrets Creating Generic Secrets Mounting Generic Secrets Secrets Compared to ConfigMaps How to Secure Secrets Comparison with Docker Swarm Quick Quiz!What's Next?

Namespaces

Getting Started with Cluster Division Deploying the First Release Exploring Virtual Clusters Exploring the Existing Namespaces Creating a New Namespace Deploying to a New Namespace Communicating between Namespaces Deleting a Namespace and All Its Objects Comparison with Docker Swarm Quick Quiz!What's Next?

Securing Kubernetes Clusters

Getting Started with Security

Accessing the Kubernetes API

Authorizing Requests and Creating a Cluster

Creating Users to Access the Cluster

Accessing the Cluster as a User

Exploring the RBAC Authorization

Exploring Predefined ClusterRoles

Creating RoleBindings

Creating Cluster Role Bindings

Combining RoleBindings with Namespaces

Granting Access as a Release Manager

Replacing Users with Groups

Comparison with Docker Swarm

Quiz Yourself on Securing Kubernetes

Managing Resources

Getting Started with Managing Resources Defining Container Memory and CPU Resources Getting Practical with Container Memory and CPU Resources Measuring the Actual Memory and CPU Consumption Allocating Insufficient Resource than the Actual Usage Allocating Excessive Resources Adjusting Resources Based on Actual Usage Exploring Quality of Service (QoS) Contracts Examining QoS in Action Defining Resource Defaults and Limitations within a Namespace The Mismatch Scenario Defining Resource Quotas for a Namespace Exploring the Effects by Violating Quotas Exploring the Types of Quotas Comparison with Docker Swarm Quiz yourself on Managing Resources What's Next?

Creating A Production-Ready Kubernetes Cluster

Getting Started with a Production-Ready Clusters Kubernetes Operations (kOps) Project Preparing for the Cluster Setup: AWS CLI and Region Preparing for the Cluster Setup: IAM Group and User Preparing for the Cluster Setup: Availability Zones and SSH Keys Creating a Cluster: Creating an S3 Bucket and Installing kOps Creating a Cluster: Discussing the Specifications Creating a Cluster: Running and Verification Exploring the Components That Constitute the Cluster Updating the Cluster Sequential Breakdown and Verification of the Update Process Upgrading the Cluster Manually: Changing the Kubernetes Version Exploring and Verifying the Output Upgrading the Cluster Automatically Accessing the Cluster: Understanding the Protocol Accessing the Cluster: Adding the Load Balancer Deploying Applications Exploring High Availability and Fault Tolerance of a Cluster Giving Others Access to the Cluster Destroying the Cluster Comparison with Docker Swarm Quiz Yourself on Clusters What's Next?

Cloud Lab - 1 hour

Create a Production-Ready Kubernetes Cluster

Persisting State

Getting Started with State Persistence Deploying Stateful Applications without Persisting State Analyzing Failure of the Stateful Application Creating AWS Volumes Creating Kubernetes Persistent Volumes Claiming Persistent Volumes Creating Deployment for Attaching Claimed Volumes to Pods Verifying State Persistence and Exploring Failures Removing Resources and Exploring Effects Using Storage Classes to Dynamically Provision PersistentVolumes Using Default StorageClasses Defining Storage Classes Creating StorageClasses Quiz Yourself on Persistent States What's Next?

Cloud Lab - 1 hour

Deploy Stateful Applications with Persistent State

Cloud Lab - 1 hour

Create a Docker Swarm

Appendix: Running a Kubernetes Cluster Locally

Exploring the Options Installing kubectl Installing minikube Creating a Local Kubernetes Cluster with minikube Exploring minikube Commands

A Practical Guide to Kubernetes/

...

/

What's Next?

What's Next?

Review what we’ve learned so far and what we’ll learn next.

We'll cover the following...

Summary

Summary

Authorization and authentication are critical security components. Without a proper set of permissions, we risk exposure with potentially devastating results. Moreover, with appropriate Rules, Roles, and RoleBindings, we can make a cluster more secure and increase collaboration between different members of our organization. The only trick is to find the right balance between tight security and freedom. It takes time until that ...