Kubernetes and Cloud-Native Applications

Questions and Answers

What role does the controller manager play in a Kubernetes cluster?

• It orchestrates all Kubernetes resources. (correct)
• It provides container execution environments.
• It configures network settings for services.
• It manages the application programming interface.

Kubelet interacts exclusively with the Docker runtime to manage containers.

False (B)

What is the purpose of the kube proxy in a Kubernetes architecture?

It configures and manages the networking for applications and services.

What is the primary function of a Pod in Kubernetes?

To deploy applications consisting of one or multiple containers (B)

A Pod can be recreated after its termination.

False (B)

The __________ provides a REST interface for managing resources in a Kubernetes cluster.

API server

Match the following Kubernetes components with their functions:

API server = Offers a REST interface Kubelet = Agent running on worker nodes Cloud controller manager = Interacts with cloud providers Kube DNS = Provides name resolution for services

What YAML command is used to create a Pod?

kubectl apply –f example-pod.yaml

The __________ attribute in a Pod YAML file identifies the object as a Pod.

kind

Match the following Pod components with their descriptions:

Container = A runnable instance within a Pod Persistent Volume = Storage that survives the Pod lifecycle Volume = Storage that exists only during the container's lifecycle Pod Network = Connectivity allowing containers to communicate

What is the primary function of container orchestration platforms?

To manage a cluster of servers (D)

Kubernetes was initially developed by Microsoft and is a proprietary platform.

False (B)

What component of the Kubernetes control plane handles all requests to the cluster?

API server

The _______ database is used by Kubernetes to store cluster configuration and runtime state.

etcd

What does Container as a Service (CaaS) primarily provide?

A cloud computing model for managing containerized applications (D)

The Cloud Native Computing Foundation (CNCF) is associated exclusively with proprietary software.

False (B)

Name one key characteristic of Container as a Service (CaaS).

Orchestration Support

The Cloud Native Landscape Project aims to help enterprises navigate the previously uncharted terrain of _______ technologies.

cloud native

Match the following terms with their descriptions:

CaaS = A cloud computing model for containerized applications Kubernetes = An orchestration platform for managing containers CNCF = Community focused on cloud native applications CI/CD = Practices for continuous integration and delivery

Flashcards

Container orchestration platform

A platform that helps manage and orchestrate containers across a cluster of servers.

Kubernetes

A type of container orchestration platform that is the de facto standard. Initially developed by Google and released as an open source project in 2014.

Kubernetes Control Plane

The part of a Kubernetes cluster that manages resources and makes decisions.

Etcd Database

A distributed, highly reliable key-value data store that is used by Kubernetes to store cluster configuration and runtime state.

Kubernetes Scheduler

Component of Kubernetes that assigns nodes for workloads to run on based on policies and resource availability.

Cluster Management

The control plane manages the lifecycle of applications and their components, including deployment, scaling, and updates. It ensures that applications are deployed efficiently and optimally across the cluster.

Controller Manager

The controller manager orchestrates all Kubernetes resources, including nodes, workloads, and configurations. It runs various controllers that monitor the cluster state and make adjustments to maintain the desired state.

API Server

The API server provides a REST interface for interacting with Kubernetes resources. Objects are modeled in YAML or JSON formats and can be accessed by command line tools, libraries, or HTTP clients.

Kubelet

Kubelet is an agent that runs on each worker node. It interacts with the container runtime (e.g., Docker) to manage containers and interacts with the control plane to receive instructions.

Kube-proxy

Kube-proxy manages networking for applications and services within the cluster. It routes traffic between services and pods.

Container as a Service (CaaS)

A cloud computing model that provides a platform for managing, deploying, and scaling containerized applications. It simplifies container lifecycle management, including provisioning, scheduling, scaling, and monitoring.

Cloud Native Computing Foundation (CNCF)

A foundation that promotes open-source projects in the container and cloud-native application ecosystem. They aim to make cloud native applications more accessible and reliable.

Cloud Native Trail Map

The path or strategy that helps companies move to cloud-native technologies. It is a collection of tools, frameworks, and technologies that help developers build and deploy cloud-native applications.

Cloud Native Landscape Project

A resource map that helps enterprises and developers explore different cloud-native technologies and understand their relationships.

CNCF Projects

The collection of open-source projects that represent a well-tested path for deploying cloud-native applications. This path is trusted and recommended by the CNCF.

What is a Pod in Kubernetes?

A Pod is the smallest unit of deployment in Kubernetes. It can contain one or more containers that are scheduled together and share resources on a worker node.

How are ports defined in a Pod?

Ports are defined at the container level. Each container can expose specific ports for communication with other containers or services.

What kind of storage is available within a Pod?

Volume storage inside a Pod is ephemeral, meaning it's only available while the Pod is running. Data within the volume is deleted when the Pod is terminated.

What is a Persistent Volume (PV) in Kubernetes?

A Persistent Volume (PV) is storage space that survives the Pod itself and can be used by multiple Pods. It's provisioned by the cluster operator or on-demand.

What is a Persistent Volume Claim (PVC) in Kubernetes?

A Persistent Volume Claim (PVC) represents a storage request by an application. It defines the size and access modes of the storage space.

Study Notes

Kubernetes and Cloud-Native Applications

• Kubernetes is a container orchestration platform, initially developed by Google and released as an open-source project in 2014.
• It is a de facto standard container-as-a-service (CaaS) platform.
• Trajche Krstev is a Solution Architect for Packet Core and Telco Cloud.

Agenda

• Container as a Service (CaaS)
• Cloud evolution
• The path to cloud native
• Cloud Native Trail Map
• Containers background
• Kubernetes architecture
• Kubernetes overview

Container as a Service (CaaS)

• CaaS is a cloud computing model that manages, deploys, and scales containerized applications.
• It streamlines container lifecycle management (provisioning, scheduling, scaling, and monitoring).
• Key features include container management, orchestration support, flexibility across cloud environments (hybrid, public, private), and API-driven automation.
• Benefits include developer efficiency, portability, pay-as-you-go pricing, and rapid deployment.

The Cloud Evolution

• Legacy systems face challenges like hardware coupling, monolithic architectures, limited scaling, and low automation.
• IaaS systems offer hardware independence, but limited scaling and partial automation.
• Virtual Network Functions (VNF) systems have hardware independence, mostly monolithic, and limited scaling.
• Cloud native systems feature microservices architecture, high availability, continuous deployment, full automation, and complete hardware independence.
• CaaS platforms like Kubernetes offer a modern approach to cloud computing.

The Path to Cloud Native

• The Cloud Native Computing Foundation (CNCF) is the Linux Foundation community for containers and cloud-native applications.
• CNCF hosts open-source projects like Kubernetes, key to realizing cloud-native applications.
• The Cloud Native Landscape Project is a resource map for enterprises and developers transitioning to cloud-native technologies.
• CNCF projects represent a well-established path for cloud-native application deployment.

The Cloud Native Trail Map

• Addresses containerization, continuous integration/continuous delivery (CI/CD), orchestration and application definition, observability and analysis, service proxy, discovery, and mesh, networking, policy, security, distributed database, and storage, container registry, and runtime, and software distribution.
• This trail map assists in navigating the cloud-native journey.

Containers Background

• Containers provide a sandboxed execution environment for processes.
• Container images are stored in registries.
• Containers are lightweight, focusing on process-level CPU/memory usage.
• Filesystem layers are shared among containers.
• Communications are enabled through bridges or similar inter-process communication methods.
• Docker images are stored in a registry and can be retrieved by name and version.
• Containers run in a single server or can be orchestrated across multiple servers.

Kubernetes Architecture

• Kubernetes is an orchestration platform that manages containerized applications.
• Control plane: Master nodes for high availability (typically replicated). Includes components like API server, controller manager, scheduler, and etcd.
• Runtime plane: Worker nodes (minions). For deploying and managing Pods.
• Kubernetes architecture is comprised of the control plane (managing applications), worker nodes (executing tasks), Kubernetes API (to allow external access), and Container Runtime Interface (CRI).
• Kubectl refers to the command-line tool for interacting with Kubernetes. The kubeconfig file automatically discovers API endpoints and credentials.
• There are namespaces for light multitenancy and resource quota enforcement.

Kubernetes - Architecture (Control Plane)

• The API server interacts with clients and supports REST-based APIs. It acts as the gateway for all control plane components.
• Kubernetes uses etcd to store cluster configuration, runtime state, and metadata. This ensures data consistency and availability for the control plane.
• The scheduler assigns Pods to appropriate nodes according to various cluster policies.
• The controller manager orchestrates Kubernetes resources (nodes, workloads, configurations), continuously monitoring and maintaining appropriate cluster states.
• The cloud controller manager interacts with the underlying cloud and integrates with cloud providers.

Kubernetes - Architecture (User Plane)

• Kubelet is the control plane agent in every worker node, managing the execution of containers.
• Kube-proxy is responsible for network configurations for applications and services, including CoreDNS handling for DNS resolution.
• The container runtime manages container execution and interactions (e.g., Docker).
• Container Runtime Interface (CRI) governs container runtime specifications, interfaces, and APIs used by kubelet.
• Container Network Interface (CNI) provides a standard interface between the container runtime and networking.

Kubernetes Cluster, Pods, Deployments, and Services

• Kubernetes deployments manage Pods.
• Pods are the smallest deployable units in Kubernetes.
• Deployments define and manage the number of Pod replicas.
• Services act as an abstraction layer for accessing network Pods.

Kubernetes - Pod Storage (Volumes)

• Volumes provide storage space that survives the lifecycle of individual containers within a Pod.
• Persistent volumes (PVs) are storage resources for Kubernetes.
• Persistent volume claims (PVCs) describe the storage needs of applications.

Kubernetes Pod Resource Usage

• Requests (minimum) and limits (maximum) can control CPU and memory resources of containers within a Pod.
• This guarantees sufficient resources and prevents overconsumption.

Kubernetes Pod Configuration

• ConfigMaps serve as keys for Pod configurations (properties and init values).
• They are similar to .properties or .ini files and support YAML definitions.

Kubernetes Deployments

• Deployments maintain a set of Pods, defining their replicas.
• Kubernetes manages Pod creation and ensures a specified number of running instances.

Other Workload Controller Use Cases

• Deployments: Suitable for deploying stateless applications by specifying a number of replicas to achieve high availability for stateless applications.
• StatefulSets: Manage stateful applications, guaranteeing their persistent state and ordered creation/termination.
• DaemonSets: Configure applications that run on each node, like monitoring/supervision components.
• Jobs: Run tasks with guaranteed completion, like data initialization tasks.
• CronJobs: Run tasks at scheduled intervals for maintenance or other periodic operations.

Kubernetes Services

• Services in Kubernetes act as an abstraction layer, providing external access to Pods.
• Different service types (ClusterIP, NodePort, LoadBalancer, ExternalName) control access within and outside the cluster.

Kubernetes Networking Basics

• Every Pod has a single network interface and a unique IP address.
• Kubernetes uses a cluster network shared among all Pods and services.
• Network Policies allow controlling communication among Pods.
• An ingress network connects pods to the internet and receives external traffic to the cluster.

Kubernetes Receiving External Traffic

• By default, Pods and Services are only accessible within the Kubernetes cluster.
• Admins must configure external connectivity using methods such as exposing individual Pods (not recommended), exposing Services, and using an Ingress resource.

Kubernetes Scaling

• Deployments, StatefulSets, and other Kubernetes resources can be scaled automatically by using HorizontalPodAutoscalers.
• These tools can automatically adjust resource metrics such as CPU and memory, or use custom metrics.