kubernetes-playground's Introduction
kubernetes-playground's People
kubernetes-playground's Issues
Understand kubernetes service loadBalancerSourceRanges
Context
Kubernetes version: 1.20.9
Introduction
This issues to used to learn loadBalancerSourceRanges
field in kubernetes service yaml.
Reference
This repo provide the
GetLoadBalancerSourceRanges
function
This repo consumes
GetLoadBalancerSourceRanges
function
https for ingress
Get better understanding of the technology stack concerning Kubernetes
Q: 什么是Kubernetes的“底层”?
A: 为了“持续部署”这个目标,所有涉及的变量。 例如:
-
底层是OS,在阿里云上通过ROS来构建VM image
-
Kubernetes这一层构建在OS之上
-
Kubernetes之上的工具
-
Package management: Helm
-
CD: Jenkins / Argo
-
Debugging / Profiling: Istios
-
Monitoring: Prometheus
-
Logging: ElasticSearch / Loki
-
-
对不同基础设施环境,不同语言,不同框架的部署方式的理解
Use helm template to parameterize the yaml file
understand configmap
Create a new workshop to understand configmap.
use helm create jenkins on minikube
Workshop-3
Understand the list api resources.
NAME SHORTNAMES APIGROUP NAMESPACED KIND
bindings true Binding
componentstatuses cs false ComponentStatus
configmaps cm true ConfigMap
endpoints ep true Endpoints
events ev true Event
limitranges limits true LimitRange
namespaces ns false Namespace
nodes no false Node
persistentvolumeclaims pvc true PersistentVolumeClaim
persistentvolumes pv false PersistentVolume
pods po true Pod
podtemplates true PodTemplate
replicationcontrollers rc true ReplicationController
resourcequotas quota true ResourceQuota
secrets true Secret
serviceaccounts sa true ServiceAccount
services svc true Service
mutatingwebhookconfigurations admissionregistration.k8s.io false MutatingWebhookConfiguration
validatingwebhookconfigurations admissionregistration.k8s.io false ValidatingWebhookConfiguration
customresourcedefinitions crd,crds apiextensions.k8s.io false CustomResourceDefinition
apiservices apiregistration.k8s.io false APIService
controllerrevisions apps true ControllerRevision
daemonsets ds apps true DaemonSet
deployments deploy apps true Deployment
replicasets rs apps true ReplicaSet
statefulsets sts apps true StatefulSet
tokenreviews authentication.k8s.io false TokenReview
localsubjectaccessreviews authorization.k8s.io true LocalSubjectAccessReview
selfsubjectaccessreviews authorization.k8s.io false SelfSubjectAccessReview
selfsubjectrulesreviews authorization.k8s.io false SelfSubjectRulesReview
subjectaccessreviews authorization.k8s.io false SubjectAccessReview
horizontalpodautoscalers hpa autoscaling true HorizontalPodAutoscaler
cronjobs cj batch true CronJob
jobs batch true Job
certificatesigningrequests csr certificates.k8s.io false CertificateSigningRequest
leases coordination.k8s.io true Lease
events ev events.k8s.io true Event
daemonsets ds extensions true DaemonSet
deployments deploy extensions true Deployment
ingresses ing extensions true Ingress
networkpolicies netpol extensions true NetworkPolicy
podsecuritypolicies psp extensions false PodSecurityPolicy
replicasets rs extensions true ReplicaSet
networkpolicies netpol networking.k8s.io true NetworkPolicy
poddisruptionbudgets pdb policy true PodDisruptionBudget
podsecuritypolicies psp policy false PodSecurityPolicy
clusterrolebindings rbac.authorization.k8s.io false ClusterRoleBinding
clusterroles rbac.authorization.k8s.io false ClusterRole
rolebindings rbac.authorization.k8s.io true RoleBinding
roles rbac.authorization.k8s.io true Role
priorityclasses pc scheduling.k8s.io false PriorityClass
storageclasses sc storage.k8s.io false StorageClass
volumeattachments storage.k8s.io false VolumeAttachment
Understand k8s network
What are the Networks?
-
Pod
-
Service
-
Ingress / Load Balancer
What to understand?
-
Reasoning of the architectural decision
-
Underlying technology
Setup Jenkins without helm
Current issue branched from #20
Dig deeper on container runtime
Questions
- What are the responsibilities of container runtime?
Reference
- What are container runtimes?
- The differences between Docker, containerd, CRI-O and runc
The explanation of the relationship between containerd and runc is helpful.
- containerd architecture
deploy prometheus with kubernetes to save cost
Add Kubernetes jenkins executor
meeting error
Waiting for next available executor
during building on Jenkins
Dig about minikube architecture
Deploy kubernetes with Helm on aliyun
Jenkins reverse proxy error
Deploy hello-world service to AKS
Create a simple "Hello World" Node.js service.
Member under hust-sh organization work on Jenkins fluently
Helm Jekins restart super slow
use customInitContainers
replace the existing slow initContainer
Learn about ingress
To save the money of using loadbalancer.
Deploy Jenkins on Aliyun Kubernetes with Persistent Volume
Play with Kops
have a better understand of helm
Setup kubernetes cluster on Qingcloud
Create a service with nginx.
Protect Jenkins with https
PFX_FILE=
openssl pkcs12 -in ${PFX_FILE} -nocerts -nodes | sed -ne '/-BEGIN PRIVATE KEY-/,/-END PRIVATE KEY-/p' > clientcert.key
openssl pkcs12 -in ${PFX_FILE} -clcerts -nokeys | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > clientcert.cer
openssl pkcs12 -in ${PFX_FILE} -cacerts -nokeys -chain | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > cacerts.cer
Dig deeper on cgroups and namespaces
-
Namespace provide separate processes
-
cgroups limit the resource to groups of processes.
Reference
helm "Unauthorized" error
joamarukichis-MacBook-puro:kubernetes-playground yogiman$ helm list
Error: Unauthorized
Is it possible to build container image without Docker
Reference
This article contemplates the usage of Buildah & Podman
This tool build container images
Podman architecture on MacOS
Deploy Argo
kubectl create namespace argo
kubectl apply -n argo -f https://raw.githubusercontent.com/argoproj/argo/stable/manifests/install.yaml
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.