Getting Started with Kubernetes, Second Edition

By : Jonathan Baier

4.7 (3)

Buy this Book

Getting Started with Kubernetes, Second Edition

4.7 (3)

By: Jonathan Baier

Buy this Book

Overview of this book

Kubernetes has continued to grow and achieve broad adoption across various industries, helping you to orchestrate and automate container deployments on a massive scale. This book will give you a complete understanding of Kubernetes and how to get a cluster up and running. You will develop an understanding of the installation and configuration process. The book will then focus on the core Kubernetes constructs such as pods, services, replica sets, replication controllers, and labels. You will also understand how cluster level networking is done in Kubernetes. The book will also show you how to manage deployments and perform updates with minimal downtime. Additionally, you will learn about operational aspects of Kubernetes such as monitoring and logging. Advanced concepts such as container security and cluster federation will also be covered. Finally, you will learn about the wider Kubernetes ecosystem with OCP, CoreOS, and Tectonic and explore the third-party extensions and tools that can be used with Kubernetes. By the end of the book, you will have a complete understanding of the Kubernetes platform and will start deploying applications on it.

Preface

What this book covers

What you need for this book

Who this book is for

Conventions

Reader feedback

Customer support

Free Chapter

Introduction to Kubernetes

A brief overview of containers

Why are containers so cool?

Microservices and orchestration

The birth of Kubernetes

Our first cluster

Working with other providers

Summary

Pods, Services, Replication Controllers, and Labels

The architecture

Core constructs

Our first Kubernetes application

Health checks

Application scheduling

Summary

Networking, Load Balancers, and Ingress

Kubernetes networking

Advanced services

Service discovery

DNS

Multitenancy

A note on resource usage

Summary

Updates, Gradual Rollouts, and Autoscaling

Example set up

Scaling up

Smooth updates

Testing, releases, and cutovers

Application autoscaling

Scaling a cluster

Summary

Deployments, Jobs, and DaemonSets

Deployments

Jobs

DaemonSets

Node selection

Summary

Storage and Running Stateful Applications

Persistent storage

StatefulSets

Summary

Continuous Delivery

Integrating with continuous delivery pipeline

Gulp.js

Kubernetes plugin for Jenkins

Bonus fun

Summary

Monitoring and Logging

Monitoring operations

Built-in monitoring

FluentD and Google Cloud Logging

Maturing our monitoring operations

Summary

Cluster Federation

Introduction to federation

Setting up federation

True multi-cloud

Summary

Container Security

Basics of container security

Image repositories

Kubernetes cluster security

Securing sensitive application data (secrets)

Summary

Extending Kubernetes with OCP, CoreOS, and Tectonic

The importance of standards

The Open Container Initiative

Cloud Native Computing Foundation

Standard container specification

CoreOS

Kubernetes with CoreOS

Tectonic

Summary

Towards Production Ready

Ready for production

Third-party companies

Where to learn more?

Summary

Customer Reviews

4.7 (3)

5 star

66.7%

4 star

33.3%

3 star

2 star

1 star

Kubernetes cluster security

Kubernetes has continued to add a number of security features in their latest releases and has a well-rounded set of control points that can be used in your cluster; everything from secure node communication to pod security and even storage of sensitive configuration data.

Secure API calls

During every API call, Kubernetes applies a number of security controls. This security life cycle is depicted here:

API call life cycle

After secure TLS communication is established, the API server runs through Authorization and Authentication. Finally, an Admission Controller loop is applied to the request before it reaches the API server.