Learn Kubernetes Weekly issue 100

Loss of 2 masters, Optimize startup time using VolumeSnapshots, 5 solutions for multi-cluster, Unified Helm, Argo Events: conditional triggers

9 Oct 2024

This newsletter is brought to you by Tailscale — connect your Kubernetes clusters with anything, anywhere.

This is issue 100 of Learn Kubernetes Weekly!

I'm giving away my book "Kubernetes First Steps" to celebrate. You can download it here!

Articles

1. Rescue my OpenShift cluster from loss of 2 masters

   Haozhao

   A Kubernetes cluster suffered a hardware failure, losing two master nodes and etcd data.

   In this case study, you will learn how the author recovered without an etcd backup.

2. Mesh your Kubernetes cluster to the rest of your network with the Tailscale Kubernetes operator

   Irbe Krumina

   This article explains how to integrate Kubernetes clusters with broader network environments.

   You'll learn to expose Kubernetes services to external networks, enable secure access to the control plane, and connect services across different clusters and cloud providers.

   sponsored

3. Optimize Kubernetes pods’ startup time using VolumeSnapshots

   Maya Aravot

   Learn how the team at Riskified optimized their pods' startup time by leveraging VolumeSnapshots, achieving an 83% improvement from 37 seconds.

   You'll discover how to manage snapshot creation, retention, and restoration.

4. 5 solutions for multi-cluster communication in Kubernetes

   This article compares 5 solutions for multi-cluster communication in Kubernetes: underlay networks, overlay CNIs, Submariner, Skupper, and KubeSlice.

5. Streamlining Microservices Management: A Unified Helm Chart Approach

   Calin Florescu

   Learn how to simplify microservices management by adopting a unified Helm chart approach.

   This approach enables you to make changes across multiple microservices from a single location, reducing the complexity of working with multiple repositories.

6. Argo Events : conditional triggers

   Chuk-Munn Lee

   This article explores the use of Argo Events for conditional triggers, including an example of exposing a Service with Gateway API and routing gRPC, TCP, and UDP traffic.

   You will also learn about auto-deploying HTTPRoutes from Services.

Articles worth checking out:

• How to continuously test and deploy your Helm charts on Kubernetes clusters using kind

• Simplifying Helm Chart Management: A Practical Guide to Creating Wrappers for External Dependencies

• Simplify your Kubernetes multi-cluster management: the secret to streamlined add-on deployments

• Effortless image cleanup: streamline your AKS cluster with Image Cleaner

• Accelerate Docker builds with Docker Build Cache

• Kubernetes troubleshooting: disk pressure taint

• Streamlining Multi-Cloud Kubernetes Access Using OIDC

• Exploiting and detecting CVE-2021-25735: Kubernetes validating admission webhook bypass

• Shielding your Kubernetes network: mastering iptables for enhanced security

Secure access for Kubernetes

Tailscale

Dramatically simplify your Kubernetes networking needs with Tailscale.

Use Tailscale to secure access to your Kubernetes control plane and to provide access to services and pods in your Kubernetes cluster to trusted users.

👉 Secure now

Tutorials

1. Tailscale on Kubernetes

   Tailscale

   In this tutorial, you will learn how to use the Tailscale Operator to configure ingress to Kubernetes services, egress to a tailnet, and secure access to the cluster control plane (kube-apiserver).

   sponsored

2. Automated Kubernetes Gateway certificates management with Cert Manager

   Addo Zhang

   This tutorial explores how to use cert-manager to manage Kubernetes Gateway certificates automatically.

3. Using Pi-Hole as your external-dns provider in Kubernetes

   Rob Rakaric

   In this tutorial, you will learn how to configure Pi-Hole as an external DNS provider in Kubernetes.

4. GitHub Action Runners on GKE with DinD-rootless

   Will Sulzer

   This tutorial explains deploying GitHub Action Runners on GKE with Helm, including setting up Docker-in-Docker in rootless mode.

   It covers configuring GKE, deploying a workflow to build a Docker image on GitHub Actions, and monitoring the action logs.

5. Kubernetes hardware-accelerated home streamer

   Zac Pollack

   Learn how to set up a Kubernetes cluster for streaming with hardware-accelerated capabilities using a GPU using Helm, k3s, and Jellyfin,

Kubernetes jobs

1. • Solution Architect with NVIDIA

   • Salary: $148K to $230K a year

   • Location: remote from the United States

   • Tech stack: Kubernetes, Data center, Python, C++

2. • Software Engineer with Invitro Capital

   • Salary: $42K to $54K a year

   • Location: remote from Mexico

   • Tech stack: Kubernetes, AWS, Azure, GCP, Docker, Python, Cassandra, Mongo, PostgreSQL, MySQL

3. • Platform Engineer with Veeam Software

   • Salary: $201K to $287.1K a year

   • Location: remote from the United States

   • Tech stack: Kubernetes, AWS, Go, Python, Javascript, Typescript, Ruby, C++, PostgreSQL, Elastic Search

4. • Software Engineer with Modern Treasury

   • Salary: $200K to $360K a year

   • Location: remote from the United States

   • Tech stack: Kubernetes, AWS, Python

Discover more Kubernetes jobs on Kube Careers →

Code & tools

1. Node Feature Discovery: add-on

   Node Feature Discovery is a Kubernetes add-on for detecting hardware features and system configuration.

   It detects hardware features available on each node in a Kubernetes cluster and advertises those features using node labels.

2. OCI-registry

   mcronce

   oci-registry is a tool that implements the OCI Registry spec with filesystem and S3 storage back-ends.

3. kubectx: switch between clusters and namespaces

   kubectx is a tool to switch between contexts (clusters) on kubectl faster.

   kubens is a tool to switch between Kubernetes namespaces (and configure them for kubectl) easily.

4. Kubero: IdP

   Kubero is a fully self-hosted Internal Developer Platform that brings Heroku's workflows to your Kubernetes cluster.

   It enables you to deploy your applications with a few clicks, has a built-in CI/CD pipeline, and supports multiple staging environments.

5. k3k: nested k3s

   rancher

   A Kubernetes in Kubernetes tool, k3k provides a way to run multiple embedded isolated k3s clusters on your kubernetes cluster.

Other interesting projects:

• Tortoise: optimizing requests and HPAs

• Bank Vaults: a Vault swiss-army knife

• K8sgpt

• Gemini: managing VolumeSnapshots

Upcoming Kubernetes events

1. Oct

   9

   Kubeday Colombia

   In-person conference organized by Linux Foundation.

   • Location: Medellín, CO

   • This event requires an entrance fee

2. Oct

   9

   Platform Engineering: the Cloud Native way

   Online conference organized by KubeCrash.

   • This is a virtual event

   • This is a free event.

3. Oct

   12

   Kubernetes Community Days Chattogram 2024

   Online conference organized by KCD Chattogram.

   • This is a virtual event

   • This is a free event.

4. Oct

   15

   Everything you always wanted to know about Kubernetes on multi-sites

   Online meetup organized by Data on Kubernetes Community.

   • This is a virtual event

   • This is a free event.

5. Oct

   16

   Kubernetes Community Days MENA 2024

   In-person conference organized by KCD MENA.

   • Location: Dubai, AE

   • This is a free event.

6. Oct

   21

   Advanced Kubernetes course (San Francisco)

   In-person workshop organized by Learnk8s.

   • Location: San Francisco, CA, USA

   • This event requires an entrance fee

Discover more Kubernetes events on Kube Events →

Kubernetes Call for Papers

1. expired

   Dutch Cloud Native Day 2024

   The Call For Paper was open until 31 October 2024 at UTC. More info →

   • Location: Amsterdam, NL

   • In-person conference organized by Cloud Native Amsterdam.

   • The conference starts on the 10 December 2024.

   • Apply here

2. expired

   KubeCon + CloudNativeCon Europe 2025

   The Call For Paper was open until 25 November 2024 at UTC. More info →

   • Location: London, UK

   • In-person conference organized by Linux Foundation.

   • The conference starts on the 1 April 2025.

   • Apply here

3. expired

   Tech Internals Conf

   The Call For Paper was open until 1 November 2024 at UTC. More info →

   • Location: Berlin, DE

   • In-person conference organized by TIC.

   • The conference starts on the 27 February 2025.

   • Apply here

4. expired

   Navigate North America 2025

   The Call For Paper was open until 10 October 2024 at UTC. More info →

   • Location: San Francisco, CA, USA

   • In-person conference organized by Civo.

   • The conference starts on the 10 February 2025.

   • Apply here

5. expired

   DevSecOps 2024

   The Call For Paper was open until 4 November 2024 at UTC. More info →

   • This is a virtual event

   • Online conference organized by Conf42.

   • The conference starts on the 5 December 2024.

   • Apply here

6. expired

   Cybersec Asia 2025

   The Call For Paper was open until 30 November 2024 at UTC. More info →

   • Location: Bangkok, TH

   • In-person conference organized by Cybersec Asia.

   • The conference starts on the 29 January 2025.

   • Apply here

7. expired

   Devopsdays Chicago

   The Call For Paper was open until 20 October 2024 at UTC. More info →

   • Location: Chicago, IL, USA

   • In-person conference organized by Devopsdays.

   • The conference starts on the 18 March 2025.

   • Apply here

8. expired

   RuhrSec 2025

   The Call For Paper was open until 10 November 2024 at UTC. More info →

   • Location: Bochum, DE

   • In-person conference organized by Hackmanit.

   • The conference starts on the 21 February 2025.

   • Apply here

9. expired

   DefCamp 2024

   The Call For Paper was open until 15 October 2024 at UTC. More info →

   • Location: Bucharest, RO

   • In-person conference organized by CCSIR.

   • The conference starts on the 29 November 2024.

   • Apply here

Until next time!

— Dan

Subscribe and, every Wednesday, receive the latest Kubernetes news!