Learn Kubernetes Weekly issue 120

Ingesting F1 telemetry UDP in EKS, Scaling infrastructure for millions, Pentesting Docker 101, Atomic ConfigMap updates, How to manage CPU & RAM

26 Feb 2025

⭐️ Don't let infrastructure block your teams. StackGen deterministically generates secure cloud infrastructure from any input - existing cloud environments, IaC or application code

Hi there!

If you are building (and maintaining) Kubernetes platforms, join me this Thursday.

I will dive into the state of multi-tenancy in Kubernetes where I try to compare methodologies and tools.

Articles

1. Ingesting F1 telemetry UDP real-time data in AWS EKS

   Amador Criado

   Discover how to build a real-time telemetry data ingestion pipeline using AWS EKS.

   Learn about the architecture, design considerations, and workflow for ingesting and processing high-frequency data from the F1 2023 Playstation 4 game.

2. From chaos to clarity: why resource mapping is key in cloud-to-cloud migrations

   Rin Oliver

   Discover how resource mapping simplifies cloud-to-cloud migrations, reducing risks, ensuring smooth transitions, and optimizing your infrastructure strategy.

   sponsored

3. Scaling infrastructure for millions: from challenges to triumphs

   Ajaychoudhary

   In this article, you'll learn how Disney+ Hotstar handled a record-breaking 59m concurrent streams.

   Discover the challenges, solutions, and technical choices to achieve this feat, including workload isolation, vertical scaling, and fine-tuning.

4. Pentesting Docker 101

   This article covers pentesting techniques, including enumeration and exploitation methods, to help you secure your Docker registries and restrict Docker daemon access.

   By following these tips, you can improve your Docker security and prevent attacks

5. Atomic ConfigMap updates in Kubernetes: how symlinks and kubelet make it happen

   Gulcan Topcu

   In this article, you will discover the differences between mounting ConfigMaps as environment variables, subPath mounts, and volumes, and how to manage updates in real-time

6. Not enough resources? How to manage CPU and RAM!

   Albert Weng

   Boost Kubernetes Performance with effective CPU and RAM management.

   In this article, you will learn how to use Kubernetes Resource Recommender (KRR) and set optimal requests and limits for your Pods to ensure stability and efficiency

Articles worth checking out:

• Mastering Spot Instances on Kubernetes for Fun and Profit

• Karpenter: an Introduction to the disruption budgets

• Internal Developer Platform: insights from conversations with over 100 experts

• The challenge presented by secrets in declarative configuration

• Detailed Overview of Role-Based Access Control and Service Accounts

• Reserving minimum IPs in EKS cluster

• Use KEDA scaling modifiers to manage AI infrastructure

• Observing and caching egress traffic in Kubernetes with Istio

Migration without misery: the secret sauce for cloud-to-cloud

StackGen

Cloud-to-cloud migrations are slow, messy, and risky.

Manual discovery, endless scripting, and compliance headaches drain time and money. But what if moving workloads was fast, secure, and smooth—without the pain?

We're here to help.

Tutorials

1. Cloud-to-Cloud Migrations: tackling Security Policy challenges and solutions

   Rin Oliver

   Struggling with security policies in cloud-to-cloud migrations?

   This tutorial breaks down common challenges, from identity management to compliance risks, and offers practical solutions to ensure a smooth, secure transition between cloud environments.

   sponsored

2. Exploring WASM-based AI models in Kubernetes with CRI-O

   In this article, you'll learn about the integration of WebAssembly (WASM), AI models, and Kubernetes using CRI-O, and how it simplifies the deployment of AI workloads with features like Image Volumes.

3. Creating highly available etcd cluster

   Ashhadali

   Learn how to create a highly available ETCD cluster using Vagrant.

   Understand ETCD's clustering features, communication, and encryption to gain a deeper insight into creating a highly available cluster

4. Autoscaling with Knative: leveraging Kubernetes HPA

   Azeemwaqar

   Discover the power of Knative and HPA for efficient serverless scaling and learn how to automatically scale your apps and improve performance while saving costs.

5. Distributed training with PyTorch Lightning, TorchX and Kubernetes

   Filip Melberg

   Learn how to perform distributed training with PyTorch Lightning, TorchX, and Kubernetes to reduce training time and _improve model performance.

   Follow this tutorial to get started with distributed training on a remote Kubernetes cluster

More tutorials:

• Network Policies hands-on: securing traffic in Kubernetes

Kubernetes jobs

1. • Product Owner with Corelight

   • Salary: $182K to $219K a year

   • Location: based in the office in US

   • Tech stack: Kubernetes, AWS, Docker, Fluentd, Logstash, Splunk

2. • Platform Engineer with Red Hat

   • Salary: $260.33K to $429.59K a year

   • Location: remote from the United States

   • Tech stack: Kubernetes, OpenShift, Docker, Mongo, Spark, Kafka, Jenkins

3. • Infrastructure Architect with BlackSky

   • Salary: $180K to $220K a year

   • Location: remote from the United States

   • Tech stack: Kubernetes, On-premise

4. • Software Engineer with Pinkoi

   • Salary: NT$800K to NT$1.6M a year

   • Location: based in the office in Taipei, TW

   • Tech stack: Kubernetes, Docker, Python, Mongo, Redis, MySQL, Spark, Elastic Search

5. • Software Engineer with Red Hat

   • Salary: $163.42K to $269.64K a year

   • Location: remote from the United States

   • Tech stack: Kubernetes, AWS, Azure, GCP, Shell, Python, C++

Discover more Kubernetes jobs on Kube Careers →

Code & tools

1. Duplicate kubectl plugin

   duplik8s is a tool that allows you to easily duplicate Kubernetes resources, such as Pods, Deployments, and StatefulSets, with overridden commands and configurations.

   This makes it a powerful tool for testing, debugging, and development.

2. HolmesGPT

   HolmesGPT is a tool that investigates incidents and provides root cause analysis for various issues, including Kubernetes, Prometheus, Jira, GitHub, OpsGenie, and PagerDuty alerts.

   It uses a large language model (LLM) to gather and analyze data.

3. Nelm: Helm replacement

   Nelm is meant to be a direct replacement for Helm 3, providing first-class Helm chart support yet improving on what Helm 3 offers.

   Nelm is based on Helm 3 — some parts of it improved and some, like the deployment subsystem, are rewritten from scratch

4. kusion: deliver intentions to Kubernetes

   Kusion is a modern application delivery and management toolchain that enables developers to specify desired intent in a declarative way and then use consistent workflow to drive continuous deployment through the application lifecycle.

5. AKS Karpenter Provider

   This repository contains the AKS Karpenter Provider, which enables node auto-provisioning using Karpenter on your AKS cluster.

   It can be used in two modes:

   1. Node Auto Provisioning (NAP) mode.
   2. Self-hosted mode.

Other interesting projects:

• kube-egress-gateway

• Pluto: find deprecated API versions

• CRD to sample YAML

• Kubelogin

• kubectl-validate

Upcoming Kubernetes events

1. Feb

   26

   Practical Karpenter Strategies for Large Kubernetes Clusters

   In-person meetup organized by Cloud Native Tel Aviv.

   • Location: Tel Aviv-Yafo, IL

   • This is a free event.

2. Feb

   27

   Devworld Conference 2025

   In-person conference organized by Devworld Conference.

   • Location: Amsterdam, NL

   • This event requires an entrance fee

3. Feb

   27

   Tech Internals Conf

   In-person conference organized by TIC.

   • Location: Berlin, DE

   • This event requires an entrance fee

4. Feb

   27

   The state of multi-tenancy in Kubernetes

   Online webinar organized by Learnk8s + Loft Labs.

   • This is a virtual event

   • This is a free event.

5. Feb

   28

   ConFoo

   In-person conference organized by ConFoo.

   • Location: Montreal, CA

   • This event requires an entrance fee

6. Mar

   20

   Advanced Kubernetes course

   Online workshop organized by Learnk8s.

   • This is a virtual event

   • This event requires an entrance fee

Discover more Kubernetes events on Kube Events →

Kubernetes Call for Papers

1. expired

   ContainerDays

   The Call For Paper was open until 31 March 2025 at UTC. More info →

   • Location: Hamburg, DE

   • In-person conference organized by Looevent.

   • The conference starts on the 9 September 2025.

   • Apply here

2. expired

   Kubernetes Community Days Czech & Slovak 2025

   The Call For Paper was open until 15 March 2025 at UTC. More info →

   • Location: Prague, CZ

   • In-person conference organized by KCD Czech & Slovak.

   • The conference starts on the 5 June 2025.

   • Apply here

3. expired

   Kubernetes Community Days New York 2025

   The Call For Paper was open until 1 March 2025 at UTC. More info →

   • Location: New York, NY, USA

   • In-person conference organized by KCD New York.

   • The conference starts on the 4 June 2025.

   • Apply here

4. expired

   Kubernetes Community Days Bengaluru 2025

   The Call For Paper was open until 26 March 2025 at UTC. More info →

   • Location: Bangalore, IN

   • In-person conference organized by KCD Bengaluru.

   • The conference starts on the 7 June 2025.

   • Apply here

5. expired

   Kubernetes Community Days Utrecht 2025

   The Call For Paper was open until 6 April 2025 at UTC. More info →

   • This is a virtual event

   • Online conference organized by KCD Utrecht.

   • The conference starts on the 3 July 2025.

   • Apply here

6. 23

   days

   DevOps Pro Europe

   The Call For Paper is open until 30 April 2025 at UTC. More info →

   • Location: Vilnius, LT and virtual

   • Online & in-person conference organized by Data Miner.

   • The conference starts on the 20 May 2025.

   • Apply here

7. expired

   DevBcn

   The Call For Paper was open until 1 March 2025 at UTC. More info →

   • Location: Barcelona, ES

   • In-person conference organized by DevBcn.

   • The conference starts on the 10 July 2025.

   • Apply here

8. expired

   Devopsdays Tokyo

   The Call For Paper was open until 28 February 2025 at UTC. More info →

   • Location: Tokyo, JP

   • In-person conference organized by Devopsdays.

   • The conference starts on the 15 April 2025.

   • Apply here

9. expired

   Devopsdays Prague

   The Call For Paper was open until 1 March 2025 at UTC. More info →

   • Location: Prague, CZ

   • In-person conference organized by Devopsdays.

   • The conference starts on the 22 May 2025.

   • Apply here

Until next time!

— Dan

Subscribe and, every Wednesday, receive the latest Kubernetes news!