Learn Kubernetes Weekly issue 129

CoreDNS and NodeLocalDNS, container filesystem by hand, GitLab CI to Kubernetes, scaling on a budget, karpenter and the future of autoscaling

30 Apr 2025

This newsletter is brought to you by Akamai Cloud — build and deliver low-latency, edge native applications on the world's most distributed cloud computing platform.

Articles

1. How CoreDNS and NodeLocalDNS Work in a Kubernetes Cluster

   Matthew Mattox

   Learn how CoreDNS and NodeLocalDNS work together in Kubernetes to provide efficient DNS resolution.

   NodeLocalDNS caches DNS records on each node, while CoreDNS handles service and external domain lookups.

2. [PDF] Stable Diffusion reduced AI inference costs by up to 86%

   Discover how the Akamai RTX 4000 Ada GPUs outperformed AWS, cutting inference costs for Stable Diffusion by up to 86%.

   sponsored

3. Building a container filesytem by hand

   Michal Pitr

   The article explains how Docker isolates container filesystems using overlayfs merging a read-only base layer with a writable "diff" layer.

   Changes are stored in the upper layer, while deletions use whiteout files, enabling efficient shared base images.

4. Migrating GitLab CI from Docker+Machine to Kubernetes

   Ivan Ka

   In this casde study you will learn the struggles of an e-commerce tech team migrating from GitLab Docker+Machine to Kubernetes: 1M monthly jobs, fragmented docs, and constant breaking changes.

5. Scaling a development environment on a budget

   Osama Mohamed

   Azure Karpenter, Kyverno, and Goldilocks help E-Lab scale their development environment on a budget by dynamically provisioning and optimizing resources.

   By leveraging these tools, they achieved a 63% cost savings and improved efficiency.

6. Karpenter: The Future of Worker Management and Autoscaling on Kubernetes

   Talha Khaild

   Learn how Karpenter transforms Kubernetes node management with cost-optimized worker provisioning, automatically selecting best-fit instances and forcing cloud-native application design across multi-cloud environments.

Articles worth checking out:

• Kubernetes double jump upgrades: skipping versions safely

• Building Resilient Applications on Kubernetes

• Tackling CPU throttling in Kubernetes for better application performance

$5,000 Cloud Credits: Scale Without Limits

Akamai optimised cloud solutions can reduce infrastructure costs by up to 40%.

Deploy high-performance workloads without a credit card and pay only for what you use.

Get started with $5,000 in cloud credits

Tutorials

1. Deploy a Chatbot and RAG Pipeline for AI Inferencing on Kubernetes

   Deploy a RAG pipeline on Akamai's Kubernetes service using GPU instances.

   Create a chatbot that answers queries with data from your custom source, enhanced by Retrieval-Augmented Generation.

   sponsored

2. Deploy a Hybrid EKS Kubernetes Cluster: Use On-Premises Nodes on Amazon EKS with Cilium CNI

   Alberto Crescini

   This guide details deploying a hybrid Amazon EKS cluster with on-premises nodes using Cilium CNI, covering IAM Roles Anywhere authentication, VPC routing, certificate setup, and Cilium configuration.workloads.

3. How Kubernetes health checks keep your apps running

   Sagar

   In this tutorial you will learn how Kubernetes uses Liveness (restarts failing containers), Readiness (routes traffic only to ready pods), and Startup (ensures proper startup) probes to keep apps running and resilient.

4. Integrating Azure Policy in your AKS cluster using Terraform

   Will Velida

   Integrate Azure Policy with AKS to automatically enforce Kubernetes security standards.

   Learn how to use built-in policies, prevent privileged containers, and implement compliance checks across your cluster infrastructure.

5. Securing Applications Using Keycloak’s Helm Chart

   Jan Lepsky

   Learn how to secure applications by deploying Keycloak on Kubernetes using Helm, automating user management, implementing strong security policies, and creating a scalable identity infrastructure with minimal manual configuration.

More tutorials:

• Building a Kubernetes cluster from scratch with K3s and MetalLB

Kubernetes jobs

1. • Systems Performance Engineer with Veeam Software

   • Salary: $111.2K to $158.9K a year

   • Location: remote from the United States

   • Tech stack: Kubernetes, Javascript

2. • DevOps Engineer with Amentum

   • Salary: $145K to $160K a year

   • Location: based in the office in Colorado Springs, CO, USA

   • Tech stack: Kubernetes, VMware Tanzu, Terraform, Ansible

3. • Platform Engineer with Workiva Inc.

   • Salary: $111K to $178K a year

   • Location: remote from the United States

   • Tech stack: Kubernetes, AWS, Helm, Docker, Go, Python, Java, Terraform

4. • DevOps Engineer with Moog Inc

   • Salary: $110K to $145K a year

   • Location: based in the office (and remote from home) in Buffalo, NY, USA

   • Tech stack: Kubernetes, AWS, Azure, Docker, Terraform, Cloudformation, Azure DevOps, Ansible

5. • Software Engineer with Tempus

   • Salary: $85K to $130K a year

   • Location: based in the office (and remote from home) in Chicago, IL, USA

   • Tech stack: Kubernetes, AWS, GCP, Docker, Python, Redis, PostgreSQL, Jenkins

Discover more Kubernetes jobs on Kube Careers →

Code & tools

1. Kubernetes Resource Recommender

   Kubernetes Resource Recommender is a CLI tool for optimizing resource allocation in Kubernetes clusters.

   It gathers pod usage data from Prometheus and recommends requests and limits for CPU and memory.

   This reduces costs and improves performance.

2. KOM: Kubernetes Operator Manager

   kkb0318

   KOM (Kubernetes Operator Manager) is a tool that simplifies the management of Kubernetes operators by providing a centralized platform for deployment, management, and removal of operators.

3. KubeClipper: Kubernetes Manager

   kubeclipper

   KubeClipper is a tool that simplifies Kubernetes cluster management with a user-friendly web console, APIs, and a CLI tool.

4. Node Address Labeler

   404incorporated

   Node Address Labeler automatically adds labels to nodes for IP addresses on a specified interface.

   It works by watching the specified interface and adding/removing labels with the prefix "node.ip/".

5. Logging operator

   The Logging operator solves your logging-related problems in Kubernetes environments by automating the deployment and configuration of a Kubernetes logging pipeline.

Other interesting projects:

• Helm-import: Helm plugin

• k8sgpt: Kubernetes analyzer

• Kapitan: configuration manager

• Trousseau: multi KMS

• Cerbos: authorization layer

• Helm secrets

• kconf: multiple kubeconfigs

• Flannel: Layer 3 fabric

Upcoming Kubernetes events

1. May

   6

   Cloud Native Days Romania

   In-person conference organized by Cloud Native Romania.

   • Location: Bucharest, RO

   • This event requires an entrance fee

2. May

   3

   Kubernetes Community Days Costa Rica 2025

   In-person conference organized by KCD Costa Rica.

   • Location: Heredia, CR

   • This event requires an entrance fee

3. May

   6

   Kubernetes Community Days Helsinki 2025

   In-person conference organized by KCD Helsinki.

   • Location: Helsinki, FI

   • This event requires an entrance fee

4. May

   5

   Advanced Kubernetes course (Munich)

   In-person workshop organized by Learnk8s.

   • Location: Munich, DE

   • This event requires an entrance fee

5. Apr

   30

   NDC Melbourne 2025

   In-person conference organized by NDC.

   • Location: Melbourne, AU

   • This event requires an entrance fee

Discover more Kubernetes events on Kube Events →

Kubernetes Call for Papers

1. 24

   days

   Kubernetes Community Washington DC 2025

   The Call For Paper is open until 26 May 2025 at UTC. More info →

   • Location: Washington, D.C., USA

   • In-person conference organized by KCD Washington DC.

   • The conference starts on the 16 September 2025.

   • Apply here

2. 29

   days

   Cloud Native Days Austria

   The Call For Paper is open until 31 May 2025 at UTC. More info →

   • Location: Vienna, AT

   • In-person conference organized by CNDA Austria.

   • The conference starts on the 8 October 2025.

   • Apply here

3. 3

   days

   Kubernetes Community Days Colombia 2025

   The Call For Paper is open until 5 May 2025 at UTC. More info →

   • Location: Medellín, CO

   • In-person conference organized by KCD Colombia.

   • The conference starts on the 29 August 2025.

   • Apply here

4. 10

   days

   Kubernetes Community Days Lima, Perú 2025

   The Call For Paper is open until 12 May 2025 at UTC. More info →

   • Location: Lima, PE

   • In-person conference organized by KCD Lima, Perú.

   • The conference starts on the 19 July 2025.

   • Apply here

5. 26

   days

   KubeCon + CloudNativeCon North America 2025

   The Call For Paper is open until 28 May 2025 at UTC. More info →

   • Location: Atlanta, GE, USA

   • In-person conference organized by Linux Foundation.

   • The conference starts on the 10 November 2025.

   • Apply here

6. 45

   days

   Cloud Native Denmark 2025

   The Call For Paper is open until 16 June 2025 at UTC. More info →

   • Location: Aarhus, DK

   • In-person conference organized by CND.

   • The conference starts on the 17 April 2025.

   • Apply here

7. expired

   DevOps Pro Europe

   The Call For Paper was open until 30 April 2025 at UTC. More info →

   • Location: Vilnius, LT and virtual

   • Online & in-person conference organized by Data Miner.

   • The conference starts on the 20 May 2025.

   • Apply here

8. 45

   days

   Devopsdays Tel Aviv

   The Call For Paper is open until 15 June 2025 at UTC. More info →

   • Location: Tel Aviv, IL

   • In-person conference organized by Devopsdays.

   • The conference starts on the 11 December 2025.

   • Apply here

9. expired

   Civo Navigate London

   The Call For Paper was open until 30 April 2025 at UTC. More info →

   • Location: London, UK

   • In-person conference organized by Civo.

   • The conference starts on the 30 September 2025.

   • Apply here

Until next time!

— Dan

Subscribe and, every Wednesday, receive the latest Kubernetes news!