Learn Kubernetes Weekly issue 36

CPU requests & limits VS autoscaling, CoreDNS cache poisoning, what happens when you create a pod, roles for PostgreSQL with Vault

19 Jul 2023

Articles

1. Kubernetes CPU requests & limits VS autoscaling

   Jason Umiker

   In this blog post, you will learn:

   • How CPU requests work.
   • How CPU limits work.
   • How requests & limits apply to programming languages.
   • Cases when limits aren't the best option.
   • What alternatives you can use to limits.

2. The CoreDNS cache poisoning conjecture

   Giuseppe Cocomazzi

   In this article, you will inspect the CoreDNS source code and learn how it is susceptible to cache poisoning.

   You will also learn how to mitigate such an attack.

3. What happens when you create a pod in Kubernetes

   Daniele Polencic

   What happens when you create a Pod in Kubernetes?

   A surprisingly simple task reveals a complicated workflow that touches several components in the cluster.

   Learn more in this article.

4. Managing roles for PostgreSQL with Vault on Kubernetes

   Éric Burghard

   In this article, you will learn how your Kubernetes deployment can access a database with random roles and passwords (and eventually restricted privileges) that are rotated every hour and deleted after expiration.

5. Price comparison of managed Kubernetes solutions for web-apps

   Oleg Schelkunov

   In this article, you will compare pricing for seven Kubernetes managed services to run modern web applications in a price-aware, scalable, and resilient way.

   Spoiler: GCP has the most expensive and the cheapest options at the same time.

6. Horizontal pod autoscaling for "scale"!

   Kaartikeya Chaudhary, Anshul Sharma

   In this article, you will find a list of considerations and tips on how to architect your apps, your cluster and your autoscaling strategy to optimise your Horizontal Pod Autoscaler during surges in traffic.

Articles worth checking out:

• Labels and annotations in Kubernetes

• How etcd works in Kubernetes

• Playing tag with the GitHub container registry

• Kustomize enhancement with krm functions

• Kubernetes onboarding journey at Myntra

• How to optimize Kubernetes resource configurations for cost and performance

• In-depth explanation of pod controllers

• Where we're going, we don't need VMs: an example showing containers are namespaced, not virtualized

• Deep dive into Kubernetes network model and communication

• Shared volume in Kubernetes pod: a fun experiment

Kubernetes first steps book (& videos!)

Learnk8s

TL;DR: In this course, you will learn how to package and deploy applications as Docker containers in a Kubernetes cluster.

You will also learn how to architect apps that are designed to be horizontally scalable.

Tutorials

1. Kubernetes observability: events, logs & integration with Slack, OpenAI and Grafana

   Akriotis Kyriakos

   In this 3-part series, you will learn how to:

   • Build a custom controller to watch Kubernetes Events and forward them to Grafana Loki using Promtail.
   • Forward alerts to Slack and investigate the root cause with the help of OpenAI Chat API.

2. Desktop client for Kubernetes: Aptakube

   Aptakube

   Aptakube is a fast, lightweight and modern GUI for Kubernetes.

   Avoid context switching by connecting to multiple clusters simultaneously! Metrics, Aggregated Log Viewer, Quick Actions, YAML Editor, and more — all sleekly bundled into a compact app!

   sponsored

3. OpenTelemetry operator

   Magsther

   In this tutorial, you will learn how you can implement traces in your application without any code changes by using the OpenTelemetry Operator.

4. Automatically updating Helm charts referenced by Argo CD with Renovate

   K@zuki.

   In this tutorial, you will learn how to use Renovate to constantly update your Helm charts when deploying them with Argo CD.

Code & tools

1. mmumshad/kubernetes-the-hard-way

   This tutorial walks you through setting up Kubernetes the hard way using VirtualBox.

   This guide is optimized for learning, which means taking the long route to ensure you understand each task required to bootstrap a cluster.

2. Setting up Prometheus runbooks

   Robusta.dev

   Learn how to set up Robusta — an open source rules engine for Kubernetes designed for monitoring and observability.

   Learn how to:

   1. Listen passively to various sources.
   2. Actively collect observability data.
   3. Send alerts.

   sponsored

3. cnrancher/autok3s

   AutoK3s is a lightweight tool for simplifying the cluster management of K3s.

   Key features:

   • Shorter provisioning time.
   • Cloud provider integration.
   • Flexible installation options.
   • Low cost.
   • Airgap K3s package management and installation.

4. omerbsezer/fast-kubernetes

   This repo covers Kubernetes objects' and components' details (Kubectl, Pod, Deployment, Service, ConfigMap, Volume, PV, PVC, etc.) and possible example usage scenarios (i.e. hands-on labs).

5. atombender/ktail

   ktail is a tool to easily tail Kubernetes logs.

   It's like kubectl logs, but with more features to make it more convenient:

   • Detects pods and containers as they come and go.
   • Tails multiple pods and containers.
   • All containers are tailed by default.

Other interesting projects:

• foundation-model-stack/multi-nic-cni

• gimlet-io/onechart

• oslabs-beta/poseidon

• kloeckner-i/db-operator

• ktsstudio/mirrors

• otterize/credentials-operator

Upcoming Kubernetes events

1. Jul

   20

   Manage Kubernetes clusters in a multi-cloud world

   In-person meetup organized by Cloud Native Montpellier.

   • Location: Montpellier, FR

   • This is a free event.

2. Jul

   21

   Implementing data & databases on Kubernetes within the Dutch government

   Online meetup organized by Data on Kubernetes Community.

   • This is a virtual event

   • This is a free event.

3. Jul

   22

   Kubernetes Community Days Chennai 2023

   In-person conference organized by KCD Chennai.

   • Location: Chennai, IN

   • This event requires an entrance fee

4. Jul

   25

   Intro to Tetragon: eBPF-based security observability & runtime enforcement

   Online webinar organized by CNCF Online Programs.

   • This is a virtual event

   • This is a free event.

5. Jul

   26

   Optimizing network costs in Kubernetes

   Online & in-person meetup organized by Cloud Native Johannesburg.

   • Location: Johannesburg, ZA and virtual

   • This is a free event.

6. Aug

   22

   DeveloperWeek Cloud

   Online conference organized by DevNetwork.

   • This is a virtual event

   • This event requires an entrance fee

7. Sept

   11

   Containerdays 2023

   Online & in-person conference organized by Loovent.

   • Location: Hamburg, DE and virtual

   • This event requires an entrance fee

Discover more Kubernetes events on Kube Events →

Kubernetes Call for Papers

1. expired

   Wearedevelopers World Congress

   The Call For Paper was open until 19 July 2023 at UTC. More info →

   • Location:

   • In-person conference organized by WeAreDevelopers.

   • The conference starts on the 27 July 2023.

   • Apply here

2. expired

   Kubernetes Community Days Austria 2023

   The Call For Paper was open until 31 July 2023 at UTC. More info →

   • Location: Vienna, AT

   • In-person conference organized by KCD Austria.

   • The conference starts on the 26 September 2023.

   • Apply here

3. expired

   Data on Kubernetes Day

   The Call For Paper was open until 7 August 2023 at UTC. More info →

   • Location: Chicago, IL, USA

   • In-person conference organized by DoK.

   • The conference starts on the 6 November 2023.

   • Apply here

4. expired

   Multi-TenancyCon

   The Call For Paper was open until 7 August 2023 at UTC. More info →

   • Location: Chicago, IL, USA

   • In-person conference organized by Linux Foundation.

   • The conference starts on the 6 November 2023.

   • Apply here

5. expired

   Devopsdays Cairo

   The Call For Paper was open until 19 August 2023 at UTC. More info →

   • Location: Cairo, EG

   • In-person conference organized by Devopsdays.

   • The conference starts on the 26 September 2023.

   • Apply here

6. expired

   Kube Native 2023

   The Call For Paper was open until 28 August 2023 at UTC. More info →

   • This is a virtual event

   • Online conference organized by Conf42.

   • The conference starts on the 28 September 2023.

   • Apply here

7. expired

   Kubernetes Community Days Texas

   The Call For Paper was open until 30 August 2023 at UTC. More info →

   • Location: Irving, Texas, USA

   • In-person conference organized by KCD Texas.

   • The conference starts on the 6 October 2023.

   • Apply here

8. expired

   Cloud Native Rejekts NA 23

   The Call For Paper was open until 5 September 2023 at UTC. More info →

   • Location: Chicago, US

   • In-person conference organized by Cloud Native Rejekts.

   • The conference starts on the 4 November 2023.

   • Apply here

9. expired

   Open Source Summit Japan 2023

   The Call For Paper was open until 11 September 2023 at UTC. More info →

   • Location: Tokyo, JP and virtual

   • Online & in-person conference organized by Linux Foundation.

   • The conference starts on the 5 December 2023.

   • Apply here

Until next time!

— Dan

Subscribe and, every Wednesday, receive the latest Kubernetes news!