Learn Kubernetes Weekly issue 58

Fun DNS from kind, Beyond Kubernetes one-click update, Cloud operations to an operator, Exploring OCI container registries

20 Dec 2023

Christmas is around the corner!

The team at Learnk8s and I wish you a Merry Christmas!

Articles

1. Fun DNS facts learned from the kind environment

   HungWei Chiu

   In this article, you will look at how DNS resolution works in a Kind cluster running in Docker.

   Since Docker already provides DNS resolution, Kind modifies all resolutions to make them play nicely with CoreDNS.

2. Unpacking the complexities of Kubernetes upgrades: beyond the one-click update

   Tanat Lokejaroenlarb

   In this 2-part series, you will learn the complexity, thought process and implementation that the team at Adevinta had to put in place to upgrade their 30+ production cluster to the latest version of EKS with minimal disruptions.

3. We moved our cloud operations to a Kubernetes operator

   Steven Sklar

   The article discusses the process of building a Kubernetes operator from proposal to deployment and the benefits it has brought, including automation of infrastructure management, reduced database provisioning time, and improved resource coordination.

4. Exploring OCI container registries by use case: pull a public image from Kubernetes

   Doug Hellinger

   This article provides an in-depth guide on how to work with a Kubernetes cluster and Containerd, discussing how images are pulled from DockerHub and the efficiency of the process.

5. Kubernetes: authorization modes overview

   Claire Lee

   This article will discuss how Kubernetes combines and uses several authorization modes (e.g. RBAC, Node, ABAC, etc.).

6. Kubernetes admission controllers: enhance security and ensure compliance

   Ashwin Philip George

   In this article, you'll learn about admission controllers and their benefits in ensuring a secure and compliant cluster environment.

   You'll also create a custom admission controller in Go that restricts users from deploying PVCs larger than 10GB.

Articles worth checking out:

• Managing Kubernetes secrets like a pro

• Authentication & authorization in Kubernetes: NGINX Plus ingress controller with OIDC policy

• EKS cluster upgrades: a step-by-step guide to a smooth and secure process

• How to monitor the Kubelet

Tutorials

1. Architecting for resilience: crafting opinionated EKS clusters with Karpenter & Cilium cluster mesh

   Ahmed Bebars

   The guide covers setting up EKS Amazon Clusters, adding Cilium to projects using Terraform and Helm, supporting GitOps, and using Karpenter for efficient resource utilization and cost savings.

2. Delivering cloud infrastructure the GitOps way with Crossplane and ArgoCD

   Piyush Jajoo

   In this tutorial, you will learn how to combine ArgoCD and Crossplane to create infrastructure following the GitOps principles.

   Later, you will create and deploy an SQS queue using a Custom Resource Definition.

3. Getting started with Jsonnet for Kubernetes: a beginner's guide

   avinashkris9

   This tutorial provides a comprehensive guide to learning Jsonnet, a configuration language for creating and manipulating JSON data, by leveraging the Kubernetes YAML manifest creation as an example.

4. Unlocking flexibility and reusability: harnessing the power of Helm multiple instances subcharts

   Alex Vazquez

   This article discusses using sub-charts as a part of a Helm chart to help you manage a collection of applications with different settings.

5. kube-trigger: a Kubevela add-on to monitor and react to events

   Amit Singh

   kube-trigger monitors events on a cluster, filters them and then triggers pre-configured actions.

   In this article, you'll learn how to use kube-trigger to monitor kpack image rebasing and trigger the creation of a Job as a response.

More tutorials:

• Streamline Kubernetes management: GitOps with Flux and kustomize

Kubernetes jobs

1. • Site Reliability Engineer with Braintrust

   • Salary: $800 a day

   • Location: remote from the United States

   • Tech stack: Kubernetes, AWS, GCP, Docker, Go, Python, Java, Scala, Elastic Search, Grafana

2. • DevOps Engineer with Rockstar Games

   • Salary: $88.5K to $113.8K a year

   • Location: based in the office in Manhattan, NY, USA

   • Tech stack: Kubernetes, ArgoCD, Docker, Shell, Python, Powershell, Mongo, Redis, PostgreSQL, Airflow

3. • Software Engineer with Torc Robotics

   • Salary: $139K to $166.8K a year

   • Location: remote from the United States

   • Tech stack: Kubernetes, AWS, Azure, GCP, Docker, Shell, Python, C++, Groovy, Terraform

Discover more Kubernetes jobs on Kube Careers →

Code & tools

1. Kepler: probe energy-related stats

   Kepler (Kubernetes Efficient Power Level Exporter) uses eBPF to probe energy-related system stats and exports as Prometheus metrics.

2. kubectl-np-viewer

   kubectl-np-viewer is a kubectl plugin to visualize network policy rules.

3. CRD bootstrapper

   CRD bootstrapper can install CRDs from GitHub release pages or ConfigMaps.

   It can also validate via templates before applying a CRD, and it will install newer versions automatically if the validation passes and the version constraint allows it.

4. Noe: multi-arch runtimes webhook

   Noe is a mutating webhook that dynamically assigns node architectures to match the requirements of container images within a Pod.

   It simplifies mixed-architecture deployments (e.g. ARM and x86) by ensuring Pods are scheduled on the correct nodes.

5. SleepCycle: define sleep & wake up cycles

   SleepCycle lets you define sleep & wake-up cycles for your Kubernetes resources.

   It can schedule to shut down Deployments, CronJobs, StatefulSets and HorizontalPodAutoscalers and wake them up only when you need them.

Other interesting projects:

• Chronos: monitor health and traffic

• kube-job: run one off job

• Nephio: 5G functions

• Percona Operator for PostgreSQL

• Kubernetes Orphaned Resources Finder

• Klone: cloning pods

• kubeui friendly kubectl

Upcoming Kubernetes events

1. Dec

   21

   k3s-as-a-service

   Online webinar organized by Rancher by SUSE.

   • This is a virtual event

   • This is a free event.

2. Dec

   22

   Kubernetes project for beginners

   Online webinar organized by Edureka Masterclass.

   • This is a virtual event

   • This is a free event.

3. Dec

   23

   Service mesh model with Consul and Cilium on Kubernetes

   In-person meetup organized by Cloud Native Ho Chi Minh.

   • Location: Ho Chi Minh City, VN

   • This is a free event.

4. Dec

   24

   Journey to developing apps on Kubernetes

   Online meetup organized by Cloud Native Dubai.

   • This is a virtual event

   • This is a free event.

5. Dec

   25

   Kubernetes YAML tutorial in 60 minutes

   Online webinar organized by Edureka Masterclass.

   • This is a virtual event

   • This is a free event.

6. Jan

   24

   Chaos Carnival 2024

   Online conference organized by Harness.

   • This is a virtual event

   • This is a free event.

7. Feb

   5

   Advanced Kubernetes course (London)

   In-person workshop organized by Learnk8s.

   • Location: London, UK

   • This event requires an entrance fee

Discover more Kubernetes events on Kube Events →

Kubernetes Call for Papers

1. expired

   Kubernetes Community Days Costa Rica 2024

   The Call For Paper was open until 1 February 2024 at UTC. More info →

   • Location: Heredia, CR

   • In-person conference organized by KCD Costa Rica.

   • The conference starts on the 1 March 2024.

   • Apply here

2. expired

   Kubernetes Community Days Romania 2024

   The Call For Paper was open until 31 January 2024 at UTC. More info →

   • Location: Bucharest, RO

   • In-person conference organized by KCD Romania.

   • The conference starts on the 25 April 2024.

   • Apply here

3. expired

   Kubernetes Community Days Texas 2024

   The Call For Paper was open until 5 February 2024 at UTC. More info →

   • Location: Irving, TX, USA

   • In-person conference organized by KCD Texas.

   • The conference starts on the 12 April 2024.

   • Apply here

4. expired

   Kubernetes Community Days Guadalajara 2024

   The Call For Paper was open until 9 January 2024 at UTC. More info →

   • Location: Guadalajara, MX

   • In-person conference organized by KCD Guadalajara.

   • The conference starts on the 23 February 2024.

   • Apply here

5. expired

   Kubernetes Community Days Istanbul

   The Call For Paper was open until 31 January 2024 at UTC. More info →

   • Location: Istanbul, TR

   • In-person conference organized by KCD Istanbul.

   • The conference starts on the 15 May 2024.

   • Apply here

6. expired

   Cloud Native 2024

   The Call For Paper was open until 19 February 2024 at UTC. More info →

   • This is a virtual event

   • Online conference organized by Conf42.

   • The conference starts on the 21 March 2024.

   • Apply here

7. expired

   DevOps fwdays'24

   The Call For Paper was open until 17 January 2024 at UTC. More info →

   • Location: Kyiv, UA and virtual

   • Online & in-person conference organized by fwdays.

   • The conference starts on the 17 February 2024.

   • Apply here

8. expired

   Devdays Europe

   The Call For Paper was open until 31 January 2024 at UTC. More info →

   • Location: Vilnius, LT and virtual

   • Online & in-person conference organized by DATA MINER.

   • The conference starts on the 20 May 2024.

   • Apply here

9. expired

   Devopsdays Istanbul

   The Call For Paper was open until 23 January 2024 at UTC. More info →

   • Location: Istanbul, TR

   • In-person conference organized by Devopsdays.

   • The conference starts on the 20 April 2024.

   • Apply here

Until next time!

— Dan

Subscribe and, every Wednesday, receive the latest Kubernetes news!