Learn Kubernetes Weekly issue 66

CoreDNS Performance testing, Snowflake and Panther to detect Kubernetes threats, Argo workflows proven patterns, You should care about requests and limits

14 Feb 2024

In 2 weeks, I'll present "Architecting Kubernetes clusters: one large shared or multiple small clusters?" which is part of the free educational program on building Kubernetes platforms.

I've also started a series of Kubernetes challenges, and you can find the first 5 here.

Articles

Performance testing for CoreDNS
Humberto Leal, Emma Genesen
In this article, you'll learn:
- What CoreDNS is.
- Why you should conduct performance testing for CoreDNS.
- How to test your own CoreDNS setup.
- How to interpret the results of performance testing for CoreDNS.
From logs to detection: using Snowflake and Panther to detect Kubernetes threats
Kyle Derevyanik
This article teaches how to hunt and build detections for critical threats, including Initial Access, Privilege Escalation, Defense Evasion and Discovery.
You'll explore practical examples, including what a log would look like and how to detect it.
Argo workflows: proven patterns from production
Matthew Hodgkins
In this article, you'll find the lessons learned in using Argo Workflows:
- Configuring TTL and Pod Garbage Collection.
- Use a CronWorkflow to run synthetic tests.
- Parameter output facade.
- Workflow of workflows with Semaphore.
- Workflow injection.
Why you should care about Kubernetes container requests and limits
Paul Dally
In this article, you'll learn critical Pod performance and cost-effectiveness settings, leverage ResourceQuotas in shared environments, and employ tools like metrics-server for ongoing adjustments.
Memory limit and request in containers and JVM
Petr Bouda
In this example-based article, you'll learn three common ways to configure the Heap size for JVM-based apps:
1. JSVM Ergonomics.
2. MaxRAMPercentage.
3. Xmx.
DevSecOps Workshop
Daniel Brintzinger, Goetz Rieger, Sebastian Dehn
This workshop will introduce you to the application development cycle leveraging OpenShift's tooling & features, focusing on securing your environment using Advanced Cluster Security for Kubernetes (ACS).

Articles worth checking out:

Tutorials

How to use Argo CD to deploy and manage Kubernetes jobs
Gargi Mehendale
This tutorial explores the integration (and difficulties) of GitOps and Argo CD for managing Kubernetes jobs.
You will also learn about Argo CD hooks and hook deletion policies.
Create a highly available Kubernetes cluster using keepalived and HAProxy
KubeSphere
In this tutorial, you'll learn to create a fail-safe Kubernetes cluster with Keepalived and HAproxy for robust load balancing across a multi-master/node setup, using virtual IP and KubeKey for seamless high availability.

Kubernetes jobs

- Infrastructure Architect with NetApp
- Salary: $235.03K to $330K a year
- Location: based in the office (and remote from home) in San Jose, CA, USA
- Tech stack: Kubernetes, AWS, Azure, GCP
- Software Engineer with NetApp
- Salary: $139.5K to $214.5K a year
- Location: based in the office in Research Triangle Park, NC, USA
- Tech stack: Kubernetes, AWS, Azure, GCP, Docker, Go, Python, C++, C
- Site Reliability Engineer with NetApp
- Salary: $153.45K to $187.55K a year
- Location: based in the office in Boulder, CA, USA
- Tech stack: Kubernetes, AWS, Azure, GCP, Go, Python, Perl, Java, Ruby, C#

Discover more Kubernetes jobs on Kube Careers →

Code & tools

Arlon: cluster lifecycle management and configuration tool
Arlon is a declarative, GitOps-based fleet management tool for Kubernetes clusters.
It allows to:
- Deploy and upgrade a large number of clusters.
- Secure clusters by installing and configuring policies.
- Install a set of add-ons on the clusters.
Pluto: find deprecated API versions
Pluto is a utility to help users find deprecated Kubernetes API versions in their code repositories and their helm releases.
Dragonfly2: p2p-based image cache
Dragonfly provides efficient, stable and secure file distribution and image acceleration based on p2p technology to be the best practice and standard solution in cloud native architectures.
Error pages: pretty server's error pages
This repository contains a collection of error pages with different designs that you can use to replace the standard error pages of your HTTP server.
kproximate: node autoscaler for Proxmox
kproximate is a node autoscaler project for Proxmox, allowing a Kubernetes cluster to scale across a Proxmox cluster dynamically.

Other interesting projects:

Upcoming Kubernetes events

Feb
17
DevOps fwdays'24
Online & in-person conference organized by fwdays.
- Location: Kyiv, UA and virtual
- This event requires an entrance fee
- - Use 9D0C080340 to get 10% off
Feb
20
Future trends and innovations in multicluster management
Online meetup organized by Cloud and DevOps Trends.
- This is a virtual event
- This is a free event.
Feb
20
CIVO Navigate North America 2024
In-person conference organized by Civo.
- Location: Austin, TX, USA
- This event requires an entrance fee
Feb
21
Pipeline security with cosign and OPA & a love story with KubeVirt and Backstage
In-person meetup organized by Cloud Native NoVA.
- Location: McLean, VA, USA
- This is a free event.
Feb
29
Architecting Kubernetes clusters: one large or multiple small clusters?
Online webinar organized by Learnk8s.
- This is a virtual event
- This is a free event.
Mar
7
Advanced Kubernetes course
Online workshop organized by Learnk8s.
- This is a virtual event
- This event requires an entrance fee

Discover more Kubernetes events on Kube Events →

Kubernetes Call for Papers

expired
CloudNativeSecurityCon North America
The Call For Paper was open until 1 April 2024 at UTC. More info →
Location: Seattle, WA, USA
In-person conference organized by Linux Foundation.
The conference starts on the 26 June 2024.
Apply here
expired
Kubernetes Community Days Italy 2024
The Call For Paper was open until 4 April 2024 at UTC. More info →
Location: Milan, IT
In-person conference organized by KCD Italy.
The conference starts on the 20 June 2024.
Apply here
expired
Kubernetes Community Days Czech Slovak 2024
The Call For Paper was open until 31 March 2024 at UTC. More info →
Location: Prague, CZ and virtual
Online & in-person conference organized by KCD Czech & Slovak.
The conference starts on the 6 June 2024.
Apply here
expired
CloudNativeHacks
The Call For Paper was open until 19 February 2024 at UTC. More info →
Location: Paris, FR
In-person conference organized by Linux Foundation.
The conference starts on the 21 March 2024.
Apply here
expired
ContainerDays 2024
The Call For Paper was open until 31 March 2024 at UTC. More info →
Location: Hamburg, DE
In-person conference organized by Loovent.
The conference starts on the 4 September 2024.
Apply here
expired
Kubernetes Community Days Zürich 2024
The Call For Paper was open until 1 April 2024 at UTC. More info →
Location: Zürich, CH
In-person conference organized by KCD Zürich.
The conference starts on the 13 June 2024.
Apply here
expired
DevOps Pro Europe
The Call For Paper was open until 15 April 2024 at UTC. More info →
Location: Vilnius, LT and virtual
Online & in-person conference organized by Data Miner.
The conference starts on the 20 May 2024.
Apply here
expired
Cloud Native 2024
The Call For Paper was open until 19 February 2024 at UTC. More info →
This is a virtual event
Online conference organized by Conf42.
The conference starts on the 21 March 2024.
Apply here
expired
PlatformCon 2024
The Call For Paper was open until 25 February 2024 at UTC. More info →
This is a virtual event
Online conference organized by Humanitec.
The conference starts on the 10 June 2024.
Apply here

Until next time!

— Dan

Subscribe and, every Wednesday, receive the latest Kubernetes news!

Or follow us on: