Learn Kubernetes Weekly issue 90
How to monitor containerd, Tracing Kubernetes Services, How the CSI works, The hater's guide to Kubernetes, Node surge upgrade in GKE
31 Jul 2024
This newsletter is brought to you by LoxiLB - eBPF based cloud-native load-balancer. Powering Kubernetes|Edge|5G|IoT|XaaS Apps.
LoxiLB (the eBPF-based cloud-native load-balancer) is applying to be a CNCF sandbox project next week!
If you are familiar with it and want to help, add yourself to the ADOPTERS.md
If you want to know more about how LoxiLB uses eBPF for exposing services of type: LoadBalancer, check out their website and GitHub repo.
Articles
Povilas Versockas
The article provides insights into monitoring containerd by discussing key plugins such as "containers", "exchange", and "tasks".
It explains how to monitor containerd health by collecting metrics, logs, profiles, traces, events, and operational data.
Understanding nuances of in-cluster external service LB (with LoxiLB)
Nikhil Malik
The article discusses the external service-type load balancer in Kubernetes and demonstrates an in-cluster approach to deploy it.
sponsored
Rob Mengert
This article guides you through the process of tracing Kubernetes services by explaining the packet flow through various tables and chains, including the mangle table, NAT table, and filter table.
How the CSI (container storage interface) works
Steven Sklar
This article explains how the Container Storage Interface (CSI) works in Kubernetes, detailing the API specification, architecture, deployment models, and communication mechanisms.
The hater's guide to Kubernetes
Paul Butler
This article provides a practical guide to using Kubernetes effectively, particularly for startups.
It addresses common criticisms of Kubernetes, such as its overly complicated nature, and provides advice on using it in a way suitable for small teams.
Demystified node surge upgrade in GKE
Lu Andy
This article explains in depth how GKE performs the node surge upgrade and what you should consider to influence the upgrade process.
It also clarifies some common misunderstandings and caveats that you should avoid.
Articles worth checking out:
Open source, unified Load Balancer for hyper-scale communication
LoxiLB
LoxiLB turns Kubernetes network load balancing into high-speed, flexible and programmable LB services.
It is open source and primarily designed to power on-premise, edge and public-cloud Kubernetes apps.
Tutorials
LoxiLB Quick Start Guide with K3s/Flannel
LoxiLB
In this tutorial, you will learn how to deploy a K3s cluster and expose services with LoxiLB as an external load balancer.
sponsored
GKE + Gemma + Ollama: the power trio for flexible LLM deployment
Federico Iezzi
In this tutorial, you'll learn how to deploy Ollama on GKE and how GPU acceleration outperforms CPU-based instances in LLM tasks.
You'll also discover Ollama's limitations: registry dependency and sequential request handling.
Securing Kubernetes With OPA Gatekeeper
Patrick Kalkman
This article provides a step-by-step guide to securing a Kubernetes cluster with OPA Gatekeeper.
You will learn how to install it, enforce policies, and monitor constraint status.
Kubernetes jobs
DevOps Engineer with Wind River
Salary: $107.8K to $173.5K a year
Location: remote from the United States
Tech stack: Kubernetes, Helm, Docker, Python, Elastic Search, ELK
Site Reliability Engineer with Sentinelone
Salary: $128K to $176K a year
Location: remote from the United States
Tech stack: Kubernetes, AWS, Azure, GCP, ArgoCD, Go, Python, Javascript, Java, Ruby
Platform Engineer with Palantir Technologies
Salary: $135K to $200K a year
Location: based in the office (and remote from home) in Palo Alto, CA, USA
Tech stack: Kubernetes, Go, Python, Java, Rust, C++, Cassandra, Flink, Spark, Kafka
Discover more Kubernetes jobs on Kube Careers →
Code & tools
inclavare-containers
Inclavare Containers is a container runtime with a novel approach for launching protected containers in hardware-assisted Trusted Execution Environments, which can prevent an untrusted entity from accessing sensitive and confidential assets.
Kube-Hetzner is a highly optimized, easy-to-use, auto-upgradable, HA-default & Load-Balanced, Kubernetes cluster powered by k3s-on-MicroOS.
canonical
Canonical Kubernetes is the fastest, easiest way to deploy a fully conformant Kubernetes cluster.
Harnessing pure upstream Kubernetes, this distribution adds the missing pieces (e.g. ingress, DNS, networking) for a zero-ops experience.
deepflowio
DeepFlow aims to provide deep observability for complex cloud-native and AI applications.
DeepFlow implements Zero Code data collection with eBPF for metrics, distributed tracing, request logs and function profiling.
Confidential Containers
Confidential Containers is an open source community that works to enable cloud native confidential computing by leveraging Trusted Execution Environments to protect containers and data.
Other interesting projects:
Upcoming Kubernetes events
Jul
31
5 Kubernetes autoscaling use cases deconstructed
Online webinar organized by AWS & StormForge.
This is a virtual event
This is a free event.
Aug
1
Platform engineering on Kubernetes
Online meetup organized by Women in Cloud Native.
This is a virtual event
This is a free event.
Aug
3
Kubernetes Community Days Taipei 2024
In-person conference organized by KCD Taiwan.
Location: Taipei, TW
This is a free event.
Aug
3
In-person meetup organized by Cloud Native Hooghly.
Location: Chinsurah, IN
This is a free event.
Aug
6
Online workshop organized by Sysdig.
This is a virtual event
This is a free event.
Aug
7
Advanced Kubernetes: from GitOps to resource optimization and quantum computing
Online & in-person meetup organized by Cloud Native Helsinki.
Location: Helsinki, FI and virtual
This is a free event.
Discover more Kubernetes events on Kube Events →
Kubernetes Call for Papers
expired
Kubernetes Community Days Denmark 2024
The Call For Paper was open until 16 September 2024 at UTC. More info →
Location: Copenhagen, DK
In-person conference organized by KCD Denmark.
The conference starts on the 20 November 2024.
- Apply here
expired
The Call For Paper was open until 25 August 2024 at UTC. More info →
Location: Delhi, IN
In-person conference organized by Linux Foundation.
The conference starts on the 11 December 2024.
- Apply here
expired
The Call For Paper was open until 26 August 2024 at UTC. More info →
This is a virtual event
Online conference organized by Conf42.
The conference starts on the 26 September 2024.
- Apply here
expired
The Call For Paper was open until 5 August 2024 at UTC. More info →
This is a virtual event
Online conference organized by Conf42.
The conference starts on the 5 September 2024.
- Apply here
expired
The Call For Paper was open until 18 September 2024 at UTC. More info →
Location: San Francisco, CA, USA
In-person conference organized by InfoQ.
The conference starts on the 18 November 2024.
- Apply here
expired
Open Source Monitoring Conference
The Call For Paper was open until 15 August 2024 at UTC. More info →
Location: Nuremberg, DE
In-person conference organized by NETWAYS.
The conference starts on the 21 November 2024.
- Apply here
expired
The Call For Paper was open until 2 September 2024 at UTC. More info →
Location: Bogotá, CO
In-person conference organized by Devopsdays.
The conference starts on the 29 October 2024.
- Apply here
expired
The Call For Paper was open until 2 August 2024 at UTC. More info →
Location: João Pessoa, BR
In-person conference organized by Devopsdays.
The conference starts on the 9 November 2024.
- Apply here
expired
The Call For Paper was open until 15 August 2024 at UTC. More info →
Location: Warsaw, PL
In-person conference organized by Devopsdays.
The conference starts on the 5 November 2024.
- Apply here
Until next time!
— Dan
Subscribe and, every Wednesday, receive the latest Kubernetes news!