Debug profiles in Kubernetes 1.27
Probably one of the smallest improvements made in the latest Kubernetes/kubectl version 1.
Tagged "kubernetes"
In-place Pod Vertical Scaling in Kubernetes 1.27
In-place Pod Vertical Scaling was one of the most obvious wanted features has appeared in the latest Kubernetes version 1.
Kustomize and Helm
Helm becomes the de facto standard for packaging 3rd party applications.
Kubernetes with nerdctl
Kubernetes in version 1.24 provides a big change by removing dockershim it means that with some exceptions like cri-dockerd you won’t see docker on a Kubernetes node.
Speed up rolling update of Kubernetes deployment
Recently I was updating one of the infrastructure component consist of many pods presented as a Kubernetes deployment.
Kubernetes and CronJobs
Recently I was doing a recap of what was hidden in the managed version of Kubernetes.
Kubernetes and resolv.conf
Recently I was writing about Tailscale and what surprised me a little bit was handling the /etc/resolv.
User impersonation in Kubernetes
I’m writing this blog post to remember how easily you can impersonate your requests to Kubernetes.
alternative access to kubernetes node
You as an administrator of kubernetes cluster from time to time you want to get access to the selected node to debug issue.
cosign for container image signing
In a previous blog post, I was mentioning about storing helm charts in the OCI registry.
Linux PSI monitoring
As I mentioned before linux psi metrics are exposed in cgroup v2 hierarchy.
How to match host process pid with pod name ?
When you identify from host perspective the most CPU intensive task you may wonder how to match it with pod name ?
Podinfo
Couple days ago I was looking for that tool, but I haven’t bookmarked it.
Kubernetes - RBAC users and groups
RBAC model for Kubernetes assumes existing of: service accounts users groups when you define RoleBinding and ClusterRoleBinding you are pointing them into Subject.
How to get logs from selected container in a pod ?
I faced with the problem where I have to react on specific log entry from an third party application.
Ways of distributing pods across nodes
How can more evenly distribute pod across nodes ? After quick research I found that this example of deployment should be ok:
GKE Node Debugging
GKE is fully managed k8s cluster in Google Cloud Platform, one of its component is a node pool.
Kind - local k8s
Few words after using kind: works only with docker, there is also a podman provider (not tested) docker image node-image simulates a k8s node - all components in one image, started by systemd docker container is priviledged easy to start just use kind command, under the hood it download right node-image version and start it node-image is based on base-image you can run multiple node cluster you can customize kind configuration ie.
Custom node condition in Kubernetes
When you go through node object in k8s you can see that there is a field called Conditions:
gRPCurl - curl for gRPC
In previous blog post How kubernetes is interacting with docker ?
CNI - the Container Network Interface
CNI is simple interface based on environment variables and JSON config.
Docker and Kubernetes at network layer
I wrote some posts about how kubernetes is interacting with docker at CRI level, but what about networking ?
mkubectx - single command across all your selected kubernetes contexts
More on mkubectx
Pause - most popular container in k8s environment
Probably the most popular container in kubernetes environment. Container image is really small:
How to change default k8s container runtime to containerd ?
Default kubelet container runtime configuration use docker as CRI. Containerd has another implementation of CRI, it should fullfill the same requirements as docker so ie.
How kubernetes is interacting with docker ?
In a few words Container Runtime Interface is the answer to this questions.