Lecture 08

Agenda

• Kubernetes
  • Resource Management for Pods and Containers
  • Network Policies
  • Kubernetes Internals
  • Securing Kubernetes
  • Autoscaling Applications
  • Autoscaling Kubernetes Cluster

Slides

• Lecture slides can be found in Canvas.

Reading

Kubernetes Architecture

• Kubernetes Control Plane
• Kubernetes Master Components
• Kubernetes Node Components
• Kubernetes Addons
• The Kubernetes API

Kubernetes Authentication & Authorization

• Kubernetes Authorization Overview
• Kubernetes Role-based access control (RBAC) Authorization
• RBAC best practices and workarounds
• Role-Based Access Control ("RBAC")
• Using Kubernetes RBAC and service accounts
• Configure a Security Context for a Pod or Container

Kubernetes Scheduling

• Assigning Pods to Nodes

Kubernetes Auto-scaling

• Horizontal Pod Autoscaler
• Pod Autoscaling
• Change the default StorageClass

Autoscaling EKS Cluster

• Cluster Autoscaler on AWS
• EKS Best Practices Guides - Cluster Autoscaler
• Kubernetes Cluster Autoscaler - EKS

Resource Management for Pods and Containers

• Limit Storage Consumption
• Reserve Compute Resources for System Daemons
• Manage Memory, CPU, and API Resources
  • Memory Default Namespace
  • CPU Default Namespace
  • Memory Constraint Namespace
  • CPU Constraint Namespace
  • CPU & Memory Quota
  • Pod Quota

Network Policies

• Network Policies
• Kubernetes Network Policy – Guide with Examples
• Kubernetes Network Policy Recipes