Kubernetes

 

What is Kubernetes?

Kubernetes, often abbreviated as K8s, is an open-source container orchestration platform designed to automate the deployment, scaling, and management of containerized applications. Originally developed by Google, Kubernetes is now maintained by the Cloud Native Computing Foundation (CNCF).

Key Concepts of Kubernetes

1. Containers and Container Orchestration

• Containers: Containers are lightweight, portable units of software that package code and its dependencies, ensuring consistency across different computing environments.
• Container Orchestration: This involves managing the lifecycle of containers, including deployment, scaling, networking, and availability.

2. Kubernetes Architecture

    

• Cluster: A set of nodes (physical or virtual machines) managed by Kubernetes.

• Master Node: Coordinates the cluster, managing the workload and nodes. It runs the following components:

  • API Server: Exposes the Kubernetes API.
  • Etcd: A key-value store for cluster data.
  • Controller Manager: Ensures the desired state of the cluster.
  • Scheduler: Distributes workloads across nodes.

• Worker Nodes: Run the containerized applications and are managed by the master node. Components include:

• Kubelet: Ensures containers are running in a Pod.
• Kube-proxy: Manages networking for Pods.
• Container Runtime: Software responsible for running containers (e.g., Docker, containerd).

Kubernetes Architecture for Azure or AWS

Both Azure and AWS offer managed Kubernetes services—Azure Kubernetes Service (AKS) and Amazon Elastic Kubernetes Service (EKS), respectively. These services simplify the deployment, management, and scaling of Kubernetes clusters by handling much of the underlying infrastructure management. Here's a detailed overview of the architecture and key components for deploying Kubernetes on Azure and AWS.

1. Azure Kubernetes Service (AKS)

Architecture Components

• Control Plane:

  • API Server: Manages the Kubernetes API and serves as the frontend of the Kubernetes control plane.
  • Etcd: A distributed key-value store that provides the backend database for storing cluster data.
  • Controller Manager: Runs controller processes to regulate the state of the cluster.
  • Scheduler: Assigns Pods to nodes based on resource availability.

• Node Components:

  • Nodes: Virtual machines (VMs) in an Azure Virtual Machine Scale Set (VMSS) that run containerized applications.
  • Kubelet: An agent that runs on each node, ensuring containers are running in a Pod.
  • Kube-proxy: Maintains network rules on nodes and handles communication within and outside the cluster.
  • Container Runtime: Software that runs the containers (e.g., Docker, containerd).

• Networking:

  • Azure Virtual Network (VNet): Provides network isolation and connectivity for AKS clusters.
  • Azure Load Balancer: Distributes incoming traffic to services running on the AKS cluster.

• Storage:

  • Azure Disks: Persistent storage for stateful applications.
  • Azure Files: Managed file shares for shared storage.

Key Features

• Azure Active Directory Integration: Enables authentication and access control.
• Autoscaling: Automatically scales nodes based on demand.
• Monitoring and Logging: Integrated with Azure Monitor and Azure Log Analytics for monitoring and logging.

2. Amazon Elastic Kubernetes Service (EKS)

Architecture Components

• Control Plane:

  • API Server: The endpoint for the Kubernetes API.
  • Etcd: The key-value store for cluster data.
  • Controller Manager: Manages the state of the cluster.
  • Scheduler: Assigns Pods to nodes based on available resources.

• Node Components:

  • Nodes: Amazon EC2 instances that run containerized applications.
  • Kubelet: Ensures containers are running in a Pod on each node.
  • Kube-proxy: Manages networking rules on nodes.
  • Container Runtime: Software to run containers (e.g., Docker, containerd).

• Networking:

  • Amazon VPC: Provides network isolation and connectivity for EKS clusters.
  • Elastic Load Balancer (ELB): Distributes incoming traffic to services within the EKS cluster.
  • AWS PrivateLink: Enables private connectivity between VPCs, AWS services, and on-premises networks.

• Storage:

  • Amazon EBS (Elastic Block Store): Persistent block storage for stateful applications.
  • Amazon EFS (Elastic File System): Scalable file storage for shared access.

Key Features

• IAM Integration: Provides granular access control using AWS Identity and Access Management (IAM).
• Autoscaling: Supports Cluster Autoscaler and Horizontal Pod Autoscaler for scaling nodes and pods.
• Monitoring and Logging: Integrated with Amazon CloudWatch for monitoring and logging.
• 
  

Deployment Steps

1. Setting Up AKS on Azure

1. Create a Resource Group:

   
   az group create --name myResourceGroup --location eastus
   

2. Create an AKS Cluster:

   
   az aks create --resource-group myResourceGroup --name myAKSCluster --node-count 3 --enable-addons monitoring --generate-ssh-keys
   

3. Get Credentials:

   
   az aks get-credentials --resource-group myResourceGroup --name myAKSCluster
   

4. Deploy an Application:

   
   kubectl create deployment nginx --image=nginx
   

5. Expose the Deployment:

   
   kubectl expose deployment nginx --port=80 --type=LoadBalancer
   

2. Setting Up EKS on AWS

1. Create an EKS Cluster:

   
   eksctl create cluster --name myEKSCluster --region us-west-2 --nodegroup-name standard-workers --node-type t3.medium --nodes 3
   

2. Update kubeconfig:

   
   aws eks --region us-west-2 update-kubeconfig --name myEKSCluster
   

3. Deploy an Application:

   
   kubectl create deployment nginx --image=nginx
   

4. Expose the Deployment:

   
   kubectl expose deployment nginx --port=80 --type=LoadBalancer
   

Monitoring and Maintenance

• Azure: Use Azure Monitor and Azure Log Analytics to monitor the health and performance of your AKS cluster.
• AWS: Use Amazon CloudWatch to collect and track metrics, collect and monitor log files, and set alarms.

3. Basic Kubernetes Objects

• Pod: The smallest deployable unit in Kubernetes, a Pod represents a single instance of a running process in a cluster. It can contain one or more containers.
• Service: An abstraction that defines a logical set of Pods and a policy to access them. Services enable load balancing.
• Volume: Storage that is accessible to containers in a Pod.
• Namespace: A way to divide cluster resources between multiple users (via resource quotas).

4. Advanced Kubernetes Objects

• ReplicaSet: Ensures a specified number of pod replicas are running at any given time.
• Deployment: Provides declarative updates to Pods and ReplicaSets, allowing rollouts and rollbacks.
• StatefulSet: Manages stateful applications, ensuring the uniqueness and ordering of Pods.
• DaemonSet: Ensures that a copy of a Pod runs on all or some nodes.
• Job: Creates one or more Pods and ensures a specified number of them successfully terminate.
• CronJob: Manages jobs that run on a schedule.

Benefits of Using Kubernetes

• Scalability: Automatically scales applications up or down based on demand.
• High Availability: Ensures application availability through automatic restarts, replication, and distribution of workloads.
• Self-healing: Automatically replaces and reschedules failed containers.
• Declarative Configuration: Uses YAML or JSON to define the desired state of applications and services.
• Extensibility: Supports custom resources and controllers to extend its capabilities.

Kubernetes Use Cases

• Microservices: Orchestrates complex, distributed applications consisting of multiple services.
• DevOps: Automates deployment pipelines, continuous integration, and continuous deployment (CI/CD).
• Hybrid Cloud: Manages workloads across different environments, including on-premises, public cloud, and private cloud.
• Big Data and AI/ML: Supports scalable, distributed processing for data-intensive applications.

Kubernetes Ecosystem

• Helm: A package manager for Kubernetes, making it easy to deploy and manage applications.
• Istio: A service mesh that provides traffic management, security, and observability for microservices.
• Prometheus: A monitoring and alerting toolkit integrated with Kubernetes for metrics collection.
• Kubeflow: A machine learning toolkit for Kubernetes, streamlining workflows for ML models.

Getting Started with Kubernetes

1. Set Up a Kubernetes Cluster:

   • Local Development: Use Minikube or Kind to create a local cluster.
   • Cloud Providers: Use managed Kubernetes services like Google Kubernetes Engine (GKE), Amazon Elastic Kubernetes Service (EKS), or Azure Kubernetes Service (AKS).

2. Deploy Applications:

   • Define application configurations using YAML files.
   • Use kubectl command-line tool to interact with the cluster.

3. Monitor and Manage:

• Implement logging and monitoring solutions (e.g., Prometheus, Grafana).
• Use Kubernetes Dashboard or third-party tools for visualization and management.

What is Manifest file for Kubernetes ?

A Kubernetes manifest file is used to define the desired state of various resources within a Kubernetes cluster. Below is an example of a manifest file for deploying a simple Nginx application on an Azure Kubernetes Service (AKS) cluster. The manifest file includes definitions for a Deployment and a Service.

Example Manifest File

apiVersion: apps/v1
kind: Deployment
metadata:
  name: nginx-deployment
  labels:
    app: nginx
spec:
  replicas: 3
  selector:
    matchLabels:
      app: nginx
  template:
    metadata:
      labels:
        app: nginx
    spec:
      containers:
      - name: nginx
        image: nginx:1.19.0
        ports:
        - containerPort: 80

---

apiVersion: v1
kind: Service
metadata:
  name: nginx-service
spec:
  selector:
    app: nginx
  ports:
  - protocol: TCP
    port: 80
    targetPort: 80
  type: LoadBalancer

Explanation

Deployment

• apiVersion: Specifies the API version used for the resource. For Deployments, apps/v1 is used.
• kind: Specifies the type of Kubernetes resource, which is Deployment in this case.
• metadata: Contains metadata about the resource, such as name and labels.
  • name: The name of the deployment (nginx-deployment).
  • labels: Key-value pairs for categorizing the deployment. Here, app: nginx is used.
• spec: Defines the desired state of the deployment.
  • replicas: Specifies the number of pod replicas to run. In this case, 3.
  • selector: Defines how the deployment finds the pods it manages.
    • matchLabels: Specifies the label that the pods must have to be managed by this deployment (app: nginx).
  • template: Defines the pod template used to create new pods.
    • metadata: Contains labels for the pod (app: nginx).
    • spec: Defines the pod specification.
      • containers: Lists the containers that will run in the pod.
        • name: The name of the container (nginx).
        • image: The container image to use (nginx:1.19.0).
        • ports: The ports that the container exposes (containerPort: 80).

Service

• apiVersion: Specifies the API version used for the resource. For Services, v1 is used.
• kind: Specifies the type of Kubernetes resource, which is Service in this case.
• metadata: Contains metadata about the resource, such as name.
  • name: The name of the service (nginx-service).
• spec: Defines the desired state of the service.
  • selector: Defines how the service finds the pods it routes traffic to. It uses the label app: nginx.
  • ports: Defines the ports that the service exposes.
    • protocol: The protocol used by the port (TCP).
    • port: The port number the service exposes (80).
    • targetPort: The port on the container that the service routes traffic to (80).
  • type: Specifies the type of service. LoadBalancer creates an external load balancer, which routes traffic to the service's pods.

Applying the Manifest File

To deploy the resources defined in the manifest file to your AKS cluster, you can use the kubectl apply command:

kubectl apply -f your-manifest-file.yaml

Replace your-manifest-file.yaml with the name of your manifest file. This command will create the deployment and service as specified in the YAML file.

Verifying the Deployment

After applying the manifest, you can verify the deployment and service using the following commands:

• Check Deployment:

  kubectl get deployments
  

• Check Pods:

  
  kubectl get pods
  

• Check Service:

  
  kubectl get services
  

These commands will display the status of the deployed resources, helping you ensure that everything is running as expected.