Kubernetes

en: /kuːbəˈnɛtɪs/

/kei.eits/

古典的な読みを したい: キューベルネーテース

orchestrator? conductor?

concepts

k8s objects

Namespace

grouping & separation

spec vs status

supporting declerative management

imperative ones are available

resources

resource category

5 categories of resources:

Workloads

Discovery＆LB

aka. Service API resources

Config＆Storage

e.g.

ConfigMap

Secret

Volume

要はストレージやFS

e.g. Persistent Volume

Cluster

e.g. Namespace, Node, ServiceAccount

Metadata

object

object -- instance of --> resource

triple: group, version, kind

… provides APIs

… declared with spec

… shows status

CRD: custom resource definition

object as a reification of resource

cf. operator pattern

Workloads resources

for containers

Pod ∈ ReplicaSet ∈ Deployment

kubectl run で作った pod はどこに属してる？宣言的管理じゃないから、属してない？

other sets

DaemonSet

1 per node

Pod ∈ DaemonSet

StatefulSet

persistent

Pod ∈ StatefulSet

Job ∈ CronJob

oneshot or repeated

Pod

containers

main

sidecar

Discovery＆LB resources

service discovery

Service (selector by labels) → labels → Pod (labels by Deployment)

other resources

LoadBalancer (routing rules) → Service

by IP, by ports, etc…

volume types:

persistent volume

外部の storage をマウントできる。

ephemeral volume

e.g.

config map

volume あつかいなら、自動更新で自動反映される。

secret

CSI ephemeral volume

cf. projected volume

まとめられる。

network

master

kube-apiserver

etcd

nodes

kubelet

per node

kube-proxy

networking

container runtime

pods

LBs

services on top of it

Envoy

data plane

Istio

control plane

Knative

both

control plane

data plane

managers

Kustomize

templating

Helm

package management

ref.

managed services

so-called CaaS

list

Azure AKS

ref.

Kubernetes API Reference Docs

overview

Resource Categories

This is a high-level overview of the basic types of resources provide by the Kubernetes API and their primary functions.

guides

書籍化: 『Kubernetes完全ガイド』