Read note: “Must-have tools for hardening Kubernetes clusters”

Leave a Comment / 17/04/2022 /

Title: “Must-have tools for hardening Kubernetes clusters”
Category: kubernetes
Link: https://medium.com/mycloudseries/must-haves-for-your-kubernetes-cluster-to-be-production-ready-dc7d1d18c4a2

In this article, the author wants to share a related tool used to make a Kubernetes really capable of going to the battlefield, so the article emphasizes the production-ready situation.
A Production Ready K8s cluster must have relevant handling methods for each of the following large projects, such as

  1. Reliability and Availability
  2. Security
  3. Network, Monitoring & Observability
  4. Backup/Recovery
  5. Cost Optimization
  6. Cluster Visualization

Reliability and Availability:
The two indicators in this field represent different meanings, but are equally important to a cluster that provides services

Here the author lists several tools such as

  1. K8s built-in HPA
  2. AWS’s karpenter that lets you scale on a node-by-node basis
  3. Cluster-Autoscaler
  4. Goldilocks

Backup/Recovery
Many people and teams have headaches about cluster backup and restore. At present, the most well-known open source project is Velero, which supports different storage devices such as Cloud Storage for storage, so that k8s users in different environments have a way to go. back up the data in its cluster

Cost Optimization

For cloud architecture, basically the built-in functions of cloud operators can list their respective costs for various services such as VM and underlying architecture. When this concept is applied to Kubernetes itself, only Master Node can be understood. Worker Node, etc. costs,
Therefore, through projects such as Kubecost to expand the scope of cost insight into Kubernetes, and enumerate the actual cost in units of various k8s resources such as namespace, pod, etc., the team can more effectively manage related costs

personal information

I currently have Kubernetes-related courses on the Hiskio platform. Interested people are welcome to refer and share, which contains my various ideas about Kubernetes from the bottom to the actual combat.

For details, please refer to the online course details: https://course.hwchiu.com/

In addition, please click like to join my personal fan page, which will regularly share various articles, some are translated articles, and some are original articles, mainly focusing on the CNCF field
https://www.facebook.com/technologynoteniu

If you use Telegram, you can also subscribe to the following channels, where I will regularly push notifications of various articles
https://t.me/technologynote

Your donation will give me the motivation to grow my article

This article is reprinted from: https://www.hwchiu.com/read-notes-40.html
This site is for inclusion only, and the copyright belongs to the original author.

Leave a Comment