Practical Kubernetes Guide

Name: Practical Kubernetes Guide
Rating: 4.4 (746 reviews)

Learn Kubernetes Best Practices related to Security, DevOps, Scalability, Administration, Deployment and Operations.

Created byHoussem Dellai

Last updated 10/2024

English

What you'll learn

Best practices for Kubernetes (Apps, DevOps, Admin, Scalability, Security)
Kubernetes DevOps CI/CD pipelines (HELM, Azure DevOps, Github Actions)
Kubernetes security (Pod Identity, Calico, Azure Security Center)
Kubernetes scalability (HPA, Cluster Autoscaler, Virtual Node)
Kubernetes Ingress with TLS/SSL/HTTPS
Kubernetes best practices

Course content

32 sections • 111 lectures • 12h 19m total length

Course introduction0:55
Learn Kubernetes best practices by provisioning clusters with Terraform, configuring CI/CD, updating and upgrading the cluster, and securing TLS certificates, ingress, monitoring, logging, and secrets with operators.
Connect with the author0:03

Introduction0:36
Kubenet (basic) network mode10:44
Explore kubenet as the default network mode in azure kubernetes service, where nodes borrow subnet ips while pods receive a pod cidr, with nat routing and limited route table entries.
Azure CNI (advanced) network mode5:04
Kubenet vs Azure CNI4:59
Azure CNI Overlay mode5:40
Explore how Azure CNI overlay mode solves IP exhaustion by assigning each node a unique pod CIDR, isolating pod IPs from the subnet and avoiding extra route hops.
Kubenet vs Azure CNI Overlay mode2:22
Compare Kubernetes with Azure CNI overlay, highlighting up to 1000 nodes per cluster, no per-node route-table limits, and simplified pod networking.
Bring Your Own (BYO) CNI plugin0:59
CIDR ranges overlapping considerations2:23
Quiz

Secret Store CSI Driver for Azure Key Vault2:43
Securing AKS Secrets using Key Vault17:27
Learn how to secure sensitive data like passwords in AKS.
This demo will help you to securely retrieve your encrypted passwords from Azure Key Vault.
Kubernetes Policy using OPA Gatekeeper8:31
Learn how to create Security Policies for Kubernetes using OPA Gatekeeper.
Whitelist Container Registries9:20
Quiz

Introduction to Operators1:41
Prometheus & Grafana Operators7:49
Install and configure Prometheus and Grafana operators in Kubernetes using the operator lifecycle manager and Kube Prometheus. Explore CRDs, dashboards, and pre-configured monitoring components.
Fluentd, Elasticsearch & Kibana Operators8:33
Explore deploying a Kubernetes logging stack using fluentd, fluent bit, Elasticsearch, and Kibana with operators. Learn to install the logging and Elasticsearch operators and access Kibana for logs.
Quiz

Requirements

Highly recommend to start with course: kubernetes for developers

Description

[This course is still in progress. More content will be added in the coming days]

This course will walk you through the different best practices to be successful with Kubernetes operations. It will guide you through the day 1 and day 2 operations on Kubernetes.

Plan:

Introduction
Kubernetes Cluster Scalability
1. Manual Pod Scalability
2. Horizontal Pod Autoscaler (HPA)
3. Manual Cluster Nodes Scalability
4. Cluster Autoscaler
5. Azure Virtual Node
Kubernetes DevOps (Github Actions, Azure DevOps)
Kubernetes Security (Azure Security Center, Pod Identity, Aqua, Kubesec)
Kubernetes Operators
Kubernetes Operations (Kured, Cluster Auditing, Uptime SLA)

Most of the content and best practices are applicable for any Kubernetes cluster. And Azure Kubernetes Service (AKS) is used for the practices that depends on the cluster implementation.

Who this course is for:

Kubernetes developers and and ops willing to adopt best practices.

Practical Kubernetes Guide

What you'll learn

Explore related topics

Course content

Course introduction2 lectures • 1min

Introduction to Kubernetes1 lecture • 16min

Networking plugins for AKS: Kubenet & Azure CNI8 lectures • 33min

Kubernetes operations4 lectures • 26min

Kubernetes Scalability5 lectures • 43min

Kubernetes Security4 lectures • 38min

Kubernetes Operators3 lectures • 18min

Ingress Controllers2 lectures • 20min

Secure access to the API Server3 lectures • 27min

Secure secrets in Kubernetes with Workload Identity2 lectures • 15min

Requirements

Description

Who this course is for: