Kubernetes Administration

Kurikulum Kursus

• Modul 1

  Introduction

  • Container Orchestration?
  • What Is Kubernetes?
  • Components of Kubernetes
  • Challenges
  • Kubernetes Architecture
  • Terminology
  • User Community
  • Tools
  • Cloud Native Computing Foundation
• Modul 2

  Kubernetes Architecture

  • Main Components
  • Master Node
  • Worker Nodes
  • Kubelet
  • Services
  • Controllers
  • Pods
  • Containers
  • Init Containers
  • Component Review
  • Node
  • Container to Outside Path
  • Single IP per Pod
  • Networking Setup
  • CNI Network Configuration File
  • Lab 2.1 Lab Environment
• Modul 3

  Kubernetes installation and Configuration

  • Installation Tools
  • Installing kubectl
  • Installing with kubeadm
  • kubeadm-upgrade
  • Installing a Pod Network
  • Installation Considerations
  • Main Deployment Configurations
  • systemd Unit File for Kubernetes
  • Lab 3.1 Kubernetes Cluster Provisioning
  • Lab 3.2 Deploy Microservices Demo
  • Lab 3.3 Kubernetes Dashboard
• Modul 4

  Kubernetes APIs and Access

  • API Access
  • RESTful
  • Checking Access
  • Using Annotations
  • Access from Outside the Cluster
  • introduction ~/.kube/config
  • Namespaces
  • API Resources with kubectl
  • Lab 4.1 Access Kube API with TLS
  • Lab 4.2. Simple Pod
  • Lab 4.3. Working with Namespaces
  • Quiz Preview
• Modul 5

  API Objects

  • Overview
  • v1 API Group
  • Discovering API Groups
  • Deploying an Application
  • DaemonSets
  • StatefulSets
  • Autoscaling
  • Jobs
  • RBAC
  • Lab 5.1 - Using the Proxy
• Modul 6

  Managing State With Deployments

  • Overview
  • Deployments
  • Object Relationship
  • Deployment Details
  • Deployment Configuration Metadata
  • Deployment Configuration Spec
  • Deployment Configuration Pod Template
  • Deployment Configuration Status
  • Scaling and Rolling Updates
  • Deployment Rollbacks
  • Using DaemonSets
  • Labels
  • Lab 6.1 - Working with ReplicaSets
  • Lab 6.2 - Working with DaemonSets
  • Lab 6.3 - Rolling Updates and Rollbacks
  • Quiz
• Modul 7

  Volumes and Data

  • Introducing Volumes
  • Volume Spec
  • Volume Types
  • Shared Volume Example
  • Persistent Volumes and Claims
  • Persistent Volume
  • Persistent Volume Claim
  • Dynamic Provisioning
  • Secrets
  • Using Secrets via Environment Variables
  • Mounting Secrets as Volumes
  • Lab 7.1 - Create a ConfigMap
  • Lab 7.2 - Creating a Persistent NFS Volume (PV)
  • Lab 7.3 - Creating a Persistent Volume Claim (PVC)
• Modul 8

  Kubernetes Service

  • Accessing an Application with a Service
  • Service Types : Cluster IP
  • Service Types : Load Balancer
  • Services Diagram
  • Local Proxy for Development
  • DNS
  • Verifying DNS Registration
  • Lab 8.1 - Deploying Stand-Alone Application
  • Lab 8.2 - Multi Tier Application
  • Quiz
• Modul 9

  Ingress

  • Ingress Controller
  • Ingress API Resources
  • Deploying the Ingress Controller
  • Creating an Ingress Rule
  • Multiple Rules
  • Lab 9.1 - Ingress
  • Quiz
• Modul 10

  Scheduling

  • kube-scheduler
  • Predicates
  • Priorities
  • Scheduling Policies
  • Pod Specification
  • Specifying the Node Label
  • Pod Affinity Rules
  • podAffinity Example
  • podAntiAffinity Example
  • Node Affinity Rules
  • Node Affinity Example
  • Taints
  • Tolerations
  • Custom Scheduler
  • Lab 10.1 - Assign Pods Using Labels
  • Lab 10.2 - Using Taints to Control Pod Deployment
• Modul 11

  Security

  • Overview
  • Cloud Security Considerations
  • Accessing the API
  • Authentication
  • Authorization
  • ABAC, RBAC and Webhook Modes
  • Admission Controller
  • Security Contexts
  • Pod Security Policies
  • Network Security Policies
  • Network Security Policy Example
  • Default Policy Example
  • Lab 11.1 - Security Context
  • Lab 11.2 - Pod Security Policy (PSP)
• Modul 12

  Comprehensive

  • Summary
  • Lab Test Comprehensive 01