In simple terms, Kubernetes is a container orchestration tool. It helps in maintaining the containers.
When we build a containerized application and if there are large number of such containers, we need tool such as Kubernetes that help us to manage those containers and automate our workflow.
backup and restore.
-
when your application is running in Docker Containers for some reasons in your Applications is gone Down that means your Container is Exited State or Stoped State.So Your application will have a Downtime. Now check my application is gone into the Exited or stoped state Now i would go probably Docker Container Run or Start Command are execute and Make the Conatainer Work
-
The problem is When your working in Single System . If there is Some Software Which Recogniges that When Containers goes Down it will automatically Do the Work So Starting Containers back So your application is always Up and Running. There is Some Application can Do that . It will help us
-
When we Run our Application in Docker Containers and if Containers fails we need to Manually Start the Conatiner(Container Down) -
If the Node i.e The machine Fails all the Container Running on the same machine it Should be Re-Created on Other machine(Node Down)<-- or -->
The user should not have any downtime.
We are Running E-commerse application in Docker Container and There is Discount Season and Discount Sale what happend is lot of traffic is there. when there is lot of traffic your application cannot Run exactly same number.earlier you would try to run 10 conatiners you might need 20 or 30 or the application normally have very high response time.
Scalliing is two types
Vertical ScallingHorizontal Scalling- Vertical Scalling :
Increasing Size of the Conatiner
- intially you would give 256 Mb but storage not enough so now you will give 512 Mb
- intially you are giving 1 CPU and now you are giving 2 CPUs
- Horizontal Scalling:
Increasing number of Containers
-
You application is runnning in One Container Now you are going to Run 10 Containers
K8s can do both Vertical Scalling and Horizontal Scalling of Conatiners
Generally when we run on Application in it is not guarenteed that it could be the same containers running forever it will always get new realeses and then we moving from older Version into Newer Version we would want to Zero-Downtime or Near Zero-Downtime Deployments
k8s can handle Deployments with near Zero-Downtime Deploymentsk8s can handle rollout(newverion) and rollback(Undo new version => Older Version)
Google had a History of running everything on Containers To manage these Containers,Google has developed Container Management tools(inhouse or internelly)
Borgomega*** With Docker publicizing containers, With the experience in running and managing containers, Google has started a project Kubernetes (developed in Go) and then handed it over toCloud Native Container Foundation (CNCF)**
- Apache Mesos
- Hashicorp Nomad
- Docker Swarm
- But K8s is clear winner
-
This is a unit of deployment, where all the functionality of the system has to be deployed together
-
Single Process Monolith
-
Modular Monolith: Subset of Single Process Monolith
-
Challanges:-
-
The whole application has to be deployed and the necessary changes in the database also should be up to the mark
-
When there is load on som part/module of your application and you need to scale the whole application
- Microservices are independently deployable services modelled around business domain.
- These microservices communicate with each other via networks
- Each service can be developed in a differnt programming language as the communications between microservices are generally over http
- Challenges:
- Microservices are distributed systems, so managing the application is more complex than a monolith
- For deploying the applications which are microservices and handling challenges, we would require an orchestration software and kubernetes is best player in this area.
- Initially k8s used docker as a main container platform and docker used to get special treatment, from k8s 1.24 special treatment is stopped.
- k8s is designed to run any container technology, for this k8s expects container technology to follow k8s interfaces.
One of major properties of k8s is Self healingK8s is distributed application which is called as k8s cluster
- Scaling requirements
- Failover
- Deployment Options
- K8S provides
- Service Discovery & Load Balancing
- Storage Orchestration
- Automated rollouts and rollbacks
- Self-Healing
- Secret and Configuration Management
- K8s is a platform that manages container based applications, their network and storage components
- K8s Can be installed in many ways
- Self Hosted => where we install k8s minikube Kubeadm Kube Spray
- Cloud Hosted Services => Kubernetes as a Service AWS => Elastic Kubernetes Service (EKS) Azure => Azure Kubernetes Service (AKS) Google => Google Kubernetes Engine (GKE)
-
Official Architecture image
-
Other easier representations
- Clients
- kubectl
- any rest based client
-
Node: what is required to Run your Container
-
Client is nothing but What is necessary for you to tell the work to the Cluster
-
Pod: the smallest unit of creation inside k8s is pod
-
kube-api server
-
etcd (*)
-
kube-scheduler
-
controller manager
-
cloud controller manager
-
Handles all the communication of k8s cluster(control plane and nodes) -
Let it be internal or external
-
The API server is exposes fuctionality over Http(s) protocol and
k8s API
1.This is memory of k8s cluster
or
k8s uses etc to store all the cluster data
2. This is distribute key-value store
Scheduler is responsible for creating k8s objects(pods) and scheduling them on right node
This ensures desired state is maintained- This
reconcilation loopthat checks for desired state and if it mis matches doing the necessary steps is done by controller
This is component in k8s with cloud specific knowledge
This is an agent of the control plane- Kubelet recieves requests/orders to create new Pods
This is technology in which your container is createdor- Container technology to be used in k8s cluster
- in our case it is docker.
it wil maintains network rules on the nodes- This is a network proxy that runs on each node in k8s
kubectl communicate with the Cluster to create resourses- K8s is designed to work with any container technology.
K8s is cluster so we interact with master nodes. There are two ways of interacting, where as for k8s it exposes APIs.- From code/restapi with json
- From command line where k8s gives a cmd line tools kubectl
- In kubectl can be interacted in two ways
imperative (commands)declarative (yaml) - To
k8s we always express the desired state(What is that we want) These yaml files where we describe our desired state are called as manifests
it will checks for node failures
it will checks for Container Count
This is a yaml file which describes the desired state of what you want in/using k8s cluster
the system as a whole must not fail if a part of it fails
should be working even during maintenance, rollouts
keep up with the increasing load without requiring radical redesign
Everything in k8s is an ObjectEvery Object has Spec and Status- Spec: Specification(What we have asked)
- Status: What was Created
- The smallest unit of creation is Pod
- Pod has a Container(s)
- Every Pod gets an API adress
- Pending
- Running
- Succeded
- Failed
- Unknown
- Waiting
- Running
- Terminated
APIs are grouped as apigroups:
- core
- batch
- networking.k8s.io
- Controllers in k8s control/maintain state of k8s objects
- Controllers are k8s objects which run other k8s resources. This k8s resource will be part of specification generally in template section.
- Controllers maintain desired state.
- Some of the controllers are * Replication Controller/Replica Set * Stateful Sets * Deployments * Jobs * Cron Jobs * Daemonset
K8s has two types of jobs
-
Job: Run an activity/script to completion
-
CronJob: Run an activity/script to completion at specific time period or intervals.
-
Backofflimit: if job fails the pod it will be Restarted
-
ActiveDeadlineSecond: if Script is not finishing it will Stop
-
Running job waiting for Completion
-
When you delete the Controller Chaild Objects also deleted
-
Controller Controll the Job and Job Controll the Pod
-
ImagepullBackoff:The status ImagePullBackOff means that a Pod couldn’t start, because Kubernetes couldn’t pull a container image. The ‘BackOff’ part means that Kubernetes will keep trying to pull the image, with an increasing delay (‘back-off’).
apiVersion specifies which version of the Kubernetes API to use to create the object
kind specifies the kind of object defined in this yaml file, here a Service metadata helps uniquely identify our Service object: we give it a name (myloadbalancer), and a label.
spec specifies the Service. It is of LoadBalancer type. We then go on to specify its ports. We can define many ports if we want but here we just specify the necessary port 8000 for our whoami app. Since 8000 is an HTTP ports: we add a name tag and call it http. targetPort is the port the container welcomes traffic (in our case necessarily 8000), port is the abstracted Service port. For simplicity, we set both as 8000, though we could change port to something else.
selector tells the Service which pods to redirect to: in this case pods with containers running the app we called mydeployment Save and exit the file.
These are all type of controllers.
Benefits of Controllers
- Application reliability: where multiple instances of an application running, prevent problems if one or more instance fails.
- Scaling: when your pods experience a high volume of requests, kubernetes allows you to scale up your pods, allowing for a better user experience.
- Load balancing: where having multiple versionsof a pod running allow traffic to flow to different pods, and doesnt overload a single pod or node
Kinds of Controllers
- ReplicaSets
- Replication Controller
- Deployments
- DaemonSets
- Jobs
- Services
Pods are the smallest and the most basic unit in Kubernetes. Each pod get their own IP address so that they can communicate. A pod may be running a service like any application usually within a container.
Service is logical set of pods and each pod will have their own service. Lifecycle of Pod and service are not interconnected. Service are generally categorized into: Internal External
A node is a single host in K8s. This is used to run virtual or physical machine. There may be multiple/single pods within a node.
It is used to identify the particular number of pod replicas running inside a node.
It contains all the external configuration of our application like database URL. The reason we need this is because this acts as a central repo to other components so if we have to make any changes like change in DB_URL we can simply change here and all changees will be reflected back. ⚠ DO NOT STORE CREDENTIALS ON CONFIGMAP.
As name suggests it stores all the secret info like DB_USERNAME and DB_PASSWORD. We should always store such info in encrypted format rather than plain text.
This attaches a physical storage to the pod. Data mey be lost while resetting since it is not persistent. ⚠ K8s does not manage data persistence.
Ensures that the specified number of replica for a pod are running at all times.
A deployment controller provides declarative updates for pods and ReplicaSets.
-
This means you can describe the desired state of a deployment in a YAML file, and the deployment controller will align the actual state to match.
-
Manages a ReplicaSet.
or
We do not directly create a pod in K8s. We create blueprint of the pod and the rest is handled by K8s. The blueprint for creating pod is called deployment.
-
pod management: running a ReplicaSet allows you to deploy a number of pods, and check their status as a single unit.
-
Pause and Resume: pause deployment, make changes, resume deployment.
DaemonSets ensure that all nodes run a copy of a specific pod.
- As nodes are added and removed from the cluster, a DaemonSet will add or remove the required pods.
A supervisor process for pods carrying out batch jobs.
- Jobs are used to run indivual processes that run once and complete successfully.
A service allows the communcation between one set of deployments with another.
- use a service to get pods in two deployments to talk to each other.
Kinds of Services
- Internal: IP is only reachable within the cluster
- External: endpoint available through node IP: port (called NodePort)
- Load Balancer: Exposes application to the internet with a load balancer (available with a cloud provider)
used to continue checking the availability of a Pod
used to make sure a Pod is not published as available until the readinessProbe has been able to access it.
If we define a startup probe for a container, then Kubernetes does not execute the liveness or readiness probes, as long as the container's startup probe does not succeed.
Number of seconds after the container has started before liveness or readiness probes are initiated. Defaults to 0 seconds. Minimum value is 0.
How often (in seconds) to perform the probe. Default to 10 seconds. Minimum value is 1.
Number of seconds after which the probe times out. Defaults to 1 second. Minimum value is 1.
Minimum consecutive successes for the probe to be considered successful after having failed. Defaults to 1. Must be 1 for liveness and startup Probes. Minimum value is 1.
When a probe fails, Kubernetes will try failureThreshold times before giving up. Giving up in case of liveness probe means restarting the container. In case of readiness probe the Pod will be marked Unready. Defaults to 3. Minimum value is 1.