The full set of hands-on code examples and configurations used in the book is available for free on the Official GitHub Repository.
Provides an identity for processes that run in a pod, allowing them to authenticate with the API server. 39. Role / ClusterRole
A storage resource provisioned by an administrator. It exists independently of any pod and has its own lifecycle independent of any individual pod.
The matchmaker. It watches for newly created Pods with no assigned node and selects the best node for them to run on. 6. kube-controller-manager The full set of hands-on code examples and
The safety net. It ensures that a specified number of identical pod replicas are running at any given time. 14. Deployment
Health checks performed periodically by the kubelet on a container (e.g., livenessProbe to restart dead apps, readinessProbe to signal if traffic should be routed to the Pod).
The external alias. Maps a Kubernetes Service to a DNS name outside the cluster, bypassing proxying entirely. 22. Ingress Role / ClusterRole A storage resource provisioned by
The cluster directory. A flexible, extensible DNS server that provides name resolution for all Pods and Services. Part 4: Configuration & Storage Management
: Used for managing resource allocation and utilization.
The cluster storage asset. A piece of storage in the cluster provisioned by an administrator or dynamically provisioned using Storage Classes. 30. PersistentVolumeClaim (PVC) It watches for newly created Pods with no
Standard output (stdout/stderr) is automatically captured. But logs disappear when pods die, so ship them to a central system (Loki, Splunk, Elastic).
The plugin standard. Popular options: Calico (security), Flannel (simple), Cilium (eBPF performance).
🚀 The Ultimate DevOps Kubernetes Checklist (50 Key Concepts)
Allows administrators to describe the "classes" of storage they offer. Different classes might map to quality-of-service levels, backup policies, or arbitrary policies determined by cluster administrators.