The Kubernetes Book (Nigel Poulton) (z-library.sk, 1lib.sk, z-lib.sk) (1)

📄 File Format: PDF

💾 File Size: 17.5 MB

📖 Read Online ⬇️ Download

Registered users can read the full content for free

Register as a Gaohf Library member to read the complete e-book online for free and enjoy a better reading experience.

📄 Page 1

(This page has no text content)

📄 Page 2

The  Kubernetes  Book 2025 Edition Weapons-grade Kubernetes learning! Nigel Poulton @nigelpoulton

📄 Page 3

About this edition This edition was published in February 2025. In writing this edition, I've gone over every word in every chapter, ensuring everything is up-to-date with the latest trends and patterns in the industry. I've added new Kubernetes features, such as native sidecar containers, and I've updated the installation chapter to show you how to get the latest free Docker Desktop multi-node Kubernetes cluster. Finally, I've tested and updated all examples and hands-on tasks to work with Kubernetes v1.32. Enjoy the book, and get ready to master Kubernetes! (c) 2025 Nigel Poulton Ltd. All typos are mine. Or should that be typo’s… ;-)

📄 Page 4

Education is about inspiring and creating opportunities. I hope this book, and my video training courses, inspire you and create lots of opportunities! A huge thanks to my family for putting up with me. I’m a geek who thinks he’s software running on midrange biological hardware. I know it’s not easy living with me. Thanks to everyone who watches my Pluralsight and A Cloud Guru training videos. I love connecting with you and appreciate all the feedback I’ve had over the years. This feedback is what inspired me to write this book. I think you’ll love it, and I hope it helps drive your career forward. @nigelpoulton

📄 Page 5

About the authors Nigel Poulton (@nigelpoulton) Nigel is a technology geek who is passionate about learning new technologies and making them easier for others to learn.

📄 Page 6

He's the author of best-selling books on Docker and Kubernetes, and is the author of AI Explained: Facts, Fiction, and Future, an exciting read into the impacts of AI on society and the future of humanity. . Nigel is a Docker Captain and has held senior technology roles at large and small enterprises. In his free time, he listens to audiobooks and coaches youth football (soccer). He wishes he lived in the future and could understand the mysteries of life and the universe. He’s passionate about learning, cars, and football. He lives in England with his fabulous wife and three children. Contributing author: Pushkar Joglekar Pushkar contributed the technical content for Chapters 16 and 17. Pushkar is a Sr. Cloud Security Engineer II, leading organization-wide security programs for a multi-billion dollar Fintech Company. He is also a Kubernetes Project Maintainer and was a Technical Security Lead for VMware Tanzu prior to his current role. Before that, he built multiple “secure by design” production container deployments for a Fortune 500 company and has been a frequent speaker at KubeCon.

📄 Page 7

When not securing containers, he explores neighborhood bike trails and captures beautiful sunsets through his camera while sipping homemade masala ginger chai. He lives with his wonderful wife, who is the real engineer among them.

📄 Page 8

Table of Contents 1. 0: Preface 1. Paperbacks, hardbacks, eBooks, audio, and translations 2. The sample app and GitHub repo 3. Windows users 4. Terminology and responsible language 5. Feedback 2. 1: Kubernetes primer 1. Important Kubernetes background 2. Kubernetes: the operating system of the cloud 3. Chapter summary 3. 2: Kubernetes principles of operation 1. Kubernetes from 40K feet 2. Control plane and worker nodes 3. Packaging apps for Kubernetes 4. The declarative model and desired state 5. Pods 6. Deployments 7. Service objects and stable networking 8. Chapter summary 4. 3: Getting Kubernetes 1. Install everything with Docker Desktop

📄 Page 9

2. Build a Linode Kubernetes Engine (LKE) cluster in the Linode Cloud 3. Build a Kubernetes cluster in the Linode Cloud 4. Configure kubectl 5. Test your LKE cluster 6. More about kubectl and your kubeconfig file 7. Chapter summary 5. 4: Working with Pods 1. Pod theory 2. Multi-container Pods 3. Hands-on with Pods 4. Clean up 5. Chapter Summary 6. 5: Virtual clusters with Namespaces 1. Intro to Namespaces 2. Namespace use cases 3. Default Namespaces 4. Creating and managing Namespaces 5. Deploying objects to Namespaces 6. Clean up 7. Chapter Summary 7. 6: Kubernetes Deployments 1. Deployment theory 2. Create a Deployment

📄 Page 10

3. Manually scale the app 4. Perform a rolling update 5. Perform a rollback 6. Clean up 7. Chapter summary 8. 7: Kubernetes Services 1. Service Theory 2. Hands-on with Services 3. Clean up 4. Chapter Summary 9. 8: Ingress 1. Setting the Scene for Ingress 2. Ingress architecture 3. Hands-on with Ingress 4. Clean up 5. Chapter summary 10. 9: Wasm on Kubernetes 1. Wasm Primer 2. Understanding Wasm on Kubernetes 3. Hands-on with Wasm on Kubernetes 4. Chapter Summary 11. 10: Service discovery deep dive 1. Setting the scene 2. The service registry

📄 Page 11

3. Service registration 4. Service discovery 5. Service discovery and Namespaces 6. Troubleshooting service discovery 7. Clean up 8. Chapter summary 12. 11: Kubernetes storage 1. The big picture 2. Storage Providers 3. The Container Storage Interface (CSI) 4. The Kubernetes persistent volume subsystem 5. Dynamic provisioning with Storage Classes 6. Hands-on 7. Clean up 8. Chapter Summary 13. 12: ConfigMaps and Secrets 1. The big picture 2. ConfigMap theory 3. Hands-on with ConfigMaps 4. Hands-on with Secrets 5. Clean up 6. Chapter Summary 14. 13: StatefulSets 1. StatefulSet theory

📄 Page 12

2. Hands-on with StatefulSets 3. Clean up 4. Chapter Summary 15. 14: API security and RBAC 1. API security big picture 2. Authentication 3. Authorization (RBAC) 4. Admission control 5. Chapter summary 16. 15: The Kubernetes API 1. Kubernetes API big picture 2. The API server 3. The API 4. Chapter summary 17. 16: Threat modeling Kubernetes 1. Threat modeling 2. Spoofing 3. Tampering 4. Repudiation 5. Information Disclosure 6. Denial of Service 7. Elevation of privilege 8. Chapter summary 18. 17: Real-world Kubernetes security

📄 Page 13

1. Security in the software delivery pipeline 2. Workload isolation 3. Identity and access management (IAM) 4. Security monitoring and auditing 5. Real-world example 6. Chapter summary 19. Terminology 20. Outro 1. About the front cover 2. A word on the book’s diagrams 3. Connect with me 4. Feedback and reviews

📄 Page 14

0: Preface Kubernetes is developing fast, so I update the book every year. And when I say update, I mean real updates — I review every word and every concept, and test every example against the latest versions of Kubernetes. I’m 100% committed to ensuring this remains the best Kubernetes book in the world. As an author, I’d love to write a book and never touch it again for five years. Unfortunately, a two-year-old book on Kubernetes could be dangerously out of date. Paperbacks, hardbacks, eBooks, audio, and translations This 2025 edition is published in all of the following formats: Paperback Hardback eBook eBook copies are available on Kindle, Leanpub, and various other sources. I recommend Leanpub, as I publish there first, and you get free lifetime updates that work.

📄 Page 15

Various translations are also available but sometimes lag behind the English language editions. I’ve also created the following collector’s editions. Each has a themed front cover, but the content is exactly the same as the regular English-language edition. Starfleet paperback Borg hardback Klingon paperback Kindle updates Unfortunately, Kindle readers cannot get updates — even if you delete the book and buy it again, you’ll still get the older version you originally purchased. I have no control over this and was devastated when Amazon introduced this change. Feel free to contact me at tkb@nigelpoulton.com and I’ll do my best to help. The sample app and GitHub repo There’s a GitHub repo with all the app files and YAML code used throughout the book. To follow the examples, you’ll need to install git, clone the repo, and switch to the 2025 branch. And don’t worry if that sounds

📄 Page 16

confusing. You don’t need to be a GitHub expert, as I’ll always show you the commands you need to run. Install got onto your computer. The easiest way is to search the web for git installation instructions and follow them for your platform (Linux/Mac/Windows…). Once you’ve installed git, you can clone the repo and switch branches. Run the following command to clone the repo. It creates a new directory called TKB and copies all the files and folders. $ git clone https://github.com/nigelpoulton/TKB.git Change into the new TKB directory and switch to the 2025 branch. $ cd TKB $ git fetch origin $ git checkout -b 2025 origin/2025 Congratulations. You’ve cloned the book’sGitHub repo and switched to the 2025 branch.

📄 Page 17

Windows users Most of the commands in the hands-on sections work on Linux, Mac, and Windows. However, a few of them require minor changes to work on Windows. Whenever this happens, I explain what you need to do. However, to prevent myself from repeating the same thing too often, I don’t always tell Windows users to replace backslashes with backticks for line breaks. With this in mind, Windows users should do one of the following every time the book splits a command over multiple lines using backslashes: Remove the backslash and run the command on a single line Replace the backslashes with backticks All other differences are explained in full every time. Terminology and responsible language Throughout the book, I capitalize the first letter of Kubernetes objects such as Pods and Services. This helps you know when I’m talking about a Kubernetes “LoadBalancer” and not a cloud “load balancer”.

📄 Page 18

The book also follows guidelines from the Inclusive Naming Initiative, which promotes responsible language. Feedback If you like the book and it helps your career, share the love by recommending it to a friend and leaving a review on Amazon, Goodreads, or wherever you buy your books. For other feedback, you can email me at tkb@nigelpoulton.com or reach me on any of the following.

📄 Page 19

1: Kubernetes primer This chapter gets you up-to-speed with the basics and background of Kubernetes, and I’ve divided it as follows: Important Kubernetes background Kubernetes: the Operating System of the cloud Important Kubernetes background Kubernetes is an orchestrator of containerized cloud-native microservices applications. That’s a lot of jargon, so let’s explain it. Orchestration An orchestrator is a system that deploys applications and dynamically responds to changes. For example, Kubernetes can: Deploy applications Scale them up and down based on demand Self-heal them when things break Perform rollouts and rollbacks Lots more

📄 Page 20

The best part is that it does all of this without you having to get involved. You need to configure a few things up front, but once you’ve done that, you sit back and let Kubernetes work its magic. Containerization Containerization is the process of packaging applications and dependencies as images and then running them as containers. It can be useful to think of containers as the next generation of virtual machines (VM). Both are ways of packaging and running applications, but containers are smaller, faster, and more portable. Despite these advantages, containers haven’t entirely replaced VMs, and you’ll see them running side-by-side in most environments. But containers are the first-choice solution for most new applications. Cloud native Cloud-native applications possess cloud-like features such as auto-scaling, self-healing, automated updates, rollbacks, and more.