Kubernetes Deep Dive

Kubernetes Deep Dive

This four-day Kubernetes training introduces students to both basic and advanced Kubernetes topics. You will learn how to deploy a Kubernetes cluster to Google Cloud Platform using kops, how to store configuration in ConfigMaps, as well as get an understanding of internals behind cluster networking. The fourth day is a deep dive into Kubernetes internals including kubelet, API server, scheduling algorithm and networking.

Who should attend

  • How Kubernetes handles container-based distributed workloads
  • How to spinn up a Kubernetes cluster
  • How to bootstrap and operate fault-tolerant Kubernetes clusters in production

Course deliverables

  • An understanding of how Kubernetes handles container-based distributed workloads
  • Practical skills required to spin up a Kubernetes cluster
  • The experience required to successfully operate and manage Kubernetes clusters

Training program

1
day
See details
Introduction
  • Instructors
  • Altoros services
  • Altoros customers
  • Students
  • Useful links for the course
  • Agenda
  • Schedule
  • The methodology of the training
Containers
  • Create Docker image
  • Start Docker container
  • Mount volume inside container
  • Change a network to a host
Kubernetes Basics
  • What is Kubernetes?
  • The Cloud Native Computing Foundation
  • Benefits
  • Comparison with other products
Kubernetes architecture
  • Managed Kubernetes platforms
  • Infrastructure providers
  • Kubernetes components
  • Deploy Kubernetes to Google Cloud Platform using kops
Pods
  • Pods
  • Multi-container pod design
  • Pod Lifecycle
  • Launch a pod using a container image
  • Launch a pod using a configuration file
  • Deploy a pod from a custom image (optional)
  • Limit pod resources (optional)
Health checks
  • Health checks
  • Deploy a pod with a health check
  • Use readiness probe
  • Create health check for an NGINX pod
  • Create a health check using TCP sockets
Health checks
  • Health checks
  • Deploy a pod with a health check
  • Use readiness probe
  • Create health check for an NGINX pod
  • Create a health check using TCP sockets
2
day
See details
Labels and selectors
  • Labels and selectors
  • Labels in pods
  • Using selectors
Deployments
  • Deployment use cases
  • Updating deployments
  • Rolling back a deployment
  • Create a deployment
  • Observe how Kubernetes restarts containers
Services
  • Service without selectors
  • Types
  • Proxy modes
  • Service discovery
  • Deploying PHP Guestbook application with Redis
  • Investigating source code of the sample (optional)
  • Manually connecting to Redis from an app pod (optional)
  • Blue-green deployment (optional)
Secrets and ConfigMaps
  • Store configuration
  • Store sensitive information
  • Storing secrets in Kubernetes
  • Access secrets from environment variables (optional)
  • Use ConfigMaps (optional)
Managing state with deployments
  • StatefulSet use cases
  • StatefulSet limitations
  • Deploying Cassandra with StatefulSets
  • Scale (optional)
  • Access secrets from environment variables (optional)
  • Use ConfigMaps (optional)
3
day
See details
Namespaces and RBAC
  • Isolate cluster resources
  • Role and ClusterRole
  • Binding roles
  • User, groups, and service accounts
  • API objects
  • Use namespaces
  • Use RBAC
  • Namespace resource limits (optional)
  • Assign a default view cluster role to a user and try to deploy a pod (optional)
Helm
  • What Helm is
  • How to secure Helm
  • Use Helm to deploy Prometheus
Volumes and data
  • Persistent volume
  • Persistent volume claim
  • Volume life cycle
  • Volume types
  • Access modes
  • Storage class
  • Deploying WordPress and MySQL with persistent volumes
  • Static persistent volume provisioning (optional)
  • Observe how persistent volume is reattached (optional)
Security
  • Securing your cluster
  • API authentication
  • API authorization
  • Admission control
  • API access
  • Pod security Policy (PSP)
  • Network polic
  • Security contexts
  • Securing Docker images
Networking
  • Cluster networking
  • Container networking interface (CNI)
  • Plug-in comparison
  • Network policies
  • API access
  • Pod security Policy (PSP)
  • Network policies
  • Cluster DNS
  • External load balancers
  • Service networking internals
  • Pod iptables rules
  • Service iptables rules
  • Installing Kubernetes add-ons
  • Tracking iptables changes while re-deploying the service
Ingress
  • Ingress controllers
  • Singe services ingress
  • Simple fanout ingress
  • Name-based virtual hosting ingress
  • TLS termination
  • Deploy sample app using ingress
  • Specify app host (optional)
  • Use TLS (optional)
4
day
See details
Deep dive into Kubernetes architecture
  • Kubelet
  • Cluster initialization
  • Static pods
  • API Server
  • Scheduling algorithm
  • Using custom schedulers
  • Investigate kubelet
  • Run a static pod (optional)
  • Manually access Kubernetes API
  • Deploy a pod using an API (optional)
Manage infrastructure using Terraform
  • Terraform
  • Terraform + kops
  • Manually deploy a new cluster using Terraform
  • Advanced cluster troubleshooting (optional)
5
day (Available only for Private Classes)
See details
Federations
  • Manage multiple Kubernetes clusters
  • Create a federated cluster
  • Deploy a multi-cloud application
Federations
  • Manage multiple Kubernetes clusters
  • Create a federated cluster
  • Deploy a multi-cloud application
Logging
  • Node-level logging
  • Sidecar log streaming
  • Sidecar with a logging agent
  • System components logs
  • ELK logflow
  • How to parse logs
  • Grok filters
  • Installing the Elasticsearch logging add-on for Kubernetes
  • Setting up a Kibana dashboard for the Kube system (optional)
Monitoring
  • General architecture
  • cAdvisor
  • InfluxDB + Grafana
  • Deploy a new application and configure it for monitoring
  • Alerting (optional)
CI/CD
  • Tools
  • Kubernetes resource definition
  • CI/CD pipeline structure
Cluster upgrades and customizations
  • Cluster upgrades with kops
  • Add-ons
  • Installing Kubernetes dashboard add-on
  • Using kops to change cluster configuration
  • Deploy a highly available cluster (optional)
  • Add Heapster metrics to the Kubernetes dashboard (optional)

Prerequisites

  • An SSH terminal client (like SSH or Putty)
  • A tool to transfer files over SSH (like scp)
  • A web browser (Chrome/Firefox)
  • Internet connection (outgoing connections on TCP ports 22, 80, 8080, and 443)
  • Access to Google Cloud Platform and Google Cloud Console
Need private training for your team?
Request a quote

Check public classes schedule

Select your region
Atlanta
Chicago
Boston
Austin
Dallas
Denver
Jacksonville
Los Angeles
New York City
Seattle
Toronto
San Francisco
Washington DC
Silicon Valley
Don't see a location that works for you?
Request training in your office
Contact us
Amsterdam
Frankfurt
Helsinki
London
Madrid
Munich
Oslo
Rome
Paris
Stockholm
Vienna
Zurich
Don't see a location that works for you?
Request training in your office
Contact us
Dubai
Tel Aviv
Don't see a location that works for you?
Request training in your office
Contact us
Atlanta
Chicago
Boston
Austin
Dallas
Denver
Jacksonville
Los Angeles
New York City
Seattle
Toronto
San Francisco
Washington DC
Silicon Valley
Don't see a location that works for you?
Request training in your office
Contact us
Amsterdam
Frankfurt
Helsinki
London
Madrid
Munich
Oslo
Rome
Paris
Stockholm
Vienna
Zurich
Don't see a location that works for you?
Request training in your office
Contact us
Dubai
Tel Aviv
Don't see a location that works for you?
Request training in your office
Contact us
Atlanta
Chicago
Boston
Austin
Dallas
Denver
Jacksonville
Los Angeles
New York City
Seattle
Toronto
San Francisco
Washington DC
Silicon Valley
Amsterdam
Frankfurt
Helsinki
London
Madrid
Munich
Oslo
Rome
Paris
Stockholm
Vienna
Zurich
Dubai
Tel Aviv

Our trainers

Aleksey Zalesov
Cloud Foundry Engineer
Ryan Meharg
Cloud Foundry Engineer
Sergey Matyukevich
Solutions Architect / Trainer
Christian Hercules
Cloud Foundry Engineer
Get updates on upcoming events and new courses, discounts and special offers

Contact us

Contact us to request your free 1-hour consultation with one of Altoros’ digital business transformation experts.

Natalia Usenia

Training coordinator

Headquarters

830 Stewart Dr., Suite 119 Sunnyvale, CA 94085




How can we help you?

Please, don't fill this field:












© 2001–2018 Altoros