Auth
Auth - Certificate Signing Requests 개념과 Role
https://kubernetes.io/docs/reference/access-authn-authz/certificate-signing-requests/
Auth - CertificateSigningRequest - TLS
https://kubernetes.io/docs/tasks/tls/managing-tls-in-a-cluster/
Auth - ClusterRole
https://kubernetes.io/docs/reference/access-authn-authz/rbac/#clusterrole-example
Auth - RBAC Authorization-exam
https://kubernetes.io/docs/reference/access-authn-authz/rbac/
Auth - role
https://kubernetes.io/docs/reference/access-authn-authz/rbac/#role-and-clusterrole
Auth - Service Accounts for Pods
https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/
Auth - user -out myuser.csr -subj CN=myuser
https://kubernetes.io/docs/reference/access-authn-authz/certificate-signing-requests/#normal-user
Config
Configure - Create a ConfigMap
https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/#create-a-configmap
Configure - Environment Variable
https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/#define-container-environment-variables-using-configmap-data
Configure - Volume Mount
https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/#populate-a-volume-with-data-stored-in-a-configmap
Secrets - environment variables
https://kubernetes.io/docs/concepts/configuration/secret/#using-secrets-as-environment-variables
Secrets - Volume mount
https://kubernetes.io/docs/concepts/configuration/secret/#using-secrets
Controllers
Controller - CronJob
https://kubernetes.io/docs/concepts/workloads/controllers/cron-jobs/
Controller - DaemonSet
https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/
Controller - Jobs
https://kubernetes.io/docs/concepts/workloads/controllers/job/
Controller - ReplicaSet
https://kubernetes.io/fr/docs/concepts/workloads/controllers/replicaset/
Controller - ReplicationController
https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller/
Controller - StatefulSet Basics
https://kubernetes.io/docs/tutorials/stateful-application/basic-stateful-set/
Deploy
Application - Deployments
https://kubernetes.io/docs/concepts/workloads/controllers/deployment/
Application - Horizontal Pod Autoscaler
https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#create-horizontal-pod-autoscaler
HPA(Autoscaling)
https://kubernetes.io/ko/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#php-apache-%EC%84%9C%EB%B2%84-%EA%B5%AC%EB%8F%99-%EB%B0%8F-%EB%85%B8%EC%B6%9C
nginx deploy - service
https://kubernetes.io/docs/tutorials/services/connect-applications-service/#exposing-pods-to-the-cluster
NetworkPolices
Network Policies - ingress_egress
https://kubernetes.io/docs/concepts/services-networking/network-policies/#networkpolicy-resource
NetworkPolicy - ingress
https://kubernetes.io/docs/tasks/administer-cluster/declare-network-policy/
Node
Assign Pods to Nodes using Node Affinity Kubernetes
https://kubernetes.io/docs/tasks/configure-pod-container/assign-pods-nodes-using-node-affinity/
nodes
https://kubernetes.io/docs/tasks/configure-pod-container/assign-pods-nodes/
테인트(Taints)와 톨러레이션(Tolerations) Kubernetes
https://kubernetes.io/ko/docs/concepts/scheduling-eviction/taint-and-toleration/
Pods
Annotations - template
https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations/
Label - Labels and Selector 규칙
https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/
Pod - Assign CPU Resources
https://kubernetes.io/docs/tasks/configure-pod-container/assign-cpu-resource/#specify-a-cpu-request-and-a-cpu-limit
Pod - basic templates
https://kubernetes.io/docs/concepts/workloads/pods/#pod-templates
Pod - Command in Shell
https://kubernetes.io/ko/docs/tasks/inject-data-application/define-command-argument-container/#%EC%85%B8-%EC%95%88%EC%97%90%EC%84%9C-%EC%BB%A4%EB%A7%A8%EB%93%9C-%EC%8B%A4%ED%96%89%ED%95%98%EA%B8%B0
Pod - Command
https://kubernetes.io/ko/docs/tasks/inject-data-application/define-command-argument-container/
Pod - Environment Variables
https://kubernetes.io/docs/tasks/inject-data-application/define-environment-variable-container/#define-an-environment-variable-for-a-container
Pod - Init Containers
https://kubernetes.io/docs/concepts/workloads/pods/init-containers/
Pod - multi containers
https://kubernetes.io/docs/tasks/access-application-cluster/communicate-containers-same-pod-shared-volume/#creating-a-pod-that-runs-two-containers
Pod - ReadinessProbe LivenessProbe
https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/
Pod - sidecar container with logging agent
https://kubernetes.io/docs/concepts/cluster-administration/logging/#sidecar-container-with-logging-agent
Pod - static Pods
https://kubernetes.io/docs/tasks/configure-pod-container/static-pod/#static-pod-creation
SecurityContext
Security Context - Capabilities
https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-capabilities-for-a-container
Security Context - privileged
https://kubernetes.io/docs/concepts/security/pod-security-policy/#create-a-policy-and-a-pod
Security context - runAsNonRoot - middle
https://kubernetes.io/blog/2016/08/security-best-practices-kubernetes-deployment/
Security Context - runAsUser runAsGroup
https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-pod
Service
Service - EndPoint
https://kubernetes.io/docs/concepts/services-networking/service/#services-without-selectors
Service - Ingress
https://kubernetes.io/ko/docs/concepts/services-networking/ingress/
Service - multi-port
https://kubernetes.io/ko/docs/concepts/services-networking/service/#%EB%A9%80%ED%8B%B0-%ED%8F%AC%ED%8A%B8-%EC%84%9C%EB%B9%84%EC%8A%A4
Service - NodePort - LoadBalancer 외 type들
https://kubernetes.io/docs/concepts/services-networking/service/#nodeport
Service - Pod DNS
https://kubernetes.io/ko/docs/concepts/services-networking/dns-pod-service/
Troubleshooting
Cluster - etcd backup & restore
https://kubernetes.io/docs/tasks/administer-cluster/configure-upgrade-etcd/#backing-up-an-etcd-cluster
Cluster - kubelet config
https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/kubelet-integration/#workflow-when-using-kubeadm-init
Cluster - Upgrading kubeadm clusters
https://kubernetes.io/docs/tasks/administer-cluster/kubeadm/kubeadm-upgrade/
Volumes
Volume - StorageClass
https://kubernetes.io/docs/concepts/storage/_print/#the-storageclass-resource
Volumes - emptydir
https://kubernetes.io/docs/concepts/storage/volumes/#emptydir
Volumes - hostpath
https://kubernetes.io/docs/concepts/storage/volumes/#hostpath
Volumes - pod add pvc
https://kubernetes.io/docs/concepts/storage/_print/#claims-as-volumes
Volumes - pod volume set - readonly
https://kubernetes.io/docs/concepts/storage/volumes/#projected
Volumes - PV and NFS exam
https://kubernetes.io/docs/concepts/storage/persistent-volumes/#persistent-volumes
Volumes - PVC
https://kubernetes.io/docs/concepts/storage/_print/#persistentvolumeclaims
kubectl Cheat Sheet
kubectl Quick Reference | Kubernetes
Kubectl Reference Docs
Kubectl Reference Docs (kubernetes.io)
'Kubernetes' 카테고리의 다른 글
| [Kubernetes] 쿠버네티스 환경에서 보안 강화를 위한 중요 지침 (0) | 2024.02.24 |
|---|---|
| [Kubernetes] Karpenter와 ClusterAutoscaler 비교 (0) | 2024.02.18 |
| [Kubernetes] Pod의 request와 limit 값을 동일하게 설정하는 이유 (0) | 2024.02.12 |
| [Kubernetes] namespace 분리하는 이유 (0) | 2024.01.02 |
| [kubernetes] k9s 설치 (0) | 2023.12.20 |