Kubernetes Assignment for Administrator

– Top 10 k8 API Resources which is being by Kubernetes Admin

bindings

configmaps

endpoints

events

namespaces

nodes

persistentvolumeclaims

persistentvolumes

pods

policies

– Top 10 kubectl commands to troubleshoot Kubernetes

kubectl top

kubectl get pods –all-namespaces

kubectl get nodes

kubectl cluster-info

kubectl logs ${POD_NAME} ${CONTAINER_NAME}

kubectl get events

kubectl get secrets

kubectl describe <pod>

kubectl create <pod>

kubectl exec ${POD_NAME} -c ${CONTAINER_NAME} — ${CMD} ${ARG1}

– Top 15 commands which is being used by Kubernetes Administrator

kubectl create -f FILENAME

kubectl get pods

kubectl describe nodes

kubectl exec mypod

kubectl port-forward pod/mypod <port1> <port2>

kubectl get services

kubectl cordon <pod>

kubectl drain <pod>

kubectl api-resources

kubectl taint nodes <node>

kubectl get all –all-namespaces

kubectl get ds <name>

kubectl get deployment <name>

kubectl create deployment <name>

kubectl create ns <ns name>

kubeadm init

kubeadm join

kubeadm upgrade

kubeadm config

kubeadm reset

kubeadm certs

kubeadm version

kubeadmin alpha

kubeadm token

kubeadm kubeconfig

man

create

locate

nslookup

curl

chown

sudo

df

name

ping

history

dig

grep

tail

ls

find

– Top Tools for Monitoring, Logging and Tracing Kubernetes & Apps

Grafana

Prometheus

Fluentd

Jaeger

Zabbix

ELK

Kubewatch

cAdvisor

kube-ops-view

Weave Scope

– Top 10 Practices for Securing Kubernetes

Enable RBAC

Use Authentication for APIServer [3rd party]

Protect ETCD – with firewall & security

Isolate K8s nodes

Audit Logging

Process Whitelisting

Use recommended K8s version

Lock kubelet

Monitor network traffic

Vulnerability scanning

Limit direct access