Architecture

Question 1

What is cluster store?

Answer 1

If the apiserver is the brain of the master, that’s the memory of it. The config and the state of the cluster is persistently stored here. It uses etcd as Cluster Store

Question 2

What is etcd?

Answer 2

etcd is a distributed key value store that provides a reliable way to store data across a cluster of machines.. KV store is a noSQL database. It’s distributed, consistent and watchable.

Question 3

What is kube-scheduler?

Answer 3

This watches api-server for new pods and assigns work to nodes. It has to think about a lot of things like affiity/anti-affinity, constraints, resources etc.

Question 4

What are nodes?

Answer 4

A.k.a. Minions. They are K8s workers. There are basically 3 components that we care about; kubelet, container runtime and the kube proxy.

Question 5

What is Kubelet?

Answer 5

It is the main Kubernetes agent on Node and referred as Node. Registeres node with cluster. Watches the apiserver on master for work assignments. Any time it sees one, it carries out the task and reports back to master. Instantiates pods????? If the pod fails for some reason, it reports back to master and it does not try to restart it or find another node to run it. It’s masters responsibility to make decision at that point. It exposes and endpoint at localhost on port 10255 (it lets you inspect the spec of the Kubelet). /spec end point gives some info, /healthz for health check and /pods for running pods and much more.

Question 6

What does Container Engine do?

Answer 6

It does container management like pulling images, starting/stopping containers, etc. It’s usually docker but its pluggable and can be rkt if one wants.

Question 7

What is kube-proxy?

Answer 7

It’s networking brain of the node. It makes sure that every pod gets it unique id and all containers in a pod shares a single IP. It also makes load balancing. Load balances across all pods in a service. A service is a way to hide multiple nodes behind a single network address.

Question 8

What is the model that K8s operates on?

Answer 8

It’s a declarative model. We give it a YAML or JSON manifest file where we describe how the app should look like. We do not give the commands needed for that. We just tell how we want it to look like. It’s up to K8s how to get there.

Question 9

What happens when desired state and actual state diverges?

Answer 9

It should bring desired state back. It runs a lot of reconciliation loops that constantly checks the actual state matches the desired state.

Question 10

What is a pod?

Answer 10

The atomic units of scheduling in VMs is the VM, Container in docker world and Pod in K8s. Containers always run inside of pods. Pods can have multiple containers.

Question 11

What does a pod do and have?

Answer 11

It is a ring-fenced environment that runs containers. It has a network stack and kernel namespaces. It is also the unit of scaling.

Question 12

How is the env arranged if more than one container are run inside a pod?

Answer 12

All containers in pod share the same environment. e.g. they have the same IP. If they want to talk each other there is localhost interface in there.

Question 13

When should one use more than one container inside one pod?

Answer 13

If there are tightly coupled applications (e.g. 2 apps sharing the same DB, or a logging application(sidecar container) for a web server(main container)) we can put them together. But for loosely coupled apps no need for that. Also for scaling we should add more pods not more containers inside a pod.

Question 14

How is the lifecycle of a pod?

Answer 14

They have 3 phases: pending, running, succeeded/failed. Once they die they can not be restarted back.

Question 15

How do we deploy pods?

Answer 15

They are usually part of a bigger system but we can also deploy them alone by giving apiserver a manifest file. apiserver reads the file and deploys it to a suitable Node. They are usually deployed via higher level objects like Replication Controller.

Question 16

Can we rely on pod IPs?

Answer 16

No. Each time a pod dies and a new one is created, it gets a new IP.

Question 17

What are services?

Answer 17

Service is a Kubernetest obect just as Pod and Node. We define it inside yml file. E.g. we can set up an IP server between FE and db nodes to fix IP address and DNS. It can load balance requests among different pods.

Question 18

How are services and pods tied?

Answer 18

The way that a pod belongs to a service is via labels. These labels tie services and pods. So if we give same labels that we give to normal pods to an irrelevant one, it will be load balanced through service as well. Also you can upgrade to a new version or return back to an older version by just changing labels on service.

Question 19

What are basic properties of services?

Answer 19

• They only send requests to healthy pods
• They can be configured for session affinity
• They can point to things outside cluster
• They make random load balancing
• They use TCP by default

Question 20

What can be said about Services?

Answer 20

Deployments are all about declaretiveness. You do not say K8s how to do but rather tell what you want. They are self documenting, spec-once deploy-many, versioned, simple rolling updates and rollbacks. They are defined via YAML or JSON manifests and deployed via apiserver. As replication controllers add features around, these do the same.

Question 21

Can multiple versions be run with deployments?

Answer 21

We can run multiple concurrent versions at the same time either in blue-green deployments or in canary releases.

Question 22

What is Minikube?

Answer 22

It’s all about spanning your local environment on your laptop.

Question 23

What are some types of installations for Kubernetes?

Answer 23

Minikube, Google Container Engine(GKE), AWS Provider, Manual Install

Question 24

What are the 3 main components of Master Node?

Answer 24

Scheduler, Controller and api-server.

Question 25

What is the only way of communicating with K8 Master?

Answer 25

api-server

Question 26

Whats the role of controller-manager in master node?

Answer 26

It run non-terminating loops which regulate the state of the Kubernete cluster.

Question 27

what does etcd store?

Answer 27

State of the cluster.

Question 28

What is the scheduling unit in Kubernetes?

Answer 28

Pod

Question 29

What is a pod?

Answer 29

Logical unit of one or more containers which are scheduled together.

Question 30

Give 3 examples of container runtimes?

Answer 30

Containerd, rkt, lxd.

Question 31

what is a kubelet?

Answer 31

An agent which runs on worker node and talks to Master node.

Question 32

What are the two services implemented by Container Runtime Interface (CRI)?

Answer 32

ImageService and RuntimeService.

Question 33

What container runtimes are supported by Kubernetes

Answer 33

Any runtime with implements the Container Runtime Interface.

Question 34

What is Kube-proxy?

Answer 34

Network Proxy which runs on each worker node and listens to API server for Service endpoint creation/deletion. For each service endpoint, kube-proxy also setsup routes to reach it.

Question 35

In a cluster, a unique ip is assigned to….

Answer 35

each pod.

Question 36

What are the two specifications for container networking?

Answer 36

Container Network Model (CNM, by docker)

Container Network Interface (CNI, by CoreOS)

Question 37

What Container networking spec does K8S use?

Answer 37

Container Network Interface (CNI)

Question 38

Name 3 admin tools to install and configure Kubernetes

Answer 38

Kubespray, kops,kubeadm

Question 39

‘kubectl proxy’ - what does it do?

Answer 39

makes api’s available on 127.0.0.1:8001

Question 40

Give 4 examples of Kubernetes Objects

Answer 40

Pods, ReplicaSets, Deployments, Namespaces.

Question 41

In a deployment object, what do spec and spec.template.spec describe?

Answer 41

spec describes the desired state of the deployment (we need 3 pods running) and spec.template.spec describes the desired state of the pod.

Question 42

All containers in a pod mount the same external storage. True/False?

Answer 42

True

Question 43

What are labels?

Answer 43

They are key-value pairs that can be attached to any Kubernetes object.

Question 44

Replication Controller is a part of master nodes….

Answer 44

controller manager

Question 45

Pods can self-heal themselves

Answer 45

No. They are ephemeral. That is why we manage them with Replication Controllers etc.

Question 46

What is the difference between replication controller and replicaSet?

Answer 46

ReplicaSet is next generation ReplicationController. ReplicaSets support both equality- and set-based selectors, whereas ReplicationControllers only support equality-based Selectors. Currently, this is the only difference.

Question 47

What are Deployments?

Answer 47

Deployments provide declarative updates to Pods and ReplicaSets.

Question 48

When is a rollout triggered?

Answer 48

A rollout is only triggered when we update the Pods Template for a deployment. Operations like scaling the deployment do not trigger the deployment.

Question 49

What are namespaces?

Answer 49

We can partition kubernetes into sub-clusters using Namespaces.