Azure Kunernetes Service AKS

Question 1

What is a cluster preset configuration when deploying a new ALS cluster?

Answer 1

A set of configuration templates optimised for a specific cost and performance targets. When deploying a new cluster you can use this as a base to get started.

Question 2

What are the pricing tiers for AKS?

Answer 2

Free: only charged for network, storage and vm costs incurred by the cluster , with a maximum
Of around 10 nodes.

Standard: charged for kubernetes control plane and includes autoscaling up to around 5000 nodes.

Question 3

What kubernetes automatic upgrade options are available?

Answer 3

• Enabled with patches
• Enabled with stable releases
• Enabled with rapid ( minor)
• enabled with node image ( don’t update kubernetes but update os)

Question 4

What is the concept of node pools?

Answer 4

One K8s cluster can have multiple clusters, and different pools have different configurations/ sizes. Each agent pool is used and optimised for a specific type of user defined tasks or applications like back end, front end etc.

Question 5

What are virtual instances/nodes and what is burstable scaling?

Answer 5

Burstable scaling uses azure virtual instances which are already inside ready state so they don’t need to be created and provisioned meaning extremely fast scaling up or out.

Question 6

What is the kubernetes cli?

Answer 6

It is a cli used to interact with kubernetes clusters. It’s native.

Question 7

What is kubenet?

Answer 7

Kubenet is a networking plugin for Kubernetes in Azure, providing a simpler implementation of networking for AKS clusters compared to Azure Container Networking Interface (CNI).

With KubeNet, each node in an AKS cluster is assigned a single IP address in the Azure virtual network, and pods on a node are assigned IP addresses from a logically separate address space. Pod-to-pod communication across nodes requires NAT (Network Address Translation), handled by the node’s IP. This approach can be more straightforward and easier to manage, especially for smaller or simpler deployments.

This can help set up
A smaller cluster more quickly but sacrifices some scaling and performance when compared with Azure CNI

Question 8

What is the azure CNI?

Answer 8

Azure CNI (Container Networking Interface) is a plugin that integrates Azure Kubernetes Service (AKS) with Azure’s virtual network (VNet), providing each pod with an IP address from the VNet. This setup allows pods to communicate with each other, and with other services, directly across the VNet without needing NAT, offering improved network performance and simplifying network configuration for services requiring direct access to the network.

Question 9

Can you load balance between cluster pods?

Answer 9

Yes

Question 10

What are the network privacy settings available for new cluster deployment?

Answer 10

• enable private cluster
• set authorised ip ranges
• network policy (set policies for ingree and egress between pods)

Question 11

How is virus control managed in AKS

Answer 11

Microsoft defender is activated by default

Question 12

How can you use custom
Container images as part of your k8s deployments?

Answer 12

Connect optionally to azure container registry to store container images there and use them in new pod deployments

Question 13

What is azure monitor ?

Answer 13

A centralised way to
Monitor azure resources. It can be configured to monitor your AKS cluster.

Question 14

What is azure policy for AKS?

Answer 14

You are allowing azure policies to be translated and used to manage the kubernetes policies. This avoids having multiple different sources and mechanisms of policies.

Question 15

How long does it take to deploy a simple AKS cluster?

Answer 15

Depends on many factors but in my test it was finished in less than 4 minutes

Question 16

How do you communicate with the cluster?

Answer 16

Using the command line. You can use this button here from the interface of the AKS resource to open cloud shell (which opens as powershell) and then switch to bash in the top left of the cli window.

You then need to ‘az AKS get-credentials —resource-group newaks —name newaks’ to login to the targeted AKS cluster ( you may have many but you need one shell per cluster and that shell has to Haba the appropriate credentials).

You can then begin using the ‘kubectl’ cli tool to issue commands to your cluster.

Question 17

How to list the available nodes using kubectl?

Answer 17

az AKS get-credentials —resource-group <RG> —name <AKS></AKS></RG>

kubectl get-nodes

Question 18

How to deploy an app to an AKS cluster?

Answer 18

• press the create button on the AKS azure portal ui for the cluster (see image) for two either apply/create a kubernetes yaml file or create a starter application ( wizard which outputs a k8s yaml file which you can verify in the review yaml step ).

Question 19

How to list the namespaces in an AKS cluster ?

Answer 19

az AKS get-credentials —resource-group <RG> —name <AKS></AKS></RG>

kubectl get namespaces

Note:

Namespaces are a way to organize clusters into virtual sub-clusters — they can be helpful when different teams or projects share a Kubernetes cluster. Any number of namespaces are supported within a cluster, each logically separated from others but with the ability to communicate with each other.

essentially, namespaces represent the applications your AKS cluster is running

Question 20

How to list deployments in an AKS cluster?

Answer 20

az AKS get-credentials —resource-group <RG> —name <AKS></AKS></RG>

kubectl get deployments -n <namespace></namespace>

Note:

A Kubernetes Deployment is a resource object that provides declarative updates to applications. It enables administrators to describe the application’s life cycle, defining specific images, the desired number of pods, and more. essentially it is the act of updating your yaml file

Question 21

How to list services in an AKS cluster?

Answer 21

az AKS get-credentials —resource-group <RG> —name <AKS></AKS></RG>

kubectl get services -n <namespace></namespace>

Note:

A Kubernetes service is a logical abstraction for a deployed group of pods in a cluster (which all perform the same function). Since pods are ephemeral, a service enables a group of pods, which provide specific functions (web services, image processing, etc.) to be assigned a name and unique IP address (clusterIP).

Question 22

How to list nodes in an AKS cluster?

Answer 22

az AKS get-credentials —resource-group <RG> —name <AKS></AKS></RG>

kubectl get nodes -n <namespace></namespace>

Note:

A Kubernetes node is a logical collection of IT resources that runs workloads for one or more containers in a Kubernetes cluster. K8s creates the application containers automatically so nodes can be VMs themselves or standard hardware but nodes are not ephemeral.
Se

Question 23

How to list pods in an AKS cluster?

Answer 23

az AKS get-credentials —resource-group <RG> —name <AKS></AKS></RG>

kubectl get pods -n <namespace></namespace>

Note:

A Kubernetes pod is a collection of one or more Linux® containers, and is the smallest unit of a Kubernetes application. Any given pod can be composed of multiple, tightly coupled containers (an advanced use case) or just a single container (a more common use case). Containers are grouped into Kubernetes pods in order to increase the intelligence of resource sharing. Pods are used because it allows k8s to share compute resources more intelligently between containers and across the various pods in the cluster.

Question 24

What is the difference between nodes and pods?

Answer 24

Pods are like individual application instances and consist of one or more
Linux containers. Nodes are the machines that run these containers, and Cluster holds them all together.

Question 25

In AKS what is the difference between a node and a node pool?

Answer 25

In Azure Kubernetes Service (AKS), nodes of the same configuration are grouped together into node pools. These node pools contain the underlying VMs that run your applications. The initial number of nodes and their size (SKU) is defined when you create an AKS cluster, which creates a system node pool.

Question 26

How to get more information about pods from the cli?

Answer 26

az AKS get-credentials —resource-group <RG> —name <AKS></AKS></RG>

kubectl get pods -n <namespace> *-o wide*</namespace>

Note:

The -o means output

Question 27

How can you scale out your k8s applications?

Answer 27

Assuming you have sufficient availability of resources in your cluster, you can use the command:

*kubectl scale —replicas=<2> deployment/<deployment> -n <name>*</name></deployment>

…where N is the number of replicas you want.

Question 28

What happens if you scale the number of applications to a number that is higher than the number of your available nodes?

Answer 28

Multiple replicas will run simultaneously on the same server.

Question 29

Scaling and creating/removing replicas are are different in terms of cost. How so?

Answer 29

Scaling deploys new VMs. Auto scaling incurs the cost of the vm resources whereas increasing the number of replicas will run more application containers on the existing nodes and so may have a performance impact depending on the resources demanded by the application but will not incur additional costs.

Question 30

What kind of storage does an AKS cluster pod have?

Answer 30

Ephemeral- it lasts by default as long as the pod. Volumes can be used to set up persistent storage.

Question 31

What type of azure storage can be used to create a volume?

Answer 31

• Azure disks ( only single node read write once access mode)
• Azure files (smb 111 or nfs 4.1 fileshare, multi node and pod access, add or magnetic disk )
• Azure net app files (seems like premium cross platform but no obvious distinction between other premium volume types)
• Azure blobs (nfs 3 block blob)

Question 32

What types of volume exist for AKS clusters?

Answer 32

• Empty dir ( regular file system)
• secret ( secret filesystem only ever written to volatile storage for confidential data storage)
• Config map ( key value)

Question 33

How to create a persistent volume?

Answer 33

• define storage class
• configure persistent volume claim using defined storage class
• create persistent volume claim in AKS application yaml to provision the volume
• attach the volume to the pod

Question 34

How would you define a storage class yaml for k8s?

Answer 34

Question 35

What is the reclaim policy property in a storage class AKS yaml?

Answer 35

That is an option setting the storage as persistent or not. If set to ‘reclaimPolicy: Retain’ then the storage will not be repurposed after a pod has finished accessing it and is therefore persistent

Question 36

What is the kubectl command to apply the changes of a yaml file to an AKS cluster?

Answer 36

Kubectl apply -f <yourfile.yaml></yourfile.yaml>

Question 37

How would you make a persistent storage claim in an AKS application yaml?

Answer 37

Question 38

How would you attach your pod to a volume for which you have created a persistent volume claim?

Answer 38

Question 39

What is the relationship between a storage class, a persistent volume claim and an application yaml?

Answer 39

The storage class defines the type of storage , its function and performance, where it comes from etc.

A persistent volume claim then uses storage class and requests a specific amount of that storage type.

The application yaml can then use the persistent volume claim and mount it on the container device(s).

Question 40

What Linux distributions are available as part of WSL (windows subsystem for Linux)?

Answer 40

Ubuntu
Opensuse
Kali
Debian
Arch

Question 41

How to install WSL on windows?

Answer 41

In powershell you’re the command ‘wsl —install’

Question 42

How to update WSL?

Answer 42

Type the powershell command ‘wsl —update’

Question 43

How to list wsl processes and their status?

Answer 43

wsl -l -v