Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Interview Prep > Technical - Kubernetes > Flashcards

Technical - Kubernetes Flashcards

1
Q

Control Plane Components

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Worker Node Components

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Kubelet

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Service Mesh (w/examples)

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

CNI (w/examples)

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Container Runtime (w/examples)

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Headless Service

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Service vs Ingress

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How do cloud controller managers integrate with cloud providers

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Deployment vs ReplicaSet vs StatefullSet

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Horizontal Pod Autoscaler vs Horizontal Node Autoscaler

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

ConfigMap vs Secret (+ how to mount to pod)

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

How does a namespace provide isolation

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

How do pods / containers provide isolation

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

How is networking between pods enabled and restricted

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Trace the network path from a cloud services network edge to a pod

A
17
Q

Kube-scheduler (+taints, affinity, and tolerations)

A
18
Q

Best practices for securing kubernetes clusters

A
19
Q

Helm vs Kustomize

A
20
Q

Liveness vs Readiness vs Startup Probes

A
21
Q

How would you implement a rolling, blue green, and canary deployment in kubernetes

A
22
Q

Static pods

A
23
Q

Init containers

A
24
Q

RBAC in Kubernetes

A
25
Q

hostIPC vs hostNetwork vs hostPID vs priveledgedMode

A
26
Q

How to use AppArmour to secure clusters

A
27
Q

How to secure secrets in kubernetes?

A
  1. Sealed Secrets
  2. External Secret Manager (Vault, AWS Secrets Manager)
28
Q

How to setup end to end encryption in EKS?

A
  1. Terminate traffic within cluster (nginx) with service mesh (istio) handling transparency mTLS
  2. Terminate traffic at service mesh (istio) ingress gateway
  3. Terminate traffic at ingress ALB and setup encryption between ALB and ingress gateway (istio)
29
Q

How to manage DNS in EKS with Kubernetes native objects?

A

ExternalDNS

30
Q

Istio Architecture

A
  1. Control Plane (istiod): service discovery, configuration, and cert management
  2. Data Plane (envoy): side car proxies that manages TLS termination, load balancing, health checks, etc.
31
Q

AWS VPC CNI

A

Default EKS CNI which integrates EKS cluster into VPC. Limits available IP addresses due to ENI limits.

32
Q

How to integrate IAM and EKS?

A
  1. AWS access entries/policies and k8s RBAC
  2. IAM Roles for Service Accounts (IRSA)
33
Q

Node selectors vs node affinity

A

Interview Prep (14 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions