Kubernetes Notes

Study notes on Kubernetes — from cluster architecture and networking to workloads, troubleshooting, and day-to-day operations. 27 notes

Cluster Architecture12

Admission Controllers

Mutating and validating admission controllers, request flow, enabling and disabling plugins.

Read

API Deprecations

API versioning scheme, deprecation policy, checking and migrating deprecated APIs.

Read

Certificates

PKI certificates, certificate signing requests, checking expiration, and renewal.

Read

CRDs & Operators

Custom Resource Definitions, creating custom resources, and the Operator pattern.

Read

etcd Backup & Restore

Backing up and restoring etcd snapshots, configuration, and health checks.

Read

Helm & Kustomize

Helm charts, repositories, releases, and Kustomize overlays for manifest management.

Read

Kubeadm Cluster Installation

Prerequisites, installing kubeadm/kubelet/kubectl, initializing control plane, joining workers.

Read

Monitoring

metrics-server installation, kubectl top for node and pod resource usage.

Read

RBAC

Role-based access control, Roles, ClusterRoles, bindings, and permission checking.

Read

Kubeadm Cluster Upgrade

Step-by-step cluster upgrade process for control plane and worker nodes using kubeadm.

Read

HA Control Plane

High-availability control plane topologies, load balancer setup, and multi-master kubeadm configuration.

Read

Extension Interfaces (CNI, CSI, CRI)

Container Runtime Interface, Container Storage Interface, and Container Network Interface — Kubernetes extensibility model.

Read
Networking7

Networking General

Kubernetes networking model, IP ranges, pod networking, veth pairs, and bridges.

Read

Services

ClusterIP, NodePort, LoadBalancer, ExternalName, headless services, and kube-proxy.

Read

DNS

Service and pod DNS records, DNS policies, CoreDNS configuration and troubleshooting.

Read

Ingress

Ingress controllers, IngressClass, path/host-based routing, and TLS termination.

Read

Gateway API

GatewayClass, Gateway, HTTPRoute, traffic splitting, and TLS — the evolution of Ingress.

Read

Network Policies

Ingress/egress rules, pod/namespace selectors, default deny policies, and CIDR blocks.

Read

CNI

Container Network Interface plugins, checking and installing CNI, pod CIDR configuration.

Read
Workloads3

Workload Resources

Pods, probes, Deployments, StatefulSets, DaemonSets, Jobs, and CronJobs.

Read

Configuration

ConfigMaps, Secrets, SecurityContext, and ServiceAccounts for pod configuration.

Read

Scheduling

Resource requests/limits, nodeSelector, affinity, taints/tolerations, HPA, and PDBs.

Read
Troubleshooting3

Debugging Applications

Pod lifecycle, common issues (Pending, CrashLoopBackOff, ImagePullBackOff), and debugging services.

Read

Debugging Clusters

Cluster health checks, node troubleshooting, control plane logs, and failure modes.

Read

Debugging Networking

DNS debugging, service connectivity flow, kube-proxy, network policy, and CNI troubleshooting.

Read
Storage1

Volumes & Persistent Storage

emptyDir, hostPath, PersistentVolumes, PVCs, StorageClasses, and volume expansion.

Read
Reference1

Useful kubectl Commands

Comprehensive kubectl cheat sheet — imperative commands, resource management, JSONPath, and more.

Read