Container Technology

5.

Kubernetes Deep Dive

5.1.

Kubernetes Architecture

5.1.1.

Cluster Architecture Overview

5.1.1.1.

Master-Worker Model

5.1.1.2.

Distributed System Design

5.1.1.3.

High Availability Patterns

5.1.2.

Control Plane Components

5.1.2.1.

API Server (kube-apiserver)

5.1.2.1.1.

REST API Gateway

5.1.2.1.2.

Authentication and Authorization

5.1.2.1.3.

Admission Control

5.1.2.1.4.

5.1.2.2.

Scheduler (kube-scheduler)

5.1.2.2.1.

Pod Scheduling Process

5.1.2.2.2.

Scheduling Algorithms

5.1.2.2.2.1.

Priority-Based Scheduling

5.1.2.2.2.2.

Resource-Based Scheduling

5.1.2.2.2.3.

Affinity Scheduling

5.1.2.2.3.

Custom Schedulers

5.1.2.3.

Controller Manager (kube-controller-manager)

5.1.2.3.1.

Controller Pattern

5.1.2.3.2.

Built-in Controllers

5.1.2.3.2.1.

Deployment Controller

5.1.2.3.2.2.

ReplicaSet Controller

5.1.2.3.2.3.

Node Controller

5.1.2.3.2.4.

Service Controller

5.1.2.3.3.

Custom Controllers

5.1.2.4.

5.1.2.4.1.

Distributed Key-Value Store

5.1.2.4.2.

Cluster State Storage

5.1.2.4.3.

Backup and Recovery

5.1.2.4.4.

Performance Considerations

5.1.3.

Worker Node Components

5.1.3.1.

5.1.3.1.1.

Node Agent Responsibilities

5.1.3.1.2.

Pod Lifecycle Management

5.1.3.1.3.

Container Runtime Interface

5.1.3.1.4.

Node Status Reporting

5.1.3.1.5.

Volume Management

5.1.3.2.

5.1.3.2.1.

Network Proxy Functions

5.1.3.2.2.

Service Implementation

5.1.3.2.3.

5.1.3.2.4.

Network Policy Enforcement

5.1.3.3.

Container Runtime

5.1.3.3.1.

CRI Implementation

5.1.3.3.2.

Runtime Selection

5.1.3.3.3.

Performance Considerations

5.1.4.

Add-on Components

5.1.4.1.

5.1.4.1.1.

Service Discovery

5.1.4.1.2.

DNS Configuration

5.1.4.2.

5.1.4.2.1.

Web UI Management

5.1.4.3.

5.1.4.3.1.

Metrics Collection

5.1.4.3.2.

Resource Monitoring

5.2.

Kubernetes API and Objects

5.2.1.

5.2.1.1.

5.2.1.2.

5.2.1.3.

API Groups and Versions

5.2.1.4.

API Deprecation Policy

5.2.2.

5.2.2.1.

Object Specification

5.2.2.2.

5.2.2.3.

Object Metadata

5.2.2.4.

Labels and Selectors

5.2.2.5.

5.2.3.

5.2.3.1.

5.2.3.1.1.

Pod Specification

5.2.3.1.2.

Container Specifications

5.2.3.1.3.

Pod Lifecycle Phases

5.2.3.1.3.1.

5.2.3.1.3.2.

5.2.3.1.3.3.

5.2.3.1.3.4.

5.2.3.1.3.5.

5.2.3.1.4.

5.2.3.1.5.

Init Containers

5.2.3.1.6.

Sidecar Containers

5.2.3.1.7.

Pod Security Context

5.2.3.2.

5.2.3.2.1.

Desired State Management

5.2.3.2.2.

5.2.3.2.3.

Selector Matching

5.2.3.2.4.

Scaling Operations

5.2.3.3.

5.2.3.3.1.

Declarative Updates

5.2.3.3.2.

Deployment Strategies

5.2.3.3.2.1.

Recreate Strategy

5.2.3.3.2.2.

Rolling Update Strategy

5.2.3.3.3.

Rollout Management

5.2.3.3.4.

Rollback Operations

5.2.3.3.5.

Deployment Status

5.2.3.4.

5.2.3.4.1.

5.2.3.4.1.1.

5.2.3.4.1.1.1.

Internal Load Balancing

5.2.3.4.1.1.2.

Virtual IP Assignment

5.2.3.4.1.2.

5.2.3.4.1.2.1.

External Access via Nodes

5.2.3.4.1.2.2.

Port Allocation

5.2.3.4.1.3.

5.2.3.4.1.3.1.

Cloud Provider Integration

5.2.3.4.1.3.2.

External Load Balancer

5.2.3.4.1.4.

5.2.3.4.1.4.1.

DNS CNAME Records

5.2.3.4.2.

Service Discovery

5.2.3.4.2.1.

DNS-Based Discovery

5.2.3.4.2.2.

Environment Variables

5.2.3.4.3.

5.2.3.4.3.1.

Service Backend Management

5.2.3.4.3.2.

Health-Based Routing

5.2.3.5.

5.2.3.5.1.

Resource Isolation

5.2.3.5.2.

Multi-Tenancy Support

5.2.3.5.3.

Resource Quotas

5.2.3.5.4.

Network Policies

5.2.3.5.5.

Default Namespaces

5.2.4.

Workload Objects

5.2.4.1.

5.2.4.1.1.

Node-Level Workloads

5.2.4.1.2.

System Services

5.2.4.1.3.

Update Strategies

5.2.4.2.

5.2.4.2.1.

Stateful Application Management

5.2.4.2.2.

Ordered Deployment

5.2.4.2.3.

Persistent Identity

5.2.4.2.4.

Stable Network Identity

5.2.4.3.

5.2.4.3.1.

Batch Workloads

5.2.4.3.2.

Completion Tracking

5.2.4.3.3.

5.2.4.4.

5.2.4.4.1.

5.2.4.4.2.

5.2.4.4.3.

5.3.

Configuration and Secret Management

5.3.1.

5.3.1.1.

Configuration Data Storage

5.3.1.2.

Creation Methods

5.3.1.2.1.

5.3.1.2.2.

5.3.1.2.3.

5.3.1.3.

Consumption Methods

5.3.1.3.1.

Environment Variables

5.3.1.3.2.

Command Arguments

5.3.1.3.3.

5.3.1.4.

Configuration Updates

5.3.1.4.1.

5.3.1.4.2.

Rolling Updates

5.3.2.

5.3.2.1.

Sensitive Data Management

5.3.2.2.

5.3.2.2.1.

5.3.2.2.2.

Service Account Tokens

5.3.2.2.3.

Docker Registry Secrets

5.3.2.2.4.

5.3.2.3.

Secret Creation

5.3.2.3.1.

kubectl Commands

5.3.2.3.2.

5.3.2.3.3.

External Secret Management

5.3.2.4.

Secret Consumption

5.3.2.4.1.

Environment Variables

5.3.2.4.2.

5.3.2.4.3.

Image Pull Secrets

5.3.2.5.

Security Considerations

5.3.2.5.1.

Encryption at Rest

5.3.2.5.2.

5.3.2.5.3.

Secret Rotation

5.4.

Storage in Kubernetes

5.4.1.

Storage Concepts

5.4.1.1.

Ephemeral vs Persistent Storage

5.4.1.2.

Storage Lifecycle

5.4.1.3.

Data Persistence Patterns

5.4.2.

5.4.2.1.

5.4.2.1.1.

5.4.2.1.1.1.

Temporary Storage

5.4.2.1.1.2.

Pod-Level Sharing

5.4.2.1.2.

5.4.2.1.2.1.

Node Filesystem Access

5.4.2.1.2.2.

Security Implications

5.4.2.1.3.

5.4.2.1.3.1.

Configuration File Mounting

5.4.2.1.4.

5.4.2.1.4.1.

Secret File Mounting

5.4.2.1.5.

5.4.2.1.5.1.

Pod Metadata Access

5.4.2.2.

5.4.2.2.1.

Container Volume Mounting

5.4.2.2.2.

5.4.2.2.3.

Subpath Mounting

5.4.3.

Persistent Volumes

5.4.3.1.

PersistentVolume (PV)

5.4.3.1.1.

Cluster-Level Storage Resource

5.4.3.1.2.

5.4.3.1.3.

5.4.3.1.3.1.

5.4.3.1.3.2.

5.4.3.1.3.3.

5.4.3.1.4.

Reclaim Policies

5.4.3.1.4.1.

5.4.3.1.4.2.

5.4.3.1.4.3.

5.4.3.2.

PersistentVolumeClaim (PVC)

5.4.3.2.1.

Storage Request

5.4.3.2.2.

Binding Process

5.4.3.2.3.

Storage Classes

5.4.3.2.4.

Volume Expansion

5.4.4.

Dynamic Provisioning

5.4.4.1.

5.4.4.1.1.

Storage Provider Abstraction

5.4.4.1.2.

Provisioner Configuration

5.4.4.1.3.

Parameters and Options

5.4.4.2.

Volume Provisioning

5.4.4.2.1.

Automatic PV Creation

5.4.4.2.2.

Storage Backend Integration

5.4.5.

Container Storage Interface (CSI)

5.4.5.1.

CSI Architecture

5.4.5.2.

5.4.5.3.

Plugin Deployment

5.5.

Kubernetes Networking

5.5.1.

Networking Model

5.5.1.1.

Flat Network Architecture

5.5.1.2.

Pod-to-Pod Communication

5.5.1.3.

Network Requirements

5.5.1.3.1.

Unique IP per Pod

5.5.1.3.2.

NAT-free Communication

5.5.1.3.3.

Port Allocation

5.5.2.

Container Networking Interface (CNI)

5.5.2.1.

CNI Specification

5.5.2.2.

5.5.2.2.1.

5.5.2.2.1.1.

Overlay Networking

5.5.2.2.1.2.

5.5.2.2.2.

5.5.2.2.2.1.

5.5.2.2.2.2.

Network Policies

5.5.2.2.3.

5.5.2.2.3.1.

Mesh Networking

5.5.2.2.3.2.

5.5.2.2.4.

5.5.2.2.4.1.

eBPF-Based Networking

5.5.2.2.4.2.

Advanced Features

5.5.2.3.

Plugin Selection Criteria

5.5.3.

Service Networking

5.5.3.1.

Service Implementation

5.5.3.1.1.

Virtual IP Assignment

5.5.3.1.2.

Endpoint Management

5.5.3.2.

kube-proxy Modes

5.5.3.2.1.

5.5.3.2.2.

5.5.3.2.3.

5.5.3.3.

Service Mesh Integration

5.5.4.

5.5.4.1.

Ingress Controllers

5.5.4.1.1.

NGINX Ingress Controller

5.5.4.1.2.

5.5.4.1.3.

HAProxy Ingress

5.5.4.1.4.

Cloud Provider Controllers

5.5.4.2.

Ingress Resources

5.5.4.2.1.

Path-Based Routing

5.5.4.2.2.

Host-Based Routing

5.5.4.2.3.

TLS Termination

5.5.4.3.

Ingress Classes

5.5.4.3.1.

Controller Selection

5.5.4.3.2.

Multi-Controller Support

5.5.5.

Network Policies

5.5.5.1.

Traffic Control

5.5.5.2.

5.5.5.2.1.

Ingress Policies

5.5.5.2.2.

Egress Policies

5.5.5.3.

Selector-Based Rules

5.5.5.4.

Default Policies

5.6.

Kubernetes Management with kubectl

5.6.1.

kubectl Fundamentals

5.6.1.1.

Configuration Management

5.6.1.1.1.

Kubeconfig Files

5.6.1.1.2.

Context Management

5.6.1.1.3.

5.6.1.2.

Command Structure

5.6.1.2.1.

5.6.1.2.2.

Command Categories

5.6.1.2.3.

5.6.2.

Imperative Commands

5.6.2.1.

Resource Creation

5.6.2.1.1.

5.6.2.1.2.

5.6.2.1.3.

5.6.2.2.

Resource Management

5.6.2.2.1.

5.6.2.2.1.1.

Resource Listing

5.6.2.2.1.2.

Output Formatting

5.6.2.2.1.3.

Label Filtering

5.6.2.2.2.

kubectl describe

5.6.2.2.2.1.

Detailed Information

5.6.2.2.2.2.

5.6.2.2.3.

5.6.2.2.3.1.

Resource Removal

5.6.2.2.3.2.

Cascading Deletion

5.6.2.3.

Resource Modification

5.6.2.3.1.

5.6.2.3.2.

5.6.2.3.3.

kubectl replace

5.6.3.

Declarative Management

5.6.3.1.

5.6.3.1.1.

Three-Way Merge

5.6.3.1.2.

Configuration Management

5.6.3.1.3.

Server-Side Apply

5.6.3.2.

5.6.3.2.1.

5.6.3.2.2.

Multi-Document Files

5.6.3.2.3.

Resource Relationships

5.6.4.

Debugging and Troubleshooting

5.6.4.1.

5.6.4.1.1.

5.6.4.1.2.

Previous Container Logs

5.6.4.1.3.

Multi-Container Pods

5.6.4.2.

5.6.4.2.1.

Container Access

5.6.4.2.2.

Command Execution

5.6.4.2.3.

Interactive Sessions

5.6.4.3.

kubectl port-forward

5.6.4.3.1.

Local Port Forwarding

5.6.4.3.2.

5.6.4.4.

5.6.4.4.1.

API Server Access

5.6.4.4.2.

Dashboard Access

5.6.5.

Advanced kubectl Usage

5.6.5.1.

Custom Resource Definitions

5.6.5.2.

5.6.5.3.

Scripting and Automation

Previous

4. Container Orchestration Fundamentals

Go to top

Next

6. Advanced Container Topics