Supporting Kubernetes, with Ken Massada

Kubernetes Podcast from Google

Episode | Podcast

Date: Tue, 28 Aug 2018 17:39:42 +0000

<p>What does it take to support Kubernetes for other users? <a href="https://twitter.com/kmassada">Kenneth Massada</a>, a lead for GKE support at Google Cloud, tells <a href="https://kubernetespodcast.com/about">Craig and Adam</a> his story.</p> <p>Do you have something cool to share? Some questions? Let us know:</p> <ul> <li>web: <a href="https://kubernetespodcast.com">kubernetespodcast.com</a></li> <li>mail: <a href="mailto:kubernetespodcast@google.com">kubernetespodcast@google.com</a></li> <li>twitter: <a href="https://twitter.com/kubernetespod">@kubernetespod</a></li> </ul> <h3 id="chatter">Chatter</h3> <ul> <li><a href="https://crosscut.com/2018/08/images-seattle-and-after-smoke-rolled"> Adam lives in Seattle, which is on fire</a></li> <li><a href="https://twitter.com/craigbox/status/1034460806161870848">Craig baked some tasty cookies</a> <ul> <li><a href="https://soupaddict.com/2014/08/soft-baked-chocolate-chip-cookies/"> Using this recipe</a></li> <li>But not using <a href="https://en.wikipedia.org/wiki/Vegemite">Vegemite</a>, <a href="https://en.wikipedia.org/wiki/Marmite">British Marmite</a> or <a href="https://en.wikipedia.org/wiki/Marmite_(New_Zealand)">New Zealand Marmite</a>, which are three totally separate things. Only one of which is nice. <ul> <li><em>Hint: it’s the last one</em></li> </ul> </li> </ul> </li> </ul> <h3 id="news-of-the-week">News of the week</h3> <ul> <li><a href="https://github.com/kubernetes/community/tree/master/events/elections/2018"> 2018 Kubernetes Steering Committee Elections</a></li> <li><a href="https://cloud.google.com/blog/products/identity-security/deploy-only-what-you-trust-introducing-binary-authorization-for-google-kubernetes-engine"> Binary Authorization on Google Kubernetes Engine</a></li> <li><a href="https://github.com/aquasecurity/kube-hunter">kube-hunter</a> from Aqua Security <ul> <li><a href="https://www.youtube.com/watch?v=6EeBiImddWI">Video</a></li> <li><a href="https://blog.aquasec.com/kube-hunter-kubernetes-penetration-testing"> Blog</a></li> </ul> </li> <li><a href="https://medium.com/avitotech/kubernetes-issues-and-solutions-2baffe25f40b"> Kubernetes issues and solutions</a> from Alexander Lukyanchenko at Avito</li> <li><a href="https://cilium.io/blog/2018/08/21/cilium-12/">Cilium 1.2 released</a> <ul> <li><a href="https://www.youtube.com/watch?v=ER9eIXL2_14">Accelerating Envoy with the Linux Kernel</a></li> </ul> </li> <li><a href="https://www.level-up.one/kubernetes-networking-3-level-up/">James Lee’s blogs on Kubernetes networking</a></li> <li><a href="https://aws.amazon.com/about-aws/whats-new/2018/08/amazon-eks-supports-gpu-enabled-ec2-instances/"> Amazon EKS supports GPU-Enabled EC2 instances</a></li> </ul> <h3 id="links-from-the-interview">Links from the interview</h3> <ul> <li>etcd is hard: <ul> <li><a href="https://coreos.com/etcd/docs/latest/tuning.html">Configuration flags</a></li> <li><a href="https://blog.openai.com/scaling-kubernetes-to-2500-nodes/">OpenAI suggestions on scaling Kubernetes to 2,500 nodes</a> includes a separate events database</li> <li><a href="https://kubernetes.io/docs/tasks/administer-cluster/configure-upgrade-etcd/"> Kubernetes docs on configuring and upgrading etcd</a></li> <li><a href="https://kubernetespodcast.com/episode/009-sre/">Tina and Fred from Google SRE also discussed etcd on Episode 9</a></li> <li>(Or <a href="https://cloud.google.com/kubernetes-engine/">use GKE</a>, where we do it all for you)</li> </ul> </li> <li>Other hard concepts: <ul> <li><a href="https://kubernetes.io/docs/concepts/overview/kubernetes-api/#api-versioning"> apiVersion:</a> is hard</li> <li><a href="https://github.com/kubernetes/community/blob/master/contributors/devel/api-conventions.md#spec-and-status"> spec:</a> is hard</li> <li><a href="https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/"> Liveliness and readiness probes</a> - don’t make them the same!</li> <li><a href="https://kubernetespodcast.com/episode/012-kubernetes-origins/">Joe Beda thinks of YAML as machine code in Episode 12</a></li> </ul> </li> <li>What would Ken like to see changed in Kubernetes? <ul> <li><a href="https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity"> Affinity and anti-affinity rules</a> and topology keys</li> </ul> </li> <li><a href="https://twitter.com/kmassada">Kenneth Massada on Twitter</a> <ul> <li><a href="https://cloud.google.com/support/">Or summon him with a GCP support case!</a></li> </ul> </li> </ul>