Instrumentation and cAdvisor, with David Ashpole

Kubernetes Podcast from Google

Episode | Podcast

Date: Tue, 21 Jul 2020 15:10:55 +0000

<p>Released on the same day as Kubernetes, cadvisor is a container monitoring daemon that collects metrics and serves them to monitoring tools. It’s built into the Kubelet, and underpins many components in Kubernetes, such as eviction and autoscaling. <a href="">David Ashpole</a> of Google Cloud is TL of Kubernetes SIG Instrumentation, and the maintainer of cadvisor; he joins <a href="">Adam and Craig</a> this week to explain where instrumentation fits in the stack, and what you should do as a Kubernetes maintainer vs. a cluster administrator.</p> <p>Do you have something cool to share? Some questions? Let us know:</p> <ul> <li>web: <a href=""></a></li> <li>mail: <a href=""></a></li> <li>twitter: <a href="">@kubernetespod</a></li> </ul> <h3 id="chatter-of-the-week">Chatter of the week</h3> <ul> <li>In Craig’s neighbourhood: <ul> <li><a href="">Books</a></li> <li><a href="">More books</a></li> <li><a href="">Some less popular items</a></li> </ul> </li> <li><a href="">Masks</a> <ul> <li><a href=""> Archie the Mammoth</a></li> </ul> </li> <li><a href="">National Ice Cream Day</a> <ul> <li><a href=""> Carmel</a></li> <li><a href=";auto=format&amp;fit=crop&amp;w=2800&amp;q=80"> Caramel</a></li> </ul> </li> </ul> <h3 id="news-of-the-week">News of the week</h3> <ul> <li>GKE Ingress features: <ul> <li><a href=""> BackendConfig CRD</a></li> <li><a href=""> Cloud CDN</a></li> <li><a href=""> Backend service timeout</a></li> <li><a href=""> Connection draining timeout</a></li> <li><a href=""> HTTP access logging</a></li> <li><a href=""> Identity-Aware Proxy (IAP)</a></li> <li><a href=""> Session affinity</a></li> <li><a href=""> User-defined request headers</a></li> <li><a href=""> Cloud Armor security policies</a> (Beta)</li> <li><a href=""> FrontendConfig CRD</a> (Beta)</li> <li><a href=""> Custom GCLB health checks</a> (Beta)</li> <li><a href=""> SSL policies</a> (Beta)</li> </ul> </li> <li><a href=""> Exposing services on GKE</a></li> <li><a href=""> OpenShift 4.5</a> <ul> <li><a href="">OKD4</a></li> </ul> </li> <li><a href=""> Spring Cloud Data Flow for Kubernetes</a> from VMware; part of the <a href="">Spring Runtime</a> package</li> <li><a href=""> is closing</a> and <a href="">making their code open source</a> <ul> <li><a href=""> Review of k8spin from launch</a></li> </ul> </li> <li><a href="">Custom Pod Autoscaler</a> (and <a href="">docs</a>) by Jamie Thompson</li> <li><a href="">Envoy 1.15</a> round-up from Tetrate; <a href=""> release notes</a> from the team</li> <li><a href=""> Fluent Bit 1.5</a> summary at the CNCF</li> <li><a href="">k3d v3.0</a> and <a href="">new web site</a></li> <li><a href=""> Best practices for creating a highly available GKE cluster</a></li> <li><a href="">Recommended alerts for AKS</a></li> <li><a href=""> Ingress support added to AWS App Mesh</a></li> <li><a href=""> Platform9 adds new apps to their Managed Kubernetes Service</a> <ul> <li><a href=""> Episode 88, with Madhura Maskasky</a></li> </ul> </li> <li><a href="">CVE-2020-8557: Node disk DOS by writing to container /etc/hosts</a></li> <li><a href="">CVE-2020-8559: Privilege escalation from compromised node to cluster</a> <ul> <li><a href=""> Alcide write-up</a></li> </ul> </li> <li><a href=""> Threat Alert: Attacker Building Malicious Images Directly on Your Host</a> from Aqua Security</li> <li><a href=""> Certified Kubernetes Security Specialist (CKS) coming in November</a></li> <li><a href=""> Sign up for a free pass to Virtual KubeCon EU keynotes</a></li> <li><a href=""> Diving Into Istio 1.6 Certificate Rotation</a> by Christian Posta</li> </ul> <h3 id="links-from-the-interview">Links from the interview</h3> <ul> <li><a href=""> SIG Instrumentation</a></li> <li><a href="">inodes</a> <ul> <li><a href=""> Eviction on inodes</a></li> </ul> </li> <li><a href="">cgroups</a></li> <li><a href="">cadvisor</a> <ul> <li><a href=""> Launched on the same day as Kubernetes</a></li> </ul> </li> <li><a href="">Monitoring metrics with Prometheus</a></li> <li><a href="">Victor Marmol</a> and <a href="">Vish Kannan</a></li> <li><a href="">Episode 22, with Dawn Chen</a></li> <li><a href=""> CRI</a></li> <li><a href=""> Resource metrics pipeline</a></li> <li><a href="">Heapster</a></li> <li><a href="">Metrics Server</a></li> <li><a href="">kube-state-metrics</a> <ul> <li><a href=""> Managing Your Costs on Kubernetes</a> by Karl Stoney from Autotrader</li> <li><a href="">Episode 52, with Russell Warman and Karl Stoney</a></li> </ul> </li> <li><a href=""> Metrics Stability Framework</a></li> <li><a href=""> Structured logging</a></li> <li><a href=""> Distributed tracing in Kubernetes</a></li> <li><a href=""> Node out of memory eviction</a></li> <li><a href=""> Pod priority</a></li> <li><a href="">David Ashpole on Twitter</a></li> </ul>