DevOps Hunter Security Automation

 Overview of DaemonSets Kubernetes DaemonSet is one of the controllers which are at the Kubernetes Master node. A DaemonSet ensures that all or some nodes run a Pod As nodes are added to the Kubernetes cluster, Pods have added accordingly for each node as per the DaemonSet defined. As nodes are removed or drained from the Kubernetes cluster, they are GC. Deleting a DaemonSet will clean up those Pods it created on each node The DaemonSet Controller creating pods on each nodes Where we can use this DaemonSet? When a Kubernetes cluster running many microservices with multi-nodes there will be a need for Monitoring the system resources with collecting metrics and Logging should be enabled for the application level or database level to collect respective access and server-specific logs. Some example daemon pods can be: Collectd, Node exporter -- Monitoring daemon on nodes for Prometheus Fluentd, logstash – log collection daemon for ELK, EFK stacks Ceph, glusterd – Storage daemon for Clo...

What is a helm chart?  It is a package manager for your Kubernetes cluster. It used to install, upgrade, rollback release, and also uninstall on the Kubernetes cluster.  Helm Charts Kubernetes Deployment What do these charts for?  You have seen Kubernetes pods, ReplicaSet, Deployments, services, and other objects each one required a YAML file in defining in the declarative method. Charts will have all these yaml files for all objects together as a package. Charts will have :  a. NAME  b. DESCRIPTION  c. VERSION   Templates will have placeholders for each Kubernetes kind object YAML file, that can be rendered using values.yaml file. Which will have parameters. It is greater flexibility and replaces and reuses the parameters required for your microservices project that need to deploy on the Kubernetes. You can use as many apps need to deploy you can have different values files helm install --values value-app1.yaml Installation methods for Linux Op...

We have seen the word 'replicas' in the Docker Swarm services definition time. How to work with ReplicaSet?   What does ReplicaSet do? ReplicaSet will define the group of pods. You can tell how many replicas of pods for your application. The template section will define how many pods and their specification will be defined. Defining ReplicaSet allows you to deploy podand keep it alive as per configuration. How to create ReplicaSet? ReplicaSet relationship with Pod apiVersion: apps/v1 kind: ReplicaSet metadata: name: my-tcat-rs labels: version: "3.0" spec: replicas: 2 selector: matchLabels: project: MyWeb role: frontend template: metadata: labels: project: MyWeb role: frontend env: dev spec: conta...