Osati mapulatifomu onse a seva, ngakhale amphamvu kwambiri komanso owopsa, amakwaniritsa zosowa zonse monga momwe zilili. Ngakhale Kubernetes imagwira ntchito bwino yokha, imatha kusowa magawo oyenera kuti ikhale yokwanira. Nthawi zonse mudzapeza vuto lapadera lomwe limanyalanyaza zosowa zanu, kapena momwe Kubernetes sangagwire ntchito yokhazikika - mwachitsanzo, chithandizo cha database kapena CD.
Apa ndipamene zowonjezera, zowonjezera ndi zina zabwino za oyimba chidebe ichi zimawonekera, mothandizidwa ndi gulu lalikulu. Nkhaniyi ifotokoza zinthu 11 zabwino kwambiri zomwe tapeza. Kwa ife mu ndi osangalatsa kwambiri, ndipo tikukonzekera kuthana nawo mwachisawawa - kuwalekanitsa kukhala zomangira ndi mtedza ndikuwona zomwe zili mkati. Ena a iwo adzakwaniritsa bwino gulu lililonse la Kubernetes, pomwe ena amathandizira kuthetsa mavuto omwe sanakwaniritsidwe mu phukusi la Kubernetes.
Woyang'anira Zipata: Kuwongolera Ndondomeko
Ntchitoyi (OPA) imapereka kuthekera kopanga mfundo pamwamba pa ma stacks ogwiritsira ntchito mtambo ku Kubernetes, kuchokera ku ingress kupita ku ma mesh. imapatsa a Kubernetes mphamvu yakukhazikitsa mfundo zokha pamagulu onse, komanso imaperekanso kuyang'anira zochitika zilizonse kapena zothandizira zomwe zimaphwanya mfundo. Zonsezi zimayendetsedwa ndi njira yatsopano ku Kubernetes, woyang'anira wovomerezeka wa Webhooks, yemwe amayamba pamene zinthu zikusintha. Ndi Gatekeeper, mfundo za OPA zimakhala gawo lina la thanzi la gulu lanu la Kubernetes popanda kufunika koyang'anira nthawi zonse.
Mphamvu yokoka: Magulu Onyamula a Kubernetes
Ngati mukufuna kutumiza pulogalamu ku Kubernetes, mapulogalamu ambiri ali ndi tchati cha Helm chomwe chimawongolera ndikusintha izi. Koma bwanji ngati mukufuna kutenga gulu lanu la Kubernetes momwe liliri ndikulitulutsa kwina?
amatenga chithunzithunzi cha madera a Kubernetes masango, zolembera zawo za zithunzi zotengera, ndikugwiritsa ntchito mapulogalamu otchedwa "maphukusi a pulogalamu." Phukusi loterolo, lomwe ndi fayilo yokhazikika .tar, imatha kutengera gululi kulikonse Kubernetes amatha kuthamanga.
Mphamvu yokoka imatsimikiziranso kuti malo omwe akukhudzidwawo amachita chimodzimodzi ndi gwero, komanso kuti malo a Kubernetes pa chandamale alipo. Mtundu wolipidwa wa Gravity umawonjezeranso zida zachitetezo, kuphatikiza RBAC komanso kuthekera kolumikiza zosintha zachitetezo pamagawo osiyanasiyana osiyanasiyana.
Mtundu waposachedwa kwambiri, Gravity 7, ukhoza kutulutsa chithunzi cha Gravity ku gulu lomwe lilipo la Kubernetes, m'malo mozungulira gulu latsopano kuchokera pachithunzichi. Gravity 7 imathanso kugwira ntchito ndi magulu omwe adayikidwa popanda chithunzi cha Gravity. Mphamvu yokoka imathandizanso SELinux, ndipo imagwira ntchito mwachibadwa ndi Teleport SSH gateway.
Kaniko: Kumanga zotengera mugulu la Kubernetes
Zithunzi zambiri zama kontena zimamangidwa pamakina omwe ali kunja kwa chidebecho. Komabe, nthawi zina muyenera kupanga chithunzi mkati mwa chidebe, mwachitsanzo kwinakwake mu chidebe chothamanga, kapena gulu la Kubernetes.
amamanga zotengera mkati mwa chidebe, koma popanda kutengera ntchito yoyika zinthu, monga Docker. M'malo mwake, Kaniko amatulutsa kachitidwe ka fayilo kuchokera pachithunzi choyambira, amayendetsa malamulo onse omanga mu malo ogwiritsira ntchito pamwamba pa fayilo yochotsedwa, kutenga chithunzithunzi cha fayilo pambuyo pa lamulo lililonse.
Zindikirani: Kaniko ali pano (May 2020, pafupifupi. womasulira) sangathe kumanga zotengera za Windows.
Kubecost: Kubernetes zoyambira mtengo magawo
Zida zambiri zoyendetsera Kubernetes zimayang'ana pakugwiritsa ntchito mosavuta, kuyang'anira, kumvetsetsa machitidwe mkati mwa pod, ndi zina zambiri. Koma bwanji kuyang'ana mtengo - mu madola ndi makobiri - okhudzana ndi kuthamanga Kubernetes?
Imakonza magawo a Kubernetes munthawi yeniyeni, zomwe zimapangitsa kuti pakhale zambiri zamtengo waposachedwa kuchokera kumagulu osiyanasiyana opereka mtambo, zowonetsedwa padashboard yowonetsa mtengo wapamwezi wa gulu lililonse. Mitengo ya RAM, nthawi ya CPU, GPU ndi disk subsystem imaphwanyidwa ndi gawo la Kubernetes (chotengera, pod, service, etc.)
Kubecost imatsatanso mtengo wazinthu zopanda magulu monga Amazon S3 ndowa, ngakhale izi ndizochepa kwa AWS. Deta yamtengo imatha kutumizidwa ku Prometheus kuti mutha kuzigwiritsa ntchito kuti musinthe machitidwe a gululo.
Kubecost ndi yaulere kugwiritsa ntchito bola ngati masiku 15 a chipika akukwanirani. Pazowonjezera, mitengo imayamba pa $199 pamwezi pakuwunika ma node 50.
KubeDB: Kuthamangitsa nkhokwe za Kubernetes
Ma database ndizovuta kwambiri kuyendetsa bwino pa Kubernetes. Mupeza ogwiritsa ntchito a Kubernetes a MySQL, PostgreSQL, MongoDB, ndi Redis, koma onse ali ndi zovuta. Komanso, mawonekedwe a Kubernetes samathetsa mwachindunji mavuto achinsinsi.
imakuthandizani kupanga mawu anu a Kubernetes kuti muzitha kuyang'anira nkhokwe. Kuthamanga ma backups, cloning, monitoring, snapshots, and declarative database kupanga ndi zigawo zake. Chonde dziwani kuti mawonekedwe othandizira amatha kusiyanasiyana malinga ndi database. Mwachitsanzo, kupanga cluster kumagwira ntchito ya PostgreSQL, koma osati MySQL ( pali, monga tanenera bwino , pafupifupi. womasulira).
Kube-nyani: Chisokonezo Monkey kwa Kubernetes
Njira yopanda cholakwika kwambiri yoyezetsa kupsinjika imawonedwa ngati kusweka kwachisawawa. Ndilo lingaliro la Netflix's Chaos Monkey, chida cha chipwirikiti chaukadaulo chomwe chimatseka mwachisawawa makina ndi zida zopangira kuti "zilimbikitse" opanga kuti apange machitidwe olimba. - kukhazikitsa chiphunzitso chofanana cha kuyesa kupsinjika kwamagulu a Kubernetes. Zimagwira ntchito popha ma pods mu gulu lomwe mwasankha, ndipo limatha kukonzedwanso kuti liziyenda pakapita nthawi.
Kubernetes Ingress Controller kwa AWS
Kubernetes imapereka ntchito zolemetsa zakunja ndi maukonde ochezera pagulu kudzera pa ntchito yotchedwa AWS imapereka magwiridwe antchito owongolera, koma sizimangolumikizana ndi zomwe Kubernetes. amatseka kusiyana uku.
Imayang'anira zokha zothandizira za AWS pa chinthu chilichonse cholowera mgulu, kupanga zolemetsa zazinthu zatsopano zolowera, ndikuchotsa zolemetsa zikachotsedwa. Imagwiritsa ntchito CloudFormation kuwonetsetsa kuti gululi limakhalabe logwirizana. Imathandiziranso zochunira za CloudWatch Alarm ndikuwongolera zokha zinthu zina zomwe zimagwiritsidwa ntchito mgululi, monga ma satifiketi a SSL ndi EC2 Auto Scaling Groups.
Kubespray: Kuyika kwa Kubernetes
imagwiritsa ntchito kukhazikitsa gulu la Kubernetes lokonzekera kupanga, kuyambira pakuyika pa maseva a hardware kupita ku mitambo yayikulu ya anthu. Imagwiritsa ntchito Ansible (Vagrant - optional) kuyendetsa ntchitoyo ndikupanga gulu lopezeka kwambiri kuyambira pachiyambi ndi kusankha kwanu kowonjezera pa intaneti (monga Flannel, Calico ndi ena) pamagawidwe anu otchuka a Linux pamene aikidwa pa ma seva a hardware.
Skaffold: Iterative Development for Kubernetes
- chimodzi mwa zida za Google zomwe zimagwiritsidwa ntchito popanga ma CD ku Kubernetes. Mukangosintha ku code source, skaffold imazindikira izi, imayamba kumanga ndi kutumiza, ndikukuchenjezani ngati pali zolakwika. Skaffold imagwira ntchito kumbali ya kasitomala, kotero pakhoza kukhala kuyika kwazing'ono kapena zosintha. Itha kugwiritsidwa ntchito ndi mapaipi a CICD omwe alipo ndipo imatha kulumikizana ndi zida zomangira zakunja, makamaka Bazel ya Google.
Teresa: PaaS yosavuta kwambiri pa Kubernetes
ndi njira yotumizira ntchito yomwe imayendetsa PaaS yosavuta pamwamba pa Kubernetes. Ogwiritsa ntchito omwe ali m'magulu amatha kutumiza ndikuwongolera mapulogalamu omwe ali nawo. Izi zimapangitsa kuti zinthu zikhale zosavuta kwa anthu omwe amakhulupirira pulogalamuyi ndipo safuna kuthana ndi Kubernetes ndi zovuta zake zonse.
Kupendekeka: Zosintha zachidebe kumagulu a Kubernetes
, yopangidwa ndi Windmill Engineering, imayang'ana kusintha kwa ma Dockerfiles osiyanasiyana kenako pang'onopang'ono amatumiza zotengerazo ku gulu la Kubernetes. M'malo mwake, zimakupatsani mwayi wosinthira gulu lanu lakupanga munthawi yeniyeni pongosintha ma Dockerfiles. Kupendekera kumamanga mkati mwa tsango, gwero la code ndi zonse zomwe ziyenera kusinthidwa. Mutha kutenganso chithunzithunzi cha thanzi la gululo ndikujambula zolakwika kuchokera ku Tilt kuti mugawane ndi mamembala amgulu kuti muchotse zolakwika.
PS Tagwiritsa ntchito zida zonsezi mobwerezabwereza kufufuzidwa ndi manja athu achidwi. Kuwonetsa zochitika zenizeni kale (mwachiyembekezo!) pamaphunziro aulere pa intaneti mu February. February 8-10, 2021. Ndipo February 12-14. Kunena zoona, timaphonyanso mwayi wophunzirira popanda intaneti. Ziribe kanthu momwe matekinoloje apamwamba kwambiri, sangalowe m'malo mwa kulankhulana kwaumunthu ndi chikhalidwe chapadera pamene anthu amalingaliro ofanana asonkhana.
Source: www.habr.com