万本电子书0元读

万本电子书0元读

顶部广告

Hands-On Kubernetes on Azure电子书

售       价:¥

3人正在读 | 0人评论 9.8

作       者:Shivakumar Gopalakrishnan

出  版  社:Packt Publishing

出版时间:2019-03-30

字       数:21.6万

所属分类: 进口书 > 外文原版书 > 电脑/网络

温馨提示:数字商品不支持退换货,不提供源文件,不支持导出打印

为你推荐

  • 读书简介
  • 目录
  • 累计评论(0条)
  • 读书简介
  • 目录
  • 累计评论(0条)
Efficiently deploy and manage Kubernetes clusters on a cloud Key Features * Deploy highly scalable applications with Kubernetes on Azure * Leverage AKS to deploy, manage, and operations of Kubernetes * Gain best practices from this guide to increase efficiency of container orchestration service on Cloud Book Description Microsoft is now one of the most significant contributors to Kubernetes open source projects. Kubernetes helps to create, configure, and manage a cluster of virtual machines that are preconfigured to run containerized applications. This book will be your resource for achieving successful container orchestration and deployment of Kubernetes clusters on Azure. You will learn how to deploy and manage highly scalable applications, along with how to set up a production-ready Kubernetes cluster on Azure. With this book, you will be able to reduce the complexity and operational overheads of managing a Kubernetes cluster on Azure. By the end of this book, you will not only be capable of deploying and managing Kubernetes clusters on Azure with ease, but also have the knowledge of industry best practices to work with advanced Azure Kubernetes Services (AKS) concepts for complex systems. What you will learn * Get to grips with Microsoft AKS deployment, management, and operations * Learn about the benefits of using Microsoft AKS, as well as the limitations, and avoid potential problems * Integrate Microsoft toolchains such as Visual Studio Code, and Git * Implement simple and advanced AKS solutions * Implement the automated scalability and high reliability of secure deployments with Microsoft AKS * Use kubectl commands to monitor applications Who this book is for If you’re a cloud engineer, cloud solution provider, sysadmin, site reliability engineer, or a developer interested in DevOps and are looking for an extensive guide to running Kubernetes in the Azure environment then, this book is for you. Though any previous knowledge of Kubernetes is not expected, some experience with Linux and Docker containers would be beneficial.
目录展开

Dedication

About Packt

Why subscribe?

Packt.com

Contributors

About the authors

About the reviewer

Packt is searching for authors like you

Preface

Who this book is for

What this book covers

To get the most out of this book

Download the example code files

Conventions used

Get in touch

Reviews

Section 1: The Basics

Introduction to Docker and Kubernetes

Technical requirements

The foundational technologies that enable AKS

You build it, you run it

Everything is a file

Orchestration

Summary

Kubernetes on Azure (AKS)

Technical requirements

Entering the Azure portal

Creating an Azure portal account

Navigating the Azure portal

Creating your first AKS

Using Azure Cloud Shell

Summary

Section 2: Deploying on AKS

Application Deployment on AKS

Technical requirements

Deploying the sample guestbook application

Introducing the application

Deploying the first master

Examining the deployment

Redis master

Fully deploying of the sample guestbook application

Exposing the Redis master service

Deploying the Redis slaves

Deploying and exposing the frontend

Exposing the frontend service

The guestbook application in action

The helm way of installing complex applications

The helm init command

Installing WordPress

Persistent Volume Claims

Your own WordPress site

Summary

Scaling Your Application to Thousands of Deployments

Technical requirements

Scaling your application

Implementing independent scaling

Scaling the guestbook frontend component

Handling failure in AKS

Node failures

Diagnosing out-of-resource errors

Reducing the number of replicas to the bare minimum

Reducing CPU requirements

Cleanup of the guestbook deployment

Fixing storage mount issues

Starting the WordPress install

Persistent volumes

Handling node failure with PVC involvement

Upgrading your application

kubectl edit

Helm upgrade

Summary

Single Sign-On with Azure AD

Technical requirements

HTTPS support

Installing Ingress

Launching the Guestbook application

Adding Lets Ingress

Adding LetsEncrypt

Installing the certificate manager

Mapping the Azure FQDN to the nginx ingress public IP

Installing the certificate issuer

Creating the SSL certificate

Securing the frontend service connection

Authentication versus authorization

Authentication and common authN providers

Deploying the oauth2_proxy side car

Summary

Monitoring the AKS Cluster and the Application

Technical requirements

Commands for monitoring applications

kubectl get command

kubectl describe command

Debugging applications

Image Pull errors

Application errors

Scaling down the frontend

Introducing an app "error"

Logs

Metrics reported by Kubernetes

Node status and consumption

Metrics reported from OMS

AKS Insights

Cluster metrics

Container metrics, logs, and environmental variables

Logs

Summary

Operation and Maintenance of AKS Applications

Technical requirements

Service roles in Kubernetes

Deleting any AKS cluster without RBAC

Creating an AKS cluster with the Azure AD RBAC support

Creating the Azure AD server application

Setting the permissions for the application to access user info

Granting the permissions and noting the application ID

Creating the client application

Getting the AAD tenant ID

Deploying the cluster

Attaching service roles to AAD users

Creating users in your Active Directory

Creating a read-only group and adding the user to it

Verifying RBAC

Creating the read-only user role

Creating the cluster-wide, read-only role

Binding the role to the AAD group

The access test

Summary

Section 3: Leveraging Advanced Azure PaaS Services in Combination with AKS

Connecting an App to an Azure Database - Authorization

Technical requirements

Extending an app to connect to an Azure Database

WordPress backed by Azure MySQL

Prerequisites

Helm with RBAC

Deploying the service catalog on the cluster

Deploying Open Service Broker for Azure

Deploying WordPress

Securing MySQL

Running the WordPress sample with MySQL Database

Restoring from backup

Performing a restore

Connecting WordPress to the restored database

Modifying the host setting in WordPress deployment

Reviewing audit logs

Azure Database audits

DR options

Azure SQL HADR options

Summary

Connecting to Other Azure Services (Event Hub)

Technical requirements

Introducing to microservices

Microservices are no free lunch

Kubernetes and microservices

Deploying a set of microservices

Deploying Helm

Using Azure Event Hubs

Creating the Azure Event Hub

Updating the Helm files

Summary

Securing AKS Network Connections

Technical requirements

Setting up secrets management

Creating your own secrets

Creating secrets from files

Creating secrets manually using files

Creating generic secrets using literals

Creating the Docker registry key

Creating the tls secret

Using your secrets

Secrets as environment variables

Secrets as files

The Istio service mesh at your service

Installing Istio

Injecting Istio as a sidecar automatically

Enforcing mutual TLS

Deploying sample services

Globally enabling mutual TLS

Summary

Serverless Functions

Technical requirements

Kubeless services

Installing Kubeless

Install Kubeless binary

The hello world serverless function

Events and serverless functions

Creating and configuring Azure Functions

Integrating Kubeless with Azure Event Hubs via Azure Functions

Summary

Other Books You May Enjoy

Leave a review - let other readers know what you think

累计评论(0条) 0个书友正在讨论这本书 发表评论

发表评论

发表评论,分享你的想法吧!

买过这本书的人还买过

读了这本书的人还在读

回顶部