#kubernetes (2020-01)

Heyo, does anyone have experience with fluentd-kubernetes-daemonset / restricting the namespaces it has access to? I’m running into large logging costs for namespaces that are not mission-critical. Thanks!

Did someone use VPA with kops ?

https://grafana.com/blog/2020/01/09/introducing-tanka-our-way-of-deploying-to-kubernetes/

Interesting choice on using jsonnet again…

Early efforts with ksonnet were focused around creating patterns to help organize configurations across many applications for large deployments of Kubernetes. Feedback from the community was that the purpose of ksonnet was meaningful, but the language and concepts could be intimidating for new and casual users. We worked to streamline the user experience through a Visual Studio Code extension and a new command line tool, ks, but despite our efforts, ksonnet has not yet resonated with its intended audience.

Prior to the acquisition, Heptio had been shifting focus and resources away from ksonnet; with the acquisition, we felt it was the right time to rethink our investment in ksonnet. As a result, work on ksonnet will end and the GitHub repositories will be archived.

https://blogs.vmware.com/cloudnative/2019/02/05/welcoming-heptio-open-source-projects-to-vmware/

K9s has a Slack workspace now https://join.slack.com/t/k9sers/shared_invite/enQtOTAzNTczMDYwNjc5LWJlZjRkNzE2MzgzYWM0MzRiYjZhYTE3NDc1YjNhYmM2NTk2MjUxMWNkZGMzNjJiYzEyZmJiODBmZDYzOGQ5NWM

https://blog.kontena.io/farewell/

damn it

lens quickly became an everyday tool for me

I could see it becomign that - especially for local dev, or sandbox environments

doesn’t appear to be open source though, right? The lens repo doesn’t contain the source

yeh it’s just issue management on the github project i think

We tried to build something amazing but our plans of creating business around open source software has failed

(i’m kind of sick of the faux open source vibe that gives off)

just curious what that refers to

probably this https://github.com/kontena/pharos-cluster

lol, yes, a repo for issues doesn’t count as “open source”

aha

i think they were trying to go the Banzai route and build cloud on k8s company

tanka looks promising

i’ve been working through trying to build out our deployments using kustomize and there’s a few pretty big limitations in getting a decently dry structure

Kapitan has an intersting thing added more recently… -https://github.com/deepmind/kapitan/pull/190

Similar as Kuku - https://github.com/xarg/kuku

and Karavel - https://medium.com/@greegorey/writing-yet-another-kubernetes-templating-tool-2c5de0e2e7a

I really like these projects… reminds a bit of the Apache Aurora config languages (and its immense possibilities), plus you can create really nice terse wrapping classes which abstracts away everything, and include any python function for sourcing/generating whatever anywhere you’d like….

Anyone else on the Kuku or Karavel pill?

Hi folks, I’m the founder of a startup building a service for SRE & Devops to monitor and verify rollouts continuously within K8s. This will help devs release with confidence and provide deep visibility into the deployment process. We ingest k8s events, metrics (from prometheus) and logs to monitor rollout progression and determine via statistical analysis whether the service has regressed. If issues are found during the rollout we recommend actions to unblock the rollout or to rollback the deployment. If this is relevant to you can you reply to this msg or send me a DM. We’re looking for folks to sign up for our early beta and would love your feedback. Thanks!

@Arjun Iyer any demo videos?

Hey Guys! So last Friday I completed my CKA exam and passed it. If anyone is interested, here are a few resources I used to prepared

• Linux Academy Cloud Native Certified Kubernetes Administrator (CKA) - https://linuxacademy.com/cp/modules/view/id/327

• Udemy - https://www.udemy.com/course/certified-kubernetes-administrator-with-practice-tests Additionally, I have been sharing some tips and tricks on my instagram https://instagram.com/dalekurt

awesome job @dalekurt! congrats and thanks for sharing

I think that’s going to help others who want to also get their CKA

https://medium.com/@jamesdavidbohrman/self-registering-compact-k3os-clusters-to-rancher-server-via-cloud-init-d4a89028c1f8

Big thanks to @Nick Kampe for helping me brainstorm this!

I’ve been unable to get the gmsa-webhook to work yet

https://aws.amazon.com/blogs/aws/eks-price-reduction/ $876 annual savings for EKS cluster applied immediately

That’s pretty awesome!

@Chase Ward has joined the channel

https://kubernetes.io/blog/2020/01/14/kubernetes-bug-bounty-announcement/

Hi everyone! Been searching around for a while and can't seem to find an answer for this issue. I cant get the lifecycle postStart command to work as intended. This is the error im getting: 



 Warning  FailedPostStartHook  20s (x2 over 21s)  kubelet, gke-nodepool-name  Exec lifecycle hook ([sh -c echo "hello world"]) for Container "container-name" in Pod "pod-name" failed - error: command 'sh -c echo "hello world"' exited with 126: , message: "cannot exec in a stopped state: unknown\r\n

Has anyone run in to this before?

Update: There was an issue in the Docker container that prevented it from ever reaching the lifecycle hook in a healthy state. Fixing the underlying issue also solved this error

Hi everyone! We OSS our permission manager tool for Kubernetes. If anyone wants to take a look: https://github.com/sighupio/permission-manager

Saw that one get announced, looks neato. Any alignment with rbac manager?

yeah, different purposes and all but it would be a good pairing for certain (it lets you use CRDs to define your rbac rules)

This looks rad @nutellinoit! thanks for sharing

@Jeremy G (Cloud Posse) @Alex Siegman @Daren

Saw this get announced. Looks pretty neat. Doesn’t solve any pain points for us now, but if I needed to have more least-access RBAC stuff in kube, or especially for app access if apps start interacting with the kube api directly, this seems like a good potential fit