• Prepare K8S CKA Exam :Quiz: :PROPERTIES: :type: quiz :END:

#+BEGIN_HTML

#+END_HTML

Blog URL: https://kubernetes.dennyzhang.com/prepare-k8s-cka, Category: [[https://kubernetes.dennyzhang.com/category/quiz][quiz]]

File me [[https://github.com/DennyZhang/prepare-k8s-cka/issues][Issues]] or star [[https://github.com/DennyZhang/prepare-k8s-cka][this repo]].

See more Kubernetes from Denny: [[https://github.com/topics/denny-kubernetes][#denny-kubernetes]]

** Summary [[https://github.com/dennyzhang/prepare-k8s-cka/tree/master/pdf/certified_kubernetes_administrator_exam_v1.9.0.pdf][CKA Curriculum V 1.9.0]]

• 5% - Scheduling
• 5% - Logging/Monitoring
• 8% - Application Lifecycle Management
• 11% - Cluster Maintenance
• 12% - Security
• 7% - Storage
• 10% - Troubleshooting
• 19% - Core Concepts
• 11% - Networking
• 12% - Installation, Configuration & Validation

• More Resources https://github.com/walidshaari/Kubernetes-Certified-Administrator

https://github.com/kelseyhightower/kubernetes-the-hard-way

https://docs.google.com/document/d/1N4fusJG9drQx7J3HIfNsy59dVJh9kwVQ6OtDDVLc36Q/edit

https://docs.google.com/document/d/1AMVwvVabPoYt-o1k8Uo7UlmlfsjQKVHDhDyKP3QqbOM/edit

License: Code is licensed under [[https://www.dennyzhang.com/wp-content/mit_license.txt][MIT License]].

https://www.cncf.io/certification/expert/cka/

#+BEGIN_HTML

#+END_HTML

• org-mode configuration :noexport: #+STARTUP: overview customtime noalign logdone hidestars #+DESCRIPTION: #+KEYWORDS: #+AUTHOR: Denny Zhang #+EMAIL: [email protected] #+TAGS: noexport(n) #+PRIORITIES: A D C #+OPTIONS: H:3 num:t toc:nil \n:nil @:t ::t |:t ^:t -:t f:t *:t <:t #+OPTIONS: TeX:t LaTeX:nil skip:nil d:nil todo:t pri:nil tags:not-in-toc #+EXPORT_EXCLUDE_TAGS: exclude noexport #+SEQ_TODO: TODO HALF ASSIGN | DONE BYPASS DELEGATE CANCELED DEFERRED #+LINK_UP:
  #+LINK_HOME:

• --8<-------------------------- separator ------------------------>8-- :noexport:

• Kubernetes Performance :noexport: ** Maximum Pods Per node Assumption: 110 https://medium.com/@brendanrius/scaling-kubernetes-for-25m-users-a7937e3536a0?mkt_tok=eyJpIjoiWWpRMU5UbGtZekptTVRWaCIsInQiOiI4MFZWUEpLa1wvZE0xUkE2eWZNOVExUGNXU3ZOcXRNeDk5OGprbkNrSXdtQkFxUGR1WTU3dEJuWEJOdnpXcTk4a08zOUlrdlZMXC9LZklGK1lPeTc5N1FsVW1WSUJkT09hS1Ard0ptbnp1RDRXNkphRFp4NXhsUkwyWWwrMnZBMFFNIn0%3D

Right now, Kubernetes will by default schedule at most 110 pods per node.

#+BEGIN_EXAMPLE Right now, Kubernetes will by default schedule at most 110 pods per node. This is something you can configure if you have a direct access to your kubelet configuration. See documentation here (search for --max-pods).

Also, if you try to schedule more pods, you will quickly run into some inotify limits (namely max_user_instances and max_user_watches). #+End_example

• TODO Scheduling :noexport: ** TODO [#A] Scheduling: isolate critical pods using node affinities https://kubernetes.io/docs/concepts/configuration/assign-pod-node/ ** HALF Scheduling: Use label selectors to schedule Pods ** TODO Scheduling: Understand the role of DaemonSets. ** TODO Scheduling: Understand how to run multiple schedulers and how to configure Pods to use them. ** TODO Scheduling: Display scheduler events

• TODO Security :noexport: ** TODO Security: Know how to configure authentication and authorization. ** TODO Security: Understand Kubernetes security primitives. ** TODO Security: Know to configure network policies. ** TODO Security: Create and manage TLS certificates for cluster components. ** TODO Security: Work with images securely. ** TODO Security: Define security contexts. ** TODO Security: Secure persistent key value store. ** TODO Security: Work with role-based access control.

• TODO Networking :noexport: ** TODO Networking: Understand the networking configuration on the cluster nodes. ** TODO Networking: Understand Pod networking concepts. ** TODO Networking: Understand service networking. ** TODO Networking: Deploy and configure network load balancer. ** TODO Networking: Know how to use Ingress rules. ** TODO Networking: Know how to configure and use the cluster DNS. ** TODO Networking: Understand CNI.

• TODO Core_Concepts :noexport: ** TODO Core_Concepts: Understand the Kubernetes API primitives. ** TODO Core_Concepts: Understand the Kubernetes cluster architecture. ** TODO Core_Concepts: Understand Services and other network primitives.

• TODO Configuration :noexport: ** TODO Configuration: Design a Kubernetes cluster. ** TODO Configuration: Install Kubernetes masters and nodes, including the use of TLS bootstrapping. ** TODO Configuration: Configure secure cluster communications. ** TODO Configuration: Configure a Highly-Available Kubernetes cluster. ** TODO Configuration: Know where to get the Kubernetes release binaries. ** TODO Configuration: Provision underlying infrastructure to deploy a Kubernetes cluster. ** TODO Configuration: Choose a network solution. ** TODO Configuration: Choose your Kubernetes infrastructure configuration. ** TODO Configuration: Run end-to-end tests on your cluster. ** TODO Configuration: Analyse end-to-end tests results. ** TODO Configuration: Run Node end-to-end tests.

• TODO Troubleshooting :noexport: ** TODO Troubleshooting: Troubleshoot application failure. ** TODO Troubleshooting: Troubleshoot control plane failure. ** TODO Troubleshooting: Troubleshoot worker node failure. ** TODO Troubleshooting: Troubleshoot networking.

• TODO Storage :noexport: ** TODO Storage: Understand persistent volumes and know how to create them. ** TODO Storage: Understand access modes for volumes. ** TODO Storage: Understand persistent volume claims primitive. ** TODO Storage: Understand Kubernetes storage objects. ** TODO Storage: Know how to configure applications with persistent storage.

• TODO logging/Monitoring :noexport: ** TODO logging/Monitoring: Understand how to monitor all cluster components. ** TODO logging/Monitoring: Understand how to monitor applications. ** TODO logging/Monitoring: Manage cluster component logs. ** TODO logging/Monitoring: Manage application logs.

• TODO Maintenance :noexport: ** TODO Maintenance: Understand Kubernetes cluster upgrade process. ** TODO Maintenance: Facilitate operating system upgrades. ** TODO Maintenance: Implement backup and restore methodologies.

• TODO Lifecycle :noexport: ** TODO Lifecycle: Understand Deployments and how to perform rolling updates and rollbacks. ** TODO Lifecycle: Know various ways to configure applications. ** TODO Lifecycle: Know how to scale applications. ** TODO Lifecycle: Understand the primitives necessary to create a self-healing application.