Kubernetes. , , , , .
Kubernetes
Kubernetes: . . , .
, Kubernetes, . . , .
. Kubernetes . , . : Kubernetes . .
. Kubernetes : , , - . , . , .
CNCF. Cloud Native Computing Foundation (CNCF) . Southbridge Certified Kubernetes Administrator (CKA).
CNCF. , . , CNCF.
: «Kubernetes » «Kubernetes ». , . .
«Kubernetes » — , Kubernetes.
«Kubernetes » — , Kubernetes .
CKA, «Kubernetes » . «Kubernetes » .
CNCF
, , Kubernetes. , , , . .
.
25 , Southbridge, Kubernetes, kubespray ( pull request).
Senior DevOps Engineer Mail.ru Cloud Solutions, CI/CD.
Kubernetes , . , .
Kubernetes (-, ), .
, .
- Kubernetes
1.1 Kubernetes
1.2
1.3 Pod
1.4 ReplicaSet
1.5 Deployment
1.6
1.7
1.8 Service
1.9 Ingress
1.10 . PV/PVC
1.11 Namespace - , , , k8s
2.1
2.2 Etcd
2.3 API server
2.4 Controller-manager
2.5 Scheduler
2.6 Kubelet
2.7
2.8 Kube-proxy
2.9 Network
2.10 Ingress
2.11 controlplane - Kubespray, Kubernetes
3.1
3.2
3.3 playbook`
3.4
3.5
3.6
3.7
3.8
3.9 - Kubernetes
4.1 DaemonSet
4.2 StatefulSet
4.3 Job
4.4 CronJob
4.5 RBAC - DNS .
5.1
5.2 Service ClusterIP
5.3 Service NodePort
5.4 Service LoadBalancer
5.5 ExternalName
5.6 ExternalIPs
5.7 Ingress
5.8 DNS
5.9 Headless - Helm
6.1 Template` deploy
6.2 Helm
6.3 Helm - Ceph
7.1
7.2 RBD
7.3 CephFS - Cert-manager
8.1 Cert-manager - CI/CD Kubernetes
9.1
9.2 Build
9.3 Test
9.4 Push
9.5 Deploy
-
1.1 Kubeadm
1.2 -
2.1 LDAP (Nginx + Python)
2.2 OIDC (Dex + Gangway) - Network policy
3.1 CNI
3.2 Network Security Policy -
4.1 PodSecurityPolicy
4.2 PodDisruptionBudget
4.3 LimitRange/ResourceQuota - Kubernetes.
5.1
5.2 CRD - Stateful
6.1 PostgreSQL
6.2 RabbitMQ -
7.1. Kubernetes
7.2 Vault - Horizontal Pod Autoscaler
8.1
8.2 -
9.1 Heptio Velero (. Ark) etcd -
10.1 control-plane kubeadm -
11.1 Lint
11.2
11.3 -
12.1 CI/CD
12.2
:
6 . 2,5 . 6 , . 3 .
CNCF (). : - , . . CNCF. — , CKA. .
, . DevOps-, : , .
, , . , . .
: ?
, , . , . — , . . Kubernetes, , .