Level up your Devops Game — Best of this Week— 30 July 2023
I compile Site Reliability Engineering/DevOps-related articles every week and help you keep up your learning game.
This week we covered:
- Exploring Vertical Pod Autoscaler (VPA) in Kubernetes
- Configuring Https with Letsencrypt and SSL Certificates
- Understanding Helm’s Deployment Process in Kubernetes Cluster
I also write about the tools and tips related to Software Development and SRE regularly on my Linkedin profile. You can check out my profile here: https://www.linkedin.com/in/vikasyadav94/
Exploring Vertical Pod Autoscaler (VPA) in Kubernetes
Recently I have been playing around with Vertical Pod Autoscaler (VPA) in Kubernetes and it looks very promising 🚀
VPA offers tons of amazing features
1️⃣ Automatic Resource Adjustment: VPA automatically adjusts the CPU and memory requested by pods in your Kubernetes cluster based on usage, ensuring optimal resource allocation and scheduling.
2️⃣ VPA uses a Custom Resource Definition object, allowing you to specify which pods should be vertically autoscaled and how the resource recommendations are applied. It’s highly customizable.
If you’re using Kubernetes and haven’t explored the Vertical Pod Autoscaler yet, I highly recommend giving it a try. Do let me know your thoughts on it as well and your experience with it too!
Want to know more about VPA? Check this out: https://lnkd.in/dwVJxBQP
#devops #kubernetes #github
Configuring Https with Letsencrypt and SSL Certificates
Have you ever configured Https on a website? Configuring it can be a painful process. Renewing certificates can be every more painful if not done right!
Letsencrypt made adding SSL certs trivial for the masses — also they made it FREE for all!
Gone are the days when you had to buy expensive certs and worry about their renewal. #Letsencrypt has done a commendable job in automating the cert generation and renewal process (using ACME protocol).
👉 Let’s Encrypt’s ACME protocol defines how clients communicate with letsencrypt servers to request certificates, verify domain ownership, and download certificates
👉 They provide clients to automate things in different programming languages, tools and servers (for example certbot)
👉 They have a very neat integration with Kubernetes using cert-manager
👉 They provide different challenges to validate your domain ownership https://lnkd.in/eJd-YidH
It’s a very interesting tool to learn about. Here’s a great article from folks at digitalocean that will help you understand things in more detail: https://lnkd.in/eFTJMtej
Find more useful links in the comments! Also, share your experience with it.
#letsencrypt #ssl #kubernetes #softwareengineering #sre #devops
Understanding Helm’s Deployment Process in Kubernetes Cluster — link
Have you ever been curious about how Helm seamlessly manages deployments within your cluster? 👇
-> A user interacts with Helm CLI and initiates a deployment request, indicating a specific chart version along with chart values. -> Helm compiles all the yamls, stores them in a secret, and sends a Deployment Request to the Kubernetes API. -> Helm always creates a new version of the secret so the previous deployment details remain intact -> Kubernetes API processes the request and provisions the resources.
With helm v3 the process is very simple and ensures no additional components are required to achieve the desired behavior unlike before where helm required “tiller” to manage resources.
I encourage you to share your thoughts, queries, or Helm experiences in the comments below! 💡🌐🚀
#kubernetes #helm #devops #cloudnative
