Blog URL: https://cheatsheet.dennyzhang.
com/cheatsheet-kubernetes-A4
1 Kubectl Kubernetes CheatSheet
• PDF Link: cheatsheet-kubernetes-A4.pdf, Category: Cloud
• Blog URL: https://cheatsheet.dennyzhang.com/cheatsheet-kubernetes-A4
• Related posts: Kubectl CheatSheet, Kubernetes Yaml, #denny-cheatsheets
File me Issues or star this repo.
1.1 Common Commands
Name
Run curl test temporarily
Run wget test temporarily
Run nginx deployment with 2 replicas
Run nginx pod and expose it
Run nginx deployment and expose it
List authenticated contexts
Set namespace preference
List pods with nodes info
List everything
Get all services
Get all deployments
Show nodes with labels
Get resources with json output
Validate yaml file with dry run
Start a temporary pod for testing
kubectl run shell command
Get system conf via configmap
Get deployment yaml
Explain resource
Watch pods
Query healthcheck endpoint
Open a bash terminal in a pod
Check pod environment variables
Enable kubectl shell autocompletion
Use minikube dockerd in your laptop
Kubectl apply a folder of yaml files
Get services sorted by name
Get pods sorted by restart count
List pods and images
List all container images
kubeconfig skip tls verification
Ubuntu install kubectl
Reference
Reference
1.2 Check Performance
Name
Get node resource usage
Get pod resource usage
Get resource usage for a given pod
List resource utilization for all containers
GitHub: https://github.com/dennyzhang/cheatsheet-kubernetes-A4
Updated: June 7, 2020
Cloud
Command
kubectl run --generator=run-pod/v1 --rm mytest --image=yauritux/busybox-cu
kubectl run --generator=run-pod/v1 --rm mytest --image=busybox -it wget
kubectl run my-nginx --image=nginx --replicas=2 --port=80
kubectl run my-nginx --restart=Never --image=nginx --port=80 --expose
kubectl run my-nginx --image=nginx --port=80 --expose
kubectl config get-contexts, ~/.kube/config
kubectl config set-context <context_name> --namespace=<ns_name>
kubectl get pod -o wide
kubectl get all --all-namespaces
kubectl get service --all-namespaces
kubectl get deployments --all-namespaces
kubectl get nodes --show-labels
kubectl get pods --all-namespaces -o json
kubectl create --dry-run --validate -f pod-dummy.yaml
kubectl run --rm -i -t --image=alpine test-$RANDOM -- sh
kubectl exec -it mytest -- ls -l /etc/hosts
kubectl -n kube-system get cm kubeadm-config -o yaml
kubectl -n denny-websites get deployment mysql -o yaml
kubectl explain pods, kubectl explain svc
kubectl get pods -n wordpress --watch
curl -L http://127.0.0.1:10250/healthz
kubectl exec -it storage sh
kubectl exec redis-master-ft9ex env
echo "source <(kubectl completion bash)" »~/.bashrc, and reload
eval $(minikube docker-env), No need to push docker hub any more
kubectl apply -R -f .
kubectl get services –sort-by=.metadata.name
kubectl get pods –sort-by=’.status.containerStatuses[0].restartCount’
kubectl get pods -o=’custom-columns=PODS:.metadata.name,Images:.spec.containers[*]
list-all-images.sh
skip-tls-verify.md
"deb https://apt.kubernetes.io/ kubernetes-xenial main"
GitHub: kubernetes releases
minikube cheatsheet, docker cheatsheet, OpenShift CheatSheet
Command
kubectl top node
kubectl top pod
kubectl top <podname> --containers
kubectl top pod --all-namespaces --containers=true
1 of 5
Blog URL: https://cheatsheet.dennyzhang.com/cheatsheet-kubernetes-A4 Updated: June 7, 2020

1.3 Resources Deletion

Name Command
Delete pod kubectl delete pod/<pod-name> -n <my-namespace>
Delete pod by force kubectl delete pod/<pod-name> --grace-period=0 --force
Delete pods by labels kubectl delete pod -l env=test
Delete deployments by labels kubectl delete deployment -l app=wordpress
Delete all resources filtered by labels kubectl delete pods,services -l name=myLabel
Delete resources under a namespace kubectl -n my-ns delete po,svc --all
Delete persist volumes by labels kubectl delete pvc -l app=wordpress
Delete state fulset only (not pods) kubectl delete sts/<stateful_set_name> --cascade=false

1.4 Log & Conf Files

Name
Config folder
Certificate files
Credentials to API server
Superuser credentials
kubectl config file
Kubernets working dir
Docker working dir
Etcd working dir
Network cni
Log files
log in worker node
log in master node
Env
Env
Comment
/etc/kubernetes/
/etc/kubernetes/pki/
/etc/kubernetes/kubelet.conf
/etc/kubernetes/admin.conf
~/.kube/config
/var/lib/kubelet/
/var/lib/docker/, /var/log/containers/
/var/lib/etcd/
/etc/cni/net.d/
/var/log/pods/
/var/log/kubelet.log, /var/log/kube-proxy.log
kube-apiserver.log, kube-scheduler.log, kube-controller-manager.log
/etc/systemd/system/kubelet.service.d/10-kubeadm.conf
export KUBECONFIG=/etc/kubernetes/admin.conf

1.5 Pod

Name
List all pods
List pods for all namespace
List all critical pods
List pods with more info
Get pod info
List all pods with labels
List all unhealthy pods
List running pods
Get Pod initContainer status
kubectl run command
Watch pods
Get pod by selector
List pods and images
List pods and containers
Reference
Command
kubectl get pods
kubectl get pods -all-namespaces
kubectl get -n kube-system pods -a
kubectl get pod -o wide, kubectl get pod/<pod-name> -o yaml
kubectl describe pod/srv-mysql-server
kubectl get pods --show-labels
kubectl get pods –field-selector=status.phase!=Running –all-namespaces
kubectl get pods –field-selector=status.phase=Running
kubectl get pod --template ’{{.status.initContainerStatuses}}’ <pod-name>
kubectl exec -it -n "$ns" "$podname" – sh -c "echo $msg »/dev/err.log"
kubectl get pods -n wordpress --watch
kubectl get pods –selector="app=syslog" -o jsonpath=’{.items[*].metadata.name}’
kubectl get pods -o=’custom-columns=PODS:.metadata.name,Images:.spec.containers[*].image’
-o=’custom-columns=PODS:.metadata.name,CONTAINERS:.spec.containers[*].name’
Link: kubernetes yaml templates

1.6 Label & Annontation

Name Command
Filter pods by label kubectl get pods -l owner=denny
Manually add label to a pod kubectl label pods dummy-input owner=denny
Remove label kubectl label pods dummy-input owner-
Manually add annonation to a pod kubectl annotate pods dummy-input my-url=https://dennyzhang.com

GitHub: https://github.com/dennyzhang/cheatsheet-kubernetes-A4 2 of 5
Blog URL: https://cheatsheet.dennyzhang.com/cheatsheet-kubernetes-A4 Updated: June 7, 2020

1.7 Deployment & Scale

Name Command
Scale out kubectl scale --replicas=3 deployment/nginx-app
online rolling upgrade kubectl rollout app-v1 app-v2 --image=img:v2
Roll backup kubectl rollout app-v1 app-v2 --rollback
List rollout kubectl get rs
Check update status kubectl rollout status deployment/nginx-app
Check update history kubectl rollout history deployment/nginx-app
Pause/Resume kubectl rollout pause deployment/nginx-deployment, resume
Rollback to previous version kubectl rollout undo deployment/nginx-deployment
Reference Link: kubernetes yaml templates, Link: Pausing and Resuming a Deployment

1.8 Quota & Limits & Resource

Name Command
List Resource Quota kubectl get resourcequota
List Limit Range kubectl get limitrange
Customize resource definition kubectl set resources deployment nginx -c=nginx --limits=cpu=200m
Customize resource definition kubectl set resources deployment nginx -c=nginx --limits=memory=512Mi
Reference Link: kubernetes yaml templates

1.9 Service

Name
List all services
List service endpoints
Get service detail
Get service cluster ip
Get service cluster port
Expose deployment as lb service
Expose service as lb service
Reference
Command
kubectl get services
kubectl get endpoints
kubectl get service nginx-service -o yaml
kubectl get service nginx-service -o go-template=’{{.spec.clusterIP}}’
kubectl get service nginx-service -o go-template=’{{(index .spec.ports 0).port}}’
kubectl expose deployment/my-app --type=LoadBalancer --name=my-service
kubectl expose service/wordpress-1-svc --type=LoadBalancer --name=ns1
Link: kubernetes yaml templates

1.10 Secrets
Name Command
List secrets kubectl get secrets --all-namespaces
Generate secret echo -n ’mypasswd’, then redirect to base64 --decode
Get secret kubectl get secret denny-cluster-kubeconfig
Get a specific field of a secret kubectl get secret denny-cluster-kubeconfig -o jsonpath="{.data.value}"
Create secret from cfg file kubectl create secret generic db-user-pass –from-file=./username.txt
Reference Link: kubernetes yaml templates, Link: Secrets

1.11 StatefulSet
Name Command
List statefulset kubectl get sts
Delete statefulset only (not pods) kubectl delete sts/<stateful_set_name> --cascade=false
Scale statefulset kubectl scale sts/<stateful_set_name> --replicas=5
Reference Link: kubernetes yaml templates

GitHub: https://github.com/dennyzhang/cheatsheet-kubernetes-A4 3 of 5
Blog URL: https://cheatsheet.dennyzhang.com/cheatsheet-kubernetes-A4 Updated: June 7, 2020

1.12 Volumes & Volume Claims

Name
List storage class
Check the mounted volumes
Check persist volume
Copy local file to pod
Copy pod file to local
Reference
Command
kubectl get storageclass
kubectl exec storage ls /data
kubectl describe pv/pv0001
kubectl cp /tmp/my <some-namespace>/<some-pod>:/tmp/server
kubectl cp <some-namespace>/<some-pod>:/tmp/server /tmp/my
Link: kubernetes yaml templates

1.13 Events & Metrics

Name Command
View all events kubectl get events --all-namespaces
List Events sorted by timestamp kubectl get events –sort-by=.metadata.creationTimestamp

1.14 Node Maintenance

Name Command
Mark node as unschedulable kubectl cordon $NODE_NAME
Mark node as schedulable kubectl uncordon $NODE_NAME
Drain node in preparation for maintenance kubectl drain $NODE_NAME

1.15 Namespace & Security

Name
List authenticated contexts
Set namespace preference
Switch context
Load context from config file
Delete the specified context
List all namespaces defined
List certificates
Check user privilege
Check user privilege
Reference
Command
kubectl config get-contexts, ~/.kube/config
kubectl config set-context <context_name> --namespace=<ns_name>
kubectl config use-context <cluster-name>
kubectl get cs --kubeconfig kube_config.yml
kubectl config delete-context <cluster-name>
kubectl get namespaces
kubectl get csr
kubectl –as=system:serviceaccount:ns-denny:test-privileged-sa -n ns-denny auth can-i use pods/lis
kubectl auth can-i use pods/list
Link: kubernetes yaml templates

1.16 Network
Name
Temporarily add a port-forwarding
Add port-forwaring for deployment
Add port-forwaring for replicaset
Add port-forwaring for service
Get network policy
Command
kubectl port-forward redis-134 6379:6379
kubectl port-forward deployment/redis-master 6379:6379
kubectl port-forward rs/redis-master 6379:6379
kubectl port-forward svc/redis-master 6379:6379
kubectl get NetworkPolicy

1.17 Patch
Name Summary
Patch service to loadbalancer kubectl patch svc $svcname -p ’{"spec": {"type": "LoadBalancer"}}’

1.18 Extenstions
Name Summary
Enumerates the resource types available kubectl api-resources
List api group kubectl api-versions
List all CRD kubectl get crd
List storageclass kubectl get storageclass

GitHub: https://github.com/dennyzhang/cheatsheet-kubernetes-A4 4 of 5
Blog URL: https://cheatsheet.dennyzhang.com/cheatsheet-kubernetes-A4 Updated: June 7, 2020

1.19 Components & Services

1.19.1 Services on Master Nodes
Name Summary
kube-apiserver API gateway. Exposes the Kubernetes API from master nodes
etcd reliable data store for all k8s cluster data
kube-scheduler schedule pods to run on selected nodes
kube-controller-manager Reconcile the states. node/replication/endpoints/token controller and service account, etc
cloud-controller-manager

1.19.2 Services on Worker Nodes

Name Summary
kubelet A node agent makes sure that containers are running in a pod
kube-proxy Manage network connectivity to the containers. e.g, iptable, ipvs
Container Runtime Kubernetes supported runtimes: dockerd, cri-o, runc and any OCI runtime-spec implementation.

1.19.3 Addons: pods and services that implement cluster features

Name Summary
DNS serves DNS records for Kubernetes services
Web UI a general purpose, web-based UI for Kubernetes clusters
Container Resource Monitoring collect, store and serve container metrics
Cluster-level Logging save container logs to a central log store with search/browsing interface

1.19.4 Tools
Name Summary
kubectl the command line util to talk to k8s cluster
kubeadm the command to bootstrap the cluster
kubefed the command line to control a Kubernetes Cluster Federation
Kubernetes Components Link: Kubernetes Components

1.20 More Resources

License: Code is licensed under MIT License.
https://kubernetes.io/docs/reference/kubectl/cheatsheet/
https://codefresh.io/kubernetes-guides/kubernetes-cheat-sheet/

GitHub: https://github.com/dennyzhang/cheatsheet-kubernetes-A4 5 of 5

Listing Resources
kubectl get namespaces
kubectl get pods
kubectl get pods -o wide
kubectl get pods
--field-selector=spec.
nodeName=[server-name]
kubectl get
replicationcontroller
[replication-controller-
name]
kubectl get
replicationcontroller,
services
kubectl get deamonset
Creating a Resource
kubectl create namespace
[namespace-name]
kubectl create –f [filename]
Applying & Updating a Resource
kubectl apply -f
[service-name].yaml
kubectl apply -f
[controller-name].yaml
kubectl apply -f
[directory-name]
kubectl edit svc/
[service-name]
KUBE_EDITOR=”
[editor-name]” kubectl edit
svc/[service-name]
Generate a plain-text list of
all namespaces
Generate a plain-text list of
all pods
Generate a detailed
plain-text list of all pods
Generate a list of all pods
running on a particular
node server
List a specific replication
controller in plain text
Generate a plain-text list of
all replication controllers
and services
Generate a plain-text list of
all daemon sets
Create a new namespace
Create a resource from a
JSON or YAML file
Create a new service with
the definition contained in
[service-name].yaml
Create a new replication
controller with the
definition contained in
[controller-name].yaml
Create the objects defined
in any .yaml, .yml, or .json
file in a directory
Edit a service
Edit a service in a
non-default editor
kubectl Commands Cheat Sheet
Displaying the State of Resources Printing Container Logs
kubectl describe nodes See details about a kubectl logs [pod-name] Print logs from a pod
[node-name] particular node
kubectl logs -f [pod-name] Stream logs from a pod
kubectl describe pods See details about a
[pod-name] particular pod
Resource Types - Short Names
Kubectl describe –f pod.json See details about a pod
whose name and type are
listed in pod.json Short name Full name
kubectl describe pods See details about all pods csr certificatesigningrequests
[replication-controller-name] managed by a specific
replication controller
cs componentstatuses
kubectl describe pods See details about all pods
cm configmaps
ds daemonsets
Deleting Resources
deploy deployments
kubectl delete -f pod.yaml Remove a pod using the
name and type listed in
ep endpoints
pod.yaml:
kubectl delete pods,services Remove all the pods and ev events
-l [label-key]=[label-value] services with a specific
label: hpa horizontalpodautoscalers
kubectl delete pods --all Remove all pods. The ing ingresses
command will include
uninitialized pods as well
limits limitranges
ns namespaces
Executing a Command
no nodes
kubectl exec [pod-name] -- Receive output from a
[command] command run on the first pvc persistentvolumeclaims
container in a pod:
pv persistentvolumes
kubectl exec [pod-name] -c Receive output from a
[container-name] -- command run on a specific
po pods
[command] container in a pod
kubectl exec -ti [pod-name] -- Run /bin/bash from a pdb poddisruptionbudgets
/bin/bash specific pod. The output
received comes from the psp podsecuritypolicies
first container
rs replicasets
Modifying kubeconfig Files rc replicationcontrollers
kubectl config Display the current context quota resourcequotas
current-context
sa serviceaccounts
kubectl config set-cluster Set a cluster entry in
[cluster-name] --server= kubeconfig svc services
[server-name]
kubectl config unset Unset an entry in
[property-name] kubeconfig
 Deployments ReplicaSets
Kubernetes Cheat $ k ubec t l get depl oy $ kubect l get r s

Sheet $ k ubec t l desc r i be depl oy

$ k ubec t l get depl oy - o wi de
$ kubect l descr i be r s
$ kubect l get r s - o wi de
$ k ubec t l get depl oy - o yaml $ kubect l get r s - o yaml
What is Kubernetes?
Services Roles
Kubernetes is a platform for managing containerized
workloads. Kubernetes orchestrates computing, $ k ubec t l get s vc $ kubect l get r ol es - - al l - namespaces
networking and storage to provide a seamless portability
$ k ubec t l desc r i be sv c $ kubect l get r ol es - - al l - namespaces - o yaml
across infrastructure providers.
$ k ubec t l get s vc - o wi de
$ k ubec t l get s vc - o y aml Secrets
Viewing Resource Information $ k ubec t l get s vc - - s how- l abel s
$ kubect l get s ecr et s
$ kubect l get s ecr et s - - al l - names pac es
Nodes DaemonSets $ kubect l get s ecr et s - o y aml
$ k ubec t l get no
$ k ubec t l get ds
$ k ubec t l get no - o wi de ConfigMaps
$ k ubec t l get ds - - al l - names pac es
$ k ubec t l des cr i be no $ kubect l get c m
$ k ubec t l desc r i be ds [ daemonset _name] - n
$ k ubec t l get no - o y aml [ namespace_name] $ kubect l get c m - - al l - namespaces
$ k ubec t l get node - - sel ect or =[ l abel _name] $ k ubec t l get ds [ ds_name] - n [ ns _name] - o $ kubect l get c m - - al l - namespaces - o yaml
$ k ubec t l get nodes - o y aml
j s onpat h=' { . i t ems[ * ] . st at us. addr es ses
Events Ingress
[ ?( @. t y pe==" Ext er nal I P" ) ] . addr ess} '
$ k ubec t l t op node [ node_name] $ kubect l get i ng
$ k ubec t l get event s
$ kubect l get i ng - - al l - names paces
Pods $ k ubec t l get event s - n kube- sy st em
$ k ubec t l get event s - w
$ k ubec t l get po PersistentVolume
$ k ubec t l get po - o wi de Logs $ kubect l get pv
$ k ubec t l des cr i be po
$ k ubec t l l ogs [ pod_name] $ kubect l descr i be pv
$ k ubec t l get po - - show- l abel s
$ k ubec t l get po - l app=ngi nx $ k ubec t l l ogs - - si nc e=1h [ pod_name]
$ k ubec t l l ogs - - t ai l =20 [ pod_name]
PersistentVolumeClaim
$ k ubec t l get po - o y aml
$ k ubec t l get pod [ pod_name] - o yaml $ k ubec t l l ogs - f - c [ cont ai ner _name] $ kubect l get pvc
- - expor t [ pod_name]
$ kubect l descr i be pvc
$ k ubec t l get pod [ pod_name] - o yaml $ k ubec t l l ogs [ pod_name] > pod. l og
- - expor t > nameof f i l e. yaml
Service Accounts
$ k ubec t l get pods - - f i el d- s el ect or
st at us. phase=Runni ng $ k ubec t l get s a
Namespaces $ k ubec t l get s a - o y aml
$ k ubec t l get s er vi ceacc ount s def aul t - o
$ k ubec t l get ns y aml > . / s a. yaml
$ k ubec t l get ns - o y aml
$ k ubec t l des cr i be ns
$ k ubec t l r epl ace s er v i c eacc ount def aul t - f
. / s a. yaml
http://linuxacademy.com

Kubernetes Cheat
Sheet page 2
Viewing Resource Information (cont.)
StorageClass
$ k ubect l get s c
$ k ubect l get s c - o yaml
Multiple Resources
$ k ubect l get s vc, po
$ k ubect l get depl oy , no
$ k ubect l get al l
$ k ubect l get al l - - al l - namespaces
Changing Resource Attributes
Taint
$ k ubect l t ai nt [ node_name] [ t ai nt _name]
Labels
$ k ubec t l l abel [ node_name] di sk t ype=ssd
$ k ubr ec t l l abel [ pod_name] env=pr od
Cordon/Uncordon
$ k ubec t l c or don [ node_name]
$ k ubec t l uncor don [ node_name]
Drain
$ k ubect l dr ai n [ node_name]
Nodes/Pods
$ k ubec t l del et e node [ node_name]
$ k ubec t l del et e pod [ pod_name]
$ k ubec t l edi t node [ node_name]
$ k ubec t l edi t pod [ pod_name]
Deployments/Namespaces Creating a Deployment
$ k ubec t l edi t depl oy [ depl oy _name] $ kubec t l c r eat e - f [ name_of _f i l e]
$ k ubec t l del et e depl oy [ depl oy _name]
$ k ubec t l ex pos e depl oy [ depl oy _name]
$ kubec t l appl y - f [ name_of _f i l e]
$ kubec t l c r eat e depl oy [ depl oy_name]
- - por t =80 - - t y pe=NodePor t - - i mage=ngi nx
$ k ubec t l sc al e depl oy [ depl oy_name]
- - r epl i c as =5 Interactive Pod
$ k ubec t l del et e ns $ kubec t l r un [ pod_name] - - i mage=busybox
$ k ubec t l edi t ns [ ns _name] - - r m - i t - - r es t ar t =Never - - sh
Services Output YAML to a File
$ k ubec t l edi t sv c [ s v c_name] $ k ubect l cr eat e depl oy [ depl oy _name]
- - i mage=ngi nx - - dr y- r un - o yaml >
$ k ubec t l del et e sv c [ sv c_name] depl oy . yaml
$ k ubect l get po [ pod_name] - o yaml - - expor t
DaemonSets
> pod. yaml
$ k ubec t l edi t ds [ ds _name] - n kube- sy st em
Getting Help
$ k ubec t l del et e ds [ ds_name]
$ k ubect l - h
Service Accounts $ k ubect l cr eat e - h
$ k ubec t l edi t sa [ sa_name] $ k ubect l r un - h
$ k ubec t l del et e sa [ s a_name] $ k ubect l expl ai n depl oy . spec
Annotate
Requests
$ k ubec t l annot at e po [ pod_name]
[ annot at i on]
API Call
$ k ubec t l annot at e no [ node_name]
$ k ubect l get - - r aw / api s/ met r i cs. k8s. i o/
Adding Resources
Cluster Info
Creating a Pod $ k ubect l conf i g
$ k ubec t l cr eat e - f [ name_of _f i l e] $ k ubect l cl ust er - i nf o
$ k ubec t l appl y - f [ name_of _f i l e] $ k ubect l get component s t at uses
$ k ubec t l r un [ pod_name] - - i mage=ngi nx
- - r es t ar t =Never
$ k ubec t l r un [ pod_name]
- - gener at or =r un- pod/ v 1 - - i mage=ngi nx
$ k ubec t l r un [ pod_name] - - i mage=ngi nx
- - r es t ar t =Never
Creating a Service
$ k ubec t l cr eat e sv c nodepor t [ sv c _name]
- - t cp=8080: 80
http://linuxacademy.com
 mimacom
Kubernetes Cheat Sheet
Kubernetes, is an open-source system for automating deployment, scaling, and management of containerized applications. It is
built for planet scale to run millions of containers, while it’s flexibility allows customization to meet any needs so in fact, Kubernetes
can run anywhere from on-premises to hybrid or public cloud infrastructure.

AUTHENTICATION DELETING RESOURCES

A context connects to a K8s cluster with a specific user. Resources that are deleted are usually gone forever.

kubectl config get-contexts kubectl delete <type> <name>

View all available and configured contexts
kubectl config current-context
Show the context that is currently being used
kubectl config use-context <context-name>
Switch to another context and use it for subsequent commands
kubectl config view
View the merged configuration file
CREATING RESOURCES
Create resources declaratively with a manifest.
kubectl apply -f <manifest.yml>
Create and update resources to match definition in manifest file.
kubectl apply -k <directory>
Apply a folder using Kustomize configuration management.
kubectl create job <name> --image=busybox -
- echo 'Hello mimacom!'
Imperatively create a resource, in this case a job.
kubectl create secret generic <name> --from-
literal=<key>=<value>
Create a secret from the CLI. Do not store secrets in manifest files.
EXPLORING RESOURCE TYPES
Delete a specific resource of type identified by its name.
kubectl delete -f <manifest.yml>
Delete all resources mentioned in the manifest file.
EDITING RESOURCES
For a quick test you can manually edit resources.
kubectl edit <type> <name>
Edit a specific resource and sync any changes to the cluster.
KUBE_EDITOR="nano"
Set the editor to use to your liking.
VIEW AND FIND RESOURCES
Explore the resource objects available.
kubectl get <type>
Get all resources of a type in current namespace, e.g. pods.
kubectl get <type> -A
Get all resources of a type across all namespaces.
kubectl get <type> <name>
Get condensed info on a specific resource by name.
kubectl describe <type> <name>
Get verbose info on a specific resource by name.

Every cluster may have different resource types. kubectl get <type> <name> -o yaml
Get a specific resource in its complete YAML representation.
kubectl api-resources
kubectl get <type> --show-labels
Retrieve a list of all available resource types of the cluster.
Get all resource along with the labels defined on each resource.
kubectl explain <type>
kubectl get <type> -l <label>=<value>
Get the documentation for the resource type.
Show only resources that have label set to value.
kubectl explain <type>.<property>
Get documentation for a specific property.

k8s-cheat-sheet.docx/Publication Date Seite 1 von 2

OPERATING APPLICATIONS EXAMPLE MANIFESTS
Rollout and scale your applications. Use these example manifests as quick reference.

kubectl rollout history <type> <name> ---

apiVersion: apps/v1
View the deployment history of a specific deployment
kind: Deployment
kubectl rollout undo <type> <name> metadata:
Rollback to the previous deployment. name: mima-deployment
spec:
kubectl rollout restart <type> <name>
replicas: 3
Rolling restart of a resource. strategy:
kubectl scale --replicas=3 <type> <name> type: RollingUpdate
selector:
Scale a resource to a number of replicas. matchLabels: {'app': 'mima-app'}
template:
metadata:
TROUBLESHOOTING labels: {'app': 'mima-app'}
spec:
When things go south start investigating.
containers:
kubectl get <type> <name> - name: mima-app-container
image: ...
If you identify a faulty resource, start by investigating its details. ports:
kubectl logs <pod> - containerPort: 3000
resources:
Get logs of a specific pod.
limits:
kubectl logs <pod> -f memory: "256M"
Stream and follow the logs in real-time. cpu: "500m"
livenessProbe:
kubectl logs <pod> --previous httpGet:
See the log output of the previous container, if still available. port: 3000
kubectl exec <pod> -- curl localhost:8080 path: '/actuator/info'
A deployment manifest with some important properties set.
Execute a command on a pod.
kubectl exec <pod> -it -- /bin/sh ---
apiVersion: v1
Start an interactive shell on the pod. kind: Service
kubectl port-forward <pod> 8080:6000 metadata:
name: mima-app-service
Port-forwarding from a pod to your local machine.
spec:
kubectl get events type: ClusterIP
View cluster/namespace events. ports:
- port: 3000
kubectl top pods selector: {'app': 'mima-app'}
View CPU and memory usage for all pods. A service exposing the above deployment.

GENERAL OPTIONS
These general options are useful from time to time.

kubectl --namespace <namespace>

Apply the command to a specific namespace. TT
kubectl --v=<0..9>
Increase log output to even see HTTP requests starting at level 7.

k8s-cheat-sheet.docx/Publication Date Seite 2 von 2

Cheat Sheet Version: 2021-01-21
Get the latest version on go.mimacom.com/k8s
 KUBERNETES Master Kubectl Command List
• Pods and Container Introspection • Objects
• It is responsible for maintaining the desired state for the cluster you

CHEAT SHEET
are working on. COMMANDS FUNCTION All clusterrolebindings clusterroles
• “Master” indicates a set of processes that are used to manage the
Kubectl get pods Lists all current pods crd=custom
cluster.
cm= conf gmaps controllerrevisions resource
• Contains info, API, scheduler, replication controllers, and master.
Kubectl describe pod<name> Describes the pod names definition
KUBERNETES
Kubectl get rc List all replication controllers csr= certificate
Cronjobs cs=component status
• It is an open source platform for automating deployment and signing requests
scaling of containers across clusters of hosts providing Kubectl get rc -- Lists replication controllers in
container centric infrastructure. Deploy=deployments ds= daemon sets ep=end points
namespace=”namespace” namespace
• It is a container orchestrator and can run Linux containers:
• Launch container. ev= events hpa= autoscaling ing= ingress
• Maintain and monitor container site. Shows the replication
Kubectl describe rc <name> Netpol- network
• Performs container-oriented networking controller name jobs limits=limit ranges
policies
Kubectl get cvc Lists the services
No = nodes ns= namespaces pdb= pod
Worker Nodes/Minions Kubectl describe svc<name> Shows the service name po= pods Pod preset Pod templates
• Also called as a minion. It contains the services necessary to run the
Kubectl delete pod<name> Deletes the pod Psp= pod security Pv= persistent pvc= persistent
pods that are managed by the master.
policies volumes volume claims
• Some services include: container runtime, Kubelet, kube-proxy. Kubectl get nodes -w Watch nodes continuously
• Contains: Kubelet, cAdvisor, services, pods and containers. quota= resource rc= replication
• Debugging Role bindings
quotas controllers

FUNCTION COMMAND sa=service

roles rs= replica sets
account
Kubectl
Execute command on service by
exec<service><commands>[- sc= storage classes secrets sts= stateful sets
Key Concepts selecting container.
c< $container>] • Cluster Introspection
Now let’s discuss the key points of this architecture. Kubectl logs -f<name>>[-c< FUNCTION COMMAND
Get logs from service for a container
$container>]
• Pod: These are the group of containers.
Get version information Kubectl version
• Labels: These are used to identify the pods.
• Kubelet: They are container agents, responsible for maintaining Watch -n 2
Watch the kubelet logs Get cluster information Kubectl cluster-info
the set of pods. cat/var/log/kublet.log
• Proxy: They are the Load balancer for pods, helping in
distributing tasks across the pods. Show metrics for node Kubectl top node Get the configuration Kubectl config g view
• ETCD: A Metadata service.
• Cadvisor: For resource usage and performance stats. Show metrics for pods Kubectl top pod Output info about a node Kubectl describe node<node>
• Replication controller: It manages pod replication. Features
• Scheduler: Used for pod scheduling in worker nodes.
• API server: Kubernetes API server. • Automated scheduling- provides an advanced scheduler that helps
launch container on cluster nodes Other Quick Commands
Now let’s understand the role Master and Node play in the • Self healing- reschedule, replace and restart dead containers.
Kubernetes Architecture. • Automated rollouts and rollbacks- supports rollback for systems Launch a pod with a name an image : Kubectl run<name> -- Map external port to internal replication port : Expose rc<name> -
incase of a failure. Enables rollout and rollback for the desired state. image=<image-name> -port=<external>--target-port=<internal>
• Horizontal scaling- can scale up and down the app as per required. Can Create a service in <manifest.yaml> : Kubectl create -f To stop all pod in <n> : Kubectl drain<n>-- delete-local-data--force--
also be automated wrt CPU usage. <manifest.yaml> ignore-daemonset
• Service discovery and load balancing- uses unique ip and dns name to Scale replication counter to count the number of instances Allow master nodes to run pods : Kubectltaintnodes --all-node-
containers. This helps identify them across different containers. : Kubectl scale --replicas=<count> role.kuernetes.io/master-
FURTHERMORE: Kubernetes Training