‎Docker 

‎Definition
‎Container Image + Dockerfile 
‎replicas
‎.dockerignore
‎selector ‎ReplicaSet
‎Avoid unnecessary
‎template
‎Small base image
‎metadata.ownerReferences
‎Ephemeral containers

‎spec.template/selector/replicas
‎Build from stdin

‎restartPolicy=Always
‎Image Efficiency  ‎Multi-stage build

‎label: pod-template-hash ‎Deployment

‎Chain RUN commands

‎Rolling update
‎Order instructions wisely

‎kubctl rollout undo/pause/resume/history

‎Prefer COPY over ADD

‎Stateless service ‎Prefer Array over String

‎Stable network ID/persistent storage ‎Volume

‎Ordered deployment/rolling update/scaling ‎Storage  ‎Bind Mount

‎Containers
‎Headless service ‎tmpfs

‎<statefulset name>-<ordinal index> name ‎IPC

‎Namespace  ‎UTS
‎Create pods in order ‎StatefulSets

‎NET
‎Fix Pod topology status
‎Hierarchy
‎OrderedReady
‎podManagementPolicy ‎Controllers
‎Parallel
‎Tasks
‎RollingUpdate ‎Cgroups 
‎spec.updateStrategy.type ‎Resource limits

‎OnDelete
‎Event notifications

‎Node Selector
‎File system

‎Node Affinity
‎2-Controllers  ‎Waiting

‎DaemonSet controller
‎Status ‎Running
‎DaemonSet
‎kube-proxy
‎Terminated

‎fluentd/firebeat
‎LivenessProbe

‎node-exporter
‎Probe ‎ReadinessProbe
‎Recommended DaemonSet
‎kube2iam
‎StartupProbe

‎sysdig/datadog ‎1-Basics
‎Why pod

‎falco
‎DevOps in K8s ‎Sidecar

‎Ensure task completion

‎Adapter

‎Parallel tasks
‎Pod basics ‎Design patterns ‎Ambassador

‎Failure handling and retry ‎Job 

‎Batch job

‎backoffLimit (default 6)
‎Process

‎activeDeadlineSeconds (DeadlineExceeded)
‎Implementation principle

‎cron-like format: "* * * * *"

‎Pending

‎CronJobController -> JobController ‎Running

‎ConcurrencyPolicy=Allow/Forbid/Replace ‎CrobJob  ‎Status  ‎Succeeded

‎spec.schedule/startingDeadlineSeconds ‎Failed

‎spec.suspend/successfulJobHistoryLimit ‎Unknown

‎Horizontal Pod Autoscaling ‎Always (default)

‎Restart Strategy  ‎OnFailure

‎ ead from metrics server (15 seconds by
R
‎default)
‎Never

‎spec.scaleTargetRef -> pod's spec.selector ‎HPA ‎Pod

‎Readiness

‎min/desire/max replicas ‎Probe  ‎Liveness

‎targetCPUUtilizationPercentage ‎Startup

‎Init container/Pod hook 

‎Guaranteed ‎limits == requests

‎QoS  ‎Burstable ‎limits > requests

‎BestEffort ‎No limits/requests defined

‎WithPanicRecovery() ‎Troubleshooting

‎recover() ‎Log collection

‎panic recovery ‎Request Handler Chain ‎3-API-server ‎Ephemeral Containers 
‎kubectl logs -n kube-system -p ‎Security scanning

‎Error: Recovered from panic ‎Backup and restore

‎Pod-level ‎fieldRef
‎DownwardAPI 
‎Container-level ‎resourceFieldRef