PM
Uploaded byParisa Moosavinezhad
PPTX, PDF98 views

AKS components

The document outlines the provisioning of Azure Kubernetes Service (AKS) using Terraform, discussing core concepts such as the control plane, node pools, and Kubernetes node components. It emphasizes the necessity of a system node pool for control plane services and the usage of user node pools for workloads. Additionally, it covers resource reservations, node selectors, types of deployments like statefulsets and daemonsets, and the structure of namespaces within AKS.

Embed presentation

Download to read offline
Azure Kubernetes Service (AKS) PR OVISION IN G W ITH TER R AFOR M OC T 2022 Core Concept
Control plane https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads
Control plane • AKS Control plane • Kubernetes Cluster Control Plane contains the services for orchestration the cluster e.g., for api server, scheduler, etc. • It’s a single tenant • With a dedicated API Server • Interaction with control plane through Kubernetes API such as kubectl • AKS Control plane types • Single node (the common one for dev/test) • Multiple nodes (the common one for prod + high availability (HA)) https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads
Node pool • AKS must have at least one node pool, which is a system node pool. • System node pool is for the control plane or core services. • System node pool is Linux-based. • System node pool must have at least one node. • For the workloads, the user node pool must be used. • User node pool can be Windows-based or Linux-based OS. • A user node pool contains only the nodes of the same OS & size. • User node pool can have even zero node. (for the cost optimization purposes)
Kubernetes node components https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads#nodes-and-node-pools • Kubelet -> The Kubernetes agent that processes the orchestration requests from the control plane along with scheduling and running the requested containers • Kube-proxy -> Handles virtual networking on each node. The proxy routes network traffic and manages IP addressing for services and pods • Container runtime -> Allows containerized applications to run and interact with additional resources, such as the virtual network and storage
Resource reservations https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads#nodes-and-node-pools AKS uses node resources to orchestrate the node Using AKS add-ons will consume additional node resources such as Container Insights (OMS) Demo : check this command -> kubectl describe node [NODE_NAME] Admin
Resource reservations https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads Type of reserved resources - CPU is reserved based on kube-reserved (millicore) for each CPU on host - Memory - Kubelet daemon - Kubelet daemon functionality - For Windows nodes, some additional memory reservation is required for system process
Node selectors Node selectors -> in multiple node pools we may need to specify the node pool for the Kubernetes Scheduler e.g., ingress controllers shouldn't run on Windows Server nodes https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads#node-selectors Watch in Terraform Demo: look at win and ubuntu node pool
Pods • Pods typically have a 1:1 mapping with a container. • In advanced scenarios, a pod may contain multiple containers. • Multi-container pods are scheduled together on the same node, and allow containers to share related resources https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads#pods Watch in Terraform Demo
StatefulSets and DaemonSets Deployment controller • StatefulSets -> maintain the state of applications beyond an individual pod lifecycle • DaemonSets -> ensure a running instance on each node, early in the Kubernetes bootstrap process If using the Virtual Nodes add-on, DaemonSets will not create pods on the virtual node https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads
Namespaces Namespaces • Default -> pods and deployments are created by default when none is provided. In smaller environments, you can deploy applications directly into the default namespace without creating additional logical separations • kube-system -> core resources exist, such as network features like DNS and proxy, or the Kubernetes dashboard. You typically don't deploy your own applications into this namespace • kube-public -> Typically not used, but can be used for resources to be visible across the whole cluster, and can be viewed by any user https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads Watch in Terraform Demo
AKS / Kubernetes wording Kubernetes manifest file defines a cluster's desired state, such as which container images to run internal service which is accessible only internal / inside the cluster e.g., Redis instance external service Which is accessible from public internet e.g., for frontend
Next topic AKS Security concept for applications and clusters

More Related Content

PPTX
aks_training_document_Azure_kuberne.pptx
byWaseemShare
 
PDF
A quick introduction to AKS
byAlessandro Melchiori
 
PPTX
AKS
bygirish goudar
 
PDF
Best Practices with Azure Kubernetes Services
byQAware GmbH
 
PDF
Azure kubernetes service (aks) part 3
byNilesh Gule
 
PDF
Container orchestration k8s azure kubernetes services
byRajesh Kolla
 
PPTX
Kubernetes on on on on on on on on on on on on on on Azure Deck.pptx
byHectorSebastianMendo
 
PDF
04_Azure Kubernetes Service: Basic Practices for Developers_GAB2019
byKumton Suttiraksiri
 
aks_training_document_Azure_kuberne.pptx
byWaseemShare
 
A quick introduction to AKS
byAlessandro Melchiori
 
AKS
bygirish goudar
 
Best Practices with Azure Kubernetes Services
byQAware GmbH
 
Azure kubernetes service (aks) part 3
byNilesh Gule
 
Container orchestration k8s azure kubernetes services
byRajesh Kolla
 
Kubernetes on on on on on on on on on on on on on on Azure Deck.pptx
byHectorSebastianMendo
 
04_Azure Kubernetes Service: Basic Practices for Developers_GAB2019
byKumton Suttiraksiri
 

Similar to AKS components

PPTX
Azure kubernetes service (aks)
byAkash Agrawal
 
PDF
Running Containers on Azure
byNick Trogh
 
PPTX
Sudo Fciencias - Kubernetes 101 (6/12/25)
byVictor Morales
 
PPTX
653493625-Azure-Kubernetes-Services-Booklet.pptx
byranandraj2
 
PPTX
Consolidating Infrastructure with Azure Kubernetes Service - MS Online Tech F...
byDavide Benvegnù
 
PPTX
Kubernetes for .NET Developers
byLorenzo Barbieri
 
PPTX
Container management with docker & kubernetes
byKasun Rajapakse
 
PDF
Accelerate Application Innovation Journey with Azure Kubernetes Service
byWinWire Technologies Inc
 
PPTX
Implementing AKS on the Enterprise
byJorge Arteiro
 
PPTX
Meetup Estonia, talk about Azure AKS and ACI Connector
byEvgeny Rudinsky
 
PDF
Kubernetes From Scratch .pdf
byssuser9b44c7
 
PPTX
Azure kubernetes service
byVishwas N
 
PPTX
Lets talk about: Azure Kubernetes Service (AKS)
byPedro Sousa
 
PPTX
Aks: k8s e azure
byAlessandro Melchiori
 
PDF
Must Know Azure Kubernetes Best Practices And Features For Better Resiliency ...
byCodeOps Technologies LLP
 
PPTX
Kubernetes fundamentals
byVictor Morales
 
PDF
Azure Kubernetes Service 2019 ふりかえり
byToru Makabe
 
PPTX
Kubernetes-Fundamentals.pptx
bysatish642065
 
PDF
Recap of de code 2019
byKyohei Mizumoto
 
PDF
kubernetes.pdf
bycrezzcrezz
 
Azure kubernetes service (aks)
byAkash Agrawal
 
Running Containers on Azure
byNick Trogh
 
Sudo Fciencias - Kubernetes 101 (6/12/25)
byVictor Morales
 
653493625-Azure-Kubernetes-Services-Booklet.pptx
byranandraj2
 
Consolidating Infrastructure with Azure Kubernetes Service - MS Online Tech F...
byDavide Benvegnù
 
Kubernetes for .NET Developers
byLorenzo Barbieri
 
Container management with docker & kubernetes
byKasun Rajapakse
 
Accelerate Application Innovation Journey with Azure Kubernetes Service
byWinWire Technologies Inc
 
Implementing AKS on the Enterprise
byJorge Arteiro
 
Meetup Estonia, talk about Azure AKS and ACI Connector
byEvgeny Rudinsky
 
Kubernetes From Scratch .pdf
byssuser9b44c7
 
Azure kubernetes service
byVishwas N
 
Lets talk about: Azure Kubernetes Service (AKS)
byPedro Sousa
 
Aks: k8s e azure
byAlessandro Melchiori
 
Must Know Azure Kubernetes Best Practices And Features For Better Resiliency ...
byCodeOps Technologies LLP
 
Kubernetes fundamentals
byVictor Morales
 
Azure Kubernetes Service 2019 ふりかえり
byToru Makabe
 
Kubernetes-Fundamentals.pptx
bysatish642065
 
Recap of de code 2019
byKyohei Mizumoto
 
kubernetes.pdf
bycrezzcrezz
 

Recently uploaded

PDF
KM World 2025 Enterprises, KM, & Agentic AI
byEnterprise Knowledge
 
PPTX
Lecture 05. API Security for DevSecOps Eng.pptx
byvinocol222
 
PPTX
Webinar: EVerest for Production: Accelerating EV Charger Development w/ Indus...
byDanBrown980551
 
PPTX
Full course that Prymehat uploads for you version 2
byOhenebaManu1
 
PDF
UiPath Coded Agents - A Developer Driven Agentic Automation Era
byUiPathCommunity
 
PDF
6 Insights from the Patron Saint of AI Failure
byScott M. Graffius
 
PDF
Intro to CrafterQ - AI Agent Platform for the Enterprise.pdf
byCrafterQ
 
PDF
Using Change Data Capture (CDC) to Ingest Data into Apache Kafka
byGiovanni Marigi
 
PDF
Effective Ai powered mock interview .pdf
byamazingnishusingh766
 
PDF
65 AI-related Posts Catalog https://tinyurl.com/mpavkr8z
byBob Marcus
 
PDF
2025-CB-NCAE-slide-deck.pptx-1-83.pdf Virtual Orientation on the Administrati...
byNelizabethEsplaguera1
 
PDF
January Patch Tuesday
byIvanti
 
PDF
JR : Quality Random Data from the Command line
byGiovanni Marigi
 
PDF
A "Kill Switch" (Emergency Off Switch) for AI?
byScott M. Graffius
 
PPTX
Building Real-Time Voice AI — Udaiappa Ramachandran
byUdaiappa Ramachandran
 
PPTX
AI_in_Cybersecurity_Insights_Case_Studies.pptx
bywrksmith9
 
PDF
Are AI Hallucinations Getting Better or Worse? We Analyzed the Data.
byScott M. Graffius
 
PPTX
02_Extended Warehouse Management Functions and Features.pptx
byUdayakumar218983
 
PPTX
The Abomination of AI – keynote at ICoSCI 2026
byAlan Dix
 
PPTX
Oracle SCM Cloud Solutions for Smart Supply Chain Management
byChetu
 
KM World 2025 Enterprises, KM, & Agentic AI
byEnterprise Knowledge
 
Lecture 05. API Security for DevSecOps Eng.pptx
byvinocol222
 
Webinar: EVerest for Production: Accelerating EV Charger Development w/ Indus...
byDanBrown980551
 
Full course that Prymehat uploads for you version 2
byOhenebaManu1
 
UiPath Coded Agents - A Developer Driven Agentic Automation Era
byUiPathCommunity
 
6 Insights from the Patron Saint of AI Failure
byScott M. Graffius
 
Intro to CrafterQ - AI Agent Platform for the Enterprise.pdf
byCrafterQ
 
Using Change Data Capture (CDC) to Ingest Data into Apache Kafka
byGiovanni Marigi
 
Effective Ai powered mock interview .pdf
byamazingnishusingh766
 
65 AI-related Posts Catalog https://tinyurl.com/mpavkr8z
byBob Marcus
 
2025-CB-NCAE-slide-deck.pptx-1-83.pdf Virtual Orientation on the Administrati...
byNelizabethEsplaguera1
 
January Patch Tuesday
byIvanti
 
JR : Quality Random Data from the Command line
byGiovanni Marigi
 
A "Kill Switch" (Emergency Off Switch) for AI?
byScott M. Graffius
 
Building Real-Time Voice AI — Udaiappa Ramachandran
byUdaiappa Ramachandran
 
AI_in_Cybersecurity_Insights_Case_Studies.pptx
bywrksmith9
 
Are AI Hallucinations Getting Better or Worse? We Analyzed the Data.
byScott M. Graffius
 
02_Extended Warehouse Management Functions and Features.pptx
byUdayakumar218983
 
The Abomination of AI – keynote at ICoSCI 2026
byAlan Dix
 
Oracle SCM Cloud Solutions for Smart Supply Chain Management
byChetu
 

AKS components

  • 1.
    Azure Kubernetes Service (AKS) PROVISION IN G W ITH TER R AFOR M OC T 2022 Core Concept
  • 2.
  • 3.
    Control plane • AKSControl plane • Kubernetes Cluster Control Plane contains the services for orchestration the cluster e.g., for api server, scheduler, etc. • It’s a single tenant • With a dedicated API Server • Interaction with control plane through Kubernetes API such as kubectl • AKS Control plane types • Single node (the common one for dev/test) • Multiple nodes (the common one for prod + high availability (HA)) https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads
  • 4.
    Node pool • AKSmust have at least one node pool, which is a system node pool. • System node pool is for the control plane or core services. • System node pool is Linux-based. • System node pool must have at least one node. • For the workloads, the user node pool must be used. • User node pool can be Windows-based or Linux-based OS. • A user node pool contains only the nodes of the same OS & size. • User node pool can have even zero node. (for the cost optimization purposes)
  • 5.
    Kubernetes node components https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads#nodes-and-node-pools •Kubelet -> The Kubernetes agent that processes the orchestration requests from the control plane along with scheduling and running the requested containers • Kube-proxy -> Handles virtual networking on each node. The proxy routes network traffic and manages IP addressing for services and pods • Container runtime -> Allows containerized applications to run and interact with additional resources, such as the virtual network and storage
  • 6.
    Resource reservations https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads#nodes-and-node-pools AKS usesnode resources to orchestrate the node Using AKS add-ons will consume additional node resources such as Container Insights (OMS) Demo : check this command -> kubectl describe node [NODE_NAME] Admin
  • 7.
    Resource reservations https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads Type ofreserved resources - CPU is reserved based on kube-reserved (millicore) for each CPU on host - Memory - Kubelet daemon - Kubelet daemon functionality - For Windows nodes, some additional memory reservation is required for system process
  • 8.
    Node selectors Node selectors-> in multiple node pools we may need to specify the node pool for the Kubernetes Scheduler e.g., ingress controllers shouldn't run on Windows Server nodes https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads#node-selectors Watch in Terraform Demo: look at win and ubuntu node pool
  • 9.
    Pods • Pods typicallyhave a 1:1 mapping with a container. • In advanced scenarios, a pod may contain multiple containers. • Multi-container pods are scheduled together on the same node, and allow containers to share related resources https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads#pods Watch in Terraform Demo
  • 10.
    StatefulSets and DaemonSets Deploymentcontroller • StatefulSets -> maintain the state of applications beyond an individual pod lifecycle • DaemonSets -> ensure a running instance on each node, early in the Kubernetes bootstrap process If using the Virtual Nodes add-on, DaemonSets will not create pods on the virtual node https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads
  • 11.
    Namespaces Namespaces • Default ->pods and deployments are created by default when none is provided. In smaller environments, you can deploy applications directly into the default namespace without creating additional logical separations • kube-system -> core resources exist, such as network features like DNS and proxy, or the Kubernetes dashboard. You typically don't deploy your own applications into this namespace • kube-public -> Typically not used, but can be used for resources to be visible across the whole cluster, and can be viewed by any user https://learn.microsoft.com/en-us/azure/aks/concepts-clusters-workloads Watch in Terraform Demo
  • 12.
    AKS / Kuberneteswording Kubernetes manifest file defines a cluster's desired state, such as which container images to run internal service which is accessible only internal / inside the cluster e.g., Redis instance external service Which is accessible from public internet e.g., for frontend
  • 13.
    Next topic AKS Securityconcept for applications and clusters

Editor's Notes

  • #6 Talk about: Based on the scenario select an appropriate vm size, Disk type SSD / HDD, Scale out number, consider the appropriate ip space for the network VM images can be Ubuntu Linux or windows server 2019 You can use the Azure Reservation as well
  • #7 Talk about: To maintain node performance and functionality, AKS reserves resources on each node. As a node grows larger in resources, the resource reservation grows due to a higher need for management of user-deployed pods
  • #8 Talk about: To maintain node performance and functionality, AKS reserves resources on each node. As a node grows larger in resources, the resource reservation grows due to a higher need for management of user-deployed pods
  • #10 Talk about When you create a pod, you can define resource requests to request a certain amount of CPU or memory resources You can also specify maximum resource limits to prevent a pod from consuming too much compute resource from the underlying node Best practice is to include resource limits for all pods to help the Kubernetes Scheduler identify necessary, permitted resources
  • #11 Talk about
  • #12 Talk about