You're reading from Kubernetes in Production Best Practices

Product typeBook

Published inMar 2021

PublisherPackt

ISBN-139781800202450

Edition1st Edition

Tools

Kubernetes Docker

Concepts

Containerization

Authors (2):

Aly Saleh

Murat Karslioglu

View More author details

Chapter 4: Managing Cluster Configuration with Ansible

In Chapter 3, Provisioning Kubernetes Clusters Using AWS and Terraform, you learned how to create a Kubernetes infrastructure with Terraform and AWS, and you also learned how to develop infrastructure as code and provisioned your first production-like cluster.

This was just the first step towards building operational and production-ready Kubernetes clusters. By now, you should have an up-and-running cluster with Terraform infrastructure modules to provision other similar clusters.

These clusters are still plain; they're not configured or optimized to run production workloads. To make these clusters fully operational, we simply need to deploy and configure the required Kubernetes services for them.

In this chapter, you will design and develop a configuration management solution that you can use to manage the configuration of Kubernetes clusters and their supporting services. This solution is automated and scalable...

Technical requirements

In addition to the tools that you installed in Chapter 3, Provisioning Kubernetes Clusters Using AWS and Terraform, you will need to install the following tools:

python3
pip3
virtualenv

I will go into the specifics of these tools' installation and configuration in the next section. If you already know how to do this, you can go ahead and set them up now.

You need to have an up-and-running Kubernetes cluster as per the instructions in Chapter 3, Provisioning Kubernetes Clusters Using AWS and Terraform.

The code for this chapter is located at https://github.com/PacktPublishing/Kubernetes-in-Production-Best-Practices/tree/master/Chapter04.

Check out the following link to see the Code in Action video:

https://bit.ly/3cGtqjx

Installing the required tools

python3, pip3, and virtualenv are the prerequisites to execute the Ansible configuration playbooks that we will develop in this chapter. If you do not have these tools installed on your system, you can follow these instructions:

Execute the following commands to install python3, pip3, and virtualenv on Ubuntu Linux:

$ sudo apt-get update
$ sudo apt-get install python3
$ sudo apt-get install python3-pip
$ sudo pip3 install virtualenv

Execute the following commands to install python3, pip3, and virtualenv on Amazon Linux 2:

$ sudo yum update
$ sudo yum install python3
$ sudo python3 -m pip install --upgrade pip
$ sudo python3 -m pip install virtualenv

Execute the following commands to install python3, pip3, and virtualenv on macOS:

$ brew install python3
$ curl -O https://bootstrap.pypa.io/get-pip.py
$ sudo python3 get-pip.py
$ sudo -H pip3 install virtualenv

Execute the following commands to install python3, pip3, and virtualenv on Windows...

Implementation principles

In Chapter 1, Introduction to Kubernetes Infrastructure and Production-Readiness, you learned about the infrastructure design principles that we will follow in this book. I would like to start this chapter by highlighting the notable principles that influenced the configuration management solution and the technical decisions in this chapter:

Everything as code: In this chapter, we will keep our commitment to having everything in the infrastructure as code – cluster configuration is not an exception. You will use Ansible to achieve this goal by creating a configuration management solution for your Kubernetes cluster.
Automation: In the previous chapter, we used Terraform tool to automate infrastructure provisioning. We designed a solution around Terraform that can scale to serve a growing number of clusters without the need to scale up your infrastructure teams. Here, you will create a similar solution to manage the Kubernetes configuration...

Kubernetes configuration management

The beauty of Kubernetes is that every part of it is abstracted as an object that can be managed and configured declaratively with YAML or JSON through its API server. This makes Kubernetes configuration easier to manage as code. However, it is still challenging to manage this configuration when you have groups of clusters that run hundreds of add-ons and services.

Imagine a scenario where you manage a company's infrastructure with Kubernetes, and you have multiple clusters for development, testing, and production. Add to them the cluster add-ons that run on the Kubernetes services layer as per the following diagram:

Figure 4.1 – Kubernetes infrastructure layers

This means that you can have N clusters with a growing number of add-ons and different environment types, such as development, QA, and production. If we put these together, we end up with a complex and redundant configuration to manage.

The recommended...

Configuring the clusters

Now we put the solution we designed in the previous section into action. We will start by developing the Ansible framework skeleton, which will consist of the following parts:

group_vars: This directory contains the manifest configuration files with variables' default unless a cluster defines its own private variables in its own inventory.
inventories: This directory contains the configuration files with variables' values, which are specific to each cluster or cluster group, meaning that variables defined here override default variables defined under the groups_vars directory.
tasks: In this directory, we define a separate task for each cluster service and add-on that we need to deploy and configure; the task definition file is standard across tasks, as we will use Ansible's k8s module and pass to it the YAML templates to deploy against the target cluster.
templates: This directory contains the Kubernetes manifest YAMLs and...

Destroying the cluster's resources

You can follow the instructions in the Destroying the network and cluster infrastructure section of Chapter 3, Provisioning Kubernetes Clusters Using AWS and Terraform, to destroy the Kubernetes cluster and its related AWS resources. Please be sure to destroy the resources in the following order:

Cluster packtclusters resources
Cluster VPC resources
Terraform shared state resources

After executing the previous steps, all of the cluster AWS resources should be destroyed successfully. You can still log in to the AWS web console and double-check the destruction of the resources to avoid any unwanted AWS charges.

Summary

In this chapter, you learned about Kubernetes configuration management challenges and how to scale your configuration management solution to manage multiple clusters and environments. We designed and developed a solution that is based on Ansible, and we went through practical hands-on examples to deploy this code.

We started by creating Ansible templates for Kubernetes objects and add-ons. Then, we developed the tasks and the playbook to execute the Ansible configuration in sequence against the targeted clusters.

This chapter introduced you to Ansible basic concepts. It showed you how to use the best practices of infrastructure and configuration as code, automation, and Ansible development.

This sets up the base for the coming chapters, where you will use this configuration management solution to configure and deploy clusters' add-ons and services where these add-ons are essential to reach production-readiness.

In the next chapter, you will learn about Kubernetes...

Ansible 2 for Configuration Management [Video]: https://www.packtpub.com/product/ansible-2-for-configuration-management-video/9781838826475
Practical Ansible 2: https://www.packtpub.com/product/practical-ansible-2/9781789807462
Automation with Ansible Playbooks [Video]: https://www.packtpub.com/product/automation-with-ansible-playbooks-video/9781800206496

The rest of the chapter is locked

You have been reading a chapter from

Kubernetes in Production Best Practices

Published in: Mar 2021Publisher: PacktISBN-13: 9781800202450

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

undefined

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €14.99/month. Cancel anytime

Authors (2)

Aly Saleh

Aly Saleh is a technology entrepreneur, cloud transformation leader, and architect. He has worked for the past 2 decades on building large-scale software solutions and cloud-based platforms and services that are used by millions of users. He is a co-founder of MAVS Cloud, a start-up that empowers organizations to leverage the power of the cloud. He also played various technical roles at Oracle, Vodafone, FreshBooks, Aurea Software, and Ceros. Aly holds degrees in computer science, and he has gained multiple credentials in AWS, GCP, and Kubernetes, with a focus on building cloud platforms, app modernization, containerization, and architecting distributed systems. He is an advocate for cloud best practices, remote work, and globally distributed teams.
Read more about Aly Saleh

Murat Karslioglu

Murat Karslioglu is a distinguished technologist with years of experience using infrastructure tools and technologies. Murat is currently the VP of products at MayaData, a start-up that builds data agility platform for stateful applications, and a maintainer of open source projects, namely OpenEBS and Litmus. In his free time, Murat is busy writing practical articles about DevOps best practices, CI/CD, Kubernetes, and running stateful applications on popular Kubernetes platforms on his blog, Containerized Me. Murat also runs a cloud-native news curator site, The Containerized Today, where he regularly publishes updates on the Kubernetes ecosystem.
Read more about Murat Karslioglu

Other recommended products

Related to this chapter

HashiCorp Infrastructure Automation Certification Guide

Terraform has recently gained in popularity, becoming one of the most widely adopted tools for infrastructure automation. If you're interested in a career in DevOps, this book will be your reference guide to gaining hands-on experience with Terraform from scratch.

BookJul 2021350 pages

Kubernetes - A Complete DevOps Cookbook

Kubernetes is one of the most popular, sophisticated, and fast-evolving container orchestrators. In this book, you’ll learn the essentials and find out about the advanced administration and orchestration techniques in Kubernetes. Readers will also learn to manage containers using the latest version of Kubernetes with a recipe-based approach.

BookMar 2020584 pages

Terraform Cookbook

HashiCorp’s Terraform is a powerful, open source tool that enables you to provision infrastructure by using code. With the help of easy-to-follow recipes, the Terraform Cookbook shows you how to solve problems that you may commonly face when working with Terraform. You’ll learn to use Terraform v0.13 to manage complex infrastructure with ease.

BookOct 2020366 pages

Cloud Native with Kubernetes

Cloud Native with Kubernetes will guide you effectively - from your first steps using Kubernetes right up to running enterprise-grade cloud native applications with best practices. The book covers every aspect of deploying, securing, and operating modern cloud native applications on Kubernetes.

BookJan 2021446 pages

kubectl: Command-Line Kubernetes in a Nutshell

Kubernetes is a de facto container orchestration system. To manage Kubernetes, you must understand how to work with kubectl, its command-line tool that lets you interact with your clusters to deploy applications and manage their lifecycle. This book is a comprehensive introduction for those who are new to Kubernetes management via the command line.

BookNov 2020136 pages

AWS for System Administrators

AWS for System Administrators covers a variety of tools, techniques, tips, and tricks for building highly available and fault-tolerant infrastructure. You’ll get to grips with AWS fundamentals and concepts with the help of step-by-step explanations and practical code examples.

BookFeb 2021388 pages

Hands-On Kubernetes on Windows

Starting with release 1.14, Kubernetes has production support for Windows Containers. This book is designed to help developers, architects and DevOps engineers working in the Windows ecosystem to deploy and orchestrate cloud applications using Windows Containers on Kubernetes.

BookMar 2020592 pages

Mastering Kubernetes

This new third edition of Mastering Kubernetes, updated with the latest tools and code, explores the newest features in Kubernetes 1.18 throughout the book to fully leverage the modularity and flexibility that Kubernetes offers to build and run large scale distributed applications.

BookJun 2020642 pages

Modern DevOps Practices

This book goes beyond just the fundamentals of DevOps tools and their deployments. It covers practical examples to get you up to speed with containers, infrastructure automation, serverless container services, continuous integration and delivery, automated deployments, deployment pipeline security, GitOps, and more.

BookSep 2021530 pages

Hands-On Kubernetes on Azure

Kubernetes has emerged as a leader among the management platforms for container orchestration. Hands-On Kubernetes on Azure enables you to strengthen your command over the basic as well as advanced functionalities of Kubernetes.

BookMay 2020368 pages

Kubernetes and Docker - An Enterprise Guide

Complete with practical examples and explanations to address running Kubernetes in an enterprise, this book guides you to integrating Kubernetes clusters with load-balancers, external name resolution for services, OIDC using an enterprise directory, Kubernetes impersonation, security using PSPs and OPA, advanced auditing and reporting, backing up workloads, and provisioning a platform.

BookNov 2020526 pages

Kubernetes on AWS

Docker containers promise to radicalize the way developers build, deploy, and manage applications running in the cloud. Kubernetes provides the orchestration tools needed to realize that promise in production. In this book, you will learn to deploy a production-ready Kubernetes cluster on the AWS platform and also discover the power of Kubernetes.

BookNov 2018270 pages

Personalised recommendations for you

Based on your interests and search pattern

Designing and Implementing Microsoft Azure Networking Solutions

Designing and Implementing Microsoft Azure Networking Solutions Exam Ref AZ-700 is an all-encompassing guide to the AZ-700 exam and contains all the information you need to succeed in the world of virtual networking with Azure. With this book, you will be fully prepared for the exam and the world of cloud networking.

BookAug 2023524 pages

Microsoft 365 Security, Compliance, and Identity Administration

The Microsoft 365 Security, Compliance, and Identity Administration is a comprehensive guide that helps you employ Microsoft 365's robust suite of features and empowers you to optimize your administrative tasks.

BookAug 2023630 pages

Zero Trust Overview and Playbook Introduction

Get started on Zero Trust with this step-by-step playbook and learn everything you need to know for a successful Zero Trust journey with tailored guidance for every role, covering strategy, operations, architecture, implementation, and measuring success. This book will become an indispensable reference for everyone in your organization.

BookOct 2023240 pages

The Self-Taught Cloud Computing Engineer

This self-study book helps you master multiple clouds, including AWS, Azure, and GCP, and serves as a roadmap to becoming a certified cloud computing expert. The book will guide you to develop a professional cloud career by helping you build a broad cloud knowledge base, developing hands-on cloud computing skills, and getting cloud certified.

BookSep 2023472 pages

Technology Operating Models for Cloud and Edge

This book will help you build and create ownership of a technology operating model, as well as connect your leadership with engineering and operations, keeping your internal and external customers in mind. It provides practical tips on why, where, and how to make the cloud and edge platform paradigm sing for you, your team, and your organization.

BookAug 2023228 pages

Azure Architecture Explained

Azure is the preferred platform to build mission-critical and secure apps. This book provides comprehensive coverage of essential Azure products, services, and solutions vital for every solution architect's success. Elevate your knowledge and master the critical components of Azure to excel in your role with Azure Architecture Explained.

BookSep 2023446 pages

Pentesting Active Directory and Windows-based Infrastructure

This practical guide helps you explore the pentesting of Microsoft infrastructure in detail, and enhances your offensive skillset by showing you the different ways to perform security assessment. This book will help blue teamers and IT engineers get up to speed with possible security issues they may encounter in their Windows environments.

BookNov 2023360 pages

Practical Ansible

In Practical Ansible, you'll work with the latest release of Ansible and learn to solve complex issues quickly with the help of task-oriented scenarios. You'll start by installing and configuring Ansible to automate monotonous and repetitive IT tasks and get to grips with concepts such as playbooks, inventories, plugins, collections, and network modules.

BookSep 2023420 pages

Windows 11 for Enterprise Administrators

Microsoft’s launch of Windows 11 is a step toward satisfying the enterprise administrator’s needs for better management and enhanced user experience customization. This book provides the enterprise administrator with the knowledge needed to fully utilize the advanced feature set of Windows 11 Enterprise.

BookOct 2023286 pages

The Linux DevOps Handbook

This book is for software and IT professionals seeking knowledge on Linux systems and DevOps practices. This book will provide you with guidance and tools to learn and gain proficiency in managing Linux-based infrastructures and knowledge of DevOps.

BookNov 2023428 pages2