Kubernetes Genişletilmiş Eğitimi

Kurs Süresi

  • Instructor-led training: 5 days with hands-on lab practice
  • Virtual instructor-led training: 5 days of web-based classes with hands-on lab practice

Kurs İçeriği

Getting Started
  • What will the Kubernetes Cluster Architecture Look Like?
  • Setting Up Your Cloud Servers
  • Client Tools
Provisioning the CA and Generating TLS Certificates
  • Why Do We Need a CA and TLS Certificates?
  • Provisioning the Certificate Authority
  • Generating Client Certificates
  • Generating the Kubernetes API Server Certificate
  • Generating the Service Account Key Pair
  • Distributing the Certificate Files
  • Hands-On Lab:Creating a Certificate Authority and TLS Certificates for Kubernetes
Generating Kubernetes Configuration Files for Authentication
  • What are Kubeconfigs and Why Do We Need Them?
  • Generating Kubeconfigs for the Cluster
  • Distributing the Kubeconfig Files
  • Hands-On Lab: Generating Kubeconfigs for a New Kubernetes Cluster
Generating the Data Encryption Config and Key
  • What is the Data Encryption Config in Kubernetes?
  • Generating the Data Encryption Config
  • Hands-On Lab: Generating a Data Encryption Config for Kubernetes
Bootstrapping the etcd Cluster
  • What is etcd?
  • Creating the etcd Cluster
  • Hands-On Lab: Bootstrapping an etcd Cluster for Kubernetes
Bootstrapping the Kubernetes Control Plane
  • What is the Kubernetes Control Plane?
  • Control Plane Architecture Overview
  • Installing Kubernetes Control Plane Binaries
  • Setting up the Kubernetes API Server
  • Setting up the Kubernetes Controller Manager
  • Setting up the Kubernetes Scheduler
  • Enable HTTP Health Checks
  • Set up RBAC for Kubelet Authorization
  • Setting up a Kube API Frontend Load Balancer
  • Hands-On Lab: Bootstrapping a Kubernetes Control Plane
  • Hands-On Lab: Setting Up a Frontend Load Balancer for the Kubernetes API
Bootstrapping the Kubernetes Worker Nodes
  • What are the Kubernetes Worker Nodes?
  • Worker Node Architecture Overview
  • Installing Worker Node Binaries
  • Configuring Containerd
  • Configuring Kubelet
  • Configuring Kube-Proxy
  • Hands-On Lab: Bootstrapping Kubernetes Worker Nodes
  • Configuring kubectl for Remote Access
  • Kubernetes Remote Access and kubectl
  • Configuring Kubectl for Remote Access
  • Hands-On Lab: Configuring Kubectl to Access a Remote Cluster
  • The Kubernetes Networking Model
  • Network Overlays
  • Network Policy
  • Cluster Network Architecture
  • Installing Weave Net
  • Cleanup
  • Hands-On Lab: Setting Up Kubernetes Networking with Weave Net
Deploying the DNS Cluster Add-on
  • DNS In a Kubernetes Pod Network
  • Deploying Kube-dns to the Cluster
  • Hands-On Lab: Deploying kube-dns in a Kubernetes Cluster
Building a Kubernetes Infrastructure
  • Host Server Hardening
  • Secure Software Supply Chain
  • Container Registries and Trusted Repositories
  • Choosing an Installer
  • Configuration Management
  • Scanning and Static Analysis of YAML
  • Hands-on-Lab : Using Packer and Ansible for Hardening
Launching a Kubernetes Cluster
  • From Lab to Real World
  • Hardening the Cluster
  • Monitoring and Alerts
  • Hands-on-Lab: Hardening a kops Default Deployment with Kube-bench
  • Hands-on-Lab: Establishing a Private Cluster with a secure bastion host
Maintaining a Kubernetes Infrastructure
  • Patching live Deployments
  • Upgrading Kubernetes Components
  • Node Recycling
  • Hands-on Lab: Upgrade Kubernetes using kops
  • Hands-on Lab:Patching Live Kubernetes Deployments and a draining node for maintainance
Smoke Test
  • Smoke Testing the Cluster
  • Smoke Testing Data Encryption
  • Smoke Testing Deployments
  • Smoke Testing Port Forwarding
  • Smoke Testing Logs
  • Smoke Testing Exec
  • Smoke Testing Services
  • Smoke Testing Untrusted Workloads
  • Smoke Testing Cleanup


Randevu ve bilgi talebi için : 0850 755 02 83