Purpose
This session is created for purpose store and relate to helpful articles, make a some reference link when you can check and understand more about K8s (Kubernetes) and awesome things with this orchestration
Awesome Repository
Repository
- awesome-kubernetes : A curated list for awesome kubernetes sources π’π
- awesome-docker : π³ A curated list of Docker resources and projects
- awesome-krew-plugin: A list of Plugin which used by kubectl
- awesome-compose : Awesome Docker Compose samples
- Compose-Examples : Various Docker Compose examples of selfhosted FOSS and proprietary projects.
- boilerplates : Cool Repo from Christian - Youtuber
- k8s-deployment-strategies : Kubernetes deployment strategies explained
- Bitnami containers : Bitnami container images
- awesome-k8s-resources : A curated list of awesome Kubernetes tools and resources.
- awesome-stacks: Deploy 120+ open-source web apps with one Docker command.
Organization
- Bitnami: Organization belong of VMWare to contributing docker image. Website
- Docker: Docker helps developers bring their ideas to life by conquering the complexity of app development.
- kubernetes-sigs : Org for Kubernetes SIG-related work
- Kubernetes: Production-Grade Container Scheduling and Management
- Containers : Open Repository for Container Tools
- LinuxServer.io: Building and maintaining community images
- Kubeflow: An open, community driven project to make it easy to deploy and manage an ML stack on Kubernetes
- AliyunContainerService: Aliyun (Alibaba Cloud) Container Service
- Kubecost: Organization of Kubecost - a monitoring application which provides real-time cost visibility and insights for teams using Kubernetes, helping you continuously reduce your cloud costs
- Devtron Inc: Software Delivery Workflow For Kubernetes
- KubeWharf: Developer community legit insane tools for Kubernetes
Topics
- Kubernetes Cluster API : About cluster API
- kubebuilder : Kubebuilder - SDK for building Kubernetes APIs using CRDs
- Kubernetes/enhancements : Enhancements tracking repo for Kubernetes
- Kubernetes/community : Kubernetes community content
- Kubernetes Blog : Collection of blog from community for upgrade and feature in each version of kubernetes and stories around.
- Kubernetes CSI Drivers : The following are a set of CSI driver which can be used with Kubernetes
- Rootless Containers: Rootless containers refers to the ability for an unprivileged user to create, run and otherwise manage containers.
- CNI GitHub: Collection of GitHub about CNI (Container Network Interface) Topics
Awesome Docker Registry and Image
Registry
- DockerHub
- Amazon ECR Public Gallery
- Microsoft Artifact Registry
- Quay Registry
- LinuxServer : Tutorial Manual
- Google Artifact Registry Distroless
Image
- docker: Docker in Docker!
- amazon/aws-cli: Universal Command Line Interface for Amazon Web Services
- docker-android: Android in docker solution with noVNC supported and video recording
- windows: Windows inside a Docker container.
Docker & Containerization
General & Documentation
Articles
- Medium - Powerful Docker Alternatives in 2024
- AquaSec - Container Engines: How They Work and Top 7 Options
- Blackvoid - Synology, Docker and open source tech blog
- Medium - Deep Dive into Docker Containers | Architecture and Features
- Docker - Alternative container runtimes
- Cloudraft - Most Popular Container Runtimes
- Medium - 11 Open-Source SaaS Killer β Selfhost With Docker
- Medium - 11 Open-Source SaaS Killer β Selfhost With Docker -2
- Medium - 11 Open-Source SaaS Killer β Selfhost With Docker -3
Development & Implementation
- Ivan Velichko - Implementing Container Runtime Shim: runc
- KodeKloud - 3 Best Ways to Run Docker in Docker Container
Tips for configuration
- Medium - Accessing the hostβs localhost from inside a Docker container
- Medium - Docker Commands You Never Heard Of!
- Medium - 13 Docker Cost Optimizations You Should Know
- Medium - Docker Beginner to Expert Tutorial
Troubleshoot
Kubernetes
General & Documentation
- Kubernetes Documentation
- ArmoSecr - etcd in Kubernetes
- KodeKloud - Kube-Proxy: What Is It and How It Works
- Alibaba - Kubernetes CNIs and CNI Plug-ins
- Kubernetes - Kubernetes CSI Documentation
- Kubernetes - Container Runtime Interface (CRI)
- Kubernetes - The Kubernetes API
- Kubernetes - Controllers
- Kubernetes - Extending Kubernetes
- Kubernetes - Ingress Controllers
- Kubernetes - Scheduling, Preemption and Eviction
- Densify - Kubernetes Service Discovery
- KodeKloud - Kube-Proxy: What Is It and How It Works
- Azure - Core Kubernetes concepts for Azure Kubernetes Service
- Azure - Supported Kubernetes versions in Azure Kubernetes Service (AKS)
- AWS - Kubernetes concepts for EKS
- AWS - the Kubernetes version lifecycle on EKS
- AWS - EKS Best Practices Guides
- Kubewekend Session 3: Basically about Kubernetes architecture
- Redhat - Top 10 must-know Kubernetes design patterns
- Medium - Top 10 Kubernetes Pod Concepts That Confuse Beginners
- Medium - Kubernetes Networking in the Simplest Way π
- Dev.io - Basic Guide to Kubernetes Service Discovery
- Ranchers - Container Network Interface (CNI) Providers
Articles
- Medium - 7 Underrated Kubernetes Projects: Elevate Your Lab Playground!
- Medium - Why does my 2vCPU application run faster in a VM than in a container?
- Medium - 11 Kubernetes Deployment Configs You Should Know in 2024
- Medium - Deciphering the Kubernetes Networking Maze: Navigating Load-Balance, BGP, IPVS and Beyond
- Medium - Kubernetes Scheduling: Understanding the Math Behind the Magic
- Medium - Kubernetes Networking: Load Balancing Techniques and Algorithms
- Medium - 15 Best Kubernetes Cost Optimization Tools for 2024
- Azure - Scaling options for applications in Azure Kubernetes Service (AKS)
- Medium - Database in Kubernetes: Is that a good idea?
- Medium - 10 Ways for Kubernetes Declarative Configuration Management
- Medium - 10 Essential Kubernetes Tools You Didnβt Know You Needed
- Medium - Kubernetes β EKS β Upgrade process best practices (on AWS)
- Medium - 7 Best Open Source Storage Solutions for Kubernetes
- Medium - Lightweight CI/CD Solutions for Kubernetes: Going Beyond Keel, Flux, and ArgoCD
- Medium - EKS Cluster Network Architecture for Worker Nodes
- Medium - Why NGINX IngressController Isnβt the Best Choice for Production Workloads
- Internet - Pain(less?) NGINX Ingress
- Medium - Optimize Your Kubernetes Resources with Azure IAM: Managed vs. Workload Identity
- Medium - Bringing Amazon EKS Hybrid Nodes to life with Palette
- Medium - 12 Tools that will make Kubernetes management easier in 2024
- Medium - Why Some Companies are Moving Away from Kubernetes for Development Environments in 2025
DIYs
- Medium - HomeLab Kubernetes Cluster Setup
- Medium - Kubernetes, but locally.
- Medium - End-to-End DevSecOps and GitOps Implementation with Jenkins, Docker, SonarQube, Trivy, Terraform, ArgoCD, and Amazon EKS
Development & Implementation
- Medium - Kubernetes: a single AWS Load Balancer for different Kubernetes Ingresses
- Medium - Implementing ROOK Ceph Storage solution on Virtual kubernetes clusters
- Medium - Kubernetes Storage Performance Comparison Rook Ceph and Piraeus Datastore (LINSTOR)
- Medium - 2 Powerful AI and Database Operators to Extend your K8s Cluster
- Medium - Creating a Custom Scheduler in Kubernetes: A Practical Guide
- Medium - VictoriaLogs: an overview, run in Kubernetes, LogsQL, and Grafana
- Medium - Configuring Production-Ready EKS Clusters with Terraform and GitHub Actions
- Medium - eBPF Maps State Synchronization across Multi-Node Kubernetes Cluster
- Medium - GitOps with Kubernetes, Terraform, Gitlab and FluxCD
- Medium - Configure CI/CD pipeline: GitlabCI, ArgoCD, HelmCharts & SOPS
Tips for configuration
- Medium - 24 Kubernetes Mastersβ Configurations
- Azure - Best practices for basic scheduler features in Azure Kubernetes Service (AKS)
- Medium - My Top 50 Kubernetes Notes for DevOps Engineers β Detailed Q&A
- Spot - 8 Kubernetes Deployment Strategies: Roll Out Like the Pros
- Medium - GitOps: How to Manage Dynamic Network Policy Changes at Scale Across 25 Clusters?
- AWS EKS Workshop - Configure Cluster Autoscaler (CA)
- GitHub - Cluster Autoscaler on AWS
- Medium - Mastering Horizontal Pod Autoscaling (HPA) in Amazon EKS Using Helm, Terraform, and ArgoCD: A Complete Guide with CI/CD
- AWS - Learn how EKS Pod Identity grants pods access to AWS services
- AWS - IAM roles for service accounts
- Medium - Why AWS EKS Pod Identity is a Better Fit Than IRSA for Your Kubernetes Needs?
- Medium - Simplify Kubernetes Storage: Mounting EFS to EKS Like a Pro
- Medium - The guide to kubectl I never had
- AWS Docs - Grant IAM users access to Kubernetes with EKS access entries
- AWS Blogs - Proactive autoscaling of Kubernetes workloads with KEDA using metrics ingested into Amazon Managed Service for Prometheus
- AWS Blogs - A deep dive into simplified Amazon EKS access management controls
Troubleshoot
- StackOverFlow - How can I keep a container running on Kubernetes?
- Kubernetes - Debugging Kubernetes nodes with crictl
- Medium - Do Kubernetes Pods Really Get Evicted Due to CPU Pressure?
- StackOverFlow - Why AKS nodes shows less amount of memory as allocatable where its actual memory is still available
- StackOverFlow - Constantly getting Crashloopbackoff error in Kubernetes PODS generally in MongoDB pods
- Suneeta Mall - WTH! Who killed my pod - Whodunit?
- Kubernetes - Validate node setup
- Komodor - Resolving OOMkilled on Kubernetes
- Komodor - Exit Codes in Docker and Kubernetes: The Complete Guide
Certificate & Practice
- kube4sure - The Kubernetes Exam Simulator
- killer.sh - Linux Foundation Exam Simulators
- learnk8s - Kubernetes training for engineer
- certified-kubernetes-administrator-course : Kodecloud Certified Kubernetes Administrator - CKA Course
- certified-kubernetes-security-specialist-cks-course : Kodecloud Notes from the Certified Kubernetes Security Specialist Course on KodeKloud
Practicing
- EKS Workshop - New version: Practical exercises to learn about Amazon Elastic Kubernetes Service
- EKS Workshop - Old Version: Explore multiple ways to configure VPC, ALB, and EC2 Kubernetes workers, and Amazon Elastic Kubernetes Service.
- AKS DevSecOps Workshop: Practical exercises to learn about Azure Kubernetes Service
Docker & Kubernetes Tools
Docker Items
- docker-rollout: Zero Downtime Deployment for Docker Compose
- watchtower: A process for automating Docker container base image updates.
- nginx-proxy: Automated nginx proxy for Docker containers using docker-gen
- dive : A tool for exploring each layer in a docker image
- crane: A tool for interacting with remote images and registries
- trivy: Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
- dokku: A docker-powered PaaS that helps you build and manage the lifecycle of applications. Documentation
CRI (Container Runtime Interface)
- containerd : An open and reliable container runtime. Getting started
- cri-dockerd: dockerd as a compliant Container Runtime Interface for Kubernetes (Mirantis OpenSource)
- docker : Docker is one of CRI mostly to used
- Mirantis: Mirantis Container Runtime (MCR) enables you to power your business-critical applications with the industry-leading enterprise container engine
- kata-containers : an open source project and community working to build a standard implementation of lightweight Virtual Machines (VMs) that feel and perform like containers, but provide the workload isolation and security advantages of VMs.
- sysbox: An open-source, next-generation βruncβ that empowers rootless containers to run workloads such as Systemd, Docker, Kubernetes, just like VMs.
- cri-tools : CLI and validation tools for Kubelet Container Runtime Interface (CRI). User guide
- kubeletctl: A client for kubelet
CNI (Container Network Interface)
- CNI : Container Network Interface - networking for Linux containers. Website
- Cilium : Cilium is an open source, cloud native solution for providing, securing, and observing network connectivity between workloads, fueled by the revolutionary Kernel technology eBPF
- Calico: Calico is a networking and security solution that enables
Kubernetesworkloads and non-Kubernetes/legacy workloads to communicate seamlessly and securely. - flannel : A network fabric for containers, designed for
Kubernetes - weave : Simple, resilient multi-host containers networking and more.
OCI (Open Container Initiative)
Info
The OCI currently contains three specifications: the Runtime Specification (runtime-spec), the Image Specification (image-spec) and the Distribution Specification (distribution-spec). The Runtime Specification outlines how to run a βfilesystem bundleβ that is unpacked on disk. At a high-level an OCI implementation would download an OCI Image then unpack that image into an OCI Runtime filesystem bundle. At this point the OCI Runtime Bundle would be run by an OCI Runtime.
Official Website: Link
- runc : CLI tool for spawning and running containers according to the OCI specification
- podman : A tool for managing OCI containers and pods.
- buildah : A tool that facilitates building OCI images.
Kubernetes Items
- OperatorHub: Home for the Kubernetes community to share Operators
- Artifacthub : Find, install and publish Cloud Native packages for Kubernetes
- Instance calculator : Estimate and find the number of max workload can apply for instance
- Debugging Helm Templates : Way to debugging the
helmtemplate with command - Kubernetes IDE - K8Studio : Visualizer component and workload inside kubernetes in UI, easily to deploy and manage kubernetes cluster
- Elasticsearch (ECK) Operator, you can figure out configuration via Customize Pods
- MongoDB Community Kubernetes Operator, you can take the look some
crd, and configuration withgithublink like CRD and Samples - RabbitMQ-cluster-operator, read more about that via source code
- GlassKube : An open-source Kubernetes package manager that simplifies package management for Kubernetes
- kops: Kubernetes Operations (kOps) - Production Grade k8s Installation, Upgrades and Management
- botkube: An app that helps you monitor your Kubernetes cluster, debug critical deployments & gives recommendations for standard practices
- kubebuilder: SDK for building Kubernetes APIs using CRDs
- Crossplane: An open source Kubernetes extension that transforms your Kubernetes cluster into aΒ universal control plane.
- lens: Lens - The way the world runs Kubernetes
- eksctl: The official CLI for Amazon EKS. Website
- kaniko: Build Container Images In Kubernetes
Kubectl Tools Kit
- krew: π¦ Find and install kubectl plugins
- kubectl-node-shell: Exec into node via kubectl
- kubectl-tree: kubectl plugin to browse Kubernetes object hierarchies as a tree π
- kubectl-trace: Schedule bpftrace programs on your kubernetes cluster using the kubectl
Local Kubernetes Self-hosted
- Kind : kindΒ is a tool for running local Kubernetes clusters using Docker container βnodesβ.
- MicroK8s: MicroK8s is a low-ops, minimal production Kubernetes.
- K3s: Lightweight Kubernetes. Easy to install, half the memory, all in a binary of less than 100 MB.
- Kubernetes Official solution : Installing Kubernetes with deployment tools. Such as: kubespray, kubeadm
- minikube : minikube quickly sets up a local Kubernetes cluster on macOS, Linux, and Windows
- Talos Linux : The Kubernetes Operating System
- K0s: k0s is an open source, all-inclusive Kubernetes distribution, which is configured with all of the features needed to build a Kubernetes cluster.
- Kubernetes Goat: An interactive Kubernetes security learning playground
- cluster-template: A template for deploying a Talos Kubernetes cluster including Flux for GitOps
Kubernetes Cluster Management
- Meshery: As a self-service engineering platform, Meshery enables collaborative design and operation of cloud and cloud native infrastructure.
- kubeshark: The API traffic analyzer for Kubernetes providing real-time K8s
- karpor: Intelligence for Kubernetes. Worldβs most promising Kubernetes Visualization Tool for Developer and Platform Engineering teams.
- Gardener: Homogeneous Kubernetes clusters at scale on any infrastructure using hosted control planes.
Kubernetes Policy Controller
- OPA Gatekeeper : A customizable cloud native policy controller that helps enforce policies and strengthen governance
- Kyverno : Kubernetes Native Policy Management
- Datree : Datree secures your Kubernetes by blocking the deployment of misconfigured resources.
Kubernetes Threat Intelligence
- Falco: Detect security threats in real time
- Tetragon : Cilium Tetragon component enables powerful realtime, eBPF-based Security Observability and Runtime Enforcement.
- openappsec: A machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs.
- teleport: The easiest, and most secure way to access and protect all of your infrastructure.
- kubescape: Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters
- sysdig: Linux system exploration and troubleshooting tool with first class support for containers
Kubernetes API Gateway
- gateway-api: Gateway API is an official Kubernetes project focused on L4 and L7 routing in Kubernetes
- Emissary-Ingress: An Envoy-powered Open Source API Gateway
- Traefik API Gateway : Traefik Hub API Gateway is a drop-in replacement for Traefik Proxy, it can do everything Traefik Proxy does, with additional capabilities and support out of the box.
Kubernetes Storage Platforms
- Rook: An open source cloud-native storage orchestrator, providing the platform, framework, and support for Ceph storage to natively integrate with cloud-native environments.
- MinIO: MinIO Object Storage for Kubernetes
Kubernetes Service Mesh
- Istio: Service Mesh. Simplified. Easily build cloud native workloads securely and reliably with
Istio, with or without sidecars. - linkerd: AΒ service meshΒ for Kubernetes. It makes running services easier and safer by giving you runtime debugging, observability, reliability, and securityβall without requiring any changes to your code.
- consul: Β A multi-networking tool that offers a fully-featured service mesh solution
Kubernetes Service Proxy
- envoy : Envoy is an L7 proxy and communication bus designed for large modern service oriented architectures
- kube-proxy: The Kubernetes network proxy runs on each node
- SPK: a cloud-native application traffic management solution, designed for communication service provider (CoSP) 5G networks
Kubernetes Service Discovery
- coredns: CoreDNS is a DNS server that chains plugin
- consul: Β A multi-networking tool that offers a fully-featured service mesh solution
Kubernetes Ingress Controller
- Ingress-Nginx Controller : Documentation about Nginx ingress which use for delivery IN/OUT traffic for Kubernetes Cluster
- Traefik - Ingress Controller: A Kubernetes Ingress controller; that is to say, it manages access to cluster services by supporting theΒ IngressΒ specification.
- Kong Ingress Controller: Allows you to run Kong Gateway as a Kubernetes Ingress to handle inbound requests for a Kubernetes cluster.
- HAProxy Kubernetes Ingress Controller: An ingress controller implements traffic routing in your Kubernetes cluster by interpreting Ingress rules.
- AWS Load Balancer Controller: AWS Load Balancer Controller is a controller to help manage Elastic Load Balancers for a Kubernetes cluster.
- AGIC - Application Gateway Ingress Controller: Possible for Azure Kubernetes Service (AKS) customers to leverage Azureβs native Application Gateway L7 load-balancer to expose cloud software to the Internet. Azure Article
- Istio - Kubernetes Ingress: configure Istio to expose a service outside of the service mesh cluster, using the KubernetesΒ Ingress Resource.
- Apache APISIX: A Kubernetes ingress controller using Apache APISIX as the high performance reverse proxy.
Kubernetes GitOps & Automation Deployment Platforms
- argo-cd : Β A declarative, GitOps continuous delivery tool for Kubernetes.
- fluxcd : Tool for keeping Kubernetes clusters in sync with sources of configuration (like Git repositories), and automating updates to configuration when there is new code to deploy.
- werf: A solution for implementing efficient and consistent software delivery to Kubernetes facilitating best practices.
- nelm: Nelm is a Helm 3 alternative and werf deployment engine
- helm: The package manager for Kubernetes
- harness: Harness Open Source is an end-to-end developer platform with Source Control Management, CI/CD Pipelines, Hosted Developer Environments, and Artifact Registries.
- keel: Kubernetes Operator to automate Helm, DaemonSet, StatefulSet & Deployment updates
- kustomize: Customization of kubernetes YAML configurations
- flagger: Progressive Delivery Operator for Kubernetes. Maintained by Flux
- argo-rollouts: Progressive Delivery for Kubernetes. Maintained by Argo
- operator-lifecycle-manager: A management framework for extending Kubernetes with Operators
- kargo: A next-generation continuous delivery and application lifecycle orchestration platform for Kubernetes
Kubernetes Autoscaling
- Kubernetes Autoscaler: Autoscaling components for Kubernetes
- Karpenter: an open-source node lifecycle management project built for Kubernetes.
- Keda: Kubernetes Event-driven Autoscaling
Kubernetes Chaos
- chaos-mesh: A Chaos Engineering Platform for Kubernetes.
- litmus: Chaos Engineering Framework with cross-cloud support.
Kubernetes Resources Orchestrator
- kro: Kube Resource Orchestrator. Documentation
Kubernetes DNS and SSL
- kcert: A Simple Letβs Encrypt Manager for Kubernetes
Kubernetes Development Environment
- devspace: The Fastest Developer Tool for Kubernetes
- tilt: Define your dev environment as code. For microservice apps on Kubernetes.
- okteto: Develop your applications directly in your Kubernetes Cluster
- telepresence: Local development against a remote Kubernetes or OpenShift cluster
Kubernetes Development Library
- kooper: A simple Go library to create Kubernetes operators and controllers.