Purpose
This page is created for purpose store relation to helpful articles, make a some reference link when you can check and understand more about K8s (Kubernetes) and awesome things with this orchestration, but also learning and exploring more about worldwide containerization π₯
Kubernetes
Articles / Documentation / Practicing
Azure Kubernetes Service (AKS)
- Azure - Scaling options for applications in Azure Kubernetes Service (AKS)
- Azure - Core Kubernetes concepts for Azure Kubernetes Service
- Azure - Supported Kubernetes versions in Azure Kubernetes Service (AKS)
- AKS DevSecOps Workshop π (Recommended)
- Azure - Best practices for basic scheduler features in Azure Kubernetes Service (AKS)
- Medium - Optimize Your Kubernetes Resources with Azure IAM: Managed vs. Workload Identity
Container Runtime (CRI)
Do It Yourself (DIYs)
- Medium - Creating a Custom Scheduler in Kubernetes: A Practical Guide π (Recommended)
- Medium - HomeLab Kubernetes Cluster Setup
- Medium - Kubernetes, but locally. π (Recommended)
- Kubecost - Monitoring NVIDIA GPU Usage in Kubernetes with Prometheus
- Last9 - How to Monitor Ephemeral Storage Metrics in Kubernetes
- Ingress Nginx Controller - Basic Authentication
- Technotim - Mirror your Kubernetes configs, secrets, and resources to other namespaces
- Medium - Running a βstatelessβ email server in Kubernetes using Mailu
- Medium - Configure Hashicorpβs Vault for Kubernetes Auth
- DAOCloud - ArgoCD High Availability Solution
- DigitalOcean - How To Set Up an Elasticsearch, Fluentd and Kibana (EFK) Logging Stack on Kubernetes π (Recommended)
eBPF
Elastic Kubernetes Service (EKS)
- Medium - Kubernetes β EKS β Upgrade process best practices (on AWS)
- Medium - EKS Cluster Network Architecture for Worker Nodes
- Medium - Bringing Amazon EKS Hybrid Nodes to life with Palette
- Medium - Kubernetes: a single AWS Load Balancer for different Kubernetes Ingresses
- Medium - Configuring Production-Ready EKS Clusters with Terraform and GitHub Actions
- AWS - EKS Best Practices Guides
- AWS - Kubernetes concepts for EKS
- AWS - the Kubernetes version lifecycle on EKS
- EKS Workshop - New version π (Recommended)
- EKS Workshop - Old Version π (Recommended)
- AWS EKS Workshop - Configure Cluster Autoscaler (CA)
- GitHub - Cluster Autoscaler on AWS
- Medium - Mastering Horizontal Pod Autoscaling (HPA) in Amazon EKS Using Helm, Terraform, and ArgoCD: A Complete Guide with CI/CD
- AWS - Learn how EKS Pod Identity grants pods access to AWS services
- AWS - EKS IAM roles for service accounts
- Medium - Why AWS EKS Pod Identity is a Better Fit Than IRSA for Your Kubernetes Needs? π (Recommended)
- Medium - Simplify Kubernetes Storage: Mounting EFS to EKS Like a Pro
- AWS Docs - Grant IAM users access to Kubernetes with EKS access entries
- AWS Blogs - Proactive autoscaling of Kubernetes workloads with KEDA using metrics ingested into Amazon Managed Service for Prometheus
- AWS Blogs - A deep dive into simplified Amazon EKS access management controls
- Medium - Mastering Ingress Strategies for AWS EKS: ALB vs. Istio vs. NGINX π (Recommended)
Fundamental
- Medium - Kubernetes Scheduling: Understanding the Math Behind the Magic π (Recommended)
- Medium - Kubernetes Networking: Load Balancing Techniques and Algorithms π (Recommended)
- ArmoSecr - etcd in Kubernetes
- Densify - Kubernetes Service Discovery
- Dev.io - Basic Guide to Kubernetes Service Discovery
- KodeKloud - Kube-Proxy: What Is It and How It Works
- Kubernetes - Controllers
- Kubernetes - Extending Kubernetes
- Kubernetes - Ingress Controllers
- Kubernetes - Scheduler Configuration π (Recommended)
- Kubernetes - Scheduling, Preemption and Eviction
- Kubernetes - The Kubernetes API
- Kubernetes - Deployments
- Medium - Top 10 Kubernetes Pod Concepts That Confuse Beginners
- Redhat - Top 10 must-know Kubernetes design patterns π (Recommended)
General
Hardware and Resources
- Medium - Why does my 2vCPU application run faster in a VM than in a container? (Content of the year 2024) π (Recommended)
- Medium - Why and Why Not of Enabling Swap in Kubernetes
Networking (CNI)
- Medium - Deciphering the Kubernetes Networking Maze: Navigating Load-Balance, BGP, IPVS and Beyond π (Recommended)
- Medium - Kubernetes Traffic Optimization: The Role of Topology-Aware Routing π (Recommended)
- Alibaba - Kubernetes CNIs and CNI Plug-ins
- Medium - Kubernetes Networking in the Simplest Way π
- Ranchers - Container Network Interface (CNI) Providers π (Recommended)
Storage (CSI)
- Medium - 7 Best Open Source Storage Solutions for Kubernetes
- Blog - Installing the NFS CSI Driver on a Kubernetes cluster to allow for dynamic provisioning of Persistent Volumes
- Medium - Implementing ROOK Ceph Storage solution on Virtual kubernetes clusters π (Recommended)
- Medium - Kubernetes Storage Performance Comparison Rook Ceph and Piraeus Datastore (LINSTOR)
- Kubernetes - Kubernetes CSI Documentation
- Medium - How to Setup Dynamic NFS Provisioning in a Kubernetes Cluster
- GitHub - Deploying NFS Server in Kubernetes
Story and Question
- Medium - Database in Kubernetes: Is that a good idea?
- Medium - Why NGINX IngressController Isnβt the Best Choice for Production Workloads π (Recommended)
- Internet - Pain(less?) NGINX Ingress π (Recommended)
- Medium - Why Some Companies are Moving Away from Kubernetes for Development Environments in 2025
- Medium - My Top 50 Kubernetes Notes for DevOps Engineers β Detailed Q&A
Tips for Configuration
- Medium - 11 Kubernetes Deployment Configs You Should Know in 2024
- Medium - 15 Best Kubernetes Cost Optimization Tools for 2024
- Medium - 10 Ways for Kubernetes Declarative Configuration Management
- Cast.ai - Custom Kube-Scheduler: Why And How to Set it Up in Kubernetes π (Recommended)
- Medium - 24 Kubernetes Mastersβ Configurations
- Spot - 8 Kubernetes Deployment Strategies: Roll Out Like the Pros π (Recommended)
- Medium - Zero-Downtime Deployments with Kubernetes
Tools
- Medium - 10 Essential Kubernetes Tools You Didnβt Know You Needed
- Medium - Lightweight CI/CD Solutions for Kubernetes: Going Beyond Keel, Flux, and ArgoCD π (Recommended)
- Medium - 12 Tools that will make Kubernetes management easier in 2024 π (Recommended)
- Medium - 2 Powerful AI and Database Operators to Extend your K8s Cluster
- Medium - VictoriaLogs: an overview, run in Kubernetes, LogsQL, and Grafana
- Medium - The guide to kubectl I never had
- Vault - Kubernetes auth method
- ArgoCD - High Availability π (Recommended)
Troubleshoot
- StackOverFlow - How can I keep a container running on Kubernetes?
- Kubernetes - Debugging Kubernetes nodes with crictl
- Medium - Do Kubernetes Pods Really Get Evicted Due to CPU Pressure?
- StackOverFlow - Why AKS nodes shows less amount of memory as allocatable where its actual memory is still available
- StackOverFlow - Constantly getting Crashloopbackoff error in Kubernetes PODS generally in MongoDB pods
- Suneeta Mall - WTH! Who killed my pod - Whodunit?
- Kubernetes - Validate node setup
- Komodor - Resolving OOMkilled on Kubernetes
- Komodor - Exit Codes in Docker and Kubernetes: The Complete Guide
- Helm - Debugging Helm Templates
- GitHub - WARNING: Kubernetes configuration file is group/world-readable
- Medium - Tracking Down βInvisibleβ OOM Kills in Kubernetes
- GitHub - Fluentd in_tail plugin randomly fails with βtoo many open filesβ
Awesome repositories
- awesome-k8s-resources : A curated list of awesome Kubernetes tools and resources π (Recommended)
- awesome-krew-plugin: A list of Plugin which used by kubectl
- awesome-kubernetes : A curated list for awesome kubernetes sources π’π
- kubebuilder: Kubebuilder - SDK for building Kubernetes APIs using CRDs
- Kubernetes Cluster API : About cluster API π (Recommended)
- Kubernetes/community : Kubernetes community content
- Kubernetes CSI Drivers: The following are a set of CSI driver which can be used with Kubernetes π (Recommended)
- Kubernetes/enhancements: Enhancements tracking repo for Kubernetes
- Kubernetes Schedule Plugins: Repository for out-of-tree scheduler plugins based on theΒ scheduler framework π (Recommended)
- KubeSec Diagram: a diagram made to better understand and get an overview of kubernetes security π (Recommended)
- Kubetools: A Curated List of Kubernetes Tools π (Recommended)
Blogs
- Kubernetes - Blog π (Recommended)
- Nubenetes : Awesome Kubernetes & Cloud π (Recommended)
Certificate & Practice
- certified-kubernetes-administrator-course : Kodecloud Certified Kubernetes Administrator - CKA Course
- certified-kubernetes-security-specialist-cks-course : Kodecloud Notes from the Certified Kubernetes Security Specialist Course on KodeKloud
- killer.sh - Linux Foundation Exam Simulators π (Recommended)
- kube4sure - The Kubernetes Exam Simulator
- learnk8s - Kubernetes training for engineer π (Recommended)
Operator & Chart
- Artifacthub : Find, install and publish Cloud Native packages for Kubernetes π (Recommended)
- Bitami Hem Chart: Popular applications, provided byΒ Bitnami, ready to launch on Kubernetes π (Recommended)
- BJW Helm Chart: Helm template for common application
- Knative: An Open-Source Enterprise-level solution to build Serverless and Event Driven Applications. Documentation
- Kubeblocks: Β an open-source Kubernetes operator for databases (more specifically, for stateful applications, including databases and middleware like message queues), enabling users to run and manage multiple types of databases on Kubernetes.
- MongoDB Community Kubernetes Operator, you can take the look some
crd, and configuration withgithublink like CRD and Samples - mongodb-kubernetes-operator : MongoDB Community Kubernetes Operator
- OperatorHub: Home for the Kubernetes community to share Operators π (Recommended)
- Poly Helm Chart: Self-define Helm chart for AI purpose application
- Rancher Helm Chart: A catalog based on applications from independent software vendors (ISVs). Most of them are SUSE Partners
- Strimzi: Strimzi simplifies the process of runningΒ Apache KafkaΒ within a Kubernetes cluster
Organizations
- ApeCloud: The community who focus on designing architecture inside Cloud Platform, especially Kubernetes. Author of Kubeblocks
- AppsCode: Kubernetes-native Data Platform π (Recommended)
- Carvel: a set of reliable, single-purpose, composable tools that aid in your application building, configuration, and deployment to Kubernetes. Author of ytt, kapp-controller
- Devtron Inc: Software Delivery Workflow For Kubernetes π (Recommended)
- DaoCloud: An innovation leader in the cloud-native field π (Recommended)
- Kubecost: Organization of Kubecost - a monitoring application which provides real-time cost visibility and insights for teams using Kubernetes, helping you continuously reduce your cloud costs
- Kubeflow: An open, community driven project to make it easy to deploy and manage an ML stack on Kubernetes
- Kubernetes CSI: Kubernetes specific Container-Storage-Interface (CSI) components π (Recommended)
- Kubernetes: Production-Grade Container Scheduling and Management π (Recommended)
- kubernetes-sigs : Org for Kubernetes SIG-related work π (Recommended)
- KubeWharf: Developer community legit insane tools for Kubernetes
- Medik8s: Medik8s (pronounced medicates) aims for automatic detection and recovery of unhealthy k8s nodes
- Polyaxon: A platform for reproducible and scalable machine learning and deep learning
- The Helm Project: The package manager for Kubernetes π (Recommended)
- VMware Tanzu: Cloud native open source from VMware, almost for Kubernetes, Author of velero
Topics
Kubernetes Tools
API Gateway / Ingress Controller / LB
- AGIC - Application Gateway Ingress Controller: Possible for Azure Kubernetes Service (AKS) customers to leverage Azureβs native Application Gateway L7 load-balancer to expose cloud software to the Internet. Azure Article
- AWS Load Balancer Controller: AWS Load Balancer Controller is a controller to help manage Elastic Load Balancers for a Kubernetes cluster π (Recommended)
- Gateway API: Gateway API is an official Kubernetes project focused on L4 and L7 routing in Kubernetes
- Ingress-Nginx Controller : Documentation about Nginx ingress which use for delivery IN/OUT traffic for Kubernetes Cluster π (Recommended)
- Kong Ingress Controller: Allows you to run Kong Gateway as a Kubernetes Ingress to handle inbound requests for a Kubernetes cluster π (Recommended)
- kube-vip: Provides Kubernetes clusters with a virtual IP and load balancer for both the control plane (for building a highly-available cluster) and Kubernetes Services of typeΒ
LoadBalancerΒ without relying on any external hardware or software. - MetalLB: A load-balancer implementation for bare metalΒ KubernetesΒ clusters, using standard routing protocols.
- Nginx Gateway Fabric: Provides an implementation for the Gateway API using NGINX as the data plane.
- Traefik - ApiGateway: A drop-in replacement for Traefik Proxy, it can do everything Traefik Proxy does, with additional capabilities and support out of the box.
- Traefik - Ingress Controller: A Kubernetes Ingress controller; that is to say, it manages access to cluster services by supporting theΒ IngressΒ specification.
Autoscaling
- Keda: Kubernetes Event-driven Autoscaling
- Kubernetes Autoscaler: Autoscaling components for Kubernetes π (Recommended)
Agents
- botkube: An app that helps you monitor your Kubernetes cluster, debug critical deployments & gives recommendations for standard practices π (Recommended)
- kagent: A Kubernetes native framework for building AI agents π (Recommended)
Backup
- velero: Backup and migrate Kubernetes applications and their persistent volumes
- trilio: A data protection and backup solution specifically designed for Kubernetes environments
Benchmark and Validation
- kube-bench: Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
- kubeconform: A FAST Kubernetes manifests validator, with support for Custom Resources!
- Instance calculator : Estimate and find the number of max workload can apply for instance
- silver-surfer: Kubernetes objects api-version compatibility checker and provides migration path for K8s objects and prepare it for cluster upgrades
Chaos
- chaos-mesh: A Chaos Engineering Platform for Kubernetes.
- litmus: Chaos Engineering Framework with cross-cloud support.
Cluster Management
- Crossplane: An open source Kubernetes extension that transforms your Kubernetes cluster into aΒ universal control plane.
- GlassKube : An open-source Kubernetes package manager that simplifies package management for Kubernetes
- kubeapps: A web-based UI for deploying and managing applications in Kubernetes clusters
- kubeshark: The API traffic analyzer for Kubernetes providing real-time K8s π (Recommended)
- lens: Lens - The way the world runs Kubernetes π (Recommended)
Configuration Management
- Reloader: A Kubernetes controller to watch changes in ConfigMap and Secrets and do rolling upgrades on Pods with their associated Deployment, StatefulSet, DaemonSet and DeploymentConfig π (Recommended)
- vals: Helm-like configuration values loader with support for various sources π (Recommended)
Development Environment
- devspace: The Fastest Developer Tool for Kubernetes
Development Library
- kooper: A simple Go library to create Kubernetes operators and controllers.
- kubebuilder: SDK for building Kubernetes APIs using CRDs
DNS and SSL
- cert-manager: Automatically provision and manage TLS certificates in Kubernetes π (Recommended)
- external-dns: Configure external DNS servers
GPU Scheduler
- AMD GPU Operator: Simplifies the deployment and management of AMD Instinct GPU accelerators within Kubernetes clusters. Documentation
- HAMi: Heterogeneous AI Computing Virtualization Middleware π (Recommended)
- Intel GPU Operator: Intel GPU plugin facilitates Kubernetes workload. Documentation
- k8s-dra-driver-gpu: Dynamic Resource Allocation (DRA) for NVIDIA GPUs in Kubernetes
- KAI-Scheduler: an open source Kubernetes Native scheduler for AI workloads at large scale
- NVIDIA GPU Operator: NVIDIA GPU Operator creates, configures, and manages GPUs in Kubernetes. Documentation π (Recommended)
Kubectl Tools Kit
- krew: π¦ Find and install kubectl plugins π (Recommended)
- kube-capacity: A simple CLI that provides an overview of the resource requests, limits, and utilization in a Kubernetes cluster π (Recommended)
- kubectl-node-shell: Exec into node via kubectl π (Recommended)
- kubectl-trace: Schedule bpftrace programs on your kubernetes cluster using the kubectl
- kubectl-tree: kubectl plugin to browse Kubernetes object hierarchies as a tree π
- kubectl-view-allocations: kubectl plugin to list allocations (cpu, memory, gpu,β¦ X utilization, requested, limit, allocatable,β¦) π (Recommended)
Kubernetes Hosted
- eksctl: The official CLI for Amazon EKS. Website
- K0s: k0s is an open source, all-inclusive Kubernetes distribution, which is configured with all of the features needed to build a Kubernetes cluster.
- K3s: Lightweight Kubernetes. Easy to install, half the memory, all in a binary of less than 100 MB π (Recommended)
- Kind : kindΒ is a tool for running local Kubernetes clusters using Docker container βnodesβ π (Recommended)
- Kubernetes Goat: An interactive Kubernetes security learning playground
- Kubernetes Official solution : Installing Kubernetes with deployment tools. Such as: kubespray, kubeadm π (Recommended)
- MicroK8s: MicroK8s is a low-ops, minimal production Kubernetes.
- minikube : minikube quickly sets up a local Kubernetes cluster on macOS, Linux, and Windows
- Talos Linux : The Kubernetes Operating System
- cluster-template: A template for deploying a Talos Kubernetes cluster including Flux for GitOps
- kubevirt: Provides a unified development platform where developers can build, modify, and deploy applications residing in both Application Containers as well as Virtual Machines in a common, shared environment.
Monitoring
- kube-state-metrics: Add-on agent to generate and expose cluster-level metrics π (Recommended)
- metrics-server: Scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines π (Recommended)
- OpenSLO: Open specification for defining and expressing service level objectives (SLO)
- prometheus-operator: AΒ Kubernetes OperatorΒ that provides Kubernetes native deployment and management ofΒ PrometheusΒ and related monitoring components.
- x509-certificate-exporter: A Prometheus exporter to monitor x509 certificates expiration in Kubernetes clusters or standalone π (Recommended)
Policy Controller
- Kyverno : Kubernetes Native Policy Management
- OPA Gatekeeper : A customizable cloud native policy controller that helps enforce policies and strengthen governance π (Recommended)
Resources Orchestrator
- kro: Kube Resource Orchestrator
- Kueue: a kubernetes-native system that manages quotas and how jobs consume them.
Secret Management
- external-secrets: External Secrets Operator reads information from a third-party service like AWS Secrets Manager and automatically injects the values as Kubernetes Secrets π (Recommended)
- vault-secrets-operator: Create Kubernetes secrets from Vault for a secure GitOps based workflow π (Recommended)
Service Discovery
- consul: Β A multi-networking tool that offers a fully-featured service mesh solution
- coredns: CoreDNS is a DNS server that chains plugin π (Recommended)
Service Mesh
- Istio: Service Mesh. Simplified. Easily build cloud native workloads securely and reliably with
Istio, with or without sidecars. - linkerd: AΒ service meshΒ for Kubernetes. It makes running services easier and safer by giving you runtime debugging, observability, reliability, and securityβall without requiring any changes to your code.
Service Proxy
- envoy : Envoy is an L7 proxy and communication bus designed for large modern service oriented architectures
- kube-proxy: The Kubernetes network proxy runs on each node π (Recommended)
Storage Platforms
- csi-driver-nfs: This driver allows Kubernetes to access NFS server on Linux node
- Longhorn: Cloud native distributed block storage for Kubernetes π (Recommended)
- MinIO: MinIO Object Storage for Kubernetes π (Recommended)
- Rook: An open source cloud-native storage orchestrator, providing the platform, framework, and support for Ceph storage to natively integrate with cloud-native environments π (Recommended)
Threat Intelligence
- Falco: Detect security threats in real time π (Recommended)
- kubescape: Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters
- openappsec: A machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs.
- sysdig: Linux system exploration and troubleshooting tool with first class support for containers
- teleport: The easiest, and most secure way to access and protect all of your infrastructure.
- Tetragon : Cilium Tetragon component enables powerful realtime, eBPF-based Security Observability and Runtime Enforcement. π (Recommended)
Utilities Kubernetes
- kubernetes-reflector: Custom Kubernetes controller that can be used to replicate secrets, configmaps and certificates π (Recommended)