Главная
Study mode:
on
1
Intro
2
A common question
3
The short answer...
4
Implications of having many small clusters
5
Implications of sharing a large cluster
6
Today's journey
7
The foundation block
8
Kubernetes resources and Namespace
9
Authentication
10
Authorization
11
Built-in Roles
12
Building fences around a Namespace
13
Network Isolation of a tenant
14
Reflections on the previous Network Policy
15
Allow some ingress traffic
16
Limit cluster resource usage
17
Resource Quotas
18
Storage Quotas
19
How to properly secure Linux containers
20
How can we leverage Pod Security Policies
21
Using different Container Runtime
22
Other OCI runtimes with focus on security
23
Using Kubernetes Runtime Class
24
Is this level of separation enough?
25
Influencing Kubernetes' scheduler
26
Validation and sanitization of user input
27
Kubernetes Admission Controllers
28
Request validation: use cases
29
How to use admission controllers
30
Write custom admission controllers
31
How Dynamic Admission Control works
32
Caveats of Dynamic Admission Contro
33
Open Policy Agent (OPA)
34
Writing custom policies
35
Gatekeeper
36
Generic problems of Admission Controllers
37
OPA - Auditing feature
38
Time for a recap
39
Disadvantages of sharing a single cluster
Description:
Explore the pros and cons of using one large Kubernetes cluster versus multiple smaller ones in this informative webinar. Learn about the advantages, disadvantages, and appropriate scenarios for each approach. Discover solutions to mitigate shortcomings and understand the trade-offs involved in cluster management. Gain insights into topics such as multi-tenancy, namespace isolation, authentication, authorization, network policies, resource quotas, container security, pod security policies, container runtimes, Kubernetes scheduling, admission controllers, and Open Policy Agent (OPA). Use this knowledge to evaluate and choose the best cluster strategy based on your organization's specific requirements and constraints.

One Large Cluster or Lots of Small Ones - Pros, Cons and When to Apply Each Approach

CNCF [Cloud Native Computing Foundation]
Add to list
#Computer Science #DevOps #Kubernetes #Authorization #Programming #Cloud Computing #Cluster Management #Containerization #Container Security #Admission Controllers
1 of 39

Intro