Suraj Deshmukh's talks at conferences
List of all the talks presented by me
Watch from 55m59s
containers, packaging, programming, hacks, kubernetes, openshift, fedora, centos
Blog
Kubernetes Bangalore March 2019 Event Report
Event Report for Kubernetes Bangalore Meetup
The Kubernetes Bangalore Meetup was organized at Arvind Internet on Feb 16th 2019. The agenda for the meetup was to teach Kubernetes to the beginners.
Make static configs available for apiserver in minikube
Dealing with apiserver in minikube can be tricky
If you want to provide extra flags to the kube-apiserver that runs inside minikube how do you do it? You can use the minikube’s --extra-config flag with apiserver.<apiserver flag>=<value>, for e.g. if you want to enable RBAC authorization mode you do it as follows:
Recreate Kubernetes CVE-2017-1002101
Subpath Volume Mount could give you access to node
A volume mount CVE was discovered in Kubernetes 1.9 and older which allowed access to node file system using emptyDir volume mount using subpath. The official description goes as follows:
Add new Node to k8s cluster with Bootstrap token
Use this technique to add new node to the cluster without providing any certificates and without having to restart the kube-apiserver
NOTE: There is an updated version of this blog here.
PodSecurityPolicy on existing Kubernetes clusters
Burnt by enabling PSPs on existing Kubernetes and wondering why everything still works
I enabled PodSecurityPolicy on a minikube cluster by appending PodSecurityPolicy to the apiserver flag in minikube like this:
Road to CKA
My experience with CKA exam preparation
I passed CKA exam with 92% marks on 19th October 2018.
Add new Node to k8s cluster with cert rotation
Use this technique to add node to the cluster without providing any certificates
The setup here is created by following Kubernetes the Hard Way by Kelsey Hightower. So if you are following along in this then do all the setup till the step Bootstrapping the Kubernetes Worker Nodes. In this just don’t start the kubelet, start other services like containerd and kube-proxy.
Adding new worker to existing Kubernetes cluster
Step by step guide to add new node
To setup a multi-node Kubernetes cluster just run this script and you will have a cluster with 3 masters and 3 workers.
Single node Kubernetes Cluster on Fedora with SELinux enabled
Kubeadm to install Single Node K8S with SELinux
Start a single node fedora machine, using whatever method but I have used this Vagrantfile to do it:
Recent Posts
Importance of Typing Skills
My Knowledge Management Journey
Book: How Innovation Works
Enable TLS bootstrapping in a Kubernetes cluster
Kubernetes Cluster using Kubeadm on Flatcar Container Linux
Categories
- kubernetes26
- notes21
- non-tech8
- security8
- book-review6
- productivity6
- bash5
- event_report5
- packaging5
- container4
- docker4
- golang4
- host4
- containers3
- fedora3
- kompose3
- notion3
- openshift3
- programming3
- certs2
- configuration2
- git2
- ide2
- kms2
- linux2
- minikube2
- monitoring2
- prometheus2
- backup1
- centos1
- cka1
- cmd-line1
- desktop1
- etcd1
- flatcar1
- gaming1
- gnome1
- https1
- jobs1
- kubeadm1
- lokomotive1
- project_management1
- selinux1
- talks1
- vagrant1
About
I am a Software Engineer at Kinvolk, working on various tooling around container technology like Docker, Kubernetes.