GKE

Question 1

What is GKE?

Answer 1

GKE is managed Kubernetes solution offered by GCP.

Question 2

What is Kubernetes?

Answer 2

Kubernetes is a container orchestration platform.

Question 3

What are the 3 primary components that makeup a Kubernetes cluster?

Answer 3

1. Control Plane Node
2. Worker Node
3. Pod

The Control Plane is a master node that manages Worker Nodes and Pods. A Worker Node is a node that hosts 1 or more Pods. A Pod is the smallest deployable unit and consists of 1 or more containers that share network and storage resources within the Pod.

Question 4

When using GKE Standard, what are the 3 things you are responsible for managing?

Answer 4

1. Provisioning and managing Worker Nodes
2. Network configuration
3. Security

Question 5

What is the billing structure difference between GKE Standard and GKE Autopilot?

Answer 5

In GKE Standard, you pay for all resources on nodes, regardless of Pod requests.

In GKE autopilot, you only pay for the compute resources that your workloads use while running (Pods). You don’t pay for unused capacity on your nodes, system Pods, operating system costs, or unscheduled workloads.

Question 6

Which compute resources is used to serve as Kubernetes nodes?

Answer 6

Compute Engine instances

Question 7

Which GKE edition brings all the capabilities of Anthos to GKE?

Answer 7

GKE Enterprise edition

Question 8

What is Anthos?

Answer 8

Anthos is a container platform that provides a range of features for working at enterprise scale. This platform was built around the idea of the fleet, a logical grouping of Kubernetes clusters that can be managed together and benefit from sameness of namespaces, services, and/or identity across the clusters.

Question 9

GKE offers persistent storage, Cloud Run does not. GKE is suited for both stateful and stateless complex microservice applications. Cloud run is only suited for stateless applications.

Question 10

Using a service mesh can help you manage traffic across your distributed services. A service mesh is software that links services together, and helps decouple business logic from networking. A service mesh typically provides resiliency features like request retries, failovers, and circuit breakers.

Question 11

What is a Kubernetes Service?

Answer 11

A Kubernetes Service is a network abstraction that provides a fixed IP address and load balancing capabilities for accessing a group of pods. These pods may be hosted in a single node or across multiple nodes.

This is important because pods are ephemeral and their IP addresses change as they are deleted and recreated. Therefore, it doesn’t make sense to use Pod IP addresses directly, hence the need for Kubernetes Services.

Question 12

What is a Kubernetes Volume and what are the 2 different types you can use?

Answer 12

A Kubernetes Volume is a directory that is accessible to all containers in a pod. The directory is mounted to a specific path inside each container.

1. Ephemeral
2. Persistent

Ephemeral volumes are created and terminated when a pod is created and terminated. A persistent volume has a lifecycle independent of the pod.

Question 13

Does Kubernetes support declarative and imperative configurations?

Answer 13

Yes.

You can declare the desired sate and Kubernetes will implement the necessary steps to achieve that state.
You can also issue commands yourself to achieve a desired state.

Question 14

Which features allows Kubernetes to support stateful applications?

Answer 14

SatefulSet Controllers and persistent storage

Question 15

What is a Kubernetes Object?

Answer 15

A Kubernetes Object is a record that contains the spec and status of an entity in your cluster. The spec represents the desired state and the status represents the current state.

Question 16

What must you provide to Kubernetes so that it can create an Object?

Answer 16

You must provide Kubernetes with a manifest file.
A manifest is a specification of an Object in YAML or JSON format.

Question 17

Which component is responsible for managing every object’s actual state to match the desired state requested?

Answer 17

Control Plane

Question 18

What term is used to define the type of an Object?

Answer 18

Kind

For example, a Pod is a specific kind of object.

Question 19

Does each Kubernetes Pod get its own unique IP address?

Answer 19

Yes

Question 20

What command line tool does Kubernetes provide to communicate with the Control Plane?

Answer 20

Kubectl

Question 21

What component runs on every node and is responsible for interacting with the control plane?

Answer 21

Kubelet

Question 22

Which component runs on every node and is responsible for supporting network communication to your pods from within and outside of your cluster?

Answer 22

Kube-proxy

Question 23

What are the 2 identifiers of a Kubernetes Object?

Answer 23

1. Unique name per kind of Object
2. Unique ID per cluster

Names are created by the developer and the unique IDs are created by Kubernetes.

Question 24

Deployment is an object which can own ReplicaSets and update them and their Pods via declarative, server-side rolling updates. While ReplicaSets can be used independently, today they’re mainly used by Deployments as a mechanism to orchestrate Pod creation, deletion and updates. When you use Deployments you don’t have to worry about managing the ReplicaSets that they create. Deployments own and manage their ReplicaSets. As such, it is recommended to use Deployments when you want ReplicaSets.

Question 25

What is a Kubernetes Deployment?

Answer 25

A Deployment is a Kubernetes Object that consists of a ReplicaSet object, and through it, Pod objects

Question 26

Does GKE Autopilot support SSH access to the nodes in the cluster?

Answer 26

No. SSH access is only available to the containers in your cluster that have the sh binary. However, GKE Standard does support SSH access to the nodes in the cluster since you are responsible for managing them yourself.

Question 27

What are the 2 different tiers that GKE offers?

Answer 27

1. GKE Non-enterprise
2. GKE Enterprise

GKE Enterprise uses Anthos

Question 28

The Container-Optimized OS image does not provide package management software such as apt-get. You can’t install arbitrary software onto the nodes using conventional mechanisms. Instead, create a container image that contains the software you need

Question 29

When you define Pods in a manifest, you can specify resource requests and limits in the Pod specification. When GKE places the Pods on a node, the Pod requests those specified resources from the allocatable resources on the node

Question 30

Usually you don’t need to create Pods directly, even singleton Pods. Instead, create them using workload resources such as Deployment or Job. If your Pods need to track state, consider the StatefulSet resource.

Question 31

When Compute Engine needs to reclaim the resources used by Spot VMs, a termination notice is sent to GKE. Spot VMs terminate 30 seconds after receiving a termination notice.

Question 32

To ensure that your workloads and Jobs are processed even when no Spot VMs are available, ensure that your clusters have a mix of node pools that use Spot VMs and node pools that use standard Compute Engine VMs.

Question 33

Autopilot clusters always automatically repair nodes. You can’t disable this setting.

In Standard clusters, node auto-repair is enabled by default for new node pools. You can disable auto repair for an existing node pool, however we recommend keeping the default configuration.

When enabled, GKE makes periodic checks on the health state of each node in your cluster. If a node fails consecutive health checks over an extended time period, GKE initiates a repair process for that node.

Question 34

Is Cluster Autoscaler available to GKE Standard?

Answer 34

Yes. This can be enabled or disabled for GKE Standard.

Question 35

Is the IP address of a Service static for throughout its lifetime?

Answer 35

Yes. This makes it possible for clients to connect to a service without having to worry about different IP addresses.

Question 36

Each node has a pool of IP addresses that GKE assigns Pods running on that node

Question 37

Pods can also attach to external storage volumes and other custom resources.

Question 38

By default, each Pod has unfiltered access to all the other Pods running on all nodes of the cluster, but you can limit access among Pods.

Question 39

A Service has a stable IP address and ports, and provides load balancing among the set of Pods whose labels match all the labels you define in the label selector when you create the Service.

Question 40

Kubernetes also assigns a hostname to the ClusterIP. You can reach a healthy Pod running your application using either the ClusterIP or the hostname of the Service.