내 작은 개발 이야기

ingress-nginx 네임스페이스를 만드세요 controlplane ~ ➜  kubectl create namespace ingress-nginx namespace/ingress-nginx created controlplane ~ ➜  kubectl get namespace NAME              STATUS   AGE app-space         Active   81s default           Active   3m33s ingress-nginx     Active   5s kube-flannel      Active   3m30s kube-node-lease   Active   3m33s kube-public       Active   3m33s kube-system       ..

배포된 ingress resource의 이름은 무엇인가요? controlplane ~ ➜  kubectl get ingress -A NAMESPACE   NAME                 CLASS    HOSTS   ADDRESS         PORTS   AGE app-space   ingress-wear-watch      *       172.20.49.254   80      16m ingress resource의 host는 무엇으로 설정되어 있나요? HOSTS는 *이므로 All hosts /wear path에 설정된 backend는 어떤 것인가요? controlplane ~ ✖ kubectl describe ingress ingress-wear-watch -n app-space Name:..

클러스터에 속한 노드의 network range는 무엇인가요? controlplane ~ ➜  kubectl get node -o wide NAME           STATUS   ROLES           AGE   VERSION   INTERNAL-IP   EXTERNAL-IP   OS-IMAGE             KERNEL-VERSION   CONTAINER-RUNTIME controlplane   Ready    control-plane   27m   v1.31.0   192.7.26.12           Ubuntu 22.04.4 LTS   5.4.0-1106-gcp   containerd://1.6.26 node01         Ready              26m   v1.3..

클러스터에 구축에 어떤 cni가 사용되었나요? ls /etc/cni/net.d/ 몇 개의 weave agents/peer 가 클러스터에 배포되었나요? cat /etc/cni/net.d/10-weave.conflist {     "cniVersion": "0.3.0",     "name": "weave",     "plugins": [         {             "name": "weave",             "type": "weave-net",             "hairpinMode": true         },         {             "type": "portmap",             "capabilities": {"portMappings": true},   ..

kubelet service를 확인해서 container runtime endpoint 값을 찾으세요 ps -ef | grep kubelet | grep container-runtime CNI를 지원하는 플러그인이 설정된 경로는 어디인가요? /opt/cni/bin CNI 플러그인 중에 사용이 불가능한 것을 찾으세요 cd /opt/cni/bin 경로에 가서 플러그인 목록 확인 kubernetes cluster에 사용된 CNI 플러그인은 어떤것인가요? ls /etc/cni/net.d/ 컨테이너와 네임스페이스가 생성된 후 어떤 바이너리 파일이 kubelet에 의해 실행되나요? controlplane /opt/cni/bin ➜  cd /etc/cni/net.d/ controlplane /etc/cni/net.d..

controlplane 노드에서 Containerd가 만든 interface/bridge 네트워크는 무엇인가요? ip address show type bridge  controlplane 노드에서 구글에 ping을 한다면 어떤 route를 거치나요? ip route ETCD는 포트가 2개 있습니다. 어떤 포트에 연결이 더 많나요? netstat -tnlp | grep etcd 로 포트확인 netstat-tnlpa | grep etcd | grep [port] | wc -l

어떤 파드에 Network Policy가 적용되어 있나요? controlplane ~ ➜  kubectl get netpolNAME             POD-SELECTOR   AGE payroll-policy   name=payroll   13m POD-SELECTOR 에 payroll로 정의됨 어떤 taffic을 handle하나요? controlplane ~ ➜  kubectl describe netpol payroll-policy   Name:         payroll-policy Namespace:    default Created on:   2024-12-13 13:53:04 +0000 UTC Labels:        Annotations:   Spec:   PodSelector:   ..

sleep 명령어를 실행하는 pod의 유저는 누구인가요? ps aux 5657 root      0:00 sleep 4800 or kubectl exec ubuntu-sleeper -- whoami sleep 명령을 실행하는 user의 ID가 1010이 되도록 파드를 수정하세요 Pod Name: ubuntu-sleeper Image Name: ubuntu SecurityContext: User 1010 kubectl get po ubuntu-sleeper -o yaml > sleeper.yaml spec 아래에 설정 추가 securityContext: runAsUser: 1010kubectl apply -f sleeper.yaml --force ps aux or kubectl exec ubunt..

private registry myprivateregistry.com:5000에 있는 이미지로 실행중인 deployment를 업데이트 하세요 kubectl get deploy web -o yaml > web.yaml vim web.yaml apiVersion: v1items:- apiVersion: apps/v1 kind: Deployment metadata: annotations: deployment.kubernetes.io/revision: "1" creationTimestamp: "2024-12-13T12:29:05Z" generation: 1 labels: app: web name: web namespace: default resource..

네임스페이스에 몇 개의 Service Account가 존재하나요? kubectl get sa default 서비스 어카운트에 사용된 토큰은 무엇인가요? kubectl describe sa default 방금 대시보드 어플리케이션을 배포했습니다. deployment에 사용된 이미지는 무엇인가요? kubectl get deployment kubectl describe deployment [deployment] 새로운 서비스 어카운트를 만드세요 Service Account Name: dashboard-sa apiVersion: v1 kind: ServiceAccount metadata:   annotations:     kubernetes.io/enforce-mountable-secrets: "true"   ..