EarpMoonWater

Just Deploy Kubernetes App w/Helm already!

January 14, 2025January 14, 2025 by EarpMoonWater, posted in Helm, kubernetes

Goal:

Ever heard of Helm? Or Kubernetes? You have? … Are you lying? Nonetheless, below is how to use the tools to easily manage apps in Kubernetes.

Lessons Learned:

Do it. Just do it. Install Helm.
- Helm has official installer script to grab latest version of Helm & install locally
Put the lime in the coconut…aka – Install a Helm Chart in the Cluster

Do it. Just do it. Install Helm:

Curl & chmod to get Helm:

Put the lime in the coconut…aka – Install a Helm Chart in the Cluster:

Add Bitnami, update chart listing, & install cert-manager namespace:

View pods, deployment, & services created by installing Helm:

Dude, where is my Helm Chart?

January 13, 2025January 13, 2025 by EarpMoonWater, posted in Helm, kubernetes, Uncategorized

Goal:

Scenario:

Uhhhhh dude, wheres my car? REMIX!
Uhhhhh dude, where’s my chart? But I have a Kubernetes deployment & I just want to convert it to a Helm chart! Wait you can do that? TEACH ME!

You right now:

Golly, it be nice to have a chart right now…also would be really nice to know how to have a Kubernetes deployment be converted into a Helm chart..Sooooooo, lets use what we got & convert this bad boiiiiii into a ….. HELM CHART (mic drop).

TLDR:

Basically your app is in prod already has a manifest & convert it to a helm chart to release the resources w/a template for Kubernetes from a values file

Lessons Learned:

Convert Service Manifest into a Service Template in a New Helm Chart
Convert Application Manifest into a Deployment Template in a New Helm Chart
Check the Manifests & Deploy NodePort Application

Convert Service Manifest into a Service Template in a New Helm Chart:

Make directories & YAML files:

Copy yaml file, update service file, & run Helm:

Convert Application Manifest into a Deployment Template in a New Helm Chart:

Edit values.yaml & copy application.yaml to edit:

Check the Manifests & Deploy NodePort Application:

Run helm install & deploy, get pod/svc details:

TF + EKS = Deployed Yo!

January 9, 2025January 9, 2025 by EarpMoonWater, posted in aws, terraform

Goal:

Look man, I just wanna set up a tin EKS cluster w/a couple nodes using Terraform.

Lessons Learned:

Configure AWS CLI
Deploy EKS Cluster
Deploy NGINX Pods
Destroy!!!

Configure AWS CLI:

Use Access & Secret Access Key:

Change Directory:

Review TF Configuration Files:

Deploy EKS Cluster:

Terraform init, plan, & apply:

Kubectl to chat w/yo EKS cluster:

Check to see your cluster is up & moving:

Deploy NGINX Pods:

Deploy to EKS Cluster:

Check again if your cluster is up… & MOVINGG!:

Destroy!!

Kubernetes Clusters w/EKS is Kewl as (S)hell!

January 8, 2025 by EarpMoonWater, posted in aws

Goal:

Shells are da bomb right? Just like in Mario Kart! Cloud Shell can be dope too in creating a Kubernetes cluster using EKS, lets party Mario.

Lessons Learned:

Create an EKS cluster in a Region
Deploy a Application to Mimic the Application
Use DNS name of Load Balancer to Test the Cluster

AWS Stuff:

Create user w/admin access for CLI, & download access keys:

Create EC2:

Create an EKS cluster in a Region:

Download AWS CLI v2, kubectl, ekcctl, & move directory files:

Create the cluster, connect, & verify running eksctl:

Deploy a Application to Mimic the Application

Run thru some kubectl applys to yaml files & test to see those pods running:

Use DNS name of Load Balancer to Test the Cluster:

Now curl the load balancer DNS name…walllll-ahhhhh

Deploy Nodes w/Terraform in Kubernetes

January 8, 2025 by EarpMoonWater, posted in aws, terraform

Goal:

Kubernetes is up & running!? Sick! Buuuuuuuuuuuuuuuuuuut, I wanna make some changes – so Imma use Terraform. W/out further a-due… lets get these nodes deployed!

Lessons Learned:

Initially set up a cluster using kubectl
Deployed NGINX nodes using Terraform
As an admin I deployed a NodePort to Kubernetes clstuer w/NGINX Nodes
Used Terraform to deploy NodePort & scale NGINX nodes
….DESTROY video boy (…..what is Benchwarmers..)

Initially set up a cluster using kubectl:

Set up the goodies:

Check to see cluster is created & get SSL info for server IP address:

Edit Variables file:

Deployed NGINX nodes using Terraform:

Terraform init & apply:

As an admin I deployed a NodePort to Kubernetes clstuer w/NGINX Nodes:

Get the TF config file:

Used Terraform to deploy NodePort & scale NGINX nodes:

Vim lab_kubernetes_service.tf:

vim lab_kubernetes_resources.tf:

….DESTROY video boy (…..what is Benchwarmers..):

Terraform Destroy
kind delete cluster –name lab-terraform-kubernetes

Deep Pass of Secret’s to Kubernetes Container

January 7, 2025January 7, 2025 by EarpMoonWater, posted in aws, docker

Goal:

Kubernetes is dope for data bro! Watch how we send configuration data from containers to applications that were stored in secrets & ConfigMaps.

Lessons Learned:

Created password file & store it in ….. secrets..
Create the Nginx Pod

Created password file & store it in ….. secrets:

Generate a file for the secret password file & data:

Create the Nginx Pod:

Vi pod.yml:

Kubectl exec — curl -u user: <PASSWORD> <IP_ADDRESS>:

Be Like 2 Kubernetes in a Pod

January 7, 2025 by EarpMoonWater, posted in aws

Goal:

Alright alright alright…. lets create a lil baby pod & eventually create an entire Kubernetes application!!

Lessons Learned:

Create YAML file w/the pod details for the nginx pod
Create the pod…just do it!

Create YAML file w/the pod details for the nginx pod:

SSH!!

Vi Nginx.yaml:

Create the pod…just do it!

Kubectl create -f ~/nginx.yml:

Create the pod bro

kubectl get pods -n web:

Double check the pod is created dude

kubectl describe pod nginx -n web:

Looooook at daaa deeeeetaillllllllzzzuhhh

Falco to Detect Threats on Containers in Kubernetes!

December 13, 2024 by EarpMoonWater, posted in aws, docker

Goal:

Falco Lombardi is… ahem.. Falco is able to detect any shady stuff going on in your Kubernetes environment in no time.

Lessons Learned:

Create a Falco Rules File to Scan the Container
Run Falco to Obtain a Report of ALL the Activity

Create a Falco Rules File to Scan the Container

SSH:

Vi nginx-rules.yml:

Create rule to scan container, basically this scripts rule will:
- Rule:
  - Detects if a new container is created
- Desc:
  - Says just that…
- Condition:
  - Looking for new process w/an event type to detect if changes occur w/in the container nginx
- Output:
  - How the event is posted once complete

Run Falco to Obtain a Report of ALL the Activity:

Sudo falco -r nginx-rules.yml -M – 45

Run Falco for up to a minute & see if anything is detected
- -r = rule
- -M = time

Sudo falco -r nginx-rules.yml -M – 45 > falco-report.log:

Prometheus 2 the movie, Featuring Kubernetes & Grafana

November 27, 2024 by EarpMoonWater, posted in aws

Goal:

Imma monitor a CI/CD pipeline w/3 tools, wanna see if we use Prometheus to synthesize the data & Grafana to display the data? Our goal is get some insight on performance dawg!

Lessons Learned: