Kubernetes - An Enterprise Guide - Second Edition: Effectively containerize applications, integrate enterprise systems, and scale applications in your
暫譯: Kubernetes 企業指南(第二版):有效容器化應用程式、整合企業系統並擴展應用程式

Boorshtein, Marc, Surovich, Scott

相關主題

商品描述

Master core Kubernetes concepts important to enterprises from security, policy, and management point-of-view. Learn to deploy a service mesh using Istio, build a CI/CD platform, and provide enterprise security to your clusters.

 

Key Features:

  • Extensively revised edition to cover the latest updates and new releases along with two new chapters to introduce Istio
  • Get a firm command of Kubernetes from a dual perspective of an admin as well as a developer
  • Understand advanced topics including load balancing, externalDNS, global load balancing, authentication integration, policy, security, auditing, backup, Istio and CI/CD

 

Book Description:

Kubernetes has taken the world by storm, becoming the standard infrastructure for DevOps teams to develop, test, and run applications. With significant updates in each chapter, this revised edition will help you acquire the knowledge and tools required to integrate Kubernetes clusters in an enterprise environment.

The book introduces you to Docker and Kubernetes fundamentals, including a review of basic Kubernetes objects. You'll get to grips with containerization and understand its core functionalities such as creating ephemeral multinode clusters using KinD. The book has replaced PodSecurityPolicies (PSP) with OPA/Gatekeeper for PSP-like enforcement. You'll integrate your container into a cloud platform and tools including MetalLB, externalDNS, OpenID connect (OIDC), Open Policy Agent (OPA), Falco, and Velero. After learning to deploy your core cluster, you'll learn how to deploy Istio and how to deploy both monolithic applications and microservices into your service mesh. Finally, you will discover how to deploy an entire GitOps platform to Kubernetes using continuous integration and continuous delivery (CI/CD).

 

 

What You Will Learn:

 

  • Create a multinode Kubernetes cluster using KinD
  • Implement Ingress, MetalLB, ExternalDNS, and the new sandbox project, K8GBConfigure a cluster OIDC and impersonation
  • Deploy a monolithic application in Istio service mesh
  • Map enterprise authorization to Kubernetes
  • Secure clusters using OPA and GateKeeper
  • Enhance auditing using Falco and ECK
  • Back up your workload for disaster recovery and cluster migration
  • Deploy to a GitOps platform using Tekton, GitLab, and ArgoCD

 

 

Who this book is for:

This book is for anyone interested in DevOps, containerization, and going beyond basic Kubernetes cluster deployments. DevOps engineers, developers, and system administrators looking to enhance their IT career paths will also find this book helpful.

 

Although some prior experience with Docker and Kubernetes is recommended, this book includes a Kubernetes bootcamp that provides a description of Kubernetes objects to help you if you are new to the topic or need a refresher.

商品描述(中文翻譯)

掌握對企業重要的核心 Kubernetes 概念,從安全性、政策和管理的角度出發。學習如何使用 Istio 部署服務網格,建立 CI/CD 平台,並為您的叢集提供企業級安全性。

主要特色:


  • 全面修訂版,涵蓋最新更新和新版本,並新增兩章介紹 Istio

  • 從管理員和開發者的雙重視角,深入掌握 Kubernetes

  • 理解進階主題,包括負載平衡、externalDNS、全球負載平衡、身份驗證整合、政策、安全性、審計、備份、Istio 和 CI/CD

書籍描述:

Kubernetes 迅速崛起,成為 DevOps 團隊開發、測試和運行應用程式的標準基礎架構。這本修訂版將幫助您獲得在企業環境中整合 Kubernetes 叢集所需的知識和工具,每一章都有重大更新。

本書介紹 Docker 和 Kubernetes 的基本概念,包括基本 Kubernetes 物件的回顧。您將掌握容器化,並理解其核心功能,例如使用 KinD 創建短暫的多節點叢集。本書將 PodSecurityPolicies (PSP) 替換為 OPA/Gatekeeper 以進行類似 PSP 的強制執行。您將把容器整合到雲平台和工具中,包括 MetalLB、externalDNS、OpenID connect (OIDC)、Open Policy Agent (OPA)、Falco 和 Velero。在學會如何部署核心叢集後,您將學習如何部署 Istio,以及如何將單體應用程式和微服務部署到您的服務網格中。最後,您將發現如何使用持續整合和持續交付 (CI/CD) 將整個 GitOps 平台部署到 Kubernetes。

您將學到的內容:


  • 使用 KinD 創建多節點 Kubernetes 叢集

  • 實作 Ingress、MetalLB、ExternalDNS 和新的沙盒專案 K8GB,配置叢集 OIDC 和模擬

  • 在 Istio 服務網格中部署單體應用程式

  • 將企業授權映射到 Kubernetes

  • 使用 OPA 和 GateKeeper 確保叢集安全

  • 使用 Falco 和 ECK 增強審計

  • 備份您的工作負載以進行災難恢復和叢集遷移

  • 使用 Tekton、GitLab 和 ArgoCD 部署到 GitOps 平台

本書適合誰:

本書適合任何對 DevOps、容器化以及超越基本 Kubernetes 叢集部署感興趣的人士。希望提升 IT 職業生涯的 DevOps 工程師、開發者和系統管理員也會發現本書的幫助。

雖然建議具備一些 Docker 和 Kubernetes 的先前經驗,但本書包含 Kubernetes 營隊訓練,提供 Kubernetes 物件的描述,以幫助您如果對此主題不熟悉或需要複習。