I have a AKS cluster created in Subscription A and Application gateway created in Subscription B
Is it possible to enable AGIC for K8 cluster?
Related
I am currently trying to identify the required AWS VPC and Subnet structure for EKS.
However, would like to check whether I can deploy the UI containers (pods) and the Spring Boot based API Gateway pods in public subnet and deploy all other back-end service pods in private subnet.
Is it possible to create such Kubernetes YAML deployment configuration?
You deploy the UI containers (pods) and the Spring Boot based API Gateway pods in nodes that run in public subnet, all other back-end service pods in nodes that run in private subnet. Where nodes are really just EC2 instance that runs kubelet that have joined your EKS cluster. Typically, you use nodeSelector or affinity to direct which node for your pod to run.
I am trying to list all the workloads/deployments we're running on the clusters we're running on AKS. I don't see an endpoint for this in AKS API REST reference, how do I get the deployments etc?
AKS API is for managing clusters.
See Kubernetes API if you want to access anything within a cluster. E.g. the workloads.
After creating an eks cluster with eksctl or aws CLI with the specified node group. Then when I apply my Deployment yaml file, is my Pods distributed among the node group above automatically?
Yes your pod will get deployed on any node in cluster which has sufficient resource to support it.
We have an AWS EKS Kubernetes cluster with two factor authentication for all the kubectl commands.
Is there a way of deploying an app into this cluster using a pod deployed inside the cluster?
Can I deploy using helm charts or by specifying service account instead of kubeconfig file?
Can I specify a service account(use the one that is assigned to the pod with kubectl) for all actions of kubectl?
All this is meant to bypass two-factor authentication for the continuous deployment via Jenkins, by deploying jenkins agent into the cluster and using it for deployments. Thanks.
You can use a supported Kubernetes client library or Kubectl or directly use curl to call rest api exposed by Kubernetes API Server from within a pod.
You can use helm as well as long as you install it in the pod.
When you call Kubernetes API from within a pod by default service account is used.Service account mounted in the pod need to have role and rolebinding associated to be able to call Kubernetes API.
I know that Openshift uses some K8s components to orchestrate PODS. Is there any way K8 and Openshift integrate together?. Means I should see the PODS which are deployed with K8s in Openshift UI and vise versa.
Followed Openshift as POD in K8 documentation,but I was struck at Step-4, unable to find kubernetes account key in GCE cluster (/srv/kubernetes/server.key).
Or is any way K8 nodes join under Openshift cluster?