Getting Started on Amazon EKS

MatthewBarlocker 697 views 46 slides Feb 20, 2019
Slide 1
Slide 1 of 46
Slide 1
1
Slide 2
2
Slide 3
3
Slide 4
4
Slide 5
5
Slide 6
6
Slide 7
7
Slide 8
8
Slide 9
9
Slide 10
10
Slide 11
11
Slide 12
12
Slide 13
13
Slide 14
14
Slide 15
15
Slide 16
16
Slide 17
17
Slide 18
18
Slide 19
19
Slide 20
20
Slide 21
21
Slide 22
22
Slide 23
23
Slide 24
24
Slide 25
25
Slide 26
26
Slide 27
27
Slide 28
28
Slide 29
29
Slide 30
30
Slide 31
31
Slide 32
32
Slide 33
33
Slide 34
34
Slide 35
35
Slide 36
36
Slide 37
37
Slide 38
38
Slide 39
39
Slide 40
40
Slide 41
41
Slide 42
42
Slide 43
43
Slide 44
44
Slide 45
45
Slide 46
46

About This Presentation

Everything you need to know to get started with Amazon EKS. Also contains my review of EKS and 3 pitfalls.

Size: 2.33 MB
Language: en
Added: Feb 20, 2019
Slides: 46 pages

Slide Content

Matthew Barlocker
Founder @ Blue Matador

Architecture & Component Diagrams

Components in k8s masters
●Presents the k8s api
●kubectl connects to this
endpoint
kube-scheduleretcdkube-apiserver
●Key-value storage
●Can be swapped
●Assigns pods to nodes
●Factors in resources,
availability, and usage

●Node controller
●Replication controller
●Endpoints controller
●Service account & token
controller
cloud-controller-managerkube-controller-manager
●Interacts with cloud
●Node controller
●Route controller
●Volume controller
●Service controller

HA Masters with stacked etcd

HA Masters with external etcd

HA k8s considerations for master nodes
●Node failure
●Security
●Capacity
●Upgrades (system & k8s)
●Etcd management
○Replication failure
○Disaster recovery
○Corruption

Diagrams and Marketing Promises

Benefits on AWS site

EKS seems simple

EKS works with VPC, EC2, ELB, Autoscaling, etc

Step by Step Instructions

Getting started is misleading

Getting started is misleading

Follow the “Getting Started” guide
https://docs.aws.amazon.com/eks/latest/userguide/getting-started.html

Create your Amazon EKS Service Role in IAM

Create your Amazon EKS Service Role in IAM

Create your Amazon EKS Service Role in IAM

Create your Amazon EKS Cluster VPC in Cloudformation

Create your Amazon EKS Cluster VPC in Cloudformation

Create your Amazon EKS Cluster VPC in Cloudformation

Create Your Amazon EKS Cluster

Create Your Amazon EKS Cluster … on the Command Line
aws eks create-cluster
--name devel
--role-arn [ARN from Cloudwatch]
--resources-vpc-config
subnetIds=[subnet-a, …], securityGroupIds=[sg-a, …]

Create Your Amazon EKS Cluster … on the Command Line

Install and Configure kubectl
https://kubernetes.io/docs/tasks/tools/install-kubectl/

Install and Configure aws-iam-authenticator

Download and Install the Latest AWS CLI

Configure kubectl for Amazon EKS

Configure kubectl for Amazon EKS

Launch and Configure Amazon EKS Worker Nodes

Launch and Configure Amazon EKS Worker Nodes

Launch and Configure Amazon EKS Worker Nodes

Launch and Configure Amazon EKS Worker Nodes

Apply the AWS authenticator configuration map

Apply the AWS authenticator configuration map

Apply the AWS authenticator configuration map

Troubleshooting and learning

Private Subnets in VPC
●Check VPC Settings
○NAT Gateway
○Security Groups
○Route Tables
○Network ACLs
●Try Modifying CloudFormation instead

●Create EKS cluster on CLI
●Creator = Owner
●Check your IAM keys and account
EKS Owner

AWS Profiles & aws-iam-authenticator

The good and the bad

●Complete HA master control plane with zero
management
○Node failure
○Security
○Capacity
○Upgrades (system & k8s)
○Etcd management
○Replication failure
○Disaster recovery
○Corruption
●Authentication works with your existing IAM
EKS: The Good

EKS: The Bad
●EKS is not a fully managed cluster
○Node management
○Capacity / utilization requirements
○Monitoring
●aws-iam-authenticator required for all
admins
●I personally hate Cloudformation

Local brands and events

Automated Alerting in AWS | Blue Matador
●140+ alerts out-of-the-box
●Zero configuration or tuning
●Read-only IAM credentials

15 minutes to setup monitoring for:
●Compute: EKS, EC2, ECS, ELB Lambda,
Fargate, VPC, Beanstalk
●DB: RDS, Aurora, Dynamo, ElastiCache,
ElasticSearch
●Storage: S3, EBS
●Others: Route53, ACM, Cloudfront, SES,
SQS, SNS, Kinesis
●Kubernetes: Nodes, pods, services,
daemonsets
Personalized Demo
https://www.bluematador.com/request-demo

Keynote by:
Charlie Kindel
Lead Product
Manager of Alexa
Let’s Talk Tech | Free Event | Control4
6:15pm Networking, Food,
Vendors, and see Control4
Smart Home products

7:00pm Tech Talks and
Presentations

8:00pm Prizes and Networking
(must be present to win)

8:45pm <done>


Register Here:
https://tinyurl.com/C4-Lets-Talk-Tech

Any questions?
Tags
aws eks amazon web services kubernetes k8s
Categories
Technology
Download
Download Slideshow Get the original presentation file
Quick Actions
Statistics
  • Views 697
  • Slides 46
  • Favorites 2
  • Age 2481 days
Related Slideshows
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx 11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
51 views
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx 10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
49 views
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx 13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
39 views
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx 11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
38 views
Know for Certain 21
Know for Certain
DaveSinNM
24 views
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx 17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
27 views
View More in This Category