# Office Hours for May 2020 ## West Side Edition --- Q: I've got a storageClass that I initially set with ReclaimPolicy=Delete, trying to edit the resource to "Retain" doesn't seem to work, do I need to recreate the class then or am I doing something wrong? A: NerdyShawn https://github.com/digitalocean/csi-digitalocean/issues/126 --- Q: What approach would you take to a large "jump" update of Kubernetes version? We run bare metal clusters that are still on v1.13.x, and are ready for an update. I recently read a recommendation that clusters should be rebuilt from scratch for situations like this, transferring data with something like Velero. Any other recommendations? A: Tim Hunter https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.16.md#deprecations-and-removals https://relnotes.k8s.io/ --- Q: Anyone running Kubernetes at home; what kind of storage do you recommend using? Nfs , iscsi, hostpath? What is most suitable for those kind of workloads? A: meauses --- From: Aamir Q:clusterIP type services in minikube I have a microservice and I have a helm chart to deploy it. There is a service defined for it as well that exposes a port for udp packets. This works well in a proper K8S cluster. I can see the service using kubectl. I can also see that under the hood that ipvs is properly configured on the worker node I can ping the service ip from within the pod Unfortunately this doesnt work well when i do helm install in my local testing env that uses minikube. I can list the service using "kubectl get services". But beyond that nothing works. I cant ping the service ip from within the pod. and I realized that I dont have ipvs installed so : How does minikube implement service under the hood ? Do services work better in micro8s or any other variant for local testing? A: kubectl port-forward , kubectl port-forward <pod_name> <local-port>:<pod-port> --- From: Nathan. 4 Q:if you're currently using helm, and starting a move to kustomize, is there anything that you feel helm is better for than kustomize. for example perhaps elasticsearch for helm, and kustomize for your custom services. A: https://github.com/thomastaylor312/advanced-helm-demos/tree/master/post-render https://operatorhub.io/ https://www.elastic.co/guide/en/cloud-on-k8s/current/k8s-upgrading-eck.html --- From: Juan Q:Hey there! How i can scheduler diferents pods in diferents nodes by metrics. For example: I don’t want more than 3 pods in the same node? I don’t wan’t to use daemonset. Please help me, i have lot of night with out sleep. haha A: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ --- Q: Following up; where do you run databases if not kube? A: dbentley --- From: Kelly 7 Q: What is your opinions on NodeGroups in multiple availability zones? Should NodeGroups just be on one AZ? Pros and Cons? I have EKS in 3az and therefore each NG has three AZ A: ___ From: Jim Angel: Q: Anyone using Vault / KMS seamlessly in CI/CD (or GitOps) with k8s. Using Vault Agent Auto-Auth, mutating webhooks, or? A: Links: ## EU Session Links https://cloud.google.com/compute/docs/disks#repds https://cloud.google.com/kubernetes-engine/docs/how-to/persistent-volumes/regional-pd https://containo.us/maesh/ https://servicemesh.es/ https://www.thoughtworks.com/radar/platforms/istio https://martinfowler.com/articles/microservices.html https://www.thoughtworks.com/radar/platforms/kubernetes https://www.thoughtworks.com/radar/techniques/service-mesh https://istio.io/ https://github.com/linkerd/linkerd2/blob/master/SECURITY_AUDIT.pdf https://github.com/Kong/kuma https://www.consul.io/docs/k8s https://kubernetes-sigs.github.io/service-apis/ https://github.com/goharbor/harbor/issues/8082 https://github.com/kubernetes-sigs/service-apis https://github.com/kubernetes/kubernetes/issues/67577 https://www.slideshare.net/try_except_/optimizing-kubernetes-resource-requestslimits-for-costefficiency-and-latency-highload https://medium.com/omio-engineering/cpu-limits-and-aggressive-throttling-in-kubernetes-c5b20bd8a718 https://status.quay.io/incidents/db87fh7b3s83 https://github.com/kubernetes/ingress-nginx/blob/c1ed6db4687f7ec004dcb9e1b5ab007f66eb09b5/docs/how-it-works.md#building-the-nginx-model https://www.openpolicyagent.org/docs/latest/kubernetes-tutorial/ https://stackoverflow.com/a/39756233 https://spot.io/ ## West Coast Session Links https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ https://github.com/digitalocean/csi-digitalocean/issues/126 https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.16.md#deprecations-and-removals https://relnotes.k8s.io/ https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ https://docs.tilt.dev/choosing_clusters.html https://github.com/thomastaylor312/advanced-helm-demos/tree/master/post-render https://operatorhub.io/ https://www.elastic.co/guide/en/cloud-on-k8s/current/k8s-upgrading-eck.html https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/ https://github.com/kubernetes/enhancements/blob/master/keps/sig-scheduling/20190926-default-even-pod-spreading.md http://www.databasesoup.com/2018/07/should-i-run-postgres-on-kubernetes.html https://learnk8s.io/how-many-clusters https://github.com/kubernetes/autoscaler/tree/master/vertical-pod-autoscaler https://github.com/FairwindsOps/goldilocks https://www.openshift.com/blog/how-full-is-my-cluster-part-4-right-sizing-pods-with-vertical-pod-autoscaler https://www.sonatype.com/nexus-repository-oss https://docs.docker.com/ee/dtr/