Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Hands-On Kubernetes on Windows Effectively orchestrate Windows container workloads using Kubernetes

Product type Paperback

Published in Mar 2020

Publisher Packt

ISBN-13 9781838821562

Length 592 pages

Edition 1st Edition

Languages

Tools

Kubernetes

Concepts

Containerization

Author (1):

Piotr Tylenda

View More author details

Table of Contents (23) Chapters

Preface

1. Section 1: Creating and Working with Containers

2. Creating Containers FREE CHAPTER

3. Managing State in Containers

4. Working with Container Images

5. Section 2: Understanding Kubernetes Fundamentals

6. Kubernetes Concepts and Windows Support

7. Kubernetes Networking

8. Interacting with Kubernetes Clusters

9. Section 3: Creating Windows Kubernetes Clusters

10. Deploying a Hybrid On-Premises Kubernetes Cluster

11. Deploying a Hybrid Azure Kubernetes Service Engine Cluster

12. Section 4: Orchestrating Windows Containers Using Kubernetes

13. Deploying Your First Application

14. Deploying Microsoft SQL Server 2019 and a ASP.NET MVC Application

15. Configuring Applications to Use Kubernetes Features

16. Development Workflow with Kubernetes

17. Securing Kubernetes Clusters and Applications

18. Monitoring Kubernetes Applications Using Prometheus

19. Disaster Recovery

20. Production Considerations for Running Kubernetes

21. Assessments

22. Other Books You May Enjoy

Leave a review - let other readers know what you think

Chapter 13: Securing Kubernetes Clusters and Applications

Kubernetes itself does not provide a means for managing normal external users who access the cluster. This should be delegated to an external authentication provider that can integrate with Kubernetes, for example, via Authenticating Proxy.
To reduce the attack vector, the recommended practice is to never expose Kubernetes Dashboard using a LoadBalancer service and always use a kubectl proxy for accessing the page.
This will provide an extra layer of security for your API resources and Secrets, which otherwise would be kept in etcd in unencrypted form.

No, this feature is supported only in Linux containers.
NetworkPolicy objects define how groups of Pods can communicate with each other and network endpoints in general—think of them as a basic firewall for enforcing network segmentation at Layer 3 of the OSI...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €18.99/month. Cancel anytime

Authors (1)

Piotr Tylenda

Piotr Tylenda is an experienced DevOps and software engineer with a passion for Kubernetes and Azure technologies. In his projects, he has focused on the adoption of microservices architecture for monolithic applications, developing big data pipelines for e-commerce, and architecting solutions for scalable log and telemetry analytics for hardware. His most notable contribution to Kubernetes' open source ecosystem is the development of Ansible automation for provisioning and deploying hybrid Windows/Linux Kubernetes clusters. Currently, he works at Microsoft Development Center Copenhagen in Denmark as part of a team developing a Microsoft Dynamics 365 Business Central SaaS offering.

See other products by Piotr Tylenda