This chapter covers:
- Our definition of “Linux primitives” and why they are essential to Kubernetes
- The importance of mount and storage for isolating and running containers
- Why SystemD and cgroups are necessary Kubernetes building blocks
- A walkthrough of some of `iptables” more critical features.
- How containers manifest themselves in production, and how image baselayers affect Kubernetes clusters in the wild.
In this chapter, we’ll cover the underlying tools of the trade, which have been used for decades by Linux administrators to build out various “opinionated” internal Kubernetes-like tools. We introduce you to the essential elements that Kubernetes, and many other PAAS creations of the past.
Let’s kick things off with a couple of use cases:
- Network administrators have historically shipped iptables rules with configuration management software and automated the configuration of these rules to poke firewall holes so applications can connect.
- Storage administrators often provide directions for installing storage into an application - directions that require running the
mount
command on a server to attach an NFS client to a NAS, many different machines in a data center internal access to storage.