By Kidd Ip
This article explains the best practices of Alibaba Cloud Container Service for Kubernetes (ACK).
Alibaba Cloud offers a Container Service for Kubernetes (ACK), which integrates virtualization, storage, networking, and security capabilities. It allows users to deploy applications in high-performance and scalable containers and provides full lifecycle management of enterprise-class containerized applications.
Some people call Kubernetes K8s. The definition is listed below:
Sometimes, Kubernetes is shortened to K8s, with 8 representing the number of letters between the K and the s. Kubernetes is an open-source system that can deploy, scale, and manage containerized applications anywhere in Alibaba Cloud, which also offers a managed K8s service!
Even though we can gain quite a lot of benefits from managed services, some areas would still suggest in view of best practices:
1. The Latest Version of ACK
This is an end-user responsibility, even managed service, Alibaba Cloud offered a certified version of ACK but needs to take care of version upgrades.
2. Config Files Version Handling
Config files (such as deployment, service, and ingress controller) are the KEY for change management and rollback purposes.
3. Think about YAML Files
YAML file is a good approach that allows store and version of all objects with the code in view of rollback. We only need to reapply the YAML file. Besides, it can be across multi-CSP as a multi-cloud strategy.
4. A Workflow to Go
It¡¯s time to design a proper workflow or tools to optimize the deployments, error tracking, and CI/CD process/
5. Define what you want on resource, even network (e.g. IP subnet)
6. Clearly Label on Resource
This is important in view of resource management, cost management, and whether we need to charge back or not.
7. Namespaces to Simplify Management
Namespaces handle the ACK cluster logically and enable the team to work within the same cluster simultaneously.
8. Think about Stateless
In general, stateless apps are the most popular apps we need to research.
9. Role-Based Access Control (RBAC) Consideration as Best Practice
10. Network Policy Control
11. Kubernetes to Protect by Firewall
12. Auto scaling ¨C Scale up or Scale out Consideration
13. Small Images should always be good and ideal.
14. Take good care of the Kubernetes cluster, which is the control plane.
Nick Fan - January 17, 2023
Alibaba Container Service - July 16, 2024
Hironobu Ohara - February 3, 2023
Alibaba Cloud Native - May 23, 2023
Alibaba Container Service - March 12, 2024
Alibaba Clouder - July 15, 2020
Container Service for Kubernetes
Alibaba Cloud Container Service for Kubernetes is a fully managed cloud container management service that supports native Kubernetes and integrates with other Alibaba Cloud products.
Learn More
ACK One
Provides a control plane to allow users to manage Kubernetes clusters that run based on different infrastructure resources
Learn More
Cloud-Native Applications Management Solution
Accelerate and secure the development, deployment, and management of containerized applications cost-effectively.
Learn More
Container Registry
A secure image hosting platform providing containerized image lifecycle management
Learn MoreMore Posts by Kidd Ip
