Docker with Kubernetes Administration – GL355

Duration:

5 Days

Audience:

Employees of federal, state and local governments; and businesses working with the government.

Course Description:

This course combines the GL340 Docker and GL360 Kubernetes Administration courses.

Participants will first understand the core features of Docker including: container creation and management, interacting with Docker hub, using Dockerfile to create and manage custom images, advanced Docker networking (how to safely expose container services to the world, and link containers), the use of Docker volumes to manage persistent data, and Docker Compose to build multi-container applications. Emphasis is placed on best practices and how to secure Docker installations and containers.

The second part of the course introduces participants to the basic concepts and architecture of Kubernetes, its initial install & setup, Kubernetes Pods, deployments and services, persistent storage, networking, automating deployment, scaling & management of containerized applications, and finally it’s logging and monitoring facilities.

Structure: 50% theory 50% hands on lab exercises

Target audience: System administrators and Devops professionals who want to understand and use Docker and Kubernetes in enterprise and cloud environments.

Prerequisites:

  • Proficiency with the Linux CLI (GL120 “Linux Fundamentals”)
  • A broad understanding of Linux system administration (GL250 “Enterprise Linux Systems Administration”).

Supported Distributions:

Red Hat Enterprise Linux 7

Course Outline:

  1. CONTAINER TECHNOLOGY OVERVIEW
    1. Instructor – Docker Demo
    2. Application Management Landscape
    3. Application Isolation
    4. Resource Measurement and Control
    5. Container Security
    6. OverlayFS Overview
    7. Container Security
    8. Open Container Initiative
    9. Docker Alternatives
    10. Docker Ecosystem
    11. Docker Ecosystem (cont.)

    LAB TASKS

    1. Container Concepts runC
    2. Container Concepts Systemd
  2. INSTALLING DOCKER
    1. Installing Docker
    2. Docker Architecture
    3. Starting the Docker Daemon
    4. Docker Daemon Configuration
    5. Docker Control Socket
    6. Enabling TLS for Docker
    7. Validating Docker Install

    LAB TASKS

    1. Installing Docker
    2. Protecting Docker with TLS
  3. MANAGING CONTAINERS
    1. Creating a New Container
    2. Listing Containers
    3. Managing Container Resources
    4. Running Commands in an Existing Container
    5. Interacting with a Running Container
    6. Stopping, Starting, and Removing Containers
    7. Copying files in/out of Containers
    8. Inspecting and Updating Containers
    9. Docker Output Filtering & Formatting

    LAB TASKS

    1. Managing Containers
    2. Configure a docker container to start at boot.
  1. MANAGING IMAGES
    1. Docker Images
    2. Listing and Removing Images
    3. Searching for Images
    4. Downloading Images
    5. Uploading Images
    6. Export/Import Images
    7. Save/Load Images
    8. Committing Changes

    LAB TASKS

    1. Docker Images
    2. Docker Platform Images
  2. CREATING IMAGES WITH DOCKERFILE
    1. Dockerfile
    2. Caching
    3. docker image build
    4. Dockerfile Instructions
    5. ENV and WORKDIR
    6. Running Commands
    7. Getting Files into the Image
    8. Defining Container Executable
    9. HEALTHCHECK
    10. Best Practices
    11. Multi-Stage builds with Dockerfile

    LAB TASKS

    1. Dockerfile Fundamentals
    2. Optimizing Image Build Size
    3. Image Builds and Caching
  3. DOCKER VOLUMES
    1. Volume Concepts
    2. The docker volume Command
    3. Creating and Using Internal Volumes
    4. Internal Volume Drivers
    5. Removing Volumes
    6. Creating and Using External Volumes
    7. SELinux Considerations
    8. Mapping Devices

    LAB TASKS

    1. Docker Internal Volumes
    2. Docker External Volumes
  4. DOCKER COMPOSE/SWARM
    1. Writing YAML Files
    2. Concepts
    3. Compose CLI
    4. Defining a Service Set
    5. Compose Versions
    6. Docker Engine Swarm Mode
    7. Docker Swarm Terms
    8. Docker Swarm Command Overview
    9. Creating a Swarm
    10. Creating Services
    11. Creating Secrets
    12. Stack Files
    13. Stack Command
    14. Swarm Placements
    15. Swarm Resource Limits & Reservations
    16. Swarm Networking
    17. Swarm Networking Troubleshooting

    LAB TASKS

    1. Docker Compose
    2. Docker Engine Swarm Mode
  5. DOCKER NETWORKING
    1. Overview
    2. Data-Link Layer Details
    3. Network Layer Details
    4. Hostnames and DNS
    5. Service Reachability
    6. Container to Container Communication
    7. Container to Container: Links (deprecated)
    8. Container to Container: Private Network
    9. Managing Private Networks
    10. Remote Host to Container

    LAB TASKS

    1. Docker Networking
    2. Exposing Ports
    3. Docker Networking
  6. DOCKER LOGGING
    1. Docker Logging
    2. Docker Logging with json-file and journald
    3. Docker Logging with syslog
    4. Docker Logging with Graylog or Logstash
    5. Docker Logging with Fluentd
    6. Docker Logging with Amazon or Google
    7. Docker Logging with Splunk

    LAB TASKS

    1. Logging to syslog
  7. KUBERNETES CORE CONCEPTS
    1. CKA Objectives Covered
    2. Kubernetes Architecture
    3. Cluster Communication
    4. Objects
    5. Object Properties
    6. Labels & Selectors
    7. Annotations
    8. Object Management
    9. Object Management (cont.)
    10. Image Fundamentals
    11. Container Fundamentals
    12. Pod Fundamentals
    13. Working with Pods

    LAB TASKS

    1. Container and Pod Fundamentals
    2. Single Node Install
    3. Pod Fundamentals
  8. INSTALLATION
    1. CKA Objectives Covered
    2. Installing HA Control Plane (DEMO)

    LAB TASKS

    1. Kubernetes HA Masters Install
    2. Kubernetes Install
    3. Joining Worker Nodes
  9. APPLICATION LIFECYCLE MANAGEMENT
    1. CKA Objectives Covered
    2. Pod Lifecycle
    3. Container Lifecycle
    4. Init Containers
    5. Container: command and args
    6. Container: Defining Environment
    7. ReplicaSet
    8. Deployments
    9. Working with Deployments
    10. Deployment Rollouts

    LAB TASKS

    1. Pod Lifecycle
    2. Init Containers
    3. Deployments
  10. NETWORKING
    1. CKA Objectives Covered
    2. Network Overview
    3. Service Discovery & CoreDNS
    4. Container Network Interface (CNI)
    5. Services
    6. Ingress Objects

    LAB TASKS

    1. Ingress Controller
    2. Port-Forwarding
    3. Services
    4. Ingress
  11. STORAGE
    1. CKA Objectives Covered
    2. Storage
    3. Volume Types
    4. Volume Types
    5. Static Volumes (DEMO)
    6. ConfigMaps
    7. ConfigMaps
    8. Secrets

    LAB TASKS

    1. (DEMO) Static Volumes
    2. (DEMO) ConfigMaps & Secrets
    3. Static Volume Provisioning
    4. ConfigMaps and Secrets
  12. SCHEDULING
    1. CKA Objectives Covered
    2. Controlling and Tracking Resources
    3. Scheduler Operation
    4. DaemonSet
    5. Node Affinity & Anti-affinity
    6. Pod Affinity & Anti-affinity
    7. Taints & Tolerations

    LAB TASKS

    1. (DEMO) Affinity and Taints
    2. Pod Resources and Scheduling
    3. Static Scheduling and Daemonsets
    4. Pod and Node Affinities
  1. DOCKER REGISTRY LAB TASKS
    1. Docker Registry
    2. Docker Registry (secured)
    3. Docker Content Trust
  2. JOBS AND CRONJOBS
    1. Jobs
    2. CronJobs

    LAB TASKS

    1. Jobs
    2. CronJobs
  3. LINUX CONTAINERS
    1. Application Management Landscape
    2. Application Isolation
    3. Resource Measurement and Control
    4. Container Security
    5. OverlayFS Overview
    6. Container Security
    7. Open Container Initiative

    LAB TASKS

    1. Container Concepts runC