book

Operating OpenShift

by Rick Rackow, Manuel Dewald

November 2022

Intermediate to advanced

264 pages

6h 14m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Preface
Conventions Used in This BookUsing Code ExamplesO’Reilly Online LearningHow to Contact UsAcknowledgments
1. Introduction
Traditional Operations TeamsHow Site Reliability Engineering HelpsOpenShift as a Tool for Site Reliability EngineersIndividual Challenges for SRE Teams
2. Installing OpenShift
OKD, OCP, and Other ConsiderationsOKDOCPOSD, ROSA, and AROLocal Clusters with OpenShift LocalPlanning Cluster SizeInstance Sizing RecommendationsNode Sizing RecommendationsMaster Sizing RecommendationsInfra NodesBasic OpenShift InstallationsInstaller-Provisioned InfrastructureSelf-Provisioned InfrastructureSummary
3. Running Workloads on OpenShift
Deploying CodeDeploying Existing Container ImagesDeploying Applications from Git RepositoriesAccessing Deployed ServicesAccessing Services from Other PodsDistribution of RequestsExposing ServicesRoute by Auto-generated DNS NamesRoute by PathExternal Load BalancersSecuring Services with TLSSpecifying TLS CertificatesRedirecting Traffic to TLS RouteLet’s Encrypt Trusted CertificatesEncrypted Communication to the ServiceSummary
4. Security
Cluster AccessRole-Based Access ControlRoles and ClusterRolesRoleBindings and ClusterRoleBindingsCLIServiceAccountsThreat ModellingWorkloadsSummary
5. Automating Builds
OpenShift Image BuildsDocker BuildSource to Image (S2I) BuildCustom S2I ImagesRed Hat OpenShift PipelinesOverviewInstall Red Hat OpenShift PipelinesSetting Up the PipelineTurning the Pipeline into Continuous IntegrationSummary
6. In-Cluster Monitoring Stack
Cluster Monitoring OperatorPrometheus OperatorUser Workload MonitoringVisualizing MetricsConsole DashboardsUsing GrafanaSummary
7. Advanced Monitoring and Observability Strategies
Service Oriented MonitoringService Level IndicatorsService Level ObjectivesToolsLoggingClusterLoggingLog ForwardingLokiVisualizationInstallationCreating a Grafana InstanceData SourceDashboardsSummary
8. Automating OpenShift Cluster Operations
Recurring Operations TasksApplication UpdatesCertificate RenewalsOpenShift UpdatesBackupsAutomating Recurring Operations TasksPersistenceCreating SnapshotsUsing CronJobs for Task AutomationCluster ConfigurationManage Cluster Configuration with OpenShift GitOpsInstalling OpenShift GitOpsManaging Configuration with OpenShift GitOpsManaging Configuration of Multiple Clusters with OpenShift GitOpsSummary
9. Developing Custom Operators to Automate Cluster Operations
Operator SDKOperator DesignBootstrapping the OperatorSetting Up a CA Directory for DevelopmentDesigning the Custom Resource DefinitionInstalling the CustomResourceDefinitionLocal Operator DevelopmentThe Reconcile FunctionDeploying the OperatorCreating and Updating OpenShift ResourcesSpecifying RBAC PermissionsRouting Traffic to the OperatorAdding Additional ControllersUpdating Resource StatusSummary

10. Practical Patterns for Operating OpenShift Clusters at Scale
Cluster LifecycleCluster ConfigurationLoggingMonitoringAlertingAutomationOn CallPrimary On CallBackup On CallShift RotationTicket QueueIncident ManagementWhen to Declare an IncidentInform the CustomerDefine RolesIncident TimelineDocument the ProcessPostmortemAccessing OpenShift ClustersThe Stage Is Yours
Index
About the Authors

Overview

Kubernetes has gained significant popularity over the past few years, with OpenShift as one of its most mature and prominent distributions. But while OpenShift provides several layers of abstraction over vanilla Kubernetes, this software can quickly become overwhelming because of itsrich feature set and functionality. This practical book helps you understand and manage OpenShift clusters from minimal deployment to large multicluster installations.

Principal site reliability engineers Rick Rackow and Manuel Dewald, who worked together on Red Hat's managed OpenShift offering for years, provide valuable advice to help your teams operate OpenShift clusters efficiently. Designed for SREs, system administrators, DevOps engineers, andcloud architects, Operating OpenShift encourages consistent and easy container orchestration and helps reduce the effort of deploying a Kubernetes platform. You'll learn why OpenShift has become highly attractive to enterprises large and small.

Learn OpenShift core concepts and deployment strategies
Explore multicluster OpenShift Container Platform deployments
Administer OpenShift clusters following best practices
Learn best practices for deploying workloads to OpenShift
Monitor OpenShift clusters through state-of-the-art concepts
Build and deploy Kubernetes operators to automate administrative tasks
Configure OpenShift clusters using a GitOps approach

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781098106386Errata Page

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills