Introduction
In this lab, you will learn how to expose Kubernetes applications using various techniques, including creating internal and external services, working with labels, and exploring the basics of Ingress. You will start by setting up a local Kubernetes cluster using Minikube, then deploy a sample NGINX application and expose it both internally and externally. You will also explore the use of labels to organize and select resources, and finally, you will get a brief introduction to Ingress with a simple example. Note that Ingress is a complex topic, and this lab only provides a basic introduction to the concept.
Start the Kubernetes Cluster
In this step, you'll learn how to start and verify a local Kubernetes cluster using Minikube. This is an essential first step for developing and testing Kubernetes applications on your local machine.
First, start the Minikube cluster:
minikube start
Example output:
😄 minikube v1.29.0 on Ubuntu 22.04
✨ Automatically selected the docker driver
📌 Using Docker driver with root permissions
🔥 Creating kubernetes in kubernetes cluster
🔄 Restarting existing kubernetes cluster
🐳 Preparing Kubernetes v1.26.1 on Docker 20.10.23 ...
🚀 Launching Kubernetes ...
🌟 Enabling addons: storage-provisioner, default-storageclass
🏄 Done! kubectl is now configured to use "minikube" cluster and "default" namespace
Verify the cluster status using multiple commands:
minikube status
kubectl get nodes
Example output for minikube status:
minikube
type: Control Plane
host: Running
kubelet: Running
apiserver: Running
kubeconfig: Configured
Example output for kubectl get nodes:
NAME STATUS ROLES AGE VERSION
minikube Ready control-plane 1m v1.26.1
These commands confirm that:
- Minikube is successfully running
- A local Kubernetes cluster has been created
- The cluster is ready to use
- You have a single-node cluster with control plane capabilities
Deploy a Sample Application
In this step, you'll learn how to create and deploy a Kubernetes application using a YAML manifest. We'll create a simple NGINX web server deployment to demonstrate the process of defining and applying Kubernetes resources.
First, create a directory for your Kubernetes manifests:
mkdir -p ~/project/k8s-manifests
cd ~/project/k8s-manifests
Create a YAML file for an NGINX deployment:
nano nginx-deployment.yaml
Add the following deployment manifest:
apiVersion: apps/v1
kind: Deployment
metadata:
name: nginx-deployment
labels:
app: nginx
spec:
replicas: 3
selector:
matchLabels:
app: nginx
template:
metadata:
labels:
app: nginx
spec:
containers:
- name: nginx
image: nginx:latest
ports:
- containerPort: 80
Save the file (Ctrl+X, then Y, then Enter).
Apply the deployment to the Kubernetes cluster:
kubectl apply -f nginx-deployment.yaml
Example output:
deployment.apps/nginx-deployment created
Verify the deployment and pods:
kubectl get deployments
kubectl get pods
Example output for kubectl get deployments:
NAME READY UP-TO-DATE AVAILABLE AGE
nginx-deployment 3/3 3 3 1m
Example output for kubectl get pods:
NAME READY STATUS RESTARTS AGE
nginx-deployment-xxx-yyy 1/1 Running 0 1m
nginx-deployment-xxx-zzz 1/1 Running 0 1m
nginx-deployment-xxx-www 1/1 Running 0 1m
Wait for the pods to be in the "Running" state before proceeding.
Let's break down the YAML manifest:
apiVersion: Specifies the Kubernetes API versionkind: Defines the resource type (Deployment)metadata: Provides name and labels for the deploymentspec.replicas: Sets the number of pod replicasselector: Helps the deployment manage the correct podstemplate: Defines the pod specificationcontainers: Specifies the container image and port
This deployment creates three identical NGINX pods, demonstrating how Kubernetes manages containerized applications.
Create a Service via YAML to Expose the Application Internally or Externally
In this step, you'll learn how to create Kubernetes Services to expose your NGINX deployment internally and externally. We'll demonstrate two common service types: ClusterIP and NodePort.
First, navigate to your project directory:
cd ~/project/k8s-manifests
Create a ClusterIP service YAML file:
nano nginx-clusterip-service.yaml
Add the following service manifest:
apiVersion: v1
kind: Service
metadata:
name: nginx-clusterip-service
spec:
selector:
app: nginx
type: ClusterIP
ports:
- port: 80
targetPort: 80
Now, create a NodePort service YAML file:
nano nginx-nodeport-service.yaml
Add the following service manifest:
apiVersion: v1
kind: Service
metadata:
name: nginx-nodeport-service
spec:
selector:
app: nginx
type: NodePort
ports:
- port: 80
targetPort: 80
nodePort: 30080
Apply both service configurations:
kubectl apply -f nginx-clusterip-service.yaml
kubectl apply -f nginx-nodeport-service.yaml
Example output:
service/nginx-clusterip-service created
service/nginx-nodeport-service created
Verify the services:
kubectl get services
Example output:
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
kubernetes ClusterIP 10.96.0.1 <none> 443/TCP 30m
nginx-clusterip-service ClusterIP 10.104.xxx.xxx <none> 80/TCP 1m
nginx-nodeport-service NodePort 10.108.yyy.yyy <none> 80:30080/TCP 1m
To access the NodePort service, get the Minikube IP:
minikube ip
Example output:
192.168.49.2
Key differences between service types:
- ClusterIP: Internal cluster access only
- NodePort: Exposes service on a static port on each node's IP
- NodePort range: 30000-32767
Verify Service Configuration
In this step, you'll learn how to use kubectl describe service to inspect the detailed configuration of Kubernetes services and understand their network properties.
First, ensure you're in the project directory:
cd ~/project/k8s-manifests
Describe the ClusterIP service in detail:
kubectl describe service nginx-clusterip-service
Example output:
Name: nginx-clusterip-service
Namespace: default
Labels: <none>
Annotations: <none>
Selector: app=nginx
Type: ClusterIP
IP Family Policy: SingleStack
IP Families: IPv4
IP: 10.104.xxx.xxx
IPs: 10.104.xxx.xxx
Port: <unset> 80/TCP
TargetPort: 80/TCP
Endpoints: 10.244.0.7:80,10.244.0.8:80,10.244.0.9:80
Session Affinity: None
Events: <none>
Now, describe the NodePort service:
kubectl describe service nginx-nodeport-service
Example output:
Name: nginx-nodeport-service
Namespace: default
Labels: <none>
Annotations: <none>
Selector: app=nginx
Type: NodePort
IP Family Policy: SingleStack
IP Families: IPv4
IP: 10.108.yyy.yyy
IPs: 10.108.yyy.yyy
Port: <unset> 80/TCP
TargetPort: 80/TCP
NodePort: <unset> 30080/TCP
Endpoints: 10.244.0.7:80,10.244.0.8:80,10.244.0.9:80
Session Affinity: None
External Traffic Policy: Cluster
Events: <none>
Inspect the service endpoints to verify network connectivity:
kubectl get endpoints
Example output:
NAME ENDPOINTS AGE
kubernetes 192.168.49.2:8443 45m
nginx-clusterip-service 10.244.0.7:80,10.244.0.8:80,10.244.0.9:80 15m
nginx-nodeport-service 10.244.0.7:80,10.244.0.8:80,10.244.0.9:80 15m
Key information to understand from the service description:
- Selector: Shows which pods are part of the service
- IP: Cluster-internal IP address of the service
- Endpoints: List of pod IP addresses and ports serving the service
- Port and TargetPort: Define how traffic is routed
- NodePort: External port for NodePort service type
Use Labels to Organize and Select Resources
In this step, you'll learn how to use labels in Kubernetes to organize and select resources efficiently. Labels are key-value pairs that help you manage and organize Kubernetes objects.
First, verify the current labels on your pods:
kubectl get pods --show-labels
Example output:
NAME READY STATUS RESTARTS AGE LABELS
nginx-deployment-xxx-yyy 1/1 Running 0 30m app=nginx,pod-template-hash=xxx
nginx-deployment-xxx-zzz 1/1 Running 0 30m app=nginx,pod-template-hash=yyy
nginx-deployment-xxx-www 1/1 Running 0 30m app=nginx,pod-template-hash=zzz
Select pods using specific labels:
kubectl get pods -l app=nginx
Example output:
NAME READY STATUS RESTARTS AGE
nginx-deployment-xxx-yyy 1/1 Running 0 30m
nginx-deployment-xxx-zzz 1/1 Running 0 30m
nginx-deployment-xxx-www 1/1 Running 0 30m
Let's add a custom label to one of the pods:
kubectl label pods nginx-deployment-xxx-yyy environment=development
Replace nginx-deployment-xxx-yyy with the name of one of your pods.
Example output:
pod/nginx-deployment-xxx-yyy labeled
Now, select pods with multiple label selectors:
kubectl get pods -l app=nginx,environment=development
Example output:
NAME READY STATUS RESTARTS AGE
nginx-deployment-xxx-yyy 1/1 Running 0 30m
Remove a label from a pod:
kubectl label pods nginx-deployment-xxx-yyy environment-
Example output:
pod/nginx-deployment-xxx-yyy unlabeled
Demonstrate label selection in services:
kubectl describe service nginx-clusterip-service
Look for the "Selector" section, which shows how services use labels to identify pods.
Key points about labels:
- Labels are key-value pairs attached to Kubernetes objects
- Used for organizing, selecting, and filtering resources
- Can be added, modified, or removed dynamically
- Services and deployments use labels to manage related pods
Delete and Manage Services
In this step, you'll learn how to delete and manage Kubernetes services using kubectl commands. Understanding service management is crucial for maintaining and cleaning up your Kubernetes resources.
First, list the current services:
kubectl get services
Example output:
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
kubernetes ClusterIP 10.96.0.1 <none> 443/TCP 1h
nginx-clusterip-service ClusterIP 10.104.xxx.xxx <none> 80/TCP 45m
nginx-nodeport-service NodePort 10.108.yyy.yyy <none> 80:30080/TCP 45m
Delete a specific service using kubectl delete:
kubectl delete service nginx-clusterip-service
Example output:
service "nginx-clusterip-service" deleted
Verify the service deletion:
kubectl get services
Example output:
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
kubernetes ClusterIP 10.96.0.1 <none> 443/TCP 1h
nginx-nodeport-service NodePort 10.108.yyy.yyy <none> 80:30080/TCP 45m
To demonstrate multiple service deletion more clearly, let's recreate our services and then delete them together:
## Recreate services
kubectl apply -f nginx-clusterip-service.yaml
kubectl apply -f nginx-nodeport-service.yaml
## Delete multiple services at once
kubectl delete service nginx-clusterip-service nginx-nodeport-service
Example output:
service "nginx-clusterip-service" deleted
service "nginx-nodeport-service" deleted
Verify all services are removed (except the default kubernetes service):
kubectl get services
Example output:
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
kubernetes ClusterIP 10.96.0.1 <none> 443/TCP 1h
Key points about service deletion:
- Deleting a service removes the network endpoint
- Pods are not deleted when a service is removed
- Default kubernetes service cannot be deleted
- You can delete services using name, YAML file, or labels
- Multiple services can be deleted simultaneously by listing them or using label selectors
Introduce Ingress Basics and Show a Simple Ingress YAML Example
In this step, you'll learn about Kubernetes Ingress, a powerful way to manage external access to services in a Kubernetes cluster.
What is Ingress?
Ingress is an API object that manages external access to services in a Kubernetes cluster, typically HTTP. Ingress provides:
- Load balancing: Distributes traffic to multiple backend services
- SSL/TLS termination: Handles secure connections
- Name-based virtual hosting: Routes requests to different services based on the hostname
- Path-based routing: Routes requests to different services based on the URL path
Ingress consists of two components:
- Ingress Resource: A Kubernetes API object that defines the routing rules
- Ingress Controller: The implementation that enforces the rules defined in the Ingress Resource
Note: This lab provides only a basic introduction to Ingress. In production environments, Ingress configurations can be much more complex, including advanced routing, authentication, rate limiting, and more.
Let's enable the Ingress addon in Minikube:
minikube addons enable ingress
Example output:
💡 ingress is an addon maintained by Kubernetes. For any concerns contact minikube on GitHub.
🔉 ingress was successfully enabled
Create a deployment for two sample applications:
kubectl create deployment web1 --image=nginx:alpine
kubectl create deployment web2 --image=httpd:alpine
Expose these deployments as services:
kubectl expose deployment web1 --port=80 --type=ClusterIP --name=web1-service
kubectl expose deployment web2 --port=80 --type=ClusterIP --name=web2-service
Create an Ingress YAML file:
nano ingress-example.yaml
Add the following Ingress configuration:
apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
name: example-ingress
annotations:
nginx.ingress.kubernetes.io/rewrite-target: /
spec:
rules:
- http:
paths:
- path: /web1
pathType: Prefix
backend:
service:
name: web1-service
port:
number: 80
- path: /web2
pathType: Prefix
backend:
service:
name: web2-service
port:
number: 80
Key components of this Ingress configuration:
- metadata.annotations: Specific configurations for the Ingress controller
- spec.rules: Define how traffic is routed to services
- path: URL path that will be matched
- pathType: How the path should be matched (Prefix, Exact, or ImplementationSpecific)
- backend.service: The service and port to route traffic to
Apply the Ingress configuration:
kubectl apply -f ingress-example.yaml
Verify the Ingress resource:
kubectl get ingress
Example output:
NAME CLASS HOSTS ADDRESS PORTS AGE
example-ingress nginx * 192.168.49.2 80 1m
Check Ingress details:
kubectl describe ingress example-ingress
Example output will show routing rules and backend services.
Testing the Ingress:
## Get the Minikube IP
minikube ip
## Test access to the services through Ingress
curl $(minikube ip)/web1
curl $(minikube ip)/web2
Each command should return the default page from the respective web server.
In production environments, Ingress can be configured with:
- Multiple hostname-based rules
- TLS certificates for HTTPS
- Authentication mechanisms
- Rate limiting
- Custom timeout configurations
- Session affinity
- And many more advanced features
For more comprehensive coverage of Ingress, refer to the Kubernetes documentation and consider exploring dedicated Ingress controller documentation like NGINX Ingress or Traefik.
Summary
In this lab, you learned how to start and verify a local Kubernetes cluster using Minikube, which is essential for developing and testing Kubernetes applications on your local machine. You then created and deployed a simple NGINX web server deployment using a YAML manifest, demonstrating the process of defining and applying Kubernetes resources.
You learned how to create Kubernetes services to expose your application both internally (using ClusterIP) and externally (using NodePort), and how to use labels to organize and select resources effectively. You also practiced managing services, including deleting individual and multiple services.
Finally, you were introduced to the basics of Kubernetes Ingress and saw a simple example of path-based routing. While this lab provided only a brief introduction to Ingress, it demonstrated the fundamental concepts of routing external traffic to different services based on URL paths.
For a deeper understanding of Ingress and its capabilities, you might want to explore dedicated resources or labs focused specifically on Kubernetes Ingress controllers and configurations.
