{"id":19956998,"url":"https://github.com/anmolnagpal/k8s-commands","last_synced_at":"2025-05-03T21:30:28.483Z","repository":{"id":94619047,"uuid":"150265062","full_name":"anmolnagpal/k8s-commands","owner":"anmolnagpal","description":"Kubernetes Commands ","archived":false,"fork":false,"pushed_at":"2018-09-25T13:03:04.000Z","size":7,"stargazers_count":8,"open_issues_count":0,"forks_count":2,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-04-07T21:12:14.612Z","etag":null,"topics":["commands","devops","k8s","kubernetes","kubernetes-cluster"],"latest_commit_sha":null,"homepage":"https://kubernetes.io/","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/anmolnagpal.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-09-25T12:54:39.000Z","updated_at":"2021-05-04T14:29:19.000Z","dependencies_parsed_at":"2023-04-26T14:19:11.481Z","dependency_job_id":null,"html_url":"https://github.com/anmolnagpal/k8s-commands","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anmolnagpal%2Fk8s-commands","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anmolnagpal%2Fk8s-commands/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anmolnagpal%2Fk8s-commands/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anmolnagpal%2Fk8s-commands/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/anmolnagpal","download_url":"https://codeload.github.com/anmolnagpal/k8s-commands/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":252259295,"owners_count":21719658,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["commands","devops","k8s","kubernetes","kubernetes-cluster"],"created_at":"2024-11-13T01:36:17.248Z","updated_at":"2025-05-03T21:30:28.477Z","avatar_url":"https://github.com/anmolnagpal.png","language":null,"funding_links":["https://www.paypal.me/anmolnagpal"],"categories":[],"sub_categories":[],"readme":"\u003cp align=\"center\"\u003e\u003cimg src=\"https://i.imgur.com/nvYD94K.png\" /\u003e\u003c/p\u003e\n\n\u003e Kubernetes commands\n\n\u003cp align=\"center\"\u003e\n    \u003ca href=\"LICENSE.md\"\u003e\n      \u003cimg src=\"https://img.shields.io/badge/license-MIT-brightgreen.svg?style=flat-square\" alt=\"Software License\"\u003e\n    \u003c/a\u003e\n    \u003ca href=\"https://www.paypal.me/anmolnagpal\"\u003e\n      \u003cimg src=\"https://img.shields.io/badge/PayPal-Buy%20Me%20A%20BEER-blue.svg?style=flat-squares\" alt=\"Donate\"\u003e\n    \u003c/a\u003e\n  \u003c/p\u003e\n\u003c/p\u003e\n\nHelper setup to edit .yaml files with Vim:\n\n- [VIM Setup for Yaml files](#vim-setup-for-yaml-files)\n\nList of general purpose commands for Kubernetes management:\n\n- [PODS](#pods)\n- [Create Deployments](#create-deployments)\n- [Scaling PODs](#scaling-pods)\n- [POD Upgrade / History](#pod-upgrade-and-history)\n- [Services](#services)\n- [Volumes](#volumes)\n- [Secrets](#secrets)\n- [ConfigMaps](#configmaps)\n- [Ingress](#ingress)\n- [Horizontal Pod Autoscalers](#horizontal-pod-autoscalers)\n- [Scheduler](#scheduler)\n- [Taints and Tolerations](#tains_and_tolerations)\n- [Troubleshooting](#troubleshooting)\n- [Role Based Access Control (RBAC)](#role_based_access_control)\n- [Security Contexts](#security_contexts)\n- [Pod Security Policies](#pod_security_policies)\n- [Network Policies](#network_policies)\n\n## VIM Setup for Yaml files\n\nPut the following lines in ~/.vimrc:\n\n```\n\" Yaml file handling\nautocmd FileType yaml setlocal ts=2 sts=2 sw=2 expandtab\nfiletype plugin indent on\nautocmd FileType yaml setl indentkeys-=\u003c:\u003e\n\n\" Copy paste with ctr+c, ctr+v, etc\n:behave mswin\n:set clipboard=unnamedplus\n:smap \u003cDel\u003e \u003cC-g\u003e\"_d\n:smap \u003cC-c\u003e \u003cC-g\u003ey\n:smap \u003cC-x\u003e \u003cC-g\u003ex\n:imap \u003cC-v\u003e \u003cEsc\u003epi\n:smap \u003cC-v\u003e \u003cC-g\u003ep\n:smap \u003cTab\u003e \u003cC-g\u003e1\u003e \n:smap \u003cS-Tab\u003e \u003cC-g\u003e1\u003c\n```\n\nKeyboard hints:\n\n- ctrl + f: auto indent line (requires INSERT mode)\n\n## PODS\n\n```\n$ kubectl get pods\n$ kubectl get pods --all-namespaces\n$ kubectl get pod monkey -o wide\n$ kubectl get pod monkey -o yaml\n$ kubectl describe pod monkey\n```\n\n## Create Deployments\n\nCreate single deployment\n\n```\n$ kubectl run monkey --image=monkey --record\n```\n\n## Scaling PODs\n\n```bash\n$ kubectl scale deployment/POD_NAME --replicas=N\n```\n\n## POD Upgrade and history\n\n#### List history of deployments\n\n```\n$ kubectl rollout history deployment/DEPLOYMENT_NAME\n```\n\n#### Jump to specific revision\n\n```\n$ kubectl rollout undo deployment/DEPLOYMENT_NAME --to-revision=N\n```\n\n## Services\n\nList services\n\n```\n$ kubectl get services\n```\n\nExpose PODs as services (creates endpoints)\n\n```\n$ kubectl expose deployment/monkey --port=2001 --type=NodePort\n```\n\n## Volumes\n\nLits Persistent Volumes and Persistent Volumes Claims:\n\n```\n$ kubectl get pv\n$ kubectl get pvc\n```\n\n## Secrets\n\n```\n$ kubectl get secrets\n$ kubectl create secret generic --help\n$ kubectl create secret generic mysql --from-literal=password=root\n$ kubectl get secrets mysql -o yaml\n```\n## ConfigMaps\n\n```\n$ kubectl create configmap foobar --from-file=config.js\n$ kubectl get configmap foobar -o yaml\n```\n\n## DNS\n\nList DNS-PODs:\n\n```\n$ kubectl get pods --all-namespaces |grep dns\n```\n\nCheck DNS for pod nginx (assuming a busybox POD/container is running)\n\n```\n$ kubectl exec -ti busybox -- nslookup nginx\n```\n\n\u003e Note: kube-proxy running in the worker nodes manage services and set iptables rules to direct traffic.\n\n## Ingress\n\nCommands to manage Ingress for ClusterIP service type:\n\n```\n$ kubectl get ingress\n$ kubectl expose deployment ghost --port=2368\n```\n\nSpec for ingress:\n\n- [backend](https://github.com/kubernetes/ingress/tree/master/examples/deployment/nginx)\n \n## Horizontal Pod Autoscaler\n\nWhen heapster runs:\n\n```\n$ kubectl get hpa\n$ kubectl autoscale --help\n```\n\n## DaemonSets\n\n```\n$ kubectl get daemonsets\n$ kubectl get ds\n```\n\n## Scheduler\n\nNodeSelector based policy:\n\n```\n$ kubectl label node minikube foo=bar\n```\n\nNode Binding through API Server:\n\n```\n$ kubectl proxy \n$ curl -H \"Content-Type: application/json\" -X POST --data @binding.json http://localhost:8001/api/v1/namespaces/default/pods/foobar-sched/binding\n```\n\n## Tains and Tolerations\n\n```\n$ kubectl taint node master foo=bar:NoSchedule\n```\n\n## Troubleshooting\n\n```\n$ kubectl describe\n$ kubectl logs\n$ kubectl exec\n$ kubectl get nodes --show-labels\n$ kubectl get events\n```\n\nDocs Cluster: \n- https://kubernetes.io/docs/tasks/debug-application-cluster/debug-cluster/\n- https://github.com/kubernetes/kubernetes/wiki/Debugging-FAQ\n\n## Role Based Access Control\n\n- Role\n- ClusterRule\n- Binding\n- ClusterRoleBinding\n\n```\n$ kubectl create role fluent-reader --verb=get --verb=list --verb=watch --resource=pods\n$ kubectl create rolebinding foo --role=fluent-reader --user=minikube\n$ kubectl get rolebinding foo -o yaml\n```\n\n## Security Contexts\n\nDocs: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/\n\n- spec\n - securityCOntext\n   - runAsNonRoot: true\n   \n## Pod Security Policies\n\nDocs: https://github.com/kubernetes/kubernetes/blob/master/examples/podsecuritypolicy/rbac/README.md\n\n## Network Policies\n\nNetwork isolation at Pod level by using annotations\n\n```\n$ kubectl annotate ns \u003cnamespace\u003e \"net.beta.kubernetes.io/network-policy={\\\"ingress\\\": {\\\"isolation\\\": \\\"DefaultDeny\\\"}}\"\n```\n\nMore about Network Policies as a resource: \n\nhttps://kubernetes.io/docs/tasks/administer-cluster/declare-network-policy/\n\n## 👬 Contribution\n- Open pull request with improvements\n- Discuss ideas in issues\n\n- Reach out with any feedback [![Twitter URL](https://img.shields.io/twitter/url/https/twitter.com/anmol_nagpal.svg?style=social\u0026label=Follow%20%40anmol_nagpal)](https://twitter.com/anmol_nagpal)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fanmolnagpal%2Fk8s-commands","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fanmolnagpal%2Fk8s-commands","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fanmolnagpal%2Fk8s-commands/lists"}