Nothing here yet.
Nothing here yet.
Aug 15, 2025 · 2 min read · 1️⃣ Scheduler–API Server TLS Trust Flow Think of it like a secure handshake inside the Kubernetes control plane: Kubernetes CA is created during kubeadm init → stored in /etc/kubernetes/pki/ca.crt (public) and /etc/kubernetes/pki/ca.key (private). ...
Join discussionAug 15, 2025 · 2 min read · In Kubernetes, every control-plane component — like the Scheduler, Controller Manager, and kubelet — talks to the API Server over mutual TLS (mTLS).One key part of this process is the --client-ca-file flag in the API Server. What is --client-ca-file...
Join discussionAug 10, 2025 · 2 min read · When your Pod dies but your data magically reappears in the new Pod — here’s how it works under the hood. 📌 Scenario You have a Deployment with a Pod that uses a Persistent Volume Claim (PVC).The Pod crashes → A new Pod starts → Your data is still ...
Join discussionAug 9, 2025 · 2 min read · 1️⃣ What is CSI? CSI (Container Storage Interface) is a standard that lets Kubernetes talk to any storage system — whether that’s AWS EBS, Azure Disk, Google PD, or an on-prem NAS/SAN.Think of it as the driver that translates Kubernetes storage reque...
Join discussionAug 6, 2025 · 4 min read · – Explained Simply In Kubernetes, the Downward API allows pods to access their own metadata and runtime information — such as their name, namespace, labels, annotations, and even resource requests and limits — without needing to call the Kubernetes A...
SSanoj commented