Kubernetes Namespace

Posted on Wednesday February 6, 2019

Introduction

A Kubernetes namespace provides a mechanism to scope resources in a cluster.

Namespaces provide a unique scope for:

Named resources to avoid basic naming collisions.
Delegated management authority to trusted users.
The ability to limit community resource consumption.

Most objects in the system are scoped by namespace, but some are excepted and have no namespace, including nodes and users.

Viewing namespace

The following command can be used to get a list of all namespaces:

[email protected]:# kubectl get namespaces
NAME  STATUS  AGE
default Active  13d
kube-public Active  13d
kube-system Active  13d

Kubernetes starts with three initial namespaces:

default The default namespace for objects with no other namespace
kube-system The namespace for objects created by the Kubernetes system
kube-public This namespace is created automatically and is readable by all users (including those not authenticated).

View the pods running on kube-system namespace

[email protected]:# kubectl get pods -n kube-system
NAME                                  READY     STATUS    RESTARTS   AGE
coredns-78fcdf6894-rbfq8              1/1       Running   0          13d
coredns-78fcdf6894-ttbqz              1/1       Running   0          13d
etcd-kube-master                      1/1       Running   0          13d
kube-apiserver-kube-master            1/1       Running   0          13d
kube-controller-manager-kube-master   1/1       Running   0          13d
kube-flannel-ds-hzz8t                 1/1       Running   0          13d
kube-flannel-ds-vsr2h                 1/1       Running   0          13d
kube-proxy-5vmws                      1/1       Running   0          13d
kube-proxy-7zm5v                      1/1       Running   0          13d
kube-scheduler-kube-master            1/1       Running   0          13d
tiller-deploy-85744d9bfb-qj9p4        1/1       Running   0          13d

Creating Namespace

A namespace allows a community of users to organize and manage their content in isolation from other communities. Users must be given access to projects by administrators, or if allowed to create projects, automatically have access to their own projects.

The YAML definition of creating the namespace with

kind:Namespace

{
    "kind": "Namespace",
    "apiVersion": "v1",
    "metadata": {
        "name": "prod",
        "labels": {
            "name": "prod"
        }
    }
}

The following command will create for namespace which will be used for devops purpose namely DEV,PROD,QA,STAG under which the resources would be managed accordingly.

[email protected]:# kubectl create -f https://raw.githubusercontent.com/anishnath/kubernetes/master/devops-namespace.yaml
namespace/dev created
namespace/prod created
namespace/qa created
namespace/stag created

Viewing namespace with labels

[email protected]:# kubectl get namespaces --show-labels
NAME          STATUS    AGE       LABELS
default       Active    13d       <none>
dev           Active    58s       name=dev
kube-public   Active    13d       <none>
kube-system   Active    13d       <none>
prod          Active    58s       name=prod
qa            Active    58s       name=qa
stag          Active    58s       name=stag

A Kubernetes namespace provides the scope for Pods, Services, and Deployments in the cluster.
Users interacting with one namespace do not see the content in another namespace.

Launch a busy box pods in qa namespace

[email protected]:# kubectl create -f https://raw.githubusercontent.com/anishnath/kubernetes/master/busybox.yaml -n qa
pod/busybox created
[email protected]:# kubectl get pods -n qa 
NAME      READY     STATUS    RESTARTS   AGE
busybox   1/1       Running   0          12s

Launch a busy box pods in dev namespace

[email protected]:# kubectl create -f https://raw.githubusercontent.com/anishnath/kubernetes/master/busybox.yaml -n dev
pod/busybox created
[email protected]:# kubectl get pods -n dev
NAME      READY     STATUS    RESTARTS   AGE
busybox   1/1       Running   0          8s

Deleting the Namespace

[email protected]:# kubectl delete namespace dev
namespace "dev" deleted

Warning: When a namespace is deleted, it will delete all the associated k8 resource along with.

Thanku for reading !!! Give a Share for Support

Asking for donation sound bad to me, so i'm raising fund from by offering all my Nine book for just $9

Kubernetes Related Topics

kubernetes (pod/deployment/svc) YAML/JSON Generator

Docker compose to kubernetes Generator

kubernetes to Docker Compose Generator

Docker compose Generator

Docker run to compose Generator

Docker compose to docker run Generator

kubernetes install on using ansible

kube install on in centos7/ubuntu7

kubernetes Dashbaord Setup

Pod,Cluster,Deploy,ReplicaSet Light Dive

kubernetes secure nginx deployment

kubernetes Port, Targetport and NodePort

kubernetes Namespace

kubenetes Auth,Authorization,Admission

kubernetes Role-Based Access Control

Kubernetes Privilege Escalation Vulnerability

Upgrading kubernetes cluster

Prometheus Dashboard Access

Kubernetes mysql installation

Kubernetes Jenkins installation

Podman Jenkins installation

Kubernetes mariadb installation

Kubernetes wordpress installation

Kubernetes drupal installation

Kubernetes traefik installation

Kubernetes Ingress traefik

kubernetes service external ip pending ?

Service Mesh With Istio

Access SVC in Another Namespaces

kubernetes Java client example

kubernetes letsencrypt deploy wild card certificate

Right Way to Install Docker

Docker Private repo with SSL and AUTH

Creating Docker Base Image

Container Runtime (RUNC,RKT,CRI-O,Conatinerd)

Podman Install on Ubuntu/Debian

Linux Related Topics

What's New RHEL8/Centos8

Auto-mounting an NFS share using autofs

Linux Mount&Unmout revisit

Add Ipv6 Support to ECS Instances

IPtables Must Known Stuff

How to Monitor All executed Commands

Top ps command for Monitor/Troubleshoot

Detecting Linux distribution name

Overview of Linux namespace

Overview of CGroup

Exploring Alibaba cloud Free Trial

Productivity HTTPIE, WGET, CURL

LAMP Stack on Centos8/RH8

Ansible Related Topics

Manage System users (sudo/Non sudo)

Ansible Variables Explained in Roles

Pass sudo/ssh password without prompt

Ansible Windows Commands

Openstack Articles

Applied Cryptography Topics

Anatomy of GPG

PKI in Nutshell

OCSP in Nutshell

TLSv1.3 in Nutshell

Secure Nginx Configuration

Java Keytool/Keystore in Nutshell

Twenty Steps of SSH hardening

SSH MFA with Google Authenticator

Apache TLS Configuration

Web Crypto API Topics

Web Cryptography Algorithms

How to generate random Numbers

How to digest/hash a message

AES importKey/encrypt/decrypt

AES-GCM - generateKey/Encrypt/Decrypt

AES (CTR/CBC/GCM) ExportKey in JWK format

PBKDF2 Derive Keys

PBKDF2,HMAC Digital Signature (sign/Verify)

RSA-OAEP generateKey/Encrypt/Decrypt

RSASSA-PKCS1-v1_5 generateKey/sign/verify

RSA-PSS generateKey/sign/verify

ECDSA generateKey/Sign/Verify

ECDH generateKey/Encrypt/Decrypt

python Cryptography Topics

RSA Cryptography

PHP Cryptography Topics

openssl_get_cipher_methods

openssl_get_md_methods

openssl_digest

openssl_cipher_iv_length

openssl_encrypt/decrypt

openssl_pkey_new/(rsa/dsa/ec)

openssl_get_curve_names

openssl_pbkdf2

Kubernetes Namespace

Introduction

Kubernetes Related Topics

Linux Related Topics

Ansible Related Topics

Openstack Articles

Applied Cryptography Topics

Web Crypto API Topics

python Cryptography Topics

PHP Cryptography Topics

Topics

For Coffee/ Beer/ Amazon Bill and further development of the project Support by Purchasing, The Modern Cryptography CookBook for Just $9 Coupon Price

Kubernetes for DevOps

Hello Dockerfile

Cryptography for Python Developers

Cryptography for JavaScript Developers

Go lang ryptography for Developers