Create AWS EKS Cluster using Terraform: AWS EKS Kubernetes Tutorial

Create AWS EKS Cluster using Terraform: AWS EKS Kubernetes Tutorial - Part 2

Рет қаралды 3,308

Күн бұрын

🔴 - To support my channel, I’d like to offer Mentorship/On-the-Job Support/Consulting - me@antonputra.com
👉 [Playlist] AWS EKS Kubernetes Tutorial: • AWS EKS Kubernetes Tut...
1. Create AWS VPC using Terraform
2. Create AWS EKS Cluster using Terraform
3. Add IAM User & IAM Role to AWS EKS
4. Horizontal Pod Autoscaler (HPA) on AWS EKS
5. Cluster Autoscaler Tutorial (EKS Pod Identities)
6. AWS Load Balancer Controller Tutorial (TLS)
7. Nginx Ingress Controller Tutorial (Cert-Manager & TLS)
8. CSI Driver Tutorial (ReadWriteOnce)
9. EFS CSI Driver Tutorial (ReadWriteMany)
10. AWS Secrets Manager Tutorial (Env & Files)
Based on the feedback, I’ll add the following sections (let me know if anything else is missing):
- Autoscaling with Karpenter
- Autoscaling with Keda
- Private Ingress with Private DNS & VPN
- Monitoring with Prometheus
- EKS self managed group
- EKS Fargate
- EKS Pod Identities vs. EKS IRSA (oidc) vs. Node roles
▬▬▬▬▬ Experience & Location 💼 ▬▬▬▬▬
► I’m a Senior Software Engineer at Juniper Networks (12+ years of experience)
► Located in San Francisco Bay Area, CA (US citizen)
▬▬▬▬▬▬ Connect with me 👋 ▬▬▬▬▬▬
► LinkedIn: / anton-putra
► Twitter/X: / antonvputra
► GitHub: github.com/antonputra
► Email: me@antonputra.com
▬▬▬▬▬▬ Related videos 👨‍🏫 ▬▬▬▬▬▬
👉 [Playlist] Kubernetes Tutorials: • Kubernetes Tutorials
👉 [Playlist] Terraform Tutorials: • Terraform Tutorials fo...
👉 [Playlist] Network Tutorials: • Network Tutorials
👉 [Playlist] Apache Kafka Tutorials: • Apache Kafka Tutorials
👉 [Playlist] Performance Benchmarks: • Performance Benchmarks
👉 [Playlist] Database Tutorials: • Database Tutorials
▬▬▬▬▬▬▬ Timestamps ⏰ ▬▬▬▬▬▬▬
0:00 Kubernetes Architecture
3:45 EKS IAM Role Permissions
5:59 EKS Nodes IAM Role Permissions
7:46 Create EKS Cluster using Terraform
11:19 Create EKS Nodes using Terraform
16:45 EKS Overview in Console
18:12 Connect to EKS
▬▬▬▬▬▬▬ Source Code 📚 ▬▬▬▬▬▬▬
► Up-to-date code, updated regularly once a month: github.com/antonputra/tutoria...
► Original code: github.com/antonputra/tutoria...
#AWS #EKS #Kubernetes

Пікірлер: 44

@AntonPutra 27 күн бұрын

🔴 - To support my channel, I’d like to offer Mentorship/On-the-Job Support/Consulting - me@antonputra.com

@AntonPutra 27 күн бұрын

Part 3 will be released in 2 days. Playlist - kzfaq.info/sun/PLiMWaCMwGJXnKY6XmeifEpjIfkWRo9v2l&si=Ku0ay7zUEKgfcVcb 1. Create AWS VPC using Terraform 2. Create AWS EKS Cluster using Terraform 3. Add IAM User & IAM Role to AWS EKS 4. Horizontal Pod Autoscaler (HPA) on AWS EKS 5. Cluster Autoscaler Tutorial (EKS Pod Identities) 6. AWS Load Balancer Controller Tutorial (TLS) 7. Nginx Ingress Controller Tutorial (Cert-Manager & TLS) 8. CSI Driver Tutorial (ReadWriteOnce) 9. EFS CSI Driver Tutorial (ReadWriteMany) 10. AWS Secrets Manager Tutorial (Env & Files) Based on the feedback, I’ll add the following sections (let me know if anything else is missing):  - Autoscaling with Karpenter - Autoscaling with Keda - Private Ingress with Private DNS & VPN - Monitoring with Prometheus - EKS self managed group - EKS Fargate - EKS Pod Identities vs. EKS IRSA (oidc) vs. Node roles

@dineshparva 27 күн бұрын

few more sections to add are cilium integration and vpc lattice and gateway api advantages

@AntonPutra 27 күн бұрын

@@dineshparva ok, added cilium, will take a look at the second one

@rafalkita884 27 күн бұрын

I would add cluster upgrades too. Every few months we have new EKS version. How would you do an upgrade when you have all these dependent cluster components deployed with terraform. Best practices, zero downtime etc. when going from one EKS version to the next one.

@AntonPutra 26 күн бұрын

@@rafalkita884 thanks, it heavily depends on the Kubernetes version itself not EKS. For example K8s can deprecated some APIs for example old ingress beta v1 and you would need to upgrade all your yaml files. So it's very hard to come up with general recommendation.

@enjoy5941 24 күн бұрын

I didn't understand Kubernetes related technologies when I read about it on the internet, but your videos made it very easy to understand. I really appreciate it.

@AntonPutra 24 күн бұрын

❤️

@soufiane22v 27 күн бұрын

Amazing stuff . This is the right moment l to deep dive into EKS . Thank you so much for the effort 🙏🏻🙏🏻🙏🏻

@AntonPutra 27 күн бұрын

thanks!

@soufiane22v 25 күн бұрын

is it possible to use openTofu instead of terraform ?

@MatthewKennedyUK 27 күн бұрын

This is fantastic, I’m loving that you’ve broken this into multiple videos and are going into a more detail helping me to build my production EKS cluster. This is worth my subscription, keep up the good work.

@AntonPutra 26 күн бұрын

thank you!

@MihaiLupoiu 26 күн бұрын

Thank you very much Anton for all the videos you make! I learned a lot from your content!

@AntonPutra 26 күн бұрын

thanks!

@GabrielPozo 27 күн бұрын

Great video!!! Now I am waiting for the next part. 😁

@AntonPutra 26 күн бұрын

thank you!

@felipemireles8422 7 күн бұрын

It is a great explanation! thank you for all your videos!

@AntonPutra 7 күн бұрын

thanks!!

@mendoncaangelo 24 күн бұрын

*Dude I see you are doing good....Keep up the good work :)....Dawai Dawai....Let the JUNIP people know you are doing well :)*

@AntonPutra 24 күн бұрын

😂😂

@arunreddy1436 27 күн бұрын

masterpiece Sir, curiously waiting for the rest of EKS videos and thank you for the great job.

@AntonPutra 26 күн бұрын

thank you!

@raghuveer120 27 күн бұрын

Another great video. Keep sharing your knowledge.

@AntonPutra 27 күн бұрын

❤️

@evgenylikhonosov572 24 күн бұрын

Thank you, great tutorial!

@AntonPutra 24 күн бұрын

❤️

@ZergStylexDD 27 күн бұрын

Great content!

@AntonPutra 27 күн бұрын

❤️

@RAHUL841991 24 күн бұрын

Amazing Videos!

@AntonPutra 24 күн бұрын

thank you!

@arnaullamas 9 күн бұрын

Great video! Helped me finding a couple of issues in a cluster setup. If you don't mind the question, is there any reason you choose not to use the VPC CNI addon?

@AntonPutra 9 күн бұрын

thanks, it actually comes by default with EKS as well as coredns, if I'm not mistaken

@dineshparva 27 күн бұрын

Thanks for the video could you explain in layman terms what exactly is the oidc provider and its role in eks does it act like a authentication broker between iam and k8s in aws?

@AntonPutra 27 күн бұрын

oidc provider allows you to establish relationship between AWS IAM and Kubernetes RBAC. 1. you create IAM role and define trust relationship with Kubernetes service account 2. you create Kubernetes service account and LINK IAM role with Kubernetes service account Finally you can assign IAM permissions to Kubernetes pods. BUT you no longer need it at all, new better way is pod identities, video comparing all approaches coming in few days

@ZergStylexDD 27 күн бұрын

In this video you create all resources using direct terraform resources. But we also have publicly available modules from Anton Babenko to create EKS and simplify the terraform layer, in my opinion. What do you think is better to use in production cases? Is it worth using such public terraform modules or is it better to create all the resources yourself?

@AntonPutra 27 күн бұрын

I respect him, i just generally don't like using open source modules. For example that open source module still uses auth configmap to manage users. It's very easy for them to start using API but it will break your infra and you would have to keep using old versions until you create new eks clusters (just from my personal experience) Modules are great for consulting and temporary envs, when you don't need to maintain clusters for over the year. I know a lot of copy pasting but when you have 20+ clusters, update module can in all envs can take months or even year :)

@prakasha5870 6 күн бұрын

good explanation. could you please put AWS url u showned in the video. it will good to read those also. Thanks. if u dont mind could you please implment istio also inside your video

@AntonPutra 6 күн бұрын

thanks, noted

@prakasha5870 6 күн бұрын

@@AntonPutra : Also prometheus and argoCD ( GitOps ) implenation inside with EKS cluster, it will be also great.

@AntonPutra 5 күн бұрын

@@prakasha5870 ok noted

@spasham74 25 күн бұрын

You had created the eks cluster in the past what is that we can expect in this new series? How is it different from the previous EKS cluster you have created?

@AntonPutra 24 күн бұрын

There have been few new developments on EKS side. 1. Kubernetes auth configmap is deprecated and recommended approach is to use new EKS API to add new users to the cluster 2. New way to grant permissions to application (we no longer use IAM OIDC provider and IAM roles for service accounts, instead we use Pod identities) 3. Some other small features in certain controllers like aws load balancer controller etc

@spasham74 24 күн бұрын

@@AntonPutra I really appreciate what you doing for the community