Skip to content
Snippets Groups Projects
Select Git revision
  • dependabot/go_modules/k8s.io/apimachinery-0.33.0
  • dependabot/go_modules/k8s.io/client-go-0.33.0
  • dependabot/go_modules/golang.org/x/net-0.38.0
  • dependabot/go_modules/scripts/golang.org/x/net-0.38.0
  • main default protected
  • automated-updates-main
  • dependabot/go_modules/github.com/prometheus/client_golang-1.22.0
  • dependabot/go_modules/scripts/github.com/golang-jwt/jwt/v4-4.5.2
  • release-0.13
  • automated-updates-release-0.13
  • dependabot/go_modules/scripts/github.com/open-policy-agent/opa-0.68.0
  • release-0.14
  • release-0.10
  • release-0.11
  • release-0.12
  • fix-versions-action
  • versions-fix
  • release-0.9
  • release-0.8
  • release-0.7
  • v0.14.0
  • v0.13.0
  • v0.12.0
  • v0.11.0
  • v0.10.0
  • v0.9.0
  • v0.8.0
  • v0.7.0
  • v0.6.0
  • v0.5.0
  • v0.4.0
  • v0.3.0
  • v0.2.0
  • v0.1.0
34 results
Compare
Name Last commit Last update
infrastructure/kube-system/README.md
infrastructure/kube-system/descheduler.yaml
infrastructure/kube-system/kustomization.yaml
infrastructure/kube-system/metrics-server.yaml
infrastructure/kube-system/poddisruptionbudget.yaml
infrastructure/kube-system/quorum.yaml
README.md

Kube-system

This component adds some useful controllers, operators and extensions to the kube-system namespace.

Quorum

This is a simple set of pods, with a PodDisruptionBudget (PDB) of 1, which will be scheduled on control-plane hosts and prevents them from being drained e.g. during a update by accident. It's mainly there since one can not put PDBs on static pods. It's built to integrate nicely with the system-upgrades component.

Descheduler

The descheduler is supposed to help rebalancing workload after updates and alike, since small clusters will otherwise run with quite unbalanced pods. The descheduler should rebalance workload, keeping each CPU a bit cooler and this way reduce potential noise as well as the risk for all workload when a single node fails.

Metrics-server

The metrics-server is the standard component to provide basic pod metrics that can be used for vertial and horizontal pod autoscaling. Mainly here for completeness and insights using kubectl top pods.

Nice to knows

  • kubeadm doesn't provide proper certificates for the kubelet by default, which makes metrics-server require --kubelet-insecure-tls until one fixes the certificates.
  • One has to explicitly enable --authentication-token-webhook for kubeadm-installed clusters in order to allow access to the metrics endpoint for metrics-server.
  • One can't put PDBs on either daemonsets nor static-pods, therefore one requires a deployment to keep a quorum for e.g. etcd.

Links