►
From YouTube: Kubernetes Office Hours 20181121
Description
Join our monthly live stream where Kubernetes experts answer user questions, join us on #office-hours on slack or post in our question thread (see below):
Info: https://github.com/kubernetes/community/blob/master/events/office-hours.md
Question thread: https://discuss.kubernetes.io/t/office-hours-for-21-november/3528
B
B
All
right
welcome.
Everybody
is
the
third
Wednesday
of
the
month.
That
means
it's
office
hours,
our
monthly
live
stream
where
we
go
live
on
the
air
on
YouTube,
with
an
esteemed
panel
of
experts
that
you
see
here
and
we
answer
as
many
kubernetes
questions
for
you
as
possible.
We
are
going
to
be
in
hash
office
hours
on
the
kubernetes
slack.
If
you
go
to
slack
dock
kubernetes
io
just
follow
the
forum
there
and
go
into
the
hash
office
hours
Channel.
If
you're
joining
us
from
the
kubernetes
users
channel
welcome,
feel
free
to
just
pop
questions.
B
What
we
do
is
we
queue
them
up
and
we
go
through
them
as
quickly
as
possible.
Let's
do
some
quick,
intros.
First
we're
steam
panel
keep
in
mind.
This
panel
is
volunteer
only
so
if
you've
done
a
really
great
project
on
kubernetes
or
you've
amassed
some
expertise.
Sitting
on
this
panel
is
a
great
way
to
really
contribute
back
to
the
community,
and
it's
not
a
big
commitment.
It's
one
hour
a
month
and
we
have
enough
people
we
can
rotate
around.
B
C
D
B
Awesome
great
and
I'm
Jorge
Castro
I
am
a
community
manager
at
hefty
Olson
to
be
VMware
and
I
will
be
your
host
coordinator
for
this
evening,
aka
I
will
be
reading
the
questions
to
the
panel.
Some
quick
rules
before
we
get
started.
First
of
all,
thanks
for
joining
feel
free
to
chat
in
the
channel.
We
will
be
live-streaming
the
channel,
along
with
the
video,
so
feel
free
to
talk
amongst
yourselves
base
links
and
so
on.
If
we
do
address
your
question
today,
please
just
submit
your
question.
B
You
will
be
automatically
entered
in
a
raffle
to
win
this
wonderful
kubernetes
t-shirt.
So
you
too
can
look
like
Tim
Hawking.
We
give
away
a
t-shirt
every
time
we
do
a
session
and
it's
a
lot
of
fun
with
that.
The
quick
ground
rules
there's
a
judgment-free
zone,
so
people
will
be
asking
beginner
questions.
People
will
be
asking
complex
questions
so
remember
everyone
had
to
start
from
somewhere.
So
please
be
supportive
of
everybody
in
your
body.
Remember
that
we
do
follow
the
code
of
conduct,
as
this
is
a
kubernetes
project
event.
B
B
So
live
debugging
is
off
topic,
so
we
will
concentrate
on,
is
do
our
best
to
give
you
the
next
step
on
what
you
need
to
do
next,
to
get
the
information
that
you
would
need
to
divide
something
panelists
you're
encouraged
to
expand
on
your
answers
with
your
experiences
and
pro
tips
and
anything
beyond
the
usual
just
answering
a
question.
The
reason
we
love
you
is
because
of
your
expertise
with
the
stuff
in
production.
So
any
insight
that
you
have
there's
always
welcome
audience.
B
You
can
help
us
out
by
piecing
in
URLs
to
the
official
Docs
blogs.
Usually
while
one
of
the
panelists
is
answering
a
question,
they'll
mention
something
and
then
people
go
out,
though
they'll
go
Google
through.
You
know
the
problem
that
we're
talking
about
and
whack
a
whole
bunch
of
URLs
in
the
chat
that
is
very
useful,
very
recommend
and
we
like
to
collect
those
up
and
stick
them
in
the
thread.
Afterwards.
B
Bob
is
going
to
go
ahead
and
post
the
question
thread
into
chat
right
now,
that's
kind
of
where
we're
collecting
the
text.
If,
if
you
already
have
like
a
link
to
a
stack
overflow
question
or
something
and
what
we
do,
is
we
shove
all
the
notes
into
that
thread?
So
you
have
them
there.
You
can
also
help
us
out
by
tweet
spreading
the
word
pay
it
forward.
We
do
our
best
to
try
to
help
people
as
you
can
so
thanks
everyone
for
joining
remember.
B
Each
of
these
sessions
is
recorded
and
available
on
YouTube,
and
especially,
if
you're,
using
this
as
a
work
resource.
As
like
a
team
thing,
we
had
this
vision
that
people
at
work
during
lunch
or
sitting
down
and
watching
off
desires.
If
there's
any
information
that
you
feel
would
help
make
this
a
better
resource
for
your
team,
that's
using
kubernetes
for
for
something
useful.
We
would
love
to
know
about
it
and,
as
usual,
if
you
want
to
sit
in
this
panel,
all
these
people
are
volunteers
and
they're
taking
the
time
and
their
employers.
B
Let
them
take
the
time
to
help
users
out.
So
the
more
you
feedback
you
give
us
the
better
and
when
you
do
join,
you
do
get
a
fabulous,
fabulous,
kubernetes
water
bottle,
which
I
have
yet
to
give
these
folks.
But
hey
I,
did
remember
to
wear
the
red
kubernetes
shirt
today.
So
with
that
audience
are
you
ready
feel
free
to
type
it's
a
chat,
and
then
we
will
get
started
all
right.
The
first
one
comes
from
cigar
who
actually
PM.
This
question
to
me
says:
reg.
Does
the
mini
version?
B
3.30
support
docker
version,
1809
dot
0,
but
it
says
it
doesn't
support
dr
version
1809
dot
0.
So
this
is,
I'm
gonna
expand
on
it
on
this
question
here
a
little
bit
for
the
panel.
What
is
the
deal
with
docker
versions
and
the
stuff
that
I
need
to
run
kubernetes
right,
because
the
client-side
tools
and
stuff
is
obviously
revving
at
Dockers
pace,
but
then
again
we
use
those
tools
in
kubernetes.
A
Yeah
I
think
usually
there
is
a
few
versions
that
are
tested
and
stable.
Usually
newer
versions
should
work,
especially
it's
the
most
recent
versions.
I
guess.
If
you
switch
to
container
D
implementation,
then
that
should
be
the
best
that
set
min
EQ.
You
would
I
guess
you're
using
no
VM
driver,
because
otherwise
it
comes
with
its
own
version
of
docker.
So
if
you're,
using
a
VM
for
mini
cube
like
KVM
or
thing
kind
of
in
it's
pretty
much
what
you
would
use,
then
it
would
spawn
its
own
docker
in
the
VM
and
use
that.
D
B
I
fight
I
find
myself
I
saved
myself
a
lot
of
headache
by
using
the
docker
that
comes
with
kubernetes,
so
like
using
the
even
on
my
laptop
I,
don't
install
like
cubelet
and
stuff
I
have
the
repo
with
docker
in
it
so
I'm,
using
the
exact
docker
on
my
laptop.
This
is
different,
especially
on
abouttwo.
This
is
different
than
the
version
of
docker
that
you
get
from
the
docker
repo,
it's
different
from
the
version
that
ships
in
distro
and
different
from
the
version
the
canonical
supports
on
snaps.
B
So
that's
like
five
different
versions
of
docker
I
find
myself
since
I'm,
mostly
using
it
in
a
kubernetes
context.
I
just
use
you
know,
like
your,
is
usually
not
like
a
feature
that
I
need
very
badly
in
the
latest
latest
version
of
docker
I'm
happy
with
what
kubernetes
gives
me,
which
is
a
little
bit
older,
but
yeah,
there's
version
skew
there
I,
don't
really
know
a
solution
other
than
paying
attention
to
that,
and
it's
a
thing
you
have
to
deal
with
all
right.
Any
other
comments
on
many
cuban
diversions.
C
B
B
B
E
C
E
That's
that's.
You
know,
that's
the
onus
on
you
going
that
way.
Saying:
okay,
I'm
gonna
go
off
the
beaten
path,
I
personally,
just
go
with
whatever.
Is
there
because
I'm
relying
on
kubernetes
more
than
I
am
on
docker?
It
really
is
just
just
simple
infrastructure:
it
just
needs
to
run
the
basic
things
and
then
it's
through
the
kubernetes
interface,
and
maybe
it's
because
I'm
not
doing
anything
too
fancy
because
I
like
Portability
and
by
not
doing
anything
too
fancy.
It
ensures
portability,
at
least
on
that
layer.
Yep.
B
Okay,
moving
on
Jim
CMS
hi
I
like
to
submit
a
question
for
office
hours,
I'm,
a
newbie,
kubernetes
user,
welcome
having
a
problem
getting
kubernetes
up
and
running
on
my
single
node
cluster
problem
description
is
here
and
I'm
gonna
go
ahead
and
whack
that
URL
in
chat
again
just
to
have
it
there
on
the
live
stream.
I.
Follow
that
the
bugging
steps
at
the
docs,
which
is
the
debug
application,
troubleshooting
page,
which
I
will
also
paste
into
the
chat,
but
that
didn't
solve
my
problems.
B
B
And
then
Erin
would
like
to
remind
everybody
the
lettuce,
several
Dockers
18:09,
which
is
currently
not
supported
in
kubernetes,
and
that
Dockers
now
moved
to
a
six
month
release
schedule.
That
is
something
I
didn't
know:
I,
don't
know
how
it
lines
up
with
the
kubernetes
release
schedule
but
sounds
like
they
would
start
to
line
up
at
some
point.
A
A
D
You,
wouldn't
you
well
know
you
should
run
core
DNS
our
on
host
networking
as
well,
so
they
try
and
DNS
itself.
If
that's
not
self
to
host
networking,
then
it
would
try
and
use
the
internal
service
at
which
point
yeah.
It's
not
gonna
work.
So
if
it's
on
host
networking
needs
to
use
that
well,
I
guess
local
host
at
that
point
and
trying
to
look
the
API
so
him
to
get
that
list.
A
D
We
just
noticed
I've
just
noticed
that
the
port
that
the
service
is
exposing
and
the
one
that
coordinates
is
trying
to
get
to
aren't
actually
the
same
I
think
corniness
is
trying
to
go
to
port
for
for
three
bit
of
service
and
it
does
have
port
for
for
threatening
my
story.
Pilot
port
is
six
war
for
free
yeah,
not
sure
I
would
avoid
using
the
service
if
possible,.
C
B
With
that
I'll
take
a
note
also
to
just
pass
along
the
stack
overflow
question
to
the
folks
at
we've.
Okay,
that's
always
useful,
just
a
reminder
to
everybody.
If
you
do
put
your
question
on
Stack
Overflow,
it's
really
useful
because
we
can
continue
to
improve
it
and
then
pass
it
along
to
somebody,
as
opposed
to
asking
to
someone
to
fast
forward
15
minutes
into
this
video
and
trying
to
answer
it.
So
we
will
send
some
we've
folks
that
way
as
we
can.
B
Okay
any
other
comments
on
this
one
before
we
move
on
those
of
you
on
the
live
stream,
keep
on
asking
them,
we're
just
adding
them
to
the
queue
and
getting
through
them
as
fast
as
we
can
all
right,
Simon
asks
question
format
during
office
hours.
We
are
using
ansible
for
most
of
the
things
we
do.
We've
been
seeing
some
issues
and
read
more
when
it
comes
to
the
hell
module
for
ansible.
Do
you
see
that
much
recommend
it
for
production,
or
is
it
located?
If
we
shouldn't
use
a
module?
C
E
Don't
use
ansible
so
helm.
The
home
community
doesn't
officially
support
this,
it's
more
supported
by
the
ansible
community.
So
this
is
not
a
helm
project
or
something
like
this,
and
so
it's
not
something
that
I'm
all
that
familiar
with
since
I'm,
not
an
ansible
user,
and
they
don't
do
this
working
to
the
documentation.
It's
listed
over,
there's
community
maintained
and
so
I'm
actually
don't
know
what
state
it's
in.
Maybe
somebody
else
here:
can
it
maybe
production-ready
it
may
not
I,
actually
don't
have
a
good
answer.
I'm,
sorry,
yeah,
like
I,
wonder
you
can't
just.
E
What
I
think
is
they're
talking
about
is
ansible
has
a
hell
module,
that's
not
home,
that's
part
of
the
ansible
community
that
can
then
use
home,
and
you
can
tell
you
know
using
your
normal
ansible
scripts.
Here's
where
your,
where
your
charts
are,
here's,
what
you
want
to
install
here's,
what
you're
gonna
do
and
then
ansible
then
call
helm
to
do
that
stuff,
and
it
knows
what
to
do
and
it's
over
there,
and
so
it
may
work.
It
may
be
production
ready,
I'm,
actually
just
not
sure.
C
C
A
C
B
You're
typing
and
when
we
do
get
your
question
feel
free
to
post
a
follow-up
or
just
keep
on
typing.
With
clarifications
in
the
chat,
we
will
constantly
monitor
it,
for
you,
Darren
asked
says:
I
have
a
pattern
for
using
how
many
instable
just
getting
it
now
thanks
a
lot
Darren
and
that
is
Darren
Gruber.
Thank
you
all
right.
B
That's
a
nice
small
one
though
you
that's,
really
great
good,
lookin
out
Darren
Darren
I'm
gonna.
Send
you
a
spare
shirt
just
because
let
me
write
that
down
cuz!
That's
that's
what
I
like
to
see
I
love
to
see
people
helping
each
other
see.
Look
at
that!
Matt!
Someone
helped
you
out!
You
didn't
even
know
the
answer
to
the
question.
That's
really
awesome!
Alright,
thanks
for
that,
Darren
moving
on
Brian
asks
question:
have
you
managed
clusters
and
local
single
node
clusters?
Not
one
a
three
node
cluster,
primarily
targeted
at
cube
flow,
slash
active.
B
A
Recommendation
for
below
10
nodes
is
2
plus
4,
think
above
10,
or
to
10
to
15
or
10
to
20
would
be
10.
Booth,
CPUs
and
8
gigs
of
ram
I
wouldn't
go
with
2
small
memory
on
the
workers,
because,
but
that
depends
basically
on
what
you're
running,
not
sure
I've,
never
used
tubes
spray,
that
I
kind
of
default
to
recommending
cube
ADM.
Recently,
yeah.
B
Cubes
freaking
Sookie
Bannon
these
days,
so
I
think
it's
too
much
for
saying
yes,
good,
pretty,
but
I
mean
if
you
like,
the
convenience,
dad
I
I
really
enjoy
I
I
wish
I
had
the
time
to
kind
of
document.
This
better
and
say:
cluster
lifecycle
is
the
single
node
experience
for
cube
admin.
It's
like
really
good,
all
right
now
and
then
like.
If
you
want
to
add
stuff
another
node,
it's
just
a
like
one
man
to
add
it.
You
know,
after
you
kind
of
setup
the
single
mode
thing,
oh
because.
C
A
C
A
B
C
B
C
Ok,
so
so
the
Tildy
are
on.
This
is
that
the
federation
v1
sort
of
tried
to
like
fake
the
standard,
kubernetes
api
and
then
actually
wound
up
having
a
lot
of
limitations
and
was
really
hard
to
maintain
because
they
had
to
Revit,
essentially
with
every
release
of
kubernetes,
and
you
had
to
go
through
all
sorts
of
crazy
stuff
with
ensuring
you
know
all
your.
B
All
right
Benji,
if
that
answers
your
question
and
you're
on
the
screen,
feel
free
to
ask
a
follow-up,
we're
watching
the
chat
there
and
then
just
some
more
feedback
here
on
the
cube
admin
with
cubes
for
a
bit.
Simon
would
like
to
say
in
version
2.7
dot,
zero,
it's
experimental,
but
the
experimental
tag
seems
to
be
removed
from
master,
so
some
homework
on
our
part.
It
has.
It
sounds
like
it's
gone
production.
Remember
that
cube
admin
is
also
going
GA,
this
cycle
in
a
few
days
ish.
So
that
might
be
that
might
be
related.
B
E
Yeah,
this
is
a
tough
one
here,
I
haven't
done
this,
but
the
the
only
thing
that
I
can
come
up
with
is,
if
you
expose
everything
via
the
secret
and
then
there's
actually
a
method
and
I
think
this
has
landed
too
and
I'm
gonna
paste
a
link
into
true
slack
here.
That
tells
you
how
you
can
get
a
how
you
can
get
in
an
environment
variable
within
your
pod.
The
number
for
your
stateful
set.
E
You
can
get
your
index
and
if
you
use
this
and
then
you
have
all
of
the
information
available
from
the
secret
available,
such
as
in
another
environment
variable
as
an
array,
you
can
go.
Look
it
up.
Then,
because
you
have
the
two
pieces
of
information.
That's
the
the
bit
that
I
haven't
done
this,
but
that's
the
way
that
I
would
probably
start
approaching
it.
Mm-Hmm.
A
Yeah
that
would
definitely
work
if
you
have
a
security
issue
of
like
not
not
wanting
to
to
have
all
the
secrets
shared
between
your
parts,
then
you
might
need
to
write
an
actual
controller
for
this,
but
usually
you
shouldn't
have
that
kind
of
issue.
I,
don't
think
I
mean
they
should
be
talking
to
each
other
anyway,.
A
B
E
Wow,
that's
a
good
question:
can
use
it
a
NIC
container
to
create
an
environment.
Variable
I,
don't
know
the
answer,
but
I'm
guessing
it
to
know,
because
it
is
a
separate
container,
brick,
shell
and
so
to
actually
inject.
That
is
it's
different.
Somebody
may
know
some
trick
around
it,
but
I
don't
think
you
can.
C
B
Mm-Hmm,
it
looks
like
people
are
responding.
The
kate
script,
those
questions
I
just
I
just
want
to
repeat
this
for
the
stream
here
speaking
of
environments.
Is
there
a
reason
why
some
pods
in
the
same
names
we
see
other
pod
environments?
Are
these
coming
from
secrets
and
roth
roughy?
Sorry
I,
don't
know
how
to
pronounce.
It
says
it's
Auto
generated
by
the
cubelet.
It's
these
neighboring
service
in
the
namespace,
it's
not
their
secrets
or
environment
or
see
and
I
see
nods
from
the
panel
ish.
So
thanks
very
you're.
A
B
B
E
So,
what's
coming
in
home,
3
the
quick
pitch
here
killer
is
going
away,
and
so
those
of
you
who
had
to
do
things
like
multiple
tillers
and
stuff,
like
that,
all
of
that's
gone,
the
home
client,
is
able
to
handle
everything.
In
fact,
that's
already
there
we
have,
let's
see,
charts,
we'll,
have
a
whole
bunch
of
additions
and
changes
to
them.
For
example,
you
can
have
a
library
chart
to
share
bits
and
reuse
them,
we're
gonna
have
Lua
in
there.
E
It
looks
like,
and
the
choice
of
Lua
actually
has
to
do
when
you
get
into
security
and
embedding
it
and
cross-platform
and
the
ability
to
easily
do
that.
It's
the
popular
language
that
pops
out
for
those
things,
and
so
we're
looking
at
embedding
Lua
into
this,
and
so
you
could
have
Lua
in
your
church
that
do
extensions,
because
we
do
have
people
who
want
to
do
quite
crazy
things.
It
may
surprise
some
people,
but
you
can
uh-oh
OpenStack
into
kubernetes
with
helm
and
there's
crazy
things
in
there
for
that.
E
We're
gonna
be
updating
to
use
things
such
as
CR,
DS
and
secrets
for
helm,
storing
its
own
information,
one
of
the
neat
things
that
we
could
probably
use
some
help
with
is.
We
would
like
to
do
something
like
JSON
schema
ties,
the
values
file
and
the
possible
things
in
there.
That'll
allow
auto-generating
forms
for
you
know
you
eyes,
that'll,
allow
validating
stuff
and
the
go
ability
to
do
that
with
JSON
schema
looks
like
it
might
be
immature.
So
that's
one
of
the
risks
I
would
say.
E
Is
that
particular
one,
because
it's
just
that
space
endo
of
working
with
some
of
these
things
it
looks
like
it
could
use
some
work,
we're
still
poking
around
at
it,
but
that's
something
we
haven't
done
yet
doc,
but
I'll
share
into
chat
here
a
couple
of
things
there
and
on
helm.
We
do
have
a
project
where
we
are
keeping
track
of
v3
and
what's
going
on
here,
I'll
drop
that
in
yep.
B
E
Can
you
can
see
what
has
happened?
Some
things
may
change
here.
One
of
the
conversations
that
has
recently
started
is
whether,
instead
of
going
to
something
like
a
repos
v2
index,
which
was
there
for
performance,
do
we
migrate
to
is
our
way
to
use
container
repositories
to
store
charts,
and
there
are
some
folks
now
talking
about.
Is
that
a
possibility
that
we
could
layer
in
and
so
that
one
is
at
risk
just
because
we've
become
overcome
by
a
different
solution?
E
B
E
A
E
On
downloads
and
stuff,
just
from
stable
charts
in
there
mind-blowing
right,
like
in
a
month
over
40,000
unique
IPS,
will
just
pull
from
stable
mm-hmm.
That's
that's
a
big
number
and
that
doesn't,
you
know,
include
all
of
the
private
stuff
people,
and
so
we
take
stability
and
api's
really
seriously
so
helm.
3
is
an
opportunity
to
update
to
a
bunch
of
kubernetes
things
that
have
happened
and,
at
the
same
time,
it's
an
opportunity
to
say:
we've
learned
a
lot
of
lessons.
E
E
E
B
E
You
can
get
rid
of
tiller
and
you
can
do
install
home,
but
beyond
that
we
we
haven't
really
figured
that
out.
We
want
the
charts
for
almost
everybody
to
be
able
to
continue
to
move
forward.
That's
a
big,
strong
thing
anymore.
You
know
the
old
repose
just
to
be
able
to
pull
from
and
deploy
things
as
far
as
migration
path,
and
that
kind
of
thing
we
haven't
worked
that
out.
Yet
ok.
B
And
we
do
have
a
follow
up
here.
I'm
just
gonna,
ask
Darren's
quick
question
here.
While
we're
talking
about
home,
we
use
chart
museum
for
hosting
our
homes.
Is
there
any
way
to
force
overwrite
of
a
chart
with
the
same
version?
We
use
the
push
plugin
for
Helmand
I'm,
not
sure
that
this
functionality
exists.
I.
E
Don't
know
the
answer
to
this:
one
I
haven't
done
that
we
tend
to
go
for
just
like
with
our
container
originally
like
immutable,
charts,
mm-hm,
and
so
that
way,
every
version
you
know
it's
different
and
then
you
can
trace
it
from
environment
to
environment.
So
we
don't
tend
to
do
that
because
we
want
that
immutability
and,
if
you're
pushing
same
version
up
with
different
content,
and
it's
not
immutable,
you're
mutating
it,
and
now
you
may
not
know
what
version
of
what
thing
you
had
running
in
different
environments.
B
B
Dear
NASA's,
bad
paths,
test
overwrite,
totally
agreed,
there's,
probably
a
situation
there
keep
on
typing
there.
Maybe
maybe
we
can
help
out
or
or
link
you
up
with
a
chart
museum
person.
Okay,
keep
on
asking
the
questions
in
chat
everybody.
Those
of
you
tuning
in
this
is
the
kubernetes
office
hours
join
us
at
the
little
address
below
and
ask
your
question
about
kubernetes,
and
then
we
will
get
to
it
moving
on
through
the
queue
that
variable
yes,
Simon.
A
You
can
do
it
for
inter
pot,
but
it
won't
be
network
policy
on
the
layer.
Three
and
four
it
will
be
on
layer,
seven
or
five
to
seven
I
would
say
somewhere,
so
it
should
be,
should
be
used
if
back
together
with
network
policy
and
I
know
that
people
like
Tai
Guerra
from
kellyco,
they've
kind
of
advocated
for
using
both
together
and
I,
think
there's
even
some
designs
for
application
level
policies
that
would
kind
of
be
a
single
level
of
policy
that
you
define.
A
That
then
gets
implemented
by
both
the
CNI
and
SEO
and
especially
if
you
have
a
CNI
like
cilium
that
goes
from
level
3
to
7
and
might
even
support
Kafka
policies.
So
who
implements
the
policy
and
who
defines
like
where
you
define
it,
are
a
bit
complicated
and
not
not
always
kind
of
very
clear
to
to
define
in
your
setup,
mm-hmm.
C
A
B
Thank
you
and
then,
let's
see,
oh
I,
actually
miss
a
question
for
Darren,
so
I'm
gonna
get
to
that
one.
Next,
any
other
comments
on
this
network
policy.
Thanks
for
the
paint,
Darren
and
Matt's,
also
answering
Darren's
question
of
why
why
he
needed
a
to
redeploy
the
same
version?
That's
recommending
that
you
could
just
deploy
your
chart
from
the
local
file
system
if
you're
doing
development
so
that
you
can
just
write
quickly,
all
right,
real
quick.
We
have.
We
have
a
quick
survey.
B
Question
Darren
wants
to
know
what
are
some
of
the
must-haves
applications
you
have
to
use
to
help
manage
slash,
interact
with
your
clusters.
Just
to
give
you
example:
he
likes
stern
for
tailing
logs
for
multiple
containers
and
telepresence
dot.
Io
for
joining
kubernetes
network
to
your
local
machine
seems,
like
everybody
loves,
telepresence
I
haven't
had
anybody
complain,
but
it's
like
one
of
those
things
where
everyone's
like
this
is
really
great.
So
that's
good
any
of
any
other
tips.
Questions
I!
Do
we
have
a
thread
on
this
Bob
thought.
C
C
B
B
It
would
be
great
to
have
like
associated
cool
tools
that
you
can
put
on
top
of
your
cluster
and
try
to
get
that
from
that,
so
we
actually
have
on
the
forums.
There's
this
great
thread
on
cue,
cuddle
tips
and
tricks.
We
should
definitely
have
one
for
tools
like
telepresence
stern
I
do
want
to
mention
before
we
move
on
to
the
next
Federation
question
that
someone
mentioned.
A
B
B
E
E
B
A
B
A
B
E
C
B
Yeah
all
right,
so
what
we'll
do
is
we'll
move
on
to
the
next
Federation
question,
because
I
want
you
to
answer
that
one
Bob
and
then
I
want
to
make
sure
we
grab
all
these
tools
and
start
sticking
sticking
them
in
a
thread
because
I
don't
even
know
about
cubes
score.
That's
why
we
do
these.
We
can
all
learn
something
all
right.
Those
of
you
listening,
keep
on
sticking
cool
tools
and
stuff
into
thread
and
we'll
just
or
in
the
in
the
chat
we'll
keep
on
mentioning
them.
B
C
There
really
isn't
a
plan
for
that,
and
it's
really
the
namespace
and
the
stuff
that,
where
you
deploy
your
you
know
the
CRTs
for
everything
all
your
work,
at
least
in
the
current
version
of
it,
is
going
to
be
in
that
sort
of
you
know
not
necessary
game
space
but
specific
cluster,
and
then
it
will.
You
can
sort
define
how
things
get
propagated
up
from
there
when
things
as
far
as
like
the
pull
based
reconcile
and
some
of
that
stuff
will
just
be.
However,
you
know
other
people
want
to
implement
it.
B
All
right,
Benji
I,
hope
that
answers
your
question
feel
free
to
keep
on
typing.
We
have
two
questions
in
the
queue,
so
we
probably
have
room
for
two
more
questions
keep
on
asking
them.
If
not,
usually
people
stick
around
after
the
show
and
answer
them
and
of
course
we
have
a
session
in
about
six
hours
from
now.
So,
if
we
don't
get
to
you,
we
will
definitely
try
to
get
to
you.
This
afternoon,
mark
would
like
to
ask
question
I'm,
really
wondering
what
the
best
course
of
action
is
to
orchestrate
global
kubernetes
clusters.
B
A
That
that's
exactly
why
people
are
going
towards
cluster
API
and
similar
tools.
I
mean
there
is
a
few
tools
out
there
that
can
manage
more
clusters.
Think
gardener
Rancher
transform
all
kinds
of
different
tools.
However,
something
upstream
will
hopefully
be
emerging
this
cluster
API.
Until
then,
basically,
you
need
to
write
your
own.
If
you
don't
want
to
go
over
any
of
the
projects
out
there,
you
know
open
source
or
paid.
E
It
is
not
what
at
least
in
kubernetes
what
we
would
call
beta,
which
is
where
many
of
us
run
beta
as
production.
I.
Don't
know
that
it's
ready
for
that
yet,
but
it's
probably
the
most
likely
thing
to
get
there
soon,
but
there
are
yeah
like
somebody's
a
rancher.
There
are
a
couple
of
things
that
are
trying
to
do
this
now
and.
A
I
guess
the
chrome
experience
I
can
just
recommend
be
very
hard
with
your
versioning
version.
Everything
try
to
really
like
stick
to
two
configurations
and
keep
them
in
gates
or
somewhere.
Stick
to
immutability.
Don't
do
anything
manual
on
your
clusters.
Keep
it
everything
immutable
reapply,
don't
don't
kind
of
run
scripting
around
just
just
be
very
strict
in
that
sense,
so
you
don't
diverge
from
from
your
configurations
in
clusters
and
you
don't
get
to
pet
clusters,
but
you
have
basically
cattle
clusters
that
you.
A
B
All
right
any
other
comments
on
this.
Okay.
Moving
on
to
Edward
T
actually
skip
your
question.
Sorry
about
that.
But
thanks
for
letting
me
know
Asshai
what
is
your
internet
traffic
into
a
bare-metal
cluster,
currently
using
keepalive
d
virtual
IP,
pointing
to
an
ingress,
Controller
node
point
service?
Is
there
a
better
way
to
do
this?.
C
First
I
would
opt
for
metal
lb,
it's
sort
of
a
better
version
of
the
keepalive
d
like
load,
balancer
service,
a
service
type
load
balancing
provider,
but
in
general
you
sort
of
have
it
right.
The
way
we've
done
this
in
a
couple
ways
is:
we
might
have
a
set
of
ingress
nodes
and
they
sort
of
bridge
between
the
like
internal
cluster
and
sort
of
the
internet
and
I
know
a
couple.
C
A
B
All
right
moving
on
because
now
we
are
talking
Edward
I,
hope
that
answers
your
question
feel
free
to
follow
up.
Simon
asks
question:
how
are
you
handling
ID
tokens
with
token
equals
we're
using
PowerShell,
where
it's
extracts
a
token
manually,
I'm,
not
gonna,
read
that,
but
I
will
do
you
guys
see
the
question
on
the
chat
scroll
up?
Oh
yeah,.
D
I've
already
replied
to
that
one.
It's
a
quick
summary
that
yeah,
so
it
looks
like
ad
FS
supports
open,
ID
connect.
So
what
I
would
suggest
you?
You
should
do
like
if
you've
got
an
open,
ID
connect
set
up
already
for
your
idea.
First,
there
are
tools
out
there
that
he's
already
using
iidc
great
we've
got
an
example
of
our
authentication
using
IDC
that
basically
configures
cube
conflict
for
you.
D
So
if
you've
got
an
IDC
setup
and
you're
happy
to
use
refreshing
once
you've
got
that
set
up
in
your
cube,
config
it'll
actually
just
continuously
refresh,
and
you
don't
need
to
log
in
every
time.
So
yeah
check
out
the
example.
Okay,
it's
off
example
thing
that
I
linked
that
might
help
you
out
exactly.
A
Otherwise,
if
you
have
an
azure
ad
sync
set
up
for
the
ad
FS,
you
could
also
use
the
azure
auth
provider
in
cube
CTL,
that
is
using
device
sauce
measure
which
is
even
easier
to
set
up,
because
it
gives
you
a
URL.
You
go
to
your
all,
to
your
device
setup
and
then
works
talked
a
bit
about
how
your
idea
fess
is
set
up.
Internally,
we
had
issues
where
ad
FS
would
only
work
on
Windows
browsers.
For
example,
there
is
some
some
configuration
stuff
but
gets
your
support.
B
Then
Simon
Says,
our
thanks.
That's
awesome!
Thank
you.
If
you
have
follow
up
and
then
joel
is
posted
in
a
link
to
an
article
about
your
CL,
is
a
so
it
pusher
Joel.
Can
you
actually
post
that
in
the
main
channel
as
well,
not
just
a
thread?
That
would
be
great.
Thank
you.
Alright.
Any
other
comments
on
this
one
sweetie.
Thanks
for
your
questions,
Simon
appreciate
you
participating.
Snow
Crash
would
like
to
ask
I've
been
struggling
with
this
problem.
B
B
A
A
B
B
B
D
B
Be
great,
thank
you.
Alright,
nice
fern
asks,
and
we
got
time
for
maybe
one
or
two
more
questions.
If
you,
if
you
want
to
ask
queue
them
up
in
the
in
the
chat
that
we
as
for
asks
first,
do
you
think
that
there's
an
issue
in
having
replicas
defined
in
the
yeah
mo
use
cases
that
we've
seen
is
that
we
do
redeploys
by
using
the
whole
file?
B
A
E
I
think
the
big
thing
here
is
to
don't
do
something
that
doesn't
have
a
record
and
traceability
to
it.
So
if
you
had
to
you
know
if
something
broke
and
you
had
to
come
back
to
it,
you
know
you
want
to
have
backups.
You
want
to
have
this
recorded
somewhere
and
that's
one
of
the
things
I
can
come
up
with
like
coupe
control
scale
is
oh
I
scaled
it
now.
Somebody
who
works
somewhere
else
in
the
org
or
somewhere
else
doesn't
know
that
you
scaled
it.
What
happens?
A
B
C
A
C
B
And
I
see
people
typing
so
we'll
give
them
a
second
for
follow-up.
Let
me
just
check
here:
I
got
some
examples
from
Snow
Crash
that
he's
pasting
in
that
looks
like
Jill's
doing
with
that
and
then
Darren's
replying
great.
Thank
you.
This
answers.
My
question
no
worries
Darren
with
that
we're
gonna
wrap
it
up.
Real
quick
we're
gonna
have
another
session
in
six
hours.
Sorry,
those
of
you
I
accidentally
skipped
some
questions.
Normally
we
have.
B
B
Let's
just
do
a
quick
outro
thanks
to
the
following
companies
for
the
supporting
the
community
wood
developer
Balin
panel
here,
supported
by
giant
swarm
hefty
o
stock
X
packet
net
pusher
com,
Red,
Hat,
Samsung
SDS,
we've
works,
VMware,
Xing
Huawei
and
the
University
of
Michigan
good
luck
this
weekend,
special
thanks
to
Google
for
sponsoring
the
t-shirt
giveaway
so
give
me
that
give
me
are,
we
all
set
for
the
I
totally
forgot
about
the
t-shirt
raffle.
Oh.
C
B
Give
it
give
us
a
second
stick.
Stand
by.
You
can
only
win
the
shirt
if
you're
listening,
so
you
can't
just
bail
on
us
and
with
this
shirt
with
that,
we
do
certainly
have
some
follow-up
stuff
that
we
will
be
posting
another
channel
and
we'll
be
posting
the
links
and
stuff
into
the
discussed
thread.
We
will
what
was
it
gonna
say?
B
Oh,
we
will
definitely
start
that
new
thread
that
I
wanted
on
cool
cool
tools
that
people
are
using
on
their
clusters
because
I
feel
like
we
could
probably
go
on
all
day
with
a
bunch
of
stuff.
Once
we
get
enough
people
into
the
room,
we
are
waiting
for
the
raffle
here.
Sorry
about
that
we
are
totally
unprepared
I.
Should
this.
C
B
Right,
let's
do
that
so
hang
out
and
slack
everybody,
and
we
will
just
announce
the
winner
in
slack
here
in
a
few
minutes
it
won't
be
longer
than
five
minutes
and
then
you
will
win
your
shirt
thanks
everybody
for
participating,
as
always
third
Wednesday
of
every
month.
Please
pay
it
forward
if
this
has
been
useful
for
you,
please
let
us
know
and
thank
you
everybody
anything
else.
On
the
panel
you
guys
final
thoughts.