Ingress makes it possible for inbound connections to reach in your cluster. You can configure Ingress to do additional things like: SSL termination, load balancing or virtual hosts. Abbreviated alias: ing Useful links Ingress docs –  

Book icon

Book icon


Name says it all. ConfigMaps are used for holding configuration data as key-value pairs. Data held in ConfigMap should not be sensitive. If you need to store sensitive data then you should use instead. More than often an application uses the combination of those two resources. Abbreviated alias: cm Useful […]


Service defines a policy to access some set of . Usually Service selects the Pods using the labels that were given to the Pods. For example web server Service could target all Pods that have label www. Pods are created and destroyed constantly and Service abstraction is a way of overcoming that. […]

Book icon

Book icon


Secrets are resources that hold sensitive data. Passwords, API tokens and other information similar in nature should be provided to a using a Secret. Using Secrets decreases the risk of accidental exposure of sensitive information. Useful links Secret docs –


When you create a Deployment a is created as a consequence. Deployments are higher level construct. They use Pods and ReplicaSets directly.  You can configure a Deployment for replication. With Deployments you can also perform rolling updates. Abbreviated alias: deploy Useful links Deployment docs –

Book icon

Book icon


Pod is a group of containers with at least one container (usually a container). Pods are similar to containers. Configuration says how to run the Pod just like Dockerfile says how to run the container. Pod provides shared namespace and volumes for all the containers that run inside it. Often […]


Namespaces are used to divide your cluster into virtual clusters. Namespace also provides a scope for names given to resources. Names need to be unique within one namespace. By default you are using a namespace named default.  default namespace can be viewed using: Abbreviated alias: ns Useful links Namespaces docs – […]

Book icon

Book icon

Persistent Volume Claim

Persistent Volume Claim abstracts consumption of storage resource. Say we have two 10GB each created and available. is created with Persistent Volume Claim for 10GB storage. One of those two available 10GB Persistent Volumes will be consumed by the Claim and assigned to the Pod. Abbreviated alias: pvc Useful links […]

Persistent Volume

Persistent Volume is a way to abstract storage. It hides the details of how the storage is provided. It does not matter if you use Google Cloud Engine Persistent Drive, AWS Elastic Block Store or NFS under the hood. Persistent Volume is just some piece of storage in your cluster available to […]

Book icon

Book icon

Limit Range

Limit Range can be applied to a Kubernetes to control minimal and maximal CPU and memory limits per pod. Default resource limit can be applied to pods on creation. Namespace default has some limits configured. If you remove Limit Range resource from default namespace it will be applied again on Kubernetes update. Limit Range […]

Persistent Disk

Persistent disks are network storage devices that your instances can get access to. Under the hood the data is distributed across several physical disks. They can be created and managed using Google Cloud Platform Console or gcloud command-line tool. Useful links More info on GCE Persistent Disk –

Book icon

Book icon

Service Account

Service Accounts are used for authentication. They authenticate your applications to Google Cloud Platform APIs. Applications use this account to interact with various services. Abbreviated alias: sa Useful links More info on GCP Service Accounts –


Software Development as a Service GitLab is a platform for software development. Everything you need to create and manage a modern software project is now under one roof. Thanks to GitLab you are always just a few clicks away from setting up a new project with issue tracker, git repo, […]

Head from GitLab logo

Whale from docker logo


Very quick docker introduction Think of docker as a way to run multiple isolated operating systems (containers) inside your operating system. Containers act a bit like soap bubbles. They are created. They do something. Poof! and they are gone. Why use containers ? Containerization allows for easy separation of concerns […]


All in one service for websites Cloudflare provides a number of very useful functionalities for websites. It places itself between website visitors and the server that is hosting the website. Among other things Cloudflare adds an extra layer of internet security to your website. It also acts as a DNS, […]