Video

Thanks Anton

Thank you for the vedios.. is it possible for you do vedios on GKE please

Great video! Helped me finding a couple of issues in a cluster setup. If you don't mind the question, is there any reason you choose not to use the VPC CNI addon?

love this type of visual explanation, saved my time , thank you so much..

Thank you for the lesson. If you don't mind, I have a few questions related to this part. So we need to use PV/PVC for stateful applications, like databases and so on. So I think in case of a disaster, we should be able to recover the data easily, right? Could you shed some light on that? Maybe in the next lessons. Because the current setup with ReclaimPolicy: Delete will delete all the data inside the pvc/pv in case of statefulset recreation, if I understood correctly. Therefore, it will be useful to know how to backup data inside PV/PVC properly and how to restore it easily and mount data back to the new statefulset (in case of recreation) P.S Sorry for the long read 😅

Part 9 will be released in 2 days. Playlist - czcams.com/play/PLiMWaCMwGJXnKY6XmeifEpjIfkWRo9v2l.html&si=Ku0ay7zUEKgfcVcb 1. Create AWS VPC using Terraform 2. Create AWS EKS Cluster using Terraform 3. Add IAM User & IAM Role to AWS EKS 4. Horizontal Pod Autoscaler (HPA) on AWS EKS 5. Cluster Autoscaler Tutorial (EKS Pod Identities) 6. AWS Load Balancer Controller Tutorial (TLS) 7. Nginx Ingress Controller Tutorial (Cert-Manager & TLS) 8. CSI Driver Tutorial (ReadWriteOnce) 9. EFS CSI Driver Tutorial (ReadWriteMany) 10. AWS Secrets Manager Tutorial (Env & Files) Based on the feedback, I’ll add the following sections (let me know if anything else is missing):
 - Autoscaling with Karpenter - Autoscaling with Keda - Private Ingress with Private DNS & VPN - Monitoring with Prometheus - EKS self managed group - EKS Fargate - EKS Pod Identities vs. EKS IRSA (oidc) vs. Node roles

🔴 - To support my channel, I’d like to offer Mentorship/On-the-Job Support/Consulting - me@antonputra.com

Can someone show me some GUI or how things work inside Kafka, not just diagram bullshit...

Thank you!!!

I’m so grateful to you. ⭐️

This playlist is pure gold!

Is this good to use for production bro? With help of certmanager to renewal the TLS certificates?

To tear down cluster, first run "terraform destroy --target helm_release.external_nginx" then "terraform destroy"

nginx ingress controller is one of the alternatives for the aws load balancer controller , then why do we need to install aws load balancer also before installing nginx controller ? got confused.. could you please explain insights here

What software are you using for these cool animation at 0:26 ?

Hi, I know this is a bit off-topic, but I have a question. I'm using ingress-nginx on EKS with an NLB (externalTrafficPolicy: Local), and my target group instances are showing as unhealthy. Any advice on resolving this? also it's a private cluster..so shoudl i try DaemonSet instead Deployment , trying to understand what's the best recommended approach

Hi Anton for enabling Pod identity and start using in eks we need to disable oidc ? I did not understand the part where you mention "if we use oidc we have to specify service account" could you clarify ?

What is the advantage of using cert manager with lets encrypt on acm? It seems much more complicated to maintain.

its official - i hit the bell icon. Well done @AntonPutra.

thank you

Thanks for sharing one more awesome lesson, any plans to make a video on using AWS private certificate authority (ACM) with aws-pca-issuer add-on ? thanks

Thank you so much. Thank you thank you thank you

why nlb and not alb ?

Great lesson, as always. Keep it going!

Ladies and Gentlemen, here we go again ......

Thank you for your hard work! Any plans on Pulumi IaC tutorials?

Part 8 will be released in 2 days. Playlist - czcams.com/play/PLiMWaCMwGJXnKY6XmeifEpjIfkWRo9v2l.html&si=Ku0ay7zUEKgfcVcb 1. Create AWS VPC using Terraform 2. Create AWS EKS Cluster using Terraform 3. Add IAM User & IAM Role to AWS EKS 4. Horizontal Pod Autoscaler (HPA) on AWS EKS 5. Cluster Autoscaler Tutorial (EKS Pod Identities) 6. AWS Load Balancer Controller Tutorial (TLS) 7. Nginx Ingress Controller Tutorial (Cert-Manager & TLS) 8. CSI Driver Tutorial (ReadWriteOnce) 9. EFS CSI Driver Tutorial (ReadWriteMany) 10. AWS Secrets Manager Tutorial (Env & Files) Based on the feedback, I’ll add the following sections (let me know if anything else is missing):
 - Autoscaling with Karpenter - Autoscaling with Keda - Private Ingress with Private DNS & VPN - Monitoring with Prometheus - EKS self managed group - EKS Fargate - EKS Pod Identities vs. EKS IRSA (oidc) vs. Node roles

🔴 - To support my channel, I’d like to offer Mentorship/On-the-Job Support/Consulting - me@antonputra.com

Working fine, but doesn't seem to work with secret auto-rotation. What is the best way to apply changes to the secret store.

Add more SSO on AWS

7 minutes of video do way more than a whole month of classes. What an awesome video

is there any video available for eks security group ?

Thanks for the video. very insightful.❤ quick query: How can we share values between staging and production using this architecture?

Hi, very good playlist, thanks a lot. I am facing an error when I try to install alb controller: "unable to initialize AWS cloud","error":"failed to introspect vpcID from EC2Metadata or Node name, specify --aws-vpc-id instead if EC2Metadata", I am using the same scripts, The only difference is the cluster version, I am using 1.30.

Hello, when I deployed the loadbalancer, it says: "Failed build model due to AccessDenied: User: arn:aws:sts::714343735212:assumed-role/staging-simantep-eks-nodes/i-05a02cc5b9d76678b is not authorized to perform: elasticloadbalancing:DescribeLoadBalancers because no identity-based policy allows the elasticloadbalancing:DescribeLoadBalancers action"

helo anton please advice, when I tried to update-kubeconfig with eks-admin it says: "when calling the DescribeCluster operation: The security token included in the request is invalid"

what benchmarking platform do you use?

You just gained my fellowship. You did a terrific explanation. Especially that visual representation, Awesome!

Thanks for the great content, my question is, can you please explain how did you do this without the need to auth terraform with your aws account? Thanks

This is legacy version. It would be greate if you make an other video about GitHub Actions Self Hosted Runner with runner-scale-set chart and runner-scale-set-controller chart.

Apps can use the same ALB with a simple groupname annotation

Thank you for the lesson! I have one question about certificates. Are there any ways to automate this, just like we can do with cert-manager + nginx ingress? If we don't want to store the certificate ARN directly in the kubernetes manifests... Because it seems to me that it's not very error-resistant in this case and we need always to update it manually in case of changing the certificate ARN for some reason

To whom it may concern, I had to use the EIP Allocation ID for two EIPs associated with NAT Gateways, otherwise I would have an EC2-Classic error.

Thank you So much Genius, Could you please help me with ordered steps involved to upgrade eks cluster briefly ... i have followed below steps . could u pls validate and correct me if the order is not proper. 1. backup (kubectl get all --A -o yaml > backup.yaml 2. upgrade control plane throu aws console 3. upgrade node groups 4. upgrade addons (each verison at a time) by preserving 5. validate coredns etc...

Very good explanation, a quick refresher videos. thx

Hi Anton! I have 10 users in AWS SSO (IAM Identity Center) that need EKS console access to view pods and nodes. They don't need cluster login, just console access. I have an IAM policy for this, but I'm unsure how to parse it into the aws-auth configmap. I know how to do this for normal IAM users and groups but can't figure out how to add an SSO group.

Thanks 🙏

Excellent !! It will be helpful if you share the exact link for git to get the terraform code.

Absolutly loving this series, so happy that i've found it right when i wanted to setup my own eks cluster I'd like to see how deploying multiple apps would work with your guide, like Grafana, Prometheus and Loki for example, exposed with subdomain but also accessible from within the cluster by other services. Don't see that in the additional sections you've commented Keep up the good work!

Loving these playlist