GCP Series: (GKE) – Google Kubernetes Engine
Secured and fully managed Kubernetes service with revolutionary autopilot mode of operation.
-
Start quickly with single-click clusters and scale up to 15000 nodes
-
Leverage a high-availability control plane including multi-zonal and regional clusters
-
Eliminate operational overhead with industry-first four-way auto scaling and release channels
-
Secure by default, including vulnerability scanning of container images and data encryption
Integrated Cloud Monitoring with infrastructure, application, and Kubernetes-specific views
Key features
Autopilot mode of operation
Optimized cluster with pre-configured workload settings offering a nodeless experience. Let Google take care of the underlying infrastructure of your entire cluster, including nodes. Maximize operational efficiency and bolster security of your applications by restricting access only to Kubernetes API and safeguarding against node mutation. Pay only for your running pods, not system components, operating system overhead or unallocated capacity.
Pod and cluster autoscaling
Horizontal pod autoscaling based on CPU utilization or custom metrics, cluster autoscaling that works on a per-node-pool basis and vertical pod autoscaling that continuously analyzes the CPU and memory usage of pods and dynamically adjusts their CPU and memory requests in response. Automatically scales the node pool and clusters across multiple node pools, based on changing workload requirements.
Kubernetes applications
Enterprise-ready containerized solutions with prebuilt deployment templates, featuring portability, simplified licensing, and consolidated billing. These are not just container images, but open source, Google-built, and commercial applications that increase developer productivity, available now on Google Cloud Marketplace.
Workload and network security
GKE Sandbox provides a second layer of defense between containerized workloads on GKE for enhanced workload security. GKE clusters natively support Kubernetes Network Policy to restrict traffic with pod-level firewall rules. Private clusters in GKE can be restricted to a private endpoint or a public endpoint that only certain address ranges can access.
Other (GKE) Kubernetes Resources:
https://cloud.google.com/architecture/best-practices-for-operating-containers
https://cloud.google.com/kubernetes-engine/docs/tutorials/hello-app