Kubernetes - THE HARD WAY | 2 Masters | 2 Nodes Cluster | v1.22.0

Hello,
Really appreciate your feedback.
Following are the response for your questions..
1.do I need to have configured Virtual Box - NO NEED. by default vagrant will search for Virtual Box
2.VM before using vagrant up command - NO,
vagrant will pull the latest vagrant box - ubuntu/bionic64 which I have configured in github.com/ImaginCloud/kubernetes/blob/main/setup-k8s/theHardWay/Vagrantfile Line 13.
All the required configuration are by default given the Vagrant Box - ubuntu/bionic64.
Let me know if need any more information.
Thank you.

Hello @arunreddy1436 ,
Thank you for going through the video and asking question.
You are absolutely right to say certificates that we have utilised to interconnect the Kubernetes core components and others will have a clear expiry date - usually 1-3 years (that we set during creation of cert) and it is part of SRE job that we need to renew the certificates before it expires.
We use some automated tools like CERT MANAGER (cert-manager.io/docs/) which we have configured in our prod setup to automate the certificate renewal. I am looking forward to create a video on the same to provide better clarity.
Hope this clarifies your question. Please let me know for any more queries.
Thank you.

@@casa-cloud thank u so much for more insights, since u mentioned SRE role here, I’m curious to know what are the various other scenarios SRE will come into picture? It would be great help if u could share . I am sure that I won’t find such a clear answer.

Hello @arunreddy1436 the SRE work around Kubernetes is long but the key list is as followed
1. Certificate and Password Renewal
2. Incident Management - Network / Node failure
3. Compliance Auditing - real-time security monitoring and compliance.
4. Monitoring - Adding new and more smarter alerts for infra monitoring.
Please share your thoughts on the same if you think should be in the list!