<img height="1" width="1" style="display:none;" alt="" src="https://dc.ads.linkedin.com/collect/?pid=76180&amp;fmt=gif">

RoundTower Blog

Native Kubernetes Services with Amazon EKS


Managed Kubernetes has definitely been picking up steam on public cloud. Google Cloud was the first to offer managed Kubernetes in the cloud and then Azure followed suite with their own offering. For a while AWS was the odd one out by only offering container services with ECS, until now.

Amazon EKS

Amazon recently announced their new managed container service AWS EKS which is currently in beta and not yet GA. AWS EKS a managed Kubernetes environment that allows for deep integration with native AWS services such as IAM, VPC, and ELB. Kubernetes masters are deployed across three availability zones in a region to allow for HA and all masters are patched, upgraded and maintained by Amazon.

Security and Connectivity

Permission controls on Kubernetes is easy to get right in your current AWS infrastructure with EKS. The Kubernetes RBAC controls integrate with IAM which allows you to assign these roles to IAM entities. Management of EKS is simple and integrates into your VPC via PrivateLink. The API endpoint appears in your VPC as an ENI with a private IP address where you can use management tools and apply standard VPC controls such as security groups and network ACLs.

How it works



Much like other managed AWS services, EKS is fully maintained and upgrades are processed automatically with no manual intervention required. You can pin the version of Kubernetes that you want to stay on and have a choice of three of the latest versions, currently the version that is available is 1.7.

Tools and Logging

EKS is fully compatible with community tools and supports popular addons for Kubernetes such as KubeDNS and Kubernetes Dashboard and command line tools such as kubectl. All changes that were made to Kubernetes by Amazon will be upstreamed to the project so the versions that AWS runs will be pure vanilla Kubernetes. Amazon CloudWatch and Cloudtrail are integrated with EKS to allow you to have more visibility into user activity and provide audit history on user actions. Additionally, you can use CloudTrail to view logs on API activity to the EKS endpoint.

If you are interested in signing up for the EKS beta, you can go to the EKS page here.

Share this Post:
« Risky Quantum Computers, Cyber Mafia, Breach Response Plans, Bitcoin Energy Crisis, and Happy Birthday SMS
ShareFile and Azure AD-The Setup »