Trick questions

NACLs are stateless, operate at the subnet level, and control traffic based on IP
addresses, while Security Groups are stateful, operate at the instance level, and
control traffic based on IP addresses, protocols, and ports.
NACLs are evaluated in order, with an implicit "deny all" rule, while Security
Groups are stateful, with an implicit "allow all" outbound rule.

basic shell script

customer success

how you helped customer

not in video domain
customer metrics

juniper square

finance related

docker cgroup?
Cgroup gives the ability to allocate things to those containers

e.g. below will lock down a Docker container to the first CPU core, you’d
append --cpuset-cpus=0
docker run -d --name='kasun_priority_1' --cpuset-cpus=0 --cpu-shares=20
kasuntest1
-c, --cpu-shares int CPU shares (relative weight)
--cpuset-cpus string CPUs in which to allow execution (0-3, 0,1)
--cpuset-mems string MEMs in which to allow execution (0-3, 0,1)

docker port forwarding to container?

bridge and host network diff

check status of all container not running in docker and k8’s

docker ps --filter "status=exited"

kamal.prasad@V14NW4Q3VL terraform % kubectl get pods --field-

selector=status.phase=Running
NAME READY STATUS RESTARTS AGE
new-588994f95d-wlphv 1/1 Running 0 6m10s
nginx 1/1 Running 0 9h

regional and global services in AWS

ansible modules can be called from one module to other.

which network is used in aws ekS?

in docker compose, one image to come after 2nd is up.

version: '3'

services:
db:
image: mysql:5.7
volumes:
 - db_data:/var/lib/mysql
restart: always
environment:
MYSQL_ROOT_PASSWORD: somewordpress
MYSQL_DATABASE: wordpress
MYSQL_USER: wordpress
MYSQL_PASSWORD: wordpress

wordpress:
depends_on:
- db
image: wordpress:latest
ports:
- "8000:80"
restart: always
environment:
WORDPRESS_DB_HOST: db:3306
WORDPRESS_DB_USER: wordpress
WORDPRESS_DB_PASSWORD: wordpress
volumes:
db_data:

how will you chnage network of a running docker container?

how to configure jenkins to run docker agents?

https://medium.com/@kasunmaduraeng/docker-namespace-and-cgroups-
dece27c209c7

terraform state file is locked , what will you do?

ansible playbook terrafrom script run kr rha h to kaise karoge

remote provisioner and local provisioners ??

module k andar module kaise call karoge?

change jenkins home dir , pre- and post steps??

shared library in keiniks

Blue Green Deployments and Canary Releases are common deployment

patterns.
in jenkins k8’s how will undo deployment if the pods doesn’t come up.??

troubleshooting K8
https://kubernetes.io/docs/tasks/debug/debug-application/debug-pods/
Both sidecar containers and init containers in Kubernetes are used within a Pod
to extend or enhance the primary containers’ functionality. However, they serve
different purposes and have different characteristics.

what is jenkins pipeline

d/f b/w delivery and deployment in jenkins

what is container registry?

what is dockr compose

what is k8 api server?

what is kubelet?

what is replica set?

logging/moniotoring tool.

node exporter black box exporter..

what aws srvices you have worked?

what is iam??

what are load balancers??

some scropts you’ve created?

shell scripts you’ve created?

done eks cluster creation and upgradation? of k8 version.

what is namespace in k8’s..

can pods from one namespace reach to other

what is cni ??

how does traffic flow to your application…. pods??

how is your cd setup??

how do you setup argocd in eks? - manifst ffiles…

how you manage secrets on jenkins and eks clusters and ec2?

what do you write in dockerfile?

what will be criteria for selecting base image in dockerfile?

how will you plan jenkins upgrade…?

which port ansible use by deafault to connet??

if ssh port is changed , how do you mention that in ansible??

if you have to run shell command on diff machines in same ansible playbook ,
how do you do that??

how do you mnge secrets file in ansible ?

diff b/w terraform and ansible?? impertaive / declarative approach…

can you create cloud resources in ansible , then why you will have terraforM?

existing infra in aws terraform… how do you get that…

what to do if you have lost your local tfstate file?

if multiple people are working on same tfstate file how do you lock tat?

which aws tech you have worked??

what are diff routing policies in route 53?

what are diff lb?

in s3 has internet access , but ec2 is in private with no nat gateway , how do u
give connection..

if tcp port 22 is blocked. , how do you access to ec2 ..

what are diff s3 storage ??

in jenkins how do you integrate sonarqube ,

what are diff sca tools used in pipelines??

what is jenkins shared library??

pass variable from one jenkins pipeline to another..

ignore test stages in jenkins pipelines and. start from some other stage..

how do you secure k8 / eks cluster access on jenkins??

terraform workspace??

how do you lock your tfstate file in aws??

what is terraform provisioners???

how do you set that tf resouces is created in order??

how do you do migration of application to containers??

describe your architecture ??

what sca you guys have used??

how is release controlled in your enterprise?

what is env variale in ansible, dockerfile and jenkinsfile?

monitoring tools

application logs in k8 if pods are crashed how do you retrieve it?

o/p of one job to be used in another one..

how will jenkins get value for previous pipeline

how will terraform create one resource then move to another.

what’s cni

what will you do if tfstate file is deleted locally.

can pod from 1 ns talk to another ns

how to get existing infra in terraform

how to run script when instance is coming up in ec2

in terraform order in which resuource is created

how to lock tfstate file so that multiple people are not wokrin on it

specific container to start before starting anotehr one.

If the sidecar container provides an executable file that waits until the
sidecar is ready, you can invoke it in the container’s post-start hook to
block the start of the remaining containers in the pod.

https://www.youtube.com/watch?v=2audUYEQlag

https://spacelift.io/blog/kubernetes-sidecar-container

how do you refer your configmap in your container image?

valueFrom:
configMapKeyRef:
name: game-demo # The ConfigMap this value comes from.
key: player_initial_lives # The key to fetch.

lifecycle of a helm chat

diff b/w rebase and statsh

cmd and entrypoint

parallel jobs in pipeline

● Creation: Developers can create a new Helm chart

using helm create <chart-name>. This scaffolds a basic structure
which can then be customized for specific needs.
● Packaging: Once the chart is defined and tested, it can be
packaged for distribution using the helm package <chart-
directory> command. This produces a .tgz archive that contains the
chart’s files.
● Distribution: The packaged chart can then be shared with
others. Most commonly, this involves pushing the chart to a Helm
repository (this of this as a ‘chart store’). From a repository, charts cna
be searched, inspected, and installed by any Helm user with access.
● Installation: Users can deploy an application defined by a
 ●

Helm chart using the helm install command. They can provide specific
configurations that override the default values, tailoring the
application to their environment.
● Updates and Management: After installation, Helm tracks
the application’s state and allows for updates helm upgrade,
rollbacks helm rollback, and removal helm uninstall.

x + y = 1.10

0+1

0.10 + 1.10

0.05 + 1.05 = 1.10

5 machine 5 mins 5 wid

10 mins
10 min 10 wid

$1

1 -2 1 days
2-4 2 days
4-8 3rdday
8-16 4th day

A bat and a ball cost $1.10 in total. The bat costs $1 more than the ball. How
much does the ball cost?
Santhosh Sundarasamy
4:41 PM
If it takes 5 machines 5 minutes to make 5 widgets, how long would it take 100
machines to make 100 widgets?
Santhosh Sundarasamy
4:44 PM
In a lake, there is a patch of lily pads. Every day, the patch doubles in size. If it
takes 48 days for the patch to cover the entire lake, how long would it take for
the patch to cover half of the lake?
all data on RAM is stored in EBS root volume in hubernate
s3 versioning - delete marker

to restore delete the delete marker.

https://keentolearn.medium.com/how-to-improve-your-jenkins-builds-with-
shared-libraries-5e225b7435fb