Blog URL: https://cheatsheet.dennyzhang.

com/cheatsheet-kubernetes-A4 Updated: February 24, 2020

1 Kubectl Kubernetes CheatSheet Cloud

• PDF Link: cheatsheet-kubernetes-A4.pdf, Category: Cloud
• Blog URL: https://cheatsheet.dennyzhang.com/cheatsheet-kubernetes-A4
• Related posts: Kubectl CheatSheet, Kubernetes Yaml, #denny-cheatsheets

File me Issues or star this repo.

1.1 Common Commands

Name
Run curl test temporarily
Run wget test temporarily
Run nginx deployment with 2 replicas
Run nginx pod and expose it
Run nginx deployment and expose it
Set namespace preference
List pods with nodes info
List everything
Get all services
Get all deployments
Show nodes with labels
Get resources with json output
Validate yaml file with dry run
Start a temporary pod for testing
kubectl run shell command
Get system conf via configmap
Get deployment yaml
Explain resource
Watch pods
Query healthcheck endpoint
Open a bash terminal in a pod
Check pod environment variables
Enable kubectl shell autocompletion
Use minikube dockerd in your laptop
Kubectl apply a folder of yaml files
Get services sorted by name
Get pods sorted by restart count
List pods and images
List all container images
kubeconfig skip tls verification
Ubuntu install kubectl
Reference
Reference
Command
kubectl run --rm mytest --image=yauritux/busybox-curl -it
kubectl run --rm mytest --image=busybox -it
kubectl run my-nginx --image=nginx --replicas=2 --port=80
kubectl run my-nginx --restart=Never --image=nginx --port=80 --expose
kubectl run my-nginx --image=nginx --port=80 --expose
kubectl config set-context <context_name> --namespace=<ns_name>
kubectl get pod -o wide
kubectl get all --all-namespaces
kubectl get service --all-namespaces
kubectl get deployments --all-namespaces
kubectl get nodes --show-labels
kubectl get pods --all-namespaces -o json
kubectl create --dry-run --validate -f pod-dummy.yaml
kubectl run --rm -i -t --image=alpine test-$RANDOM -- sh
kubectl exec -it mytest -- ls -l /etc/hosts
kubectl -n kube-system get cm kubeadm-config -o yaml
kubectl -n denny-websites get deployment mysql -o yaml
kubectl explain pods, kubectl explain svc
kubectl get pods -n wordpress --watch
curl -L http://127.0.0.1:10250/healthz
kubectl exec -it storage sh
kubectl exec redis-master-ft9ex env
echo "source <(kubectl completion bash)" »~/.bashrc, and reload
eval $(minikube docker-env), No need to push docker hub any more
kubectl apply -R -f .
kubectl get services –sort-by=.metadata.name
kubectl get pods –sort-by=’.status.containerStatuses[0].restartCount’
kubectl get pods -o=’custom-columns=PODS:.metadata.name,Images:.spec.containers[*]
list-all-images.sh
skip-tls-verify.md
"deb https://apt.kubernetes.io/ kubernetes-xenial main"
GitHub: kubernetes releases
minikube cheatsheet, docker cheatsheet, OpenShift CheatSheet

1.2 Check Performance

Name Command
Get node resource usage kubectl top node
Get pod resource usage kubectl top pod
Get resource usage for a given pod kubectl top <podname> --containers
List resource utilization for all containers kubectl top pod --all-namespaces --containers=true

GitHub: https://github.com/dennyzhang/cheatsheet-kubernetes-A4 1 of 5
Blog URL: https://cheatsheet.dennyzhang.com/cheatsheet-kubernetes-A4 Updated: February 24, 2020

1.3 Resources Deletion

Name Command
Delete pod kubectl delete pod/<pod-name> -n <my-namespace>
Delete pod by force kubectl delete pod/<pod-name> --grace-period=0 --force
Delete pods by labels kubectl delete pod -l env=test
Delete deployments by labels kubectl delete deployment -l app=wordpress
Delete all resources filtered by labels kubectl delete pods,services -l name=myLabel
Delete resources under a namespace kubectl -n my-ns delete po,svc --all
Delete persist volumes by labels kubectl delete pvc -l app=wordpress
Delete state fulset only (not pods) kubectl delete sts/<stateful_set_name> --cascade=false

1.4 Log & Conf Files

Name
Config folder
Certificate files
Credentials to API server
Superuser credentials
kubectl config file
Kubernets working dir
Docker working dir
Etcd working dir
Network cni
Log files
log in worker node
log in master node
Env
Env
Comment
/etc/kubernetes/
/etc/kubernetes/pki/
/etc/kubernetes/kubelet.conf
/etc/kubernetes/admin.conf
~/.kube/config
/var/lib/kubelet/
/var/lib/docker/, /var/log/containers/
/var/lib/etcd/
/etc/cni/net.d/
/var/log/pods/
/var/log/kubelet.log, /var/log/kube-proxy.log
kube-apiserver.log, kube-scheduler.log, kube-controller-manager.log
/etc/systemd/system/kubelet.service.d/10-kubeadm.conf
export KUBECONFIG=/etc/kubernetes/admin.conf

1.5 Pod

Name
List all pods
List pods for all namespace
List all critical pods
List pods with more info
Get pod info
List all pods with labels
List all unhealthy pods
List running pods
Get Pod initContainer status
kubectl run command
Watch pods
Get pod by selector
List pods and images
List pods and containers
Reference
Command
kubectl get pods
kubectl get pods -all-namespaces
kubectl get -n kube-system pods -a
kubectl get pod -o wide, kubectl get pod/<pod-name> -o yaml
kubectl describe pod/srv-mysql-server
kubectl get pods --show-labels
kubectl get pods –field-selector=status.phase!=Running –all-namespaces
kubectl get pods –field-selector=status.phase=Running
kubectl get pod --template ’{{.status.initContainerStatuses}}’ <pod-name>
kubectl exec -it -n "$ns" "$podname" – sh -c "echo $msg »/dev/err.log"
kubectl get pods -n wordpress --watch
kubectl get pods –selector="app=syslog" -o jsonpath=’{.items[*].metadata.name}’
kubectl get pods -o=’custom-columns=PODS:.metadata.name,Images:.spec.containers[*].image’
-o=’custom-columns=PODS:.metadata.name,CONTAINERS:.spec.containers[*].name’
Link: kubernetes yaml templates

1.6 Label & Annontation

Name Command
Filter pods by label kubectl get pods -l owner=denny
Manually add label to a pod kubectl label pods dummy-input owner=denny
Remove label kubectl label pods dummy-input owner-
Manually add annonation to a pod kubectl annotate pods dummy-input my-url=https://dennyzhang.com

GitHub: https://github.com/dennyzhang/cheatsheet-kubernetes-A4 2 of 5
Blog URL: https://cheatsheet.dennyzhang.com/cheatsheet-kubernetes-A4 Updated: February 24, 2020

1.7 Deployment & Scale

Name Command
Scale out kubectl scale --replicas=3 deployment/nginx-app
online rolling upgrade kubectl rollout app-v1 app-v2 --image=img:v2
Roll backup kubectl rollout app-v1 app-v2 --rollback
List rollout kubectl get rs
Check update status kubectl rollout status deployment/nginx-app
Check update history kubectl rollout history deployment/nginx-app
Pause/Resume kubectl rollout pause deployment/nginx-deployment, resume
Rollback to previous version kubectl rollout undo deployment/nginx-deployment
Reference Link: kubernetes yaml templates, Link: Pausing and Resuming a Deployment

1.8 Quota & Limits & Resource

Name Command
List Resource Quota kubectl get resourcequota
List Limit Range kubectl get limitrange
Customize resource definition kubectl set resources deployment nginx -c=nginx --limits=cpu=200m
Customize resource definition kubectl set resources deployment nginx -c=nginx --limits=memory=512Mi
Reference Link: kubernetes yaml templates

1.9 Service

Name
List all services
List service endpoints
Get service detail
Get service cluster ip
Get service cluster port
Expose deployment as lb service
Expose service as lb service
Reference
Command
kubectl get services
kubectl get endpoints
kubectl get service nginx-service -o yaml
kubectl get service nginx-service -o go-template=’{{.spec.clusterIP}}’
kubectl get service nginx-service -o go-template=’{{(index .spec.ports 0).port}}’
kubectl expose deployment/my-app --type=LoadBalancer --name=my-service
kubectl expose service/wordpress-1-svc --type=LoadBalancer --name=ns1
Link: kubernetes yaml templates

1.10 Secrets
Name Command
List secrets kubectl get secrets --all-namespaces
Generate secret echo -n ’mypasswd’, then redirect to base64 --decode
Get secret kubectl get secret denny-cluster-kubeconfig
Get a specific field of a secret kubectl get secret denny-cluster-kubeconfig -o jsonpath="{.data.value}"
Create secret from cfg file kubectl create secret generic db-user-pass –from-file=./username.txt
Reference Link: kubernetes yaml templates, Link: Secrets

1.11 StatefulSet
Name Command
List statefulset kubectl get sts
Delete statefulset only (not pods) kubectl delete sts/<stateful_set_name> --cascade=false
Scale statefulset kubectl scale sts/<stateful_set_name> --replicas=5
Reference Link: kubernetes yaml templates

GitHub: https://github.com/dennyzhang/cheatsheet-kubernetes-A4 3 of 5
Blog URL: https://cheatsheet.dennyzhang.com/cheatsheet-kubernetes-A4 Updated: February 24, 2020

1.12 Volumes & Volume Claims

Name
List storage class
Check the mounted volumes
Check persist volume
Copy local file to pod
Copy pod file to local
Reference
Command
kubectl get storageclass
kubectl exec storage ls /data
kubectl describe pv/pv0001
kubectl cp /tmp/my <some-namespace>/<some-pod>:/tmp/server
kubectl cp <some-namespace>/<some-pod>:/tmp/server /tmp/my
Link: kubernetes yaml templates

1.13 Events & Metrics

Name Command
View all events kubectl get events --all-namespaces
List Events sorted by timestamp kubectl get events –sort-by=.metadata.creationTimestamp

1.14 Node Maintenance

Name Command
Mark node as unschedulable kubectl cordon $NDOE_NAME
Mark node as schedulable kubectl uncordon $NDOE_NAME
Drain node in preparation for maintenance kubectl drain $NODE_NAME

1.15 Namespace & Security

Name
List authenticated contexts
Set namespace preference
Load context from config file
Switch context
Delete the specified context
List all namespaces defined
List certificates
Check user privilege
Check user privilege
Reference
Command
kubectl config get-contexts, ~/.kube/config
kubectl config set-context <context_name> --namespace=<ns_name>
kubectl get cs --kubeconfig kube_config.yml
kubectl config use-context <cluster-name>
kubectl config delete-context <cluster-name>
kubectl get namespaces
kubectl get csr
kubectl –as=system:serviceaccount:ns-denny:test-privileged-sa -n ns-denny auth can-i use pods/lis
kubectl auth can-i use pods/list
Link: kubernetes yaml templates

1.16 Network
Name
Temporarily add a port-forwarding
Add port-forwaring for deployment
Add port-forwaring for replicaset
Add port-forwaring for service
Get network policy
Command
kubectl port-forward redis-134 6379:6379
kubectl port-forward deployment/redis-master 6379:6379
kubectl port-forward rs/redis-master 6379:6379
kubectl port-forward svc/redis-master 6379:6379
kubectl get NetworkPolicy

1.17 Patch
Name Summary
Patch service to loadbalancer kubectl patch svc $svc_name -p ’{"spec": {"type": "LoadBalancer"}}’

1.18 Extenstions
Name Summary
Enumerates the resource types available kubectl api-resources
List api group kubectl api-versions
List all CRD kubectl get crd
List storageclass kubectl get storageclass

GitHub: https://github.com/dennyzhang/cheatsheet-kubernetes-A4 4 of 5
Blog URL: https://cheatsheet.dennyzhang.com/cheatsheet-kubernetes-A4 Updated: February 24, 2020

1.19 Components & Services

1.19.1 Services on Master Nodes

Name Summary
kube-apiserver exposes the Kubernetes API from master nodes
etcd reliable data store for all k8s cluster data
kube-scheduler schedule pods to run on selected nodes
kube-controller-manager node controller, replication controller, endpoints controller, and service account & token controllers

1.19.2 Services on Worker Nodes

Name Summary
kubelet makes sure that containers are running in a pod
kube-proxy perform connection forwarding
Container Runtime Kubernetes supported runtimes: Docker, rkt, runc and any OCI runtime-spec implementation.

1.19.3 Addons: pods and services that implement cluster features

Name Summary
DNS serves DNS records for Kubernetes services
Web UI a general purpose, web-based UI for Kubernetes clusters
Container Resource Monitoring collect, store and serve container metrics
Cluster-level Logging save container logs to a central log store with search/browsing interface

1.19.4 Tools
Name Summary
kubectl the command line util to talk to k8s cluster
kubeadm the command to bootstrap the cluster
kubefed the command line to control a Kubernetes Cluster Federation
Kubernetes Components Link: Kubernetes Components

1.20 More Resources

License: Code is licensed under MIT License.
https://kubernetes.io/docs/reference/kubectl/cheatsheet/
https://codefresh.io/kubernetes-guides/kubernetes-cheat-sheet/

GitHub: https://github.com/dennyzhang/cheatsheet-kubernetes-A4 5 of 5