K8s Project - Understanding and Creating a Service - Part V
š If you missed the previous part, check out Part IV.
š K8s Project - Understanding and Creating a Service - Part V
So, youāve got your pods running in Kubernetes, your application is alive, and everything seems great! But, letās face itāport forwarding into your cluster every time you want to access the app isnāt the most user-friendly solution, right? Thatās where Kubernetes services come in to save the day! In this post, weāll walk through the concept of services in Kubernetes, why theyāre awesome, and how to create one for your app. Ready? Letās dive in!
š§ What Is a Service in Kubernetes?
A service in Kubernetes is like your appās personal receptionistāit makes sure that your users (and other apps) can access your pods without needing to know exactly where they are. Think of it as a single point of entry that balances traffic across all your appās pods. Itās like Kubernetes saying, āDonāt worry about finding the pods, I got this!ā
But wait, thereās more! A service also assigns a stable IP address and DNS name to your app, so even if your pods change, the service remains the same. Pretty neat, right?
š§āš» Step 1: Letās Create a Service
Now, instead of making your users struggle with port forwarding, letās create a service that will act as a single point of entry for your app. The service will handle distributing requests between your pods, and users can access your app easily.
In Kubernetes, there are different types of services, but for now, weāll focus on the most common one: the ClusterIP service. This type of service provides an internal, stable IP address that other services and pods within your Kubernetes cluster can use to find your app.
So, hereās how we create it:
-
Create the Service YAML file: Weāll use
kubectlto generate a basic service YAML file, similar to how we created the deployment:kubectl create service clusterip myks8project --tcp=80:80 --dry-run=client -o yaml > service.yamlThis command creates a service that exposes port 80 from the pods (since our app runs on port 80 inside the container) and maps it to port 80 of the service itself. The
--dry-run=clientflag ensures we just create the YAML without applying it yet. Letās open this file and take a look at what weāve got.
š Understanding the Service Manifest
Just like with the deployment, the service also has a manifest that describes its configuration. Hereās what the generated YAML might look like:
apiVersion: v1
kind: Service
metadata:
creationTimestamp: null
labels:
app: myks8project
name: myks8project
spec:
ports:
- name: 80-80
port: 80
protocol: TCP
targetPort: 80
selector:
app: myks8project
type: ClusterIP
status:
loadBalancer: {}
Hereās a breakdown of the important parts:
- apiVersion: This specifies the API version used to define the service. In this case, itās
v1because weāre creating a basic service. - kind: It tells Kubernetes what resource weāre dealing with, which is a Service.
- metadata: The name of the service is
myks8project. - selector: This is where the magic happens! The selector links the service to the correct set of pods using the
app=myks8projectlabel. This way, the service knows which pods to route traffic to. - ports: We specify that traffic will come through port 80 and will be routed to port 80 on the pods.
- type: Weāre using a ClusterIP service, which exposes the service only within the cluster.
š§ Step 2: Apply the Service
Now that our service manifest is ready, letās apply it and create the service in Kubernetes.
-
Apply the service:
kubectl apply -f service.yamlIf everything goes well, youāll see a message like:
service/myks8project created -
Verify the service by running:
kubectl get servicesYou should see your service listed with its own ClusterIP (the internal IP address Kubernetes has assigned to it).
šÆ Step 3: Testing the Service
Alright, our service is now live and should be routing traffic to our pods. But letās confirm that everything is working as expected. Instead of using the deployment name for port forwarding like we did earlier, weāll now use the service name:
-
Forward the port using the service:
kubectl port-forward service/myks8project 8080:80This command forwards traffic from localhost:8080 to the serviceās port 80, which in turn forwards it to the pods.
-
Test the service:
Head to your browser and open:
http://localhost:8080You should see your Hello World!!! website running smoothly! š
š§ Quick Recap on What We Just Did
We just created a Kubernetes serviceāa stable, single point of entry for your application inside the Kubernetes cluster. By using the ClusterIP type of service, we made sure that traffic can flow seamlessly between your users and the right pods, all without having to deal with port forwarding directly into the cluster every time.
- Services provide stable IP addresses and DNS names, making your app accessible to other services and users.
- The selector tells the service which pods to route traffic to based on labels.
- The service acts like a smart load balancer for your pods.
Hereās an improved version of the new section, adding more explanations:
š Letās Check All We Have Got So Far
At this point, itās important to see what resources Kubernetes has created for your app. To do that, we can list all the Kubernetes resources associated with our app using the label selector (-l). Labels are key in Kubernetes because they allow you to group and filter resources by custom tags (like app=myks8project), which is super handy when you want to see everything related to a specific app.
To check all the resources weāve created for our app, run the following command:
kubectl get all -l app=myks8project
This command will return all resources (pods, services, deployments, etc.) that have the label app=myks8project. You should see something like this:
NAME READY STATUS RESTARTS AGE
pod/myks8project-79cd67c7cc-5rfnf 1/1 Running 0 23h
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
service/myks8project ClusterIP 10.96.46.222 <none> 80/TCP 10m
NAME READY UP-TO-DATE AVAILABLE AGE
deployment.apps/myks8project 1/1 1 1 23h
NAME DESIRED CURRENT READY AGE
replicaset.apps/myks8project-79cd67c7cc 1 1 1 23h
Letās break down what weāre seeing:
- Pods:
- The pod
myks8project-79cd67c7cc-5rfnfis listed under thepod/section, indicating that one replica of our app is currently running (1/1under READY). This means our app is successfully running inside the Kubernetes cluster.
- The pod
- Service:
- The
service/myks8projectentry shows the ClusterIP service we created earlier. This service is accessible internally within the cluster through the IP10.96.46.222and is exposing port 80. Thereās no EXTERNAL-IP here because we havenāt set it up for external access yet, which is fine for now.
- The
- Deployment:
- The deployment
deployment.apps/myks8projectshows that itās running 1 pod (1/1 under READY) and that everything is up-to-date with no issues.
- The deployment
- ReplicaSets:
- ReplicaSets manage the pods. Here we see 1 ReplicaSet: (
myks8project-79cd67c7cc) which has 1 pod running, indicating itās the current active ReplicaSet.
- ReplicaSets manage the pods. Here we see 1 ReplicaSet: (
Using the -l app=myks8project filter is not only useful for viewing all related resources but also helpful for ensuring that your setup is running as expected after applying the manifests. Itās a great way to troubleshoot if anything looks off.
š Final Thoughts
Congrats! Youāve now leveled up your Kubernetes game by creating a service that manages traffic routing within your cluster. No more manual port forwardingānow youāve got a scalable, maintainable way to access your app. š
But thereās more! In the next part, weāll dive deeper into ingress controllers, which take this a step further by exposing your services to the outside world with real domain names. Ready to learn how to make your app publicly accessible? Stay tuned for more Kubernetes adventures!
See you in the Part VI.