















































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
A collection of questions and answers related to kubernetes, a popular container orchestration system. it covers various aspects of kubernetes, including its architecture, core components, and functionalities. The questions delve into topics such as container runtimes, scheduling, services, security, and cloud-native principles. this resource is valuable for students and professionals seeking to deepen their understanding of kubernetes and its practical applications in cloud-native environments. The questions are designed to test comprehension and problem-solving skills related to kubernetes concepts and best practices.
Typology: Exams
1 / 55
This page cannot be seen from the preview
Don't miss anything!
















































What native runtime is Open Container Initiative (OCI) compliant? A. runC B. runV C. kata-containers D. gvisor A. runC Which API object is the recommended way to run a scalable, stateless application on your cluster? A. ReplicaSet B. Deployment
C. DaemonSet D. Pod B. Deployment A CronJob is scheduled to run by a user every one hour. What happens in the cluster when it's time for this CronJob to run? A. Kubelet watches API Server for CronJob objects. When it's time for a Job to run, it runs the Pod directly. B. Kube-scheduler watches API Server for CronJob objects, and this is why it's called kube- scheduler. C. CronJob controller component creates a Pod and waits until it finishes to run. D. CronJob controller component creates a Job. Then the Job controller creates a Pod and waits until it finishes to run.
D. An agent that runs on each node in the cluster. It makes sure that containers are running in a Pod. What is the default value for authorization- mode in Kubernetes API server? A. --authorization-mode=RBAC B. --authorization-mode=AlwaysAllow C. --authorization-mode=AlwaysDeny D. --authorization-mode=ABAC B. --authorization-mode=AlwaysAllow Let's assume that an organization needs to process large amounts of data in bursts, on a cloud-based Kubernetes cluster. For instance: each Monday morning, they need to run a batch of 1000 compute jobs of 1 hour each, and these jobs must be completed by Monday night. What's going to be the most cost- effective method?
A. Run a group of nodes with the exact required size to complete the batch on time, and use a combination of taints, tolerations, and nodeSelectors to reserve these nodes to the batch jobs. B. Leverage the Kubernetes Cluster Autoscaler to automatically start and stop nodes as they're needed. C. Commit to a specific level of spending to get discounted prices (with e.g. "reserved instances" or similar mechanisms). D. Use PriorityСlasses so that the weekly batch job gets priority over other workloads running on the cluster, and can be completed on time. B. Leverage the Kubernetes Cluster Autoscaler to automatically start and stop nodes as they're needed.
What default level of protection is applied to the data in Secrets in the Kubernetes API? A. The values use AES Symmetric Encryption B. The values are stored in plain text C. The values are encoded with SHA256 hashes D. The values are base64 encoded D. The values are base64 encoded What function does kube-proxy provide to a cluster? A. Implementing the Ingress resource type for application traffic. B. Forwarding data to the correct endpoints for Services. C. Managing data egress from the cluster nodes to the network. D. Managing access to the Kubernetes API.
B. Forwarding data to the correct endpoints for Services. How long should a stable API element in Kubernetes be supported (at minimum) after deprecation? A. 9 months B. 24 months C. 12 months D. 6 months C. 12 months What is the name of the lightweight Kubernetes distribution built for IoT and edge computing? A. OpenShift B. k3s C. RKE D. k1s
B. Kubernetes can use it to validate requests and apply policies. In a cloud native world, what does the IaC abbreviation stands for? A. Infrastructure and Code B. Infrastructure as Code C. Infrastructure above Code D. Infrastructure across Code B. Infrastructure as Code In which framework do the developers no longer have to deal with capacity, deployments, scaling and fault tolerance, and OS? A. Docker Swam B. Kubernetes C. Mesos D. Serverless D. Serverless
Which of the following characteristics is associated with container orchestration? A. Application message distribution B. Dynamic scheduling C. Deploying application JAR files D. Virtual Machine distribution B. Dynamic scheduling Which of the following workload require a headless service while deploying into the namespace? A. StatefulSet B. CronJob C. Deployment D. DaemonSet A. StatefulSet What is Helm? A. An open source dashboard for Kubernetes.
A. Use an init container with shared file storage. B. Use a PVC volume. C. Use a sidecar container with shared volume. D. Use another pod with a PVC. A. Use an init container with shared file storage. What is the core functionality of GitOps tools like Argo CD and Flux? A. They track production changes made by a human in a Git repository and generate a human-readable audit trail. B. They replace human operations with an agent that tracks Git commands. C. They automatically create pull requests when dependencies are outdated. D. They continuously cD. They continuously compare the desired state in Git with the actual
production state and notify or act upon differences.ompare the desired state in Git with the actual production state and notify or act upon differences. D. They continuously cD. They continuously compare the desired state in Git with the actual production state and notify or act upon differences.ompare the desired state in Git with the actual production state and notify or act upon differences. Which Kubernetes resource workload ensures that all (or some) nodes run a copy of a Pod? A. ReplicaSet B. StatefulSet C. DaemonSet D. Deployment C. DaemonSet
the most control over? A. Cloud -> Container -> Cluster -> Code B. Container -> Cluster -> Code -> Cloud C. Cluster -> Container -> Code -> Cloud D. Code -> Container -> Cluster -> Cloud D. Code -> Container -> Cluster -> Cloud Which group of container runtimes provides additional sandboxed isolation and elevated security? A. rune, cgroups B. docker, contained C. runsc, kata D. crun, cri-o C. runsc, kata What is the common standard for Service Meshes?
A. Service Mesh Specification (SMS) B. Service Mesh Technology (SMT) C. Service Mesh Interface (SMI) D. Service Mesh Function (SMF) C. Service Mesh Interface (SMI) Which statement about Ingress is correct? A. Ingress provides a simple way to track network endpoints within a cluster. B. Ingress is a Service type like NodePort and ClusterIP. C. Ingress is a construct that allows you to specify how a Pod is allowed to communicate. D. Ingress exposes routes from outside the cluster to services in the cluster. D. Ingress exposes routes from outside the cluster to services in the cluster. What best describes cloud native service discovery?
C. data plane and runtime plane D. service proxy and control plane Reveal Solution D. service proxy and control plane Reveal Solution What fields must exist in any Kubernetes object (e.g. YAML) file? A. apiVersion, kind, metadata B. kind, namespace, data C. apiVersion, metadata, namespace D. kind, metadata, data A. apiVersion, kind, metadata Which storage operator in Kubernetes can help the system to self-scale, self-heal, etc? A. Rook B. Kubernetes
C. Helm D. Container Storage Interface (CSI) A. Rook Which of the following would fall under the responsibilities of an SRE? A. Developing a new application feature. B. Creating a monitoring baseline for an application. C. Submitting a budget for running an application in a cloud. D. Writing policy on how to submit a code change. B. Creating a monitoring baseline for an application. What are the initial namespaces that Kubernetes starts with? A. default, kube-system, kube-public, kube-