ALL_SERIES
SERIES_OVERVIEW // CURRICULUM_MAP

Learn Kubernetes with Cloud Services AWS & Azure

// Kaufman skill map untuk menguasai Kubernetes production-grade di AWS EKS dan Azure AKS dengan fokus penggunaan, implementasi, operasi, dan platform engineering.

40 Lessons831 Min Total04 Phases

This overview is designed to help you choose the right entry point quickly. Follow the full track from lesson one, continue from your last checkpoint, or jump straight into a phase that matches what you need right now.

admission-controladotaksaks-automaticapi-deprecation+128 more

Curriculum Map

Navigate by phase, then choose the lesson that matches your current depth.

01

Kaufman Skill Map

27 min

Kaufman skill map untuk menguasai Kubernetes production-grade di AWS EKS dan Azure AKS dengan fokus penggunaan, implementasi, operasi, dan platform engineering.

02

Kubernetes as a Distributed Control System

24 min

Mental model mendalam Kubernetes sebagai distributed control system: API server, etcd, controller loop, scheduler, kubelet, watch, object lifecycle, dan reconciliation chain.

03

Production Grade Container Boundaries

24 min

Production-grade container boundaries for Kubernetes workloads across EKS and AKS: image contract, process model, shutdown, filesystem, config, secrets, logging, security, and runtime invariants.

04

Pod, Deployment, ReplicaSet Deep Dive

21 min

Deep operational model of Kubernetes Pods, Deployments, and ReplicaSets: lifecycle, ownership, rollout mechanics, status interpretation, debugging, and production failure modes.

05

Workload API Design Patterns

21 min

Production workload API design patterns for Kubernetes across AWS EKS and Azure AKS: choosing Deployment, StatefulSet, DaemonSet, Job, CronJob, and composing workload primitives safely.

06

Configuration, Secrets, and Runtime Contract

21 min

Configuration, Secrets, and runtime contract engineering for Kubernetes workloads across AWS EKS and Azure AKS: ConfigMap, Secret, immutable config, reload strategy, secret delivery, external secret stores, and production failure modes.

07

Requests, Limits, QoS, and Scheduling

18 min

Resource requests, limits, QoS, scheduling, node pressure, eviction, and production-grade placement strategy for Kubernetes workloads on EKS and AKS.

08

Health Probes and Lifecycle Engineering

16 min

Production health probes, startup behavior, readiness, liveness, graceful shutdown, preStop hooks, traffic draining, and rollout-safe lifecycle engineering.

09

Service Discovery and Kubernetes Networking

18 min

Service discovery and Kubernetes networking from a production engineering perspective: Service, EndpointSlice, DNS, kube-proxy, traffic flow, cloud implications, and debugging.

10

Ingress, Gateway API, and Edge Routing

18 min

Ingress, Gateway API, and edge routing for production Kubernetes on AWS EKS and Azure AKS, covering L7 routing, TLS, controller ownership, migration, and failure modes.

11

Network Policy and Zero-Trust Traffic

14 min

NetworkPolicy and zero-trust traffic engineering for production Kubernetes on AWS EKS and Azure AKS, covering selectors, default deny, DNS egress, CNI enforcement, cloud limitations, and policy rollout.

12

Storage, PV/PVC, CSI, and Stateful Boundaries

18 min

Storage, PersistentVolume, PersistentVolumeClaim, StorageClass, CSI, and stateful workload boundaries for production Kubernetes on AWS EKS and Azure AKS.

13

Cluster Architecture Managed vs Self-Managed

32 min

Cluster architecture decision-making for managed vs self-managed Kubernetes, with production responsibility boundaries, failure domains, operating models, and cloud platform implications.

14

AWS EKS Architecture Foundation

27 min

Production-grade AWS EKS architecture foundation covering control plane, data plane, VPC networking, IAM, access management, add-ons, node models, Fargate, EKS Auto Mode, and operational invariants.

15

Azure AKS Architecture Foundation

26 min

Azure AKS architecture foundation for production platform engineers: control plane boundary, cluster modes, node pools, identity, networking, private access, add-ons, governance, and operational design decisions.

16

EKS VPC Networking Deep Dive

20 min

Deep dive into EKS VPC networking: Amazon VPC CNI, ENI/IP allocation, subnet sizing, pod density, prefix delegation, custom networking, IPv6, security groups, egress, and production troubleshooting.

17

AKS VNet Networking Deep Dive

17 min

Deep dive into AKS VNet networking: Azure CNI Overlay, Azure CNI Pod Subnet, IP planning, subnet design, routing, egress, private clusters, NSG/UDR/firewall boundaries, and production troubleshooting.

18

Cloud Load Balancing and Ingress on AWS/Azure

15 min

Production patterns for cloud load balancing and ingress on EKS and AKS: Service LoadBalancer, ALB, NLB, Azure Load Balancer, Application Gateway, Application Gateway for Containers, Ingress, Gateway API, target modes, TLS, health checks, and failure models.

19

DNS, TLS, Certificates, and Edge Security

21 min

Production patterns for DNS, TLS, certificate lifecycle, and edge security on Kubernetes with AWS Route 53, ACM, ExternalDNS, cert-manager, Azure DNS, Azure Key Vault, Application Gateway, and Gateway API.

20

Kubernetes Identity, RBAC, and Cloud IAM

17 min

Production-grade identity and authorization model for Kubernetes, EKS, and AKS: authentication, RBAC, service accounts, human access, automation access, AWS IAM access entries, Microsoft Entra ID, Azure RBAC, least privilege, and failure modes.

21

EKS Pod Identity and IRSA

20 min

EKS Pod Identity and IRSA as production workload identity patterns for AWS access from Kubernetes workloads.

22

AKS Workload Identity and Managed Identity

17 min

AKS Workload Identity and Managed Identity for production-grade Azure access from Kubernetes Pods.