Learn Kubernetes with Cloud Services AWS & Azure
// Kaufman skill map untuk menguasai Kubernetes production-grade di AWS EKS dan Azure AKS dengan fokus penggunaan, implementasi, operasi, dan platform engineering.
This overview is designed to help you choose the right entry point quickly. Follow the full track from lesson one, continue from your last checkpoint, or jump straight into a phase that matches what you need right now.
Curriculum Map
Navigate by phase, then choose the lesson that matches your current depth.
Kaufman Skill Map
27 minKaufman skill map untuk menguasai Kubernetes production-grade di AWS EKS dan Azure AKS dengan fokus penggunaan, implementasi, operasi, dan platform engineering.
Kubernetes as a Distributed Control System
24 minMental model mendalam Kubernetes sebagai distributed control system: API server, etcd, controller loop, scheduler, kubelet, watch, object lifecycle, dan reconciliation chain.
Production Grade Container Boundaries
24 minProduction-grade container boundaries for Kubernetes workloads across EKS and AKS: image contract, process model, shutdown, filesystem, config, secrets, logging, security, and runtime invariants.
Pod, Deployment, ReplicaSet Deep Dive
21 minDeep operational model of Kubernetes Pods, Deployments, and ReplicaSets: lifecycle, ownership, rollout mechanics, status interpretation, debugging, and production failure modes.
Workload API Design Patterns
21 minProduction workload API design patterns for Kubernetes across AWS EKS and Azure AKS: choosing Deployment, StatefulSet, DaemonSet, Job, CronJob, and composing workload primitives safely.
Configuration, Secrets, and Runtime Contract
21 minConfiguration, Secrets, and runtime contract engineering for Kubernetes workloads across AWS EKS and Azure AKS: ConfigMap, Secret, immutable config, reload strategy, secret delivery, external secret stores, and production failure modes.
Requests, Limits, QoS, and Scheduling
18 minResource requests, limits, QoS, scheduling, node pressure, eviction, and production-grade placement strategy for Kubernetes workloads on EKS and AKS.
Health Probes and Lifecycle Engineering
16 minProduction health probes, startup behavior, readiness, liveness, graceful shutdown, preStop hooks, traffic draining, and rollout-safe lifecycle engineering.
Service Discovery and Kubernetes Networking
18 minService discovery and Kubernetes networking from a production engineering perspective: Service, EndpointSlice, DNS, kube-proxy, traffic flow, cloud implications, and debugging.
Ingress, Gateway API, and Edge Routing
18 minIngress, Gateway API, and edge routing for production Kubernetes on AWS EKS and Azure AKS, covering L7 routing, TLS, controller ownership, migration, and failure modes.
Network Policy and Zero-Trust Traffic
14 minNetworkPolicy and zero-trust traffic engineering for production Kubernetes on AWS EKS and Azure AKS, covering selectors, default deny, DNS egress, CNI enforcement, cloud limitations, and policy rollout.
Storage, PV/PVC, CSI, and Stateful Boundaries
18 minStorage, PersistentVolume, PersistentVolumeClaim, StorageClass, CSI, and stateful workload boundaries for production Kubernetes on AWS EKS and Azure AKS.
Cluster Architecture Managed vs Self-Managed
32 minCluster architecture decision-making for managed vs self-managed Kubernetes, with production responsibility boundaries, failure domains, operating models, and cloud platform implications.
AWS EKS Architecture Foundation
27 minProduction-grade AWS EKS architecture foundation covering control plane, data plane, VPC networking, IAM, access management, add-ons, node models, Fargate, EKS Auto Mode, and operational invariants.
Azure AKS Architecture Foundation
26 minAzure AKS architecture foundation for production platform engineers: control plane boundary, cluster modes, node pools, identity, networking, private access, add-ons, governance, and operational design decisions.
EKS VPC Networking Deep Dive
20 minDeep dive into EKS VPC networking: Amazon VPC CNI, ENI/IP allocation, subnet sizing, pod density, prefix delegation, custom networking, IPv6, security groups, egress, and production troubleshooting.
AKS VNet Networking Deep Dive
17 minDeep dive into AKS VNet networking: Azure CNI Overlay, Azure CNI Pod Subnet, IP planning, subnet design, routing, egress, private clusters, NSG/UDR/firewall boundaries, and production troubleshooting.
Cloud Load Balancing and Ingress on AWS/Azure
15 minProduction patterns for cloud load balancing and ingress on EKS and AKS: Service LoadBalancer, ALB, NLB, Azure Load Balancer, Application Gateway, Application Gateway for Containers, Ingress, Gateway API, target modes, TLS, health checks, and failure models.
DNS, TLS, Certificates, and Edge Security
21 minProduction patterns for DNS, TLS, certificate lifecycle, and edge security on Kubernetes with AWS Route 53, ACM, ExternalDNS, cert-manager, Azure DNS, Azure Key Vault, Application Gateway, and Gateway API.
Kubernetes Identity, RBAC, and Cloud IAM
17 minProduction-grade identity and authorization model for Kubernetes, EKS, and AKS: authentication, RBAC, service accounts, human access, automation access, AWS IAM access entries, Microsoft Entra ID, Azure RBAC, least privilege, and failure modes.
EKS Pod Identity and IRSA
20 minEKS Pod Identity and IRSA as production workload identity patterns for AWS access from Kubernetes workloads.
AKS Workload Identity and Managed Identity
17 minAKS Workload Identity and Managed Identity for production-grade Azure access from Kubernetes Pods.