Introduction to AKS and Core Networking Concepts

Packt via Coursera

Go to class Write review

Details

Go to class

Provider

Coursera
Pricing

Paid Course
Languages

English
Certificate

Paid Certificate Available
Duration & workload

11 hours 44 minutes
Sessions

On-Demand
Subtitles

English

Found in

Part of

Your Ultimate Guide To AKS Infrastructure And Network

Overview

Coursera Flash Sale

40% Off Coursera Plus for 3 Months!

Grab it

This course features Coursera Coach! A smarter way to learn with interactive, real-time conversations that help you test your knowledge, challenge assumptions, and deepen your understanding as you progress through the course. Gain a comprehensive understanding of Azure Kubernetes Service (AKS) and the core networking concepts that power secure, scalable containerized applications. This course equips you with the skills to design, deploy, and manage Kubernetes workloads on Azure using advanced networking strategies. The course begins by establishing foundational knowledge of AKS architecture and Kubernetes fundamentals, including Pods, Deployments, and cluster setup. You’ll then dive into configuring public and private clusters, explore VNET integrations, and securely access clusters using Azure Bastion. Advanced demos walk you through practical implementations that bring theory to life. As you progress, you’ll explore network isolation, private DNS at scale, External DNS, CoreDNS configurations, and how to manage application traffic using Gateway APIs and Ingress Controllers. The final modules cover outbound traffic management, NAT Gateway, UDR, and troubleshooting common ingress/egress issues. This course is ideal for cloud engineers, DevOps professionals, and network architects looking to deepen their Kubernetes networking expertise. Intermediate knowledge of cloud infrastructure and Kubernetes is recommended. By the end of the course, you will be able to architect AKS clusters with advanced networking, implement secure DNS and routing configurations, and manage outbound and ingress traffic for real-world Kubernetes workloads.

Syllabus

Kubernetes and AKS Architecture

In this module, we will revisit the foundational architecture of Azure Kubernetes Service (AKS) to strengthen your understanding of its core components. You’ll explore how these elements interact to deliver scalable, managed Kubernetes workloads. This sets the stage for deeper exploration into AKS operations and networking in later sections.

Introduction to Kubernetes Fundamentals

In this module, we will introduce the foundational concepts and hands-on steps for deploying workloads in AKS. From creating a cluster to configuring services and scaling Pods, this section equips you with the essential tools to begin working with Kubernetes on Azure. You'll also learn how to interact with the cluster using both CLI and Azure Portal.

Comparing AKS Public and Private Clusters

In this module, we will compare the design and network configuration of public versus private AKS clusters. You'll learn how VNET integration and private endpoints affect access, isolation, and security. This section helps you make informed decisions when designing AKS environments for different use cases.

Accessing a Private AKS Cluster Using Bastion

In this module, we will explore how to securely access private AKS clusters using Azure Bastion. Through demos and architectural walkthroughs, you’ll learn how to eliminate public exposure while maintaining full operational access. This is essential for implementing zero-trust and secure access patterns in enterprise environments.

Network Isolated AKS Cluster

In this module, we will dive into network isolation strategies for AKS to enhance cluster security. You'll learn the design considerations, and watch a demo on implementing a fully isolated environment. This section is crucial for scenarios requiring strict compliance and traffic control.

Networking Plugins for AKS: Kubenet & Azure CNI

In this module, we will explore the networking options available in AKS, including Kubenet, Azure CNI, and overlay modes. You'll learn the trade-offs between simplicity, scalability, and customization. We’ll also cover advanced setups and potential pitfalls like CIDR overlaps and plugin extensibility.

AKS Private DNS Resolution at Scale

In this module, we will address DNS resolution challenges and strategies for private AKS environments. You'll explore how to scale DNS across multiple regions and clusters, with both centralized and decentralized models. Real-world demos will show how to resolve endpoints reliably and securely.

Kubernetes External-DNS

In this module, we will introduce External DNS and its integration with Kubernetes to manage DNS records dynamically. You'll learn how it automates DNS changes as services are deployed or updated. Visual walkthroughs and demos will clarify its role in modern Kubernetes networking.

Kubernetes CoreDNS

In this module, we will focus on CoreDNS, Kubernetes’ default DNS provider. You'll understand its configuration, extend it with custom domains, and enable query logging. This knowledge is essential for debugging DNS issues and fine-tuning service resolution in production environments.

Gateway API with Application Gateway for Containers

In this module, we will explore the Gateway API and its integration with Azure’s Application Gateway for Containers. You’ll learn how this modern traffic management layer improves flexibility and control. Through step-by-step demos, you’ll implement traffic routing, identity, and security configurations.

Gateway API with Envoy Gateway

In this module, we will introduce the Envoy Gateway as an ingress solution for Kubernetes. You'll explore its architecture and benefits in managing traffic routing. A hands-on demo illustrates how to integrate and use Envoy Gateway within an AKS cluster.

AKS Application Routing (Managed Ingress)

In this module, we will explore AKS-managed ingress through the Application Routing add-on. You'll learn how to deploy and secure ingress controllers and configure both public and internal routing. With multiple demos, you'll also see how to monitor ingress health and traffic flows.

App Gateway and Ingress Controller Instead of AGIC

In this module, we will look at using Application Gateway with an ingress controller instead of AGIC. You'll understand the trade-offs and flexibility this approach offers. A live demo will walk you through the full deployment and configuration process.

AKS Egress Traffic and Outbound Types (LB, NAT Gateway, UDR)

In this module, we will explore how AKS handles outbound traffic, covering Load Balancer, Managed/Assigned NAT Gateway, and User Defined Routing. You'll learn about their architectures, configuration steps, and challenges such as SNAT exhaustion. Demos will show how to optimize egress in real-world deployments.