Learn · Networking

Networking

Treat routing as a chain: controller → rule → service → endpoints → pods → policy. Prove each hop before you blame the CNI.

What this module covers

Traffic flow, discovery, and boundaries.

Services: selectors, EndpointSlices, readiness gating, and port alignment.
Ingress: edge routing as a controller contract; common misconceptions and failure modes.
DNS: search domains, ndots behavior, CoreDNS posture, and how policy/egress failures masquerade as DNS.
Boundaries: NetworkPolicy as containment, not as paperwork.

The doctrine of routing, stated plainly.

Tenet

Tenet IV: Service and Network

Service discovery, ingress, trust boundaries, and disciplined communication.

Text

Network Policy and the Discipline of Isolation

Containment, blast radius, and practical boundary thinking.

Atlas

Ingress Returns 502/503

Upstream missing/unhealthy/slow: endpoints, readiness, and timeouts.

Make routing diagnostics reflexive.

Lab

Fix a Broken Service Selector

Selectors, endpoints, readiness, and port alignment.

Lab

Ingress Returns 404

Debug from the edge inward: controller → rule → service → endpoints.

Lab

DNS Triage Inside the Cluster

CoreDNS health, search domains, ndots, policy, and egress.

Continue with configuration discipline.

Learn

Configuration & Secrets

ConfigMaps, Secrets, wiring discipline, rotation posture, and safe change.

Topic map

Configuration & Secrets (Archive)

Curated texts and practice links for safe configuration handling.