Saurabh Adhau's Blog

Multi-AZ EKS Cluster Setup with Service for Pod Communication Verification

Saurabh Adhau's photo
Saurabh Adhau
·

5 min read

Multi-AZ EKS Cluster Setup with Service for Pod Communication Verification

Table of contents

Introduction

To create an Amazon EKS (Elastic Kubernetes Service) cluster in a Multi-AZ (Availability Zone) configuration and ensure that pods can communicate with each other across different AZs, you need to follow a detailed step-by-step process. This involves setting up an EKS cluster across multiple AZs, deploying an example application, and verifying cross-pod communication. This setup will also demonstrate high availability, resilience, and redundancy across different AZs.

Step 1: Prerequisites

  1. AWS Account: Ensure you have an AWS account with sufficient permissions to create and manage EKS resources.

  2. AWS CLI: Install the AWS CLI and configure it with your AWS credentials.

     aws configure

  3. kubectl: Install kubectl to interact with the Kubernetes cluster.

     curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"
 chmod +x kubectl
 sudo mv kubectl /usr/local/bin/

  4. eksctl: Install eksctl, a command-line tool for managing EKS clusters.

     curl --silent --location "https://github.com/weaveworks/eksctl/releases/download/0.140.0/eksctl_$(uname -s)_$(uname -m).tar.gz" | tar xz -C /tmp
 sudo mv /tmp/eksctl /usr/local/bin

Step 2: Create an EKS Cluster Across Multiple Availability Zones

  1. Create the EKS Cluster using eksctl:

    The following command creates an EKS cluster named multi-az-cluster with nodes distributed across three different AZs:

     eksctl create cluster \
   --name multi-az-cluster \
   --region ap-northeast-1 \
   --zones ap-northeast-1a,ap-northeast-1d \
   --nodegroup-name multi-az-nodes \
   --node-type t2.micro \
   --nodes 2 \
   --nodes-min 2 \
   --nodes-max 4

    • --region ap-northeast-1: Specifies the AWS region.

    • --zones ap-northeast-1a,ap-northeast-1d: Specifies the AZs for the cluster.

    • --nodegroup-name multi-az-nodes: Names the node group.

    • --nodes 2: Specifies the initial number of nodes.

    • --nodes-min 2 and --nodes-max 4 : Configures the autoscaling range for the node group.

    • After applying the above command you can see the output like this:

  1. Verify the Cluster Creation:

    Once the cluster is created, verify its status:

     eksctl get cluster --name multi-az-cluster

    Check the nodes:

     kubectl get nodes --show-labels

    This command will display the nodes along with their AZ labels.

Step 3: Deploy an Example Application and Service

To test pod-to-pod communication across AZs, we'll deploy a simple nginx application with multiple replicas and create a Kubernetes Service to expose these pods.

  1. Create a Deployment YAML File:

    Create a file named nginx-deployment.yaml:

     apiVersion: apps/v1
 kind: Deployment
 metadata:
   name: nginx-deployment
 spec:
   replicas: 4
   selector:
     matchLabels:
       app: nginx
   template:
     metadata:
       labels:
         app: nginx
     spec:
       affinity:
         podAntiAffinity:
           requiredDuringSchedulingIgnoredDuringExecution:
             - labelSelector:
                 matchExpressions:
                   - key: app
                     operator: In
                     values:
                       - nginx
               topologyKey: "topology.kubernetes.io/zone"
       containers:
       - name: nginx
         image: nginx:latest
         ports:
         - containerPort: 80
    • Affinity Rules: The podAntiAffinity rule ensures that the nginx pods are spread across different AZs for high availability.

  2. Create a Service YAML File:

    Create a file named nginx-service.yaml to expose the nginx pods.

     apiVersion: v1
 kind: Service
 metadata:
   name: nginx-service
 spec:
   selector:
     app: nginx
   ports:
     - protocol: TCP
       port: 80
       targetPort: 80
   type: ClusterIP

    • kind: Service: Defines the Kubernetes Service.

    • selector: Matches the nginx pods created by the deployment.

    • type: ClusterIP: Creates an internal service within the cluster that other pods can access.

  3. Deploy the Application and Service:

    Apply the deployment and service to the cluster:

     kubectl apply -f nginx-deployment.yaml
 kubectl apply -f nginx-service.yaml

  4. Verify the Deployment and Service:

    Check that the pods are running and spread across different AZs:

     kubectl get pods -o wide

    Check the service status and get its Cluster IP:

     kubectl get svc

    You should see an entry for nginx-service with its internal ClusterIP.

Step 4: Verify Pod Communication Across Availability Zones

To ensure that pods can communicate across AZs, we'll use a busybox pod to test communication with the nginx pods.

  1. Deploy a busybox Pod:

    Run the following command to create a busybox pod:

     kubectl run busybox --image=busybox --restart=Never -- sleep 3600

    This pod will run for 3600 seconds (1 hour) to allow you time to perform the communication test.

  2. Test Communication with Nginx Pods via the Service:

    Use the kubectl exec command to log into the busybox pod and test communication with the nginx service:

     kubectl exec -it busybox -- /bin/sh

    Inside the busybox pod, test communication with the nginx service by its service name, there are multiple ways to do it:

     wget --spider --timeout=1 nginx-service
 wget --spider --timeout=1 http://<nginx-pod-ip>
 wget --spider --timeout=1 http://nginx-service

    If the service is reachable, you should get a response indicating that the service is available.

Step 5: Verify High Availability of the EKS Cluster

To ensure the EKS cluster is highly available across multiple AZs:

  1. Check Node Availability:

    Verify that your nodes are running in different AZs:

     kubectl get nodes --show-labels

    Look for the topology.kubernetes.io/zone label to confirm nodes are distributed across AZs.

  2. Simulate an AZ Failure:

    Simulate a failure by manually terminating an instance in one AZ through the AWS Management Console.

    Monitor Pod Rescheduling:

    Use the following command to monitor the pods:

     kubectl get pods -o wide --watch

    Kubernetes should reschedule the pods from the terminated instance to the remaining healthy nodes in other AZs. You can see the activity in the below images:

  3. Check Application Availability:

    Confirm that the application is still available by accessing the Nginx service through a LoadBalancer or NodePort.

    If you've set up a service with a LoadBalancer type, you can get the external IP and check access:

     kubectl get svc

    Access the external IP in your browser to verify that the application is still accessible.

Step 6: Clean Up Resources

Once you have verified the communication and high availability, clean up the resources to avoid unnecessary charges:

eksctl delete cluster --name multi-az-cluster

Conclusion

By following these updated steps, you've created an EKS cluster across multiple Availability Zones, deployed an example application, and verified that pods can communicate across AZs using a Kubernetes Service, ensuring high availability and resilience. This setup helps maintain service continuity even when failures occur in one AZ.

EKSEKS clustereksctlAWSaws cliawscliDevopsDevops articlesDevOps Journey#DevopscommunityDevOps trendsKuberneteskubernetes-podsk8s#k8scluster