search
Home

Practice Test

chevron-right1. What is the primary purpose of the --enable-admission-plugins=NodeRestriction flag used with the kube-apiserver in Kubernetes? a. To enforce security policies for pods running on worker nodes. b. To restrict API calls related to Node objects in the cluster. c. To improve the performance of the kube-apiserver by limiting specific API requests. d. To enable advanced scheduling features for managing node placement.hashtag

Answer: b. To restrict API calls related to Node objects in the cluster.

The --enable-admission-plugins=NodeRestriction flag activates an admission controller plugin named "NodeRestriction" within the kube-apiserver. This plugin enforces specific restrictions on API calls related to Node objects in the Kubernetes cluster.

chevron-right2. What does CNCF stand for? a. Cloud Native Container Federation b. Cloud Native Computing Federation c. Cloud Native Container Foundation d. Cloud Native Computing Foundationhashtag

Answer: d. Cloud Native Computing Foundation Reference: https://www.cncf.io/about/who-we-are/arrow-up-right

chevron-right3. The Open Container Initiative (OCI) provides container standards for? a. Container, Image, Build b. Container, image distribution c. Image, Build, Distributions d. Runtime, Image, Distributionhashtag

Answer: d. Runtime, Image, Distribution The OCI currently contains three specifications: the Runtime Specification (runtime-spec), the Image Specification (image-spec) and the Distribution Specification (distribution-spec). Reference: https://opencontainers.org/about/overview/arrow-up-right

chevron-right4. Which combination of ports is used by default for communication between kube-apiserver and etcd in a Kubernetes cluster? a. kube-apiserver: 6443, etcd: 2379 b. kube-apiserver: 443, etcd: 2204 c. kube-apiserver: 6443, etcd: 2204 d. kube-apiserver: 443, etcd: 2379hashtag

Answer: a. kube-apiserver: 6443, etcd: 2379

By default, the Kubernetes API server listens on port 6443 on the first non-localhost network interface, protected by TLS. While the official etcd ports are 2379 for client requests and 2380 for peer communication.

chevron-right5. Where are static pod manifests, like those for kube-apiserver and kube-controller-manager, stored by default on a Kubernetes cluster? a. /var/lib/kubelet b. /etc/kubernetes/manifests c. /usr/share/kubernetes/manifests c. Inside the container image of the componenthashtag

Answer: b. /etc/kubernetes/manifests Reference: https://kubernetes.io/docs/reference/setup-tools/kubeadm/implementation-detailsarrow-up-right

chevron-right6. What is the name of the agent that run on each Kubernetes worker node? a. kubelet b. kube-scheduler c. kube-apiserver d. etcdhashtag

Answer: a. kubelet

The kubelet is the primary "node agent" that runs on each node. Reference: https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet/arrow-up-right

chevron-right7. Which command can be used to list all the pods in all namespaces? a. kubectl get pods -n --all b. kubectl get pods -A c. kubectl get pods d. kubectl get pods -n kube-systemhashtag

Answer: b. kubectl get pods -A

To list pods in all namespaces you can either use kubectl get pods -A or kubectl get pods --all-namespaces

chevron-right8. Which of these is NOT a service type in Kubernetes? a. ClusterIP b. LoadBalancer c. NodePort d. Ingresshashtag

Answer: d. Ingress

The available service types are ClusterIP, NodePort, LoadBalancer and ExternalName. Reference: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-typesarrow-up-right

chevron-right9. What is the smallest unit you can create in Kubernetes? a. image b. podman c. deployment d. podhashtag

Answer: d. pod

Pods are the smallest deployable units of computing that you can create and manage in Kubernetes. Reference: https://kubernetes.io/docs/concepts/workloads/podsarrow-up-right

chevron-right10. Listed below are the three (3) main bodies of Cloud Native Computing Foundation (CNCF) except ____________. a. Governing Board (GB) b. Technical Oversight Committee (TOC) c. Technical Advisory Groups (TAG) d. End User Community (EUC)hashtag

Answer: c. Technical Advisory Groups (TAG)

The Cloud Native Computing Foundation (CNCF) has three main bodies: a Governing Board (GB) that is responsible for marketing, budget and other business oversight decisions for the CNCF, a Technical Oversight Committee (TOC) that is responsible for defining and maintaining the technical vision, and an End User Community (EUC) that is responsible for providing feedback from companies and startups to help improve the overall experience for the cloud native ecosystem. Reference: https://www.cncf.io/blog/2022/12/01/cncf-toc-elections-for-2023/arrow-up-right

PreviousCloud Native Application DeliveryNextMy Notes (Cheatsheet)

Last updated