Practice Test
1. What is the primary purpose of the --enable-admission-plugins=NodeRestriction flag used with the kube-apiserver in Kubernetes?
a. To enforce security policies for pods running on worker nodes.
b. To restrict API calls related to Node objects in the cluster.
c. To improve the performance of the kube-apiserver by limiting specific API requests.
d. To enable advanced scheduling features for managing node placement.
Answer: b. To restrict API calls related to Node objects in the cluster.
The --enable-admission-plugins=NodeRestriction flag activates an admission controller plugin named "NodeRestriction" within the kube-apiserver. This plugin enforces specific restrictions on API calls related to Node objects in the Kubernetes cluster.
2. What does CNCF stand for? a. Cloud Native Container Federation b. Cloud Native Computing Federation c. Cloud Native Container Foundation d. Cloud Native Computing Foundation
Answer: d. Cloud Native Computing Foundation Reference: https://www.cncf.io/about/who-we-are/
3. The Open Container Initiative (OCI) provides container standards for? a. Container, Image, Build b. Container, image distribution c. Image, Build, Distributions d. Runtime, Image, Distribution
Answer: d. Runtime, Image, Distribution
The OCI currently contains three specifications: the Runtime Specification (runtime-spec), the Image Specification (image-spec) and the Distribution Specification (distribution-spec). Reference: https://opencontainers.org/about/overview/
4. Which combination of ports is used by default for communication between kube-apiserver and etcd in a Kubernetes cluster? a. kube-apiserver: 6443, etcd: 2379 b. kube-apiserver: 443, etcd: 2204 c. kube-apiserver: 6443, etcd: 2204 d. kube-apiserver: 443, etcd: 2379
Answer: a. kube-apiserver: 6443, etcd: 2379
By default, the Kubernetes API server listens on port 6443 on the first non-localhost network interface, protected by TLS. While the official etcd ports are 2379 for client requests and 2380 for peer communication.
5. Where are static pod manifests, like those for kube-apiserver and kube-controller-manager, stored by default on a Kubernetes cluster? a. /var/lib/kubelet b. /etc/kubernetes/manifests c. /usr/share/kubernetes/manifests c. Inside the container image of the component
Answer: b. /etc/kubernetes/manifests Reference: https://kubernetes.io/docs/reference/setup-tools/kubeadm/implementation-details
6. What is the name of the agent that run on each Kubernetes worker node? a. kubelet b. kube-scheduler c. kube-apiserver d. etcd
Answer: a. kubelet
The kubelet is the primary "node agent" that runs on each node. Reference: https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet/
7. Which command can be used to list all the pods in all namespaces? a. kubectl get pods -n --all b. kubectl get pods -A c. kubectl get pods d. kubectl get pods -n kube-system
Answer: b. kubectl get pods -A
To list pods in all namespaces you can either use kubectl get pods -A or kubectl get pods --all-namespaces
8. Which of these is NOT a service type in Kubernetes? a. ClusterIP b. LoadBalancer c. NodePort d. Ingress
Answer: d. Ingress
The available service types are ClusterIP, NodePort, LoadBalancer and ExternalName. Reference: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types
9. What is the smallest unit you can create in Kubernetes? a. image b. podman c. deployment d. pod
Answer: d. pod
Pods are the smallest deployable units of computing that you can create and manage in Kubernetes. Reference: https://kubernetes.io/docs/concepts/workloads/pods
10. Listed below are the three (3) main bodies of Cloud Native Computing Foundation (CNCF) except ____________. a. Governing Board (GB) b. Technical Oversight Committee (TOC) c. Technical Advisory Groups (TAG) d. End User Community (EUC)
Answer: c. Technical Advisory Groups (TAG)
The Cloud Native Computing Foundation (CNCF) has three main bodies: a Governing Board (GB) that is responsible for marketing, budget and other business oversight decisions for the CNCF, a Technical Oversight Committee (TOC) that is responsible for defining and maintaining the technical vision, and an End User Community (EUC) that is responsible for providing feedback from companies and startups to help improve the overall experience for the cloud native ecosystem. Reference: https://www.cncf.io/blog/2022/12/01/cncf-toc-elections-for-2023/
Last updated