My favorite channel for learning k8s related stuff. Thank you for all this goodness. Well thought out structure and very clear explanations. You're a great teacher! ❤️
Hi, Thanks for watching this video. I have Spinnaker on my list but I need to set some time to learn and play with it. I will get there definitely and will do a video on it. Thanks for suggesting this topic. Cheers.
HI Pawan, thanks for watching. Yeah, you could update the type of kiali service to NodePort or Load Balancer. Or as normal cluserIP service and use ingress.
Hi Salim, thanks for your interest in my videos. You can just edit the kiali service and change the service type. If you don't want to use load balancer then you can use nodeport or you can just do a port-forwarding.
Hi Vignesh, thanks for watching this video. I haven't explored anything else other than Kiali but have heard of these other tools. May be I should explore them and make a video. I will see if I can find some time to do that. Thanks for bringing that up. Cheers.
Hey Venkat!! Your videos are nice and its has good content!!. In this video, am facing some issue. Can you help me with it? I had deploy kiali on the k8s cluster(AWS). I am unable to access it from the browser. Since its AWS do i need to do anything extra?
Hi, thanks for watching. If your infrastructure is in AWS, you might want to look into security groups and stuff to see if anything is blocking. Make sure Kiali pods are running. If you have kubectl access to your k8s cluster, you can also use port-forwarding to access kiali dashboard. Cheers.
How can we do traffic/ service mash for each pod. A deployment might have multiple pod, is there any way to show traffic rate for each pod in graph? when I increase reviews-v3 pod up to 3, I did not see traffic rate for each pods.
Traffic will be directed to the service for the deployment from where it is routed to pods. So I don't think you need to worry about traffic to individual pods.
Helpful Video, thanks a lot. In kiali documentation says that we use kiali public API to generate graph data in the form of consumable JSON. any comment about how can we access that file ?
Hi JJ, I just tried accessing the Kiali Public API endpoint and its working perfectly fine. I used port-forward to access Kiali from my host machine. localhost:20001/kiali/api/namespaces/graph?namespaces=default&graphType=app And I can see the JSON notation of the graphs. Its not stored in any files. You just access the api endpoint. Thanks.
How would you determine the dependency importance of services between each other? Would this need to be manually done by developers or would you calculate that based on the amount of request a service is doing to another service?
Hi, thanks for watching. I am not entirely sure what you mean by dependency importance but thats something developers have to do it and you have features in Istio to decide the volume of traffic to send to different services. Cheers.
what is dependency importance? Do you mean how to define rules such as which mircroservice is allowed to talk to which other MS ? You have to use VirtualService for that. They work hand in hand with destinationRules which specifies how the traffic will flow from source to target MS once the routing is decided via Virtual services. E.g. VirtualService can define that all traffic coming Istio-Gateway, which has endpoint as /login needs to hit Login Microservice and rest all traffic needs to hit the main MS. Destination rule will specify load balancing policy, or whether mTLS needs to applied or not etc. We have to manually write these YAMLs or easier way is to use Kiali UI to get these generated for us. Usually in production, you cannot make changes directly via Kiali but you can always copy/paste the YAMLs that Kiali generates into your GitHub and take it to Prod via your standard CI/CD pipelines. Hope this helps.
Hi Venkat, Thank you for the videos. When I am enabling kiali and grafana, I am getting below error, could you please help? Due to this sidecar is not injecting in bookinfo sample application. And it is working properly without grafana and kiali. Error: release istio failed: Internal error occurred: failed calling webhook "pilot.validation.istio.io": Post istio-galley.istio-system.svc:443/admitpilot?timeout=30s: dial tcp 10.96.224.109:443: connect: connection refused
Hi Vivek, thanks for watching. I haven't come across this error in my environment. However I have released a followup video on how to install istio using istioctl instead of helm. You can watch it at th-cam.com/video/wdusXMYeddg/w-d-xo.html. Helm way of istalling istio is being deprecated. And now its easy to start kiali, grafana, prometheus from a single command. Please check that out and hopefully that should give you some answer. Cheers.
Hi Venkat, I am struggling to install grafana & kiali in helm v3 - please could you help With the command you specified it is giving an error ( Error: unknown flag: --name) By the way the istio-version now i got is 1.11.0 - Thanks a lot for sharing a lot of good info. Since last two day's i watched your videos (20) times. But still struggling...Please help me out.
Hi Ravind, thanks for watching. I will have to redo this istio series as the installation method has changed. Have you followed this doc? kiali.io/documentation/latest/installation-guide/#_kiali_only_install
@@justmeandopensource Wow thanks alot for very quick response. I haven't tried it. But will do 1. I Stucked at Grafana installation. So it is similar command to start with hence i didn't tried. 2. I will check that again. Can i use helm2 or helm3 (by the way I am deploying in eks cluster). 3. Istio version i got is 1.11.0 from the download
@@justmeandopensource Thanks alot - good news to share is able to install kiali as suggested. Now i did the port-forwarded to see the UI. Waiting... Is it possible to reach you out in private please email. If you want I can pass on. That would be great help from you.
Hi Venkat, I got a problem with my telemetry pod. It shows messages "0/3 nodes are available: 1 Insufficient memory, 3 Insufficient cpu". My master setting is: Ram 4.6GB, 2 CPU, my worker node is: Ram 4GB, 2 CPU. Another pods are running well: citadel, galley, ingressgateway, grafana, istiod, sidecar, kiali, prometheus. Can you help me ?
Hi Bui, thanks for watching. I don't think you can do anything in this case other than increasing the resources. You either need to have more ram and cpu on your existing nodes or just add another node to the cluster. If you want to effectively use your cluster, you should look at setting default resource limits so that no pods use more resources than what they are allowed to use.
Hi Sir, As per your previous video I have done the setup through istioctl command. How can i setup grafana url in kiali dashboard ?. Please provide some step by step guide on it.
Hi Ishan, what helm version are using? Your helm install command looks good and I can't see any problem. I used helm v2.14 I think in this video. V3 of helm came with lot of changes. Thanks.
Hi Harsha, thanks for watching. Hmm not sure about it. I would just start from scratch and see if the problem presists otherwise chances are that you might have missed a simple step. Cheers.
Kiali is just a visualization tool to see your service mesh whereas Jaeger is the observability tool that gives insights into your application performance
Hi Haritha, thanks for watching this video. I have just started exploring OpenShift Container Platform. Soon I will be starting a series on OpenShift. I don't understand what you mean by installing Istio in offline mode. You download the istio repository and use helm to install the components which will pull container images for various components. So you need internet connection to be able to pull the images. Cheers.
I don't have internet connection, I created customized registry and there I am maintaining all repos/images, so through this I installed OCP3.11. Here, can I install istio service mesh???
@@sisira_reddy8369 Yes you can make it work offline. Look at the yaml files you are deploying in the Istio directory and look at what container images are being deployed. Then you can pull those images to your private repository locally and update the yaml files to point to your repo and use secrets if your private repository require password to pull the images. Thanks.
@@justmeandopensource as u said above already done same, istio, jaeger, Kiali operators are running, and istio pod also running. Created istio operator when I do validation the all 17 pods status is imagepullbackoff. If u have an idea can u plz tell the reason. Thanks in advance...
It became a routine to start the day with your vedio and a coffee 😊
That's good to hear. Many thanks for your interest. 😁
Great detailed explanation, I liked the way you explained, you even told what you used -o -s curl arguments!
Hi Deepak, thanks for watching. Cheers.
My favorite channel for learning k8s related stuff. Thank you for all this goodness. Well thought out structure and very clear explanations. You're a great teacher! ❤️
Thanks David for watching and taking time to comment. Cheers.
Great video, very informative and clearly explained. Thank you and please keep up the good work.
Hi Bob, Thanks for watching.
Thanks for all you video tutorials, Venkat. I would like to watch such video about Spinnaker, if you have time.
Hi, Thanks for watching this video. I have Spinnaker on my list but I need to set some time to learn and play with it. I will get there definitely and will do a video on it. Thanks for suggesting this topic. Cheers.
great venkat.
Hi Mohammed, thanks for watching.
Hi.. Your all videos are awesome... Can you please make a video on circuit breaker in istio... That would be very helpful..
Hey! Thanks for spreading the word of our work :fire: Let us know if there something we could do to support your work. Happy to help!
No worries. Thanks.
Love you bro
Hello Venkat, Really helpful video to visualize Kiali. Thanks. It is possible to create a video on kiali login with openid strategy using keycloak ?
Excellent Venkat, Can I make Kiali public endpoint? instead of port forwarding.
HI Pawan, thanks for watching. Yeah, you could update the type of kiali service to NodePort or Load Balancer. Or as normal cluserIP service and use ingress.
Hi Venkat,
I recently started watching your video. It's one of best.
How to remotely access kiali without loadbalancer(using nodeport)
Hi Salim, thanks for your interest in my videos. You can just edit the kiali service and change the service type. If you don't want to use load balancer then you can use nodeport or you can just do a port-forwarding.
excellet Venkat. what would be the difference between Jaeger, zipkin and kiali? i know these are for distributed tracing. any advantages/ drawbacks?
Hi Vignesh, thanks for watching this video. I haven't explored anything else other than Kiali but have heard of these other tools. May be I should explore them and make a video. I will see if I can find some time to do that. Thanks for bringing that up. Cheers.
Hey Venkat!!
Your videos are nice and its has good content!!.
In this video, am facing some issue. Can you help me with it?
I had deploy kiali on the k8s cluster(AWS). I am unable to access it from the browser. Since its AWS do i need to do anything extra?
Hi, thanks for watching. If your infrastructure is in AWS, you might want to look into security groups and stuff to see if anything is blocking. Make sure Kiali pods are running. If you have kubectl access to your k8s cluster, you can also use port-forwarding to access kiali dashboard. Cheers.
How can we do traffic/ service mash for each pod. A deployment might have multiple pod, is there any way to show traffic rate for each pod in graph? when I increase reviews-v3 pod up to 3, I did not see traffic rate for each pods.
Traffic will be directed to the service for the deployment from where it is routed to pods. So I don't think you need to worry about traffic to individual pods.
Helpful Video, thanks a lot. In kiali documentation says that we use kiali public API to generate graph data in the form of consumable JSON. any comment about how can we access that file ?
Hi JJ, thanks for watching this video. I haven't tested the public api endpoint for kiali. I will give it a try tomorrow and let you know. Cheers.
Hi JJ, I just tried accessing the Kiali Public API endpoint and its working perfectly fine.
I used port-forward to access Kiali from my host machine.
localhost:20001/kiali/api/namespaces/graph?namespaces=default&graphType=app
And I can see the JSON notation of the graphs. Its not stored in any files. You just access the api endpoint.
Thanks.
@@justmeandopensource Thanks a lot, appreciate that. (subscribed ;) )
Cool. Thanks for subscribing.
@@justmeandopensource Is there any visualizing tool like Kiali that stores the graph data in a specific file and can be accessed?Thanks again.
Nice video! Is there any way to integrate those graphs in our own code? Does Kiali offers any API for Graph Integration?
How would you determine the dependency importance of services between each other? Would this need to be manually done by developers or would you calculate that based on the amount of request a service is doing to another service?
Hi, thanks for watching. I am not entirely sure what you mean by dependency importance but thats something developers have to do it and you have features in Istio to decide the volume of traffic to send to different services. Cheers.
what is dependency importance? Do you mean how to define rules such as which mircroservice is allowed to talk to which other MS ? You have to use VirtualService for that. They work hand in hand with destinationRules which specifies how the traffic will flow from source to target MS once the routing is decided via Virtual services. E.g. VirtualService can define that all traffic coming Istio-Gateway, which has endpoint as /login needs to hit Login Microservice and rest all traffic needs to hit the main MS. Destination rule will specify load balancing policy, or whether mTLS needs to applied or not etc. We have to manually write these YAMLs or easier way is to use Kiali UI to get these generated for us. Usually in production, you cannot make changes directly via Kiali but you can always copy/paste the YAMLs that Kiali generates into your GitHub and take it to Prod via your standard CI/CD pipelines. Hope this helps.
Hi Venkat, Thank you for the videos. When I am enabling kiali and grafana, I am getting below error, could you please help? Due to this sidecar is not injecting in bookinfo sample application. And it is working properly without grafana and kiali.
Error: release istio failed: Internal error occurred: failed calling webhook "pilot.validation.istio.io": Post istio-galley.istio-system.svc:443/admitpilot?timeout=30s: dial tcp 10.96.224.109:443: connect: connection refused
Hi Vivek, thanks for watching. I haven't come across this error in my environment. However I have released a followup video on how to install istio using istioctl instead of helm. You can watch it at th-cam.com/video/wdusXMYeddg/w-d-xo.html. Helm way of istalling istio is being deprecated. And now its easy to start kiali, grafana, prometheus from a single command. Please check that out and hopefully that should give you some answer. Cheers.
Hi Venkat, I am struggling to install grafana & kiali in helm v3 - please could you help
With the command you specified it is giving an error ( Error: unknown flag: --name)
By the way the istio-version now i got is 1.11.0 - Thanks a lot for sharing a lot of good info.
Since last two day's i watched your videos (20) times. But still struggling...Please help me out.
Hi Ravind, thanks for watching. I will have to redo this istio series as the installation method has changed.
Have you followed this doc?
kiali.io/documentation/latest/installation-guide/#_kiali_only_install
@@justmeandopensource Wow thanks alot for very quick response. I haven't tried it. But will do
1. I Stucked at Grafana installation. So it is similar command to start with hence i didn't tried.
2. I will check that again. Can i use helm2 or helm3 (by the way I am deploying in eks cluster).
3. Istio version i got is 1.11.0 from the download
@@ravindvelisala9333 Go for Helm v3 and stay with the crowd.
@@justmeandopensource Thanks alot - good news to share is able to install kiali as suggested.
Now i did the port-forwarded to see the UI. Waiting...
Is it possible to reach you out in private please email. If you want I can pass on.
That would be great help from you.
Hi Venkat, I got a problem with my telemetry pod. It shows messages "0/3 nodes are available: 1 Insufficient memory, 3 Insufficient cpu". My master setting is: Ram 4.6GB, 2 CPU, my worker node is: Ram 4GB, 2 CPU. Another pods are running well: citadel, galley, ingressgateway, grafana, istiod, sidecar, kiali, prometheus. Can you help me ?
Hi Bui, thanks for watching. I don't think you can do anything in this case other than increasing the resources. You either need to have more ram and cpu on your existing nodes or just add another node to the cluster. If you want to effectively use your cluster, you should look at setting default resource limits so that no pods use more resources than what they are allowed to use.
Hi Sir, As per your previous video I have done the setup through istioctl command. How can i setup grafana url in kiali dashboard ?. Please provide some step by step guide on it.
Hi Sarfaraz, thanks for watching this video. I will have to refresh my memory on this. Let me see if I have some time to look into this. Cheers.
Awesome video series!
I'm unable to set Grafana url for kiali. Kindly advice. Thank you!.
$ helm install install/kubernetes/helm/istio --name istio --namespace istio-system --set grafana.enabled=True --set kiali.enabled=True --set kiali.dashboard.grafanaURL=grafana:3000
Error: This command needs 1 argument: chart name
Hi Ishan, what helm version are using? Your helm install command looks good and I can't see any problem. I used helm v2.14 I think in this video. V3 of helm came with lot of changes. Thanks.
Excellent venkat, Istio Running perfectly when I visualize the service Mesh kiali not showing Graphs.How can Resolve this?
Hi Harsha, thanks for watching. Hmm not sure about it. I would just start from scratch and see if the problem presists otherwise chances are that you might have missed a simple step. Cheers.
What is the difference between kiali and Jaeger?
Kiali is just a visualization tool to see your service mesh whereas Jaeger is the observability tool that gives insights into your application performance
Can we install istio in offline fashion for ocp3.11, if s can u please explain it sir.
Hi Haritha, thanks for watching this video. I have just started exploring OpenShift Container Platform. Soon I will be starting a series on OpenShift. I don't understand what you mean by installing Istio in offline mode. You download the istio repository and use helm to install the components which will pull container images for various components. So you need internet connection to be able to pull the images. Cheers.
I don't have internet connection, I created customized registry and there I am maintaining all repos/images, so through this I installed OCP3.11. Here, can I install istio service mesh???
@@sisira_reddy8369 Yes you can make it work offline. Look at the yaml files you are deploying in the Istio directory and look at what container images are being deployed. Then you can pull those images to your private repository locally and update the yaml files to point to your repo and use secrets if your private repository require password to pull the images.
Thanks.
@@justmeandopensource as u said above already done same, istio, jaeger, Kiali operators are running, and istio pod also running. Created istio operator when I do validation the all 17 pods status is imagepullbackoff. If u have an idea can u plz tell the reason. Thanks in advance...