Handle load changes with automatic Horizontal Scaling
Self guided student - video introduction
This video is an introduction to the Kubernetes auto scaling lab. Depending on your browser settings it may open in this tab / window or open a new one. Once you've watched it please return to this page to continue the labs.
[](https://youtu.be/awmLUpBwqig "Kubernetes auto scaling lab introduction video")
---
Introduction
This is one of the core Kubernetes labs
Estimated module duration 20 mins.
Objectives
This module explores how you can configure Kubernetes to automatically scale the number of pods for your service to handle changes in demand with no manual intervention.
Prerequisites
You need to complete the Horizontal Scaling module.
Task 1: Horizontal autoscaling - based on CPU load or Memory usage
We’ve seen how we can increase (or decrease) the number of pods underlying a service and that the service will automatically balance the load across the pods for us as the pod count changes.
This is great, but it required manual intervention to change the number of pods, and that means we need to keep an eye on what’s happening. Fortunately for us Kubernetes has support for automating this process based on rules we define.
This is the simplest form of auto scaling, though it is also the least flexible as CPU and memory usage may not always be the most effective indicator of when scaling is required.
To gather the data we need to have installed the metrics server. This is a replacement for an older Kubernetes service called heapster.
Note that it’s also possible to use Prometheus as a data source which will allow you to auto-scale on custom metrics, for example the number of requests to your service.
For now we are going to use the simplest approach of the metrics server.
Task 1a: Installing the metrics server
- Install a helm repo that contains the chart for the metrics server
<copy>helm repo add metrics-server https://kubernetes-sigs.github.io/metrics-server/</copy>
- Update the repo
<copy>helm repo update</copy>
Hang tight while we grab the latest from your chart repositories...
...Successfully got an update from the "kubernetes-dashboard" chart repository
...Successfully got an update from the "ingress-nginx" chart repository
...Successfully got an update from the "metrics-server" chart repository
- In the OCI Cloud Shell install the metrics server by typing
<copy>helm install metrics-server metrics-server/metrics-server --version 3.10.0</copy>
NAME: metrics-server
LAST DEPLOYED: Fri Jul 8 19:11:45 2022
NAMESPACE: kube-system
STATUS: deployed
REVISION: 1
TEST SUITE: None
NOTES:
***********************************************************************
* Metrics Server *
***********************************************************************
Chart version: 3.8.2
App version: 0.6.1
Image tag: k8s.gcr.io/metrics-server/metrics-server:v0.6.1
***********************************************************************
It will take a short time for the metrics server to start up, but you can check the progress using kubectl
- In the OCI Cloud Shell type
<copy>kubectl get deployments -n kube-system</copy>
NAME READY UP-TO-DATE AVAILABLE AGE
coredns 3/3 1 1 17m
kube-dns-autoscaler 1/1 1 1 17m
kubernetes-dashboard 1/1 1 1 15m
metrics-server 1/1 1 1 39s
Task 1b: Using the captured metrics
Once the metrics server is running (it will have an AVAILABLE count of 1) you can get information on the state of the system
- Let’s look at how the nodes in the cluster are doing. In the OCI Cloud Shell type
<copy>kubectl top nodes</copy>
NAME CPU(cores) CPU% MEMORY(bytes) MEMORY%
10.0.10.2 73m 3% 1561Mi 23%
10.0.10.3 109m 5% 1834Mi 27%
10.0.10.4 157m 7% 1232Mi 18%
If you get an response error: metrics not available yet then it just means that the metrics server is running, but hasn’t completed it’s initial data capture yet. Wait a short while and try the kubectl top nodes again.
Note that this was from a cluster with three nodes, depending on the size of your cluster you will see a different number of nodes output.
- We can also see the status of the pods in terms of what they are using. In the OCI Cloud Shell type
<copy>kubectl top pods</copy>
NAME CPU(cores) MEMORY(bytes)
stockmanager-86dbc548d-n956r 1m 227Mi
storefront-79c465dc6b-6dz2k 1m 228Mi
zipkin-7db7558998-8q2b4 1m 139Mi
Note that like the other times we’ve used kubectl this uses the namespace configured as the default when you ran the create-namespace.sh command
- Let’s have a look at what’s happening in the kube-system namespace. In the OCI Cloud Shell type
<copy>kubectl top pods -n kube-system</copy>
NAME CPU(cores) MEMORY(bytes)
coredns-85f945b85d-c7ddm 4m 10Mi
coredns-85f945b85d-vrbgp 3m 10Mi
coredns-85f945b85d-zjzgl 4m 10Mi
kube-dns-autoscaler-7bcf86584b-8tct6 1m 6Mi
kube-flannel-ds-5w4k8 3m 11Mi
kube-flannel-ds-b7dwm 5m 13Mi
kube-flannel-ds-jhvgf 3m 11Mi
kube-proxy-chk7h 1m 12Mi
kube-proxy-lrlc5 4m 11Mi
kube-proxy-mp784 2m 12Mi
kubernetes-dashboard-77f54dc48f-9sbdh 1m 10Mi
metrics-server-55d8d46477-fzztx 5m 17Mi
proxymux-client-99q9z 1m 8Mi
proxymux-client-ffprz 1m 8Mi
proxymux-client-lr7ft 1m 8Mi
Kubernetes dashboard and the metrics-server
The metrics server provides information on the current use of resources in the cluster, the Kubernetes dashboard has just been updated to version 2, at some point the plan is that the dashboard will be able to connect to the metrics-server and you will be able to see the pod CPU and memory usage in the dashboard
---
You can see in the output above that all of the pods are using very small amounts of CPU here, this is because we’re not really putting any load on them. Let’s run a script that will put load on the services to see what’s happening.
If your cloud shell session is new or has been restarted then the shell variable $EXTERNAL_IP may be invalid, expand this section if you think this may be the case to check and reset it if needed.
How to check if $EXTERNAL_IP is set, and re-set it if it's not
**To check if `$EXTERNAL_IP` is set**
If you want to check if the variable is still set type `echo $EXTERNAL_IP` if it returns the IP address you're ready to go, if not then you'll need to re-set it, there are a couple of ways to do this, expand the appropriate section below.
If you used the automated scripts in the kubernetes-lab directory to setup the microservices in Kubernetes
- Open the OCI cloud shell
The automated scripts will create a script file `$HOME/clusterSettings.one` this can be executed using the shell built in `source` to set the EXTERNAL_IP variable for you.
```bash
source $HOME/clusterSettings.one
```
```
EXTERNAL_IP set to 139.185.45.98
NAMESPACE set to tg
```
Of course the actual IP address and namespace will almost certainly be different from the example here !
---
If you manually setup the Kubernetes ingress services using helm
In this case as you manually set this up you will need to get the information from Kubernetes itself
- Open the OCI cloud shell
- You are going to get the value of the `EXTERNAL_IP` for your environment. This is used to identify the DNS name used by an incoming connection. In the OCI cloud shell type
```bash
kubectl get services -n ingress-nginx
```
```
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
ingress-nginx-controller LoadBalancer 10.96.182.204 130.162.40.241 80:31834/TCP,443:31118/TCP 2h
ingress-nginx-controller-admission ClusterIP 10.96.216.33 443/TCP 2h
```
- Look for the `ingress-nginx-controller` line and note the IP address in the `EXTERNAL-IP` column, in this case that's `130.162.40.121` but it's almost certain that the IP address you have will differ. IMPORTANT, be sure to use the IP in the `EXTERNAL-IP` column, ignore anything that looks like an IP address in any other column as those are internal to the OKE cluster and not used externally.
- IN the OCI CLoud shell type the following, replacing `[external ip]` with the IP address you retrieved above.
```bash
export EXTERNAL_IP=[external ip]
```
---
</details>
</details>
In the helidon-kubernetes project in the cloud-native-kubernetes/auto-scaling folder run the following.
4. Switch to the auto scaling directory
```bash
cd $HOME/helidon-kubernetes/cloud-native-kubernetes/auto-scaling
```
5. Start a load generator. In the OCI Cloud Shell.
```bash
bash generate-load.sh $EXTERNAL_IP 0.1
```
If you get a DNS error that `store..nip.io` cannot be found this means that `EXTERNAL_IP` is not set, follow the instructions above to set it and then re-run the load generator command.
Note that the 0.1 controls how long the script waits, depending on how fast things respond below you may need to adjust the rate up (fewer requests) or down (more requests) If you chose an especially powerful processor you may need to open another cloud window in your browser and run a second load in that as well, or adjust the CPU available to the pod.
```
Itertation 1
[...]Itertation 2
[...]Itertation 3
[...]Itertation 4
.
.
.
```
The script will just get the stock level data, attempting to do so about 10 times a second (the 0.1 above is the time in seconds to wait after the request returns). The returned data will be displayed in the [...] (for clarity here it's been removed
6. Open up a new window on the OCI console
7. Open up the OCI Cloud shell in the new window
Let the script run for about 75 seconds (the iteration counter reaches over 750) This will let the load statistics level out.
This will have increased the load, to see the increased load
8. In the **new** OCI Cloud Shell type
```bash
kubectl top pods
```
```
NAME CPU(cores) MEMORY(bytes)
stockmanager-86dbc548d-b8cbl 2m 367Mi
storefront-79c465dc6b-x8fbl 17m 333Mi
zipkin-7db7558998-cnbjf 1m 218Mi
```
You'll see the CPU load has increased, as the data is averaged over a short period of time you may have to wait a short while (say 30 seconds) for it to update.
9. In the **new** OCI Cloud Shell (after waiting for a little bit) type
```bash
kubectl top pods
```
```
NAME CPU(cores) MEMORY(bytes)
stockmanager-86dbc548d-b8cbl 47m 393Mi
storefront-79c465dc6b-x8fbl 251m 958Mi
zipkin-7db7558998-cnbjf 33m 265Mi
```
Notice that in this particular example the CPU here for the storefront is at 251m (your number may be different). This is actually the limit allowed in the storefront deployment.yaml file, which has a resource restriction of 250 milli CPU specified.
If the load does not reach 250 then you may need to adjust the request rate, or open another cloud shell in a new browser tab / window and run another load generator to ensure you can hit the limit (and auto scaling will kick in once we've configured it)
```yaml
resources:
limits:
# Set this to be quarter of a CPU for now
cpu: "250m"
```
We can also get the current resource level for the container using kubectl and the jsonpath capability
10. In the OCI Cloud Shell (substitute your storefront pod name) type
```bash
kubectl get pod storefront-79c465dc6b-x8fbl -o=jsonpath='{.spec.containers[0].resources.limits.cpu}'
```
```
250m
```
11. In the OCI Cloud shell window running the load generator stop it using Control-C
Namespace level resource restrictions and implications
In Kubernetes you can place restrictions on pods as we've seen above, however it's also possible to apply a quota on the namespace. All of the pods (or other resources) in the name space have to be within that limit. To do this you create a ResourceQuota (there is one for each namespace) The ResourceQuota allows you to specify limits on CPU, memory storage and also it's possible to extend these with custom resources (e.g. GPU if your cluster hardware has these) Some resources can also be limited on the resource count e.g. number of configmaps.
If an action like adding an object would cause the limits applied to a namespace to be exceeded then the action will be rejected. This applies to auto scaling as well!
Importantly, if you have a ResourceQuota like CPU or memory usage applied to a namespace, then each pod must also have a limit applied to it, if it's not there then either a default will be applied or the create object request will be rejected. (the exact action is deployment specific)
---