AWS EKS

🔹 AWS EKS Cluster Architecture (AWS Infrastructure Side)

This guide covers: ✅ EKS Cluster Architecture from AWS perspective ✅ How AWS components interact with EKS ✅ Real-world enterprise deployment example ✅ Networking, Load Balancing, and Compute considerations

Karpenter, aws alb, ebs driver ALL THIS CONTROLLER EXPOSE DEFAULT METRICS AT /METRICS PATH by default

🔹 AWS Components Used in EKS Cluster

Before setting up EKS, let’s understand how AWS services work together to provide a fully managed Kubernetes cluster.

🔹 EKS Deployment - AWS Infrastructure

Scenario: A company wants to deploy a highly available, production-ready EKS cluster. ✔ The application should be accessible via an ALB. ✔ Workloads must be securely deployed in private subnets. ✔ The cluster should auto-scale based on demand. ✔ Fargate should be used for some serverless workloads.

EKS Infrastructure Diagram

🔹 Step-by-Step AWS Console Setup for EKS

1️⃣ Create a VPC for EKS

1. Go to AWS Console → VPC Dashboard → Create VPC

2. VPC Name: EKS-VPC

3. CIDR Block: 10.0.0.0/16

4. Click Create VPC

✅ Common Issue: "EKS requires private subnets." 🔹 Fix: Ensure subnets are correctly labeled as private in AWS tags.

2️⃣ Create Public and Private Subnets

1. Go to VPC Dashboard → Subnets → Create Subnet

2. Subnets:

   • Public Subnet 1 (for Load Balancer): 10.0.1.0/24

   • Public Subnet 2 (for Load Balancer): 10.0.2.0/24

   • Private Subnet 1 (for Worker Nodes): 10.0.3.0/24

   • Private Subnet 2 (for Worker Nodes): 10.0.4.0/24

3. Click Create Subnets

✅ Common Issue: "EKS workloads cannot access the internet." 🔹 Fix: Ensure NAT Gateway is configured for private subnets.

3️⃣ Set Up an Internet Gateway (IGW) & NAT Gateway

1. Go to VPC Dashboard → Internet Gateways → Create Internet Gateway

2. Attach it to EKS-VPC

3. For Private Subnets:

   • Go to NAT Gateway → Create NAT Gateway

   • Attach it to a public subnet

   • Associate with private subnet route table

✅ Common Issue: "Pods in private subnet can't access the internet." 🔹 Fix: Ensure NAT Gateway is properly routing outbound traffic.

4️⃣ Create an EKS Cluster

1. Go to EKS Console → Create Cluster

2. Cluster Name: Production-EKS

3. Select VPC: EKS-VPC

4. Choose Subnets: (Private Subnets)

5. Click Create Cluster

✅ Common Issue: "Cluster creation fails." 🔹 Fix: Ensure IAM roles and networking configurations are correct.

5️⃣ Set Up EKS Node Groups (Worker Nodes)

1. Go to EKS Console → Node Groups → Create Node Group

2. Node Group Name: Worker-Group

3. AMI Type: Amazon Linux 2

4. Select Private Subnets

5. Instance Type: m5.large

6. Auto Scaling: Enable

7. Click Create

✅ Common Issue: "Nodes not joining the cluster." 🔹 Fix: Ensure correct IAM roles and security groups are attached.

6️⃣ Configure Ingress Using AWS ALB

1. Install ALB Ingress Controller

2. Deploy an Ingress Rule

✅ Common Issue: "Ingress controller not creating ALB." 🔹 Fix: Ensure IAM roles for ALB Controller have correct permissions.

7️⃣ Monitoring & Scaling with CloudWatch & Prometheus

1. Go to AWS Console → CloudWatch → Create Log Group

2. Install Prometheus for EKS monitoring

3. Enable Horizontal Pod Autoscaler (HPA)

✅ Common Issue: "HPA not scaling workloads." 🔹 Fix: Ensure metrics server is installed.

🔹 Summary of AWS EKS Infrastructure

✔ VPC with Public & Private Subnets ✔ EKS Cluster with Node Groups in Private Subnets ✔ NAT Gateway for Private Subnet Internet Access ✔ ALB for Ingress Traffic Handling ✔ Auto Scaling & Monitoring for High Availability

🔥 Next Steps

Do you want to configure EKS networking policies or RBAC for security? Let me know! 🚀