Prepare for Your Kubernetes Interview: Basic to Advanced Questions
Whether you’re a fresher, have 1-3 years of experience, or are a seasoned professional with 3-6 years in the field, mastering Kubernetes interview questions is essential for roles at companies like Amazon, Zoho, or Atlassian. This guide covers 30 essential Kubernetes questions, progressing from basic concepts to advanced scenarios. Each answer is concise, practical, and directly applicable to real-world deployments.
Basic Kubernetes Interview Questions (1-10)
1. What is Kubernetes?
Kubernetes is an open-source platform for automating deployment, scaling, and management of containerized applications across clusters of hosts. It provides features like self-healing, load balancing, and automated rollouts.[1][2]
2. Describe the Kubernetes architecture.
Kubernetes architecture includes a Control Plane (API Server, etcd, Scheduler, Controller Manager) managing the cluster state, and Worker Nodes with Kubelet, Container Runtime, and Kube Proxy handling pod execution and networking.[1][5]
3. What is a Pod in Kubernetes?
A Pod is the smallest deployable unit in Kubernetes, consisting of one or more containers that share storage, network, and lifecycle. Pods are ephemeral and scheduled on nodes.[2][5]
4. What are the main features of Kubernetes?
Key features include auto-scaling, self-healing, load balancing, DNS management, automated rollouts and rollbacks, and service discovery.[3]
5. What is a Node in Kubernetes?
A Node is a worker machine (physical or virtual) in the cluster, managed by the Control Plane. It runs Pods and includes components like Kubelet and Kube Proxy.[1][5]
6. Explain Services in Kubernetes.
Services provide a stable IP and DNS name for accessing a set of Pods. Types include ClusterIP, NodePort, and LoadBalancer for internal, node-exposed, and external traffic.[2]
7. What is a Namespace?
A Namespace is a virtual cluster within a physical cluster, used to divide resources for isolation, multi-tenancy, or environment separation like dev and prod.[2]
8. What is etcd in Kubernetes?
etcd is a distributed key-value store serving as the cluster’s data backend, storing all configuration data and cluster state consistently.[1][5]
9. Differentiate between Deployment and ReplicaSet.
A ReplicaSet ensures a specified number of Pod replicas are running. A Deployment manages ReplicaSets, providing declarative updates, rollouts, and rollbacks.[3]
10. What is kubectl?
kubectl is the command-line tool for interacting with Kubernetes clusters, used for creating, inspecting, and managing resources like pods and deployments.[2]
Intermediate Kubernetes Interview Questions (11-20)
11. What are ConfigMaps and Secrets?
ConfigMaps store non-sensitive configuration data for Pods. Secrets store sensitive data like passwords, mounted as volumes or environment variables.[2][3]
12. Explain liveness and readiness probes.
Liveness probes check if a container is alive; failure restarts the Pod. Readiness probes check if a Pod is ready for traffic; failure stops routing to it.[3]
13. What is Horizontal Pod Autoscaler (HPA)?
HPA automatically scales the number of Pods in a Deployment based on observed metrics like CPU utilization.[3]
14. Describe Kubernetes networking model.
Every Pod gets a unique IP. Pods communicate directly via IPs. Services provide stable endpoints. Network policies control traffic flow.[2]
15. What are Persistent Volumes (PV) and Persistent Volume Claims (PVC)?
PV is cluster storage provisioned by admins. PVC is a request for storage by users, bound to a matching PV for Pod persistence.[3]
16. How does the Kubernetes Scheduler work?
The Scheduler assigns Pods to Nodes via filtering (predicates like resources, taints) and scoring (priorities), then binds the Pod.[5]
17. What are Ingress controllers?
Ingress manages external HTTP/HTTPS traffic to Services, providing load balancing, SSL termination, and name-based routing.[2]
18. Explain RBAC in Kubernetes.
Role-Based Access Control (RBAC) manages permissions using Roles, ClusterRoles, RoleBindings, and ClusterRoleBindings for users and service accounts.[1]
19. What is a StatefulSet?
StatefulSet manages stateful applications, providing stable network identities, ordered deployment, and persistent storage unlike Deployments.[2]
20. How do you view resource usage in Kubernetes?
Use kubectl top pods --sort-by=cpu or kubectl top pods --sort-by=memory to monitor CPU and memory usage of Pods.[2]
Advanced Kubernetes Interview Questions (21-30)
21. What are taints and tolerations?
Taints repel Pods from Nodes unless Pods have matching tolerations. Used for scheduling dedicated workloads like GPU nodes.[1]
22. How do you troubleshoot a Pod in CrashLoopBackOff?
Check kubectl describe pod <pod-name> for events, logs with kubectl logs <pod-name>, and probe failures or resource limits.[2]
23. Explain Pod Anti-Affinity.
Pod Anti-Affinity ensures Pods are spread across Nodes for high availability, using labels to avoid scheduling replicas on the same Node.[1]
24. What are Network Policies?
Network Policies define rules to allow or deny traffic between Pods, enhancing security by restricting pod-to-pod communication.[1][2]
25. How would you debug a Pod not getting scheduled?
Check events with kubectl describe pod for issues like insufficient resources, taints, node selectors, or affinity rules.[1]
26. Scenario: At Salesforce, a Deployment isn’t scaling. What do you check?
Verify HPA configuration, metrics server, resource requests/limits, and events with kubectl describe hpa.[2]
27. How do you backup a Kubernetes cluster?
Backup etcd snapshots for cluster state. Use tools like Velero for resources and Persistent Volumes.[5]
28. Scenario: Pods are running but not reachable via Service at Paytm. Troubleshoot.
Check Service selector matches Pod labels, endpoints with kubectl get endpoints, and network policies blocking traffic.[2]
29. What are Pod Security Standards (PSS)?
PSS enforce security best practices like running as non-root, no privilege escalation, and restricted capabilities.[1]
30. Scenario: At Adobe, diagnose DNS issues in the cluster.
Verify CoreDNS Pods, check nslookup from a test Pod, inspect logs of CoreDNS, and ensure Service networking.[1][2]
Practice these questions hands-on with tools like Minikube. Focus on troubleshooting, security, and scaling for interviews at product companies like Flipkart or startups like Swiggy.
