A Daemonset that does nothing, but has all your network utilities ready to go, so you can test workloads in your Kubernetes cluster.
The ClusterRole used to set up this tool provides read access to ALL resources in your Kubernetes cluster. This isn't recommended for anything that even comes close to a production environment. Please know what the fuck you are doing before you deploy this thing blindly to your Kubernetes cluster.
You are encouraged to modify the ClusterRole to restrict to specific resources before deploying.
The image is based on jonlabelle/network-tools. Several utilities are installed including:
- telnet
- wget
- curl
- awk
- jq
- yq
- jless
- git
- tcpdump
- dig
- nslookup
- ping
- traceroute
- netstat
- stress
- ... and more
Uses RBAC to leverage the Kubernetes API and Kubelet.
Use kcurl instead of curl when interacting with the Kubernetes API and Kubelet.
This alias was created to pass proper authentication tokens to the API when used.
The KUBERNETES_API environment variable exists which points to the Kubernetes API endpoint.
The KUBELET environment variable exists which points to the URL for the Kubelet.
These allow you to have shorthand access from the command line.
To get a list of namespaces from the Kubernetes API run:
kcurl $KUBERNETES_API/api/v1/namespacesTo get a list of pods from the Kubelet run:
kcurl $KUBELET/pods