Glossary

etcd

A distributed key-value store used by Kubernetes to store all cluster state and configuration. etcd is the single source of truth for the entire cluster.

kubeadm

A tool for bootstrapping Kubernetes clusters. It automates the setup of control plane components and joining worker nodes, following Kubernetes best practices.

CNI (Container Network Interface)

A standard interface for Kubernetes networking plugins. CNI plugins (Flannel, Calico, Cilium) handle pod-to-pod networking, IP address management, and network policies.

cert-manager

A Kubernetes controller for automating TLS certificate management. cert-manager can issue certificates from Let's Encrypt, Vault, or internal CAs, and automatically renews them.

ArgoCD

A declarative GitOps continuous delivery tool for Kubernetes. ArgoCD syncs cluster state to match Git repository state, enabling automated, auditable deployments.

Helm

A package manager for Kubernetes. Helm charts bundle Kubernetes manifests into reusable packages with configurable values, versioned and published to chart repositories.

k3s

A lightweight Kubernetes distribution by Rancher. k3s packages the entire Kubernetes control plane into a single binary under 100MB, ideal for edge, IoT, and small VPS deployments.

Ingress Controller

A Kubernetes component that manages external HTTP/S access to cluster services. Common implementations include NGINX Ingress, Traefik, and HAProxy Ingress.

Linkerd

A lightweight service mesh for Kubernetes. Linkerd provides automatic mTLS between pods, observability dashboards, and traffic management without sidecar overhead.

mTLS (Mutual TLS)

A protocol where both client and server authenticate each other using TLS certificates. In Kubernetes, service meshes like Linkerd and Istio use mTLS for pod-to-pod encryption.

HAProxy

A high-performance TCP/HTTP load balancer and proxy. In Kubernetes setups, HAProxy is commonly used as a reverse proxy to terminate TLS and forward traffic to ingress controller NodePorts.

Longhorn

A cloud-native distributed block storage system for Kubernetes. Longhorn creates replicated volumes across nodes and supports incremental backups to S3-compatible storage.

CSI (Container Storage Interface)

A standard interface for exposing storage systems to Kubernetes. CSI drivers allow storage vendors (Longhorn, Ceph, etc.) to provide persistent volumes to pods.

Prometheus

An open-source metrics and alerting system. Prometheus scrapes metrics from Kubernetes components and applications, stores them in a time-series database (TSDB), and evaluates alert rules.

VRAM (Video RAM)

Memory on a GPU used to store model weights, activations, and KV cache during LLM inference. VRAM is the primary constraint when running large language models locally.