Just-in

Kagent Tutorial: Build Cloud-Native AI Agents on Kubernetes

Running Ollama LLM on Kubernetes: A Complete Guide

From Docker to Kubernetes: The Orchestration Journey You Didn’t Know You Needed

What is Kubeflow and how can it be used?

Getting Started with Kubeflow: A Complete Beginner’s Guide

Orchestration

Master Kubernetes Costs: Your FinOps Guide

Introduction

Kubernetes has revolutionized how organizations deploy and manage applications, offering unparalleled scalability, resilience, and portability. However, this power comes with a significant challenge: managing costs. Without proper oversight, Kubernetes clusters can quickly become expensive black holes, consuming cloud resources inefficiently. This isn’t just about reducing bills; it’s about optimizing resource utilization, improving financial predictability, and fostering accountability across development and operations teams. This is where FinOps comes into play – a cultural practice that brings financial accountability to the variable spend model of the cloud.

In this comprehensive guide, we’ll dive deep into the world of Kubernetes cost management and FinOps. We’ll explore practical strategies, essential tools, and best practices to help you gain visibility into your spending, optimize resource allocation, and implement a sustainable cost-aware culture. From right-sizing your clusters and workloads to leveraging advanced autoscaling and cost allocation techniques, you’ll learn how to tame your Kubernetes costs and ensure your infrastructure investments deliver maximum value.

TL;DR: Kubernetes Cost Management & FinOps

Kubernetes cost management is crucial for efficient cloud spending. It involves a FinOps culture, continuous monitoring, and optimization strategies. Key steps include:

  • Visibility: Use tools like Kubecost or cloud provider dashboards to track spending.
  • Right-sizing: Set accurate CPU/memory requests and limits for pods.
  • Autoscaling: Implement Cluster Autoscaler and Horizontal/Vertical Pod Autoscalers.
  • Resource Policies: Enforce quotas, limit ranges, and Network Policies for security and efficiency.
  • Spot/Preemptible Instances: Leverage cheaper compute for fault-tolerant workloads.
  • Cost Allocation: Tag resources and use namespaces for chargebacks/showbacks.
  • Cleanup: Regularly remove unused resources (dangling PVCs, old images).

Key Commands:


# Check resource requests/limits for a deployment
kubectl get deployment my-app -o yaml | grep -E 'resources:|requests:|limits:|cpu:|memory:'

# Get node utilization
kubectl top nodes

# Get pod utilization
kubectl top pods --all-namespaces

# Apply a resource quota (example)
kubectl apply -f - <<EOF
apiVersion: v1
kind: ResourceQuota
metadata:
  name: dev-quota
  namespace: dev
spec:
  hard:
    requests.cpu: "1"
    requests.memory: 1Gi
    limits.cpu: "2"
    limits.memory: 2Gi
EOF

Prerequisites

Before embarking on your Kubernetes cost optimization journey, ensure you have the following:

  • Basic Kubernetes Knowledge: Familiarity with Kubernetes concepts like Pods, Deployments, Services, Namespaces, Resource Requests/Limits, and basic kubectl commands. Refer to the official Kubernetes documentation for a refresher.
  • Access to a Kubernetes Cluster: A working Kubernetes cluster (e.g., EKS, GKE, AKS, or a self-managed cluster) where you have administrative access to deploy and configure resources.
  • Cloud Provider Account: If running on a cloud provider, access to your cloud console to review billing, instance types, and reservation options.
  • Monitoring Tools (Optional but Recommended): Basic observability in place, such as Prometheus and Grafana, to collect and visualize metrics. While not strictly required for initial steps, good monitoring is indispensable for effective cost management. For advanced observability, consider exploring tools like eBPF Observability with Hubble.
  • Helm (Optional): Many cost management tools are deployed via Helm, so having it installed will be beneficial. You can find installation instructions on the Helm website.

Step-by-Step Guide to Kubernetes Cost Management and FinOps

1. Gain Visibility: Understand Where Your Money Goes

The first step in any cost optimization effort is to understand your current spending. Without clear visibility into which teams, applications, or even individual pods are consuming resources, it’s impossible to make informed decisions. This involves breaking down your cloud bill and attributing costs accurately within your Kubernetes environment. Cloud providers offer some native tools, but specialized Kubernetes FinOps tools provide much deeper insights.

Most cloud providers offer detailed billing dashboards that can break down costs by service, region, and tags. However, they typically don’t understand Kubernetes-specific constructs like namespaces, deployments, or individual pods. Tools like Kubecost integrate directly with your Kubernetes cluster, pulling data on resource utilization, node pricing, and cluster metadata to give you a granular view of costs down to the namespace, deployment, or even pod level. This level of detail is crucial for chargebacks or showbacks to individual teams.

Install Kubecost (Example)

Kubecost is a popular open-source solution that provides real-time cost visibility and insights for Kubernetes. It aggregates billing data, Prometheus metrics, and Kubernetes metadata to give you a unified view. 


# Add the Kubecost Helm repository
helm repo add kubecost https://kubecost.github.io/cost-analyzer/

# Update your Helm repositories
helm repo update

# Install Kubecost into the kubecost namespace
# Replace YOUR_API_KEY with an actual API key if using the commercial version,
# otherwise, it will run in community mode.
helm install kubecost kubecost/cost-analyzer \
  --namespace kubecost --create-namespace \
  --set kubecostToken="YOUR_API_KEY" \
  --set serviceMonitor.enabled=true \
  --set prometheus.kube-state-metrics.disabled=false \
  --set prometheus.node-exporter.disabled=false \
  --set prometheus.server.persistentVolume.enabled=true \
  --set prometheus.server.persistentVolume.size=20Gi

Verify Kubecost Installation

After installation, it might take a few minutes for all pods to start and metrics to populate. You can access the Kubecost UI via port-forwarding. 


# Check Kubecost pod status
kubectl get pods -n kubecost

# Port-forward to the Kubecost UI (usually port 9090)
kubectl port-forward --namespace kubecost deployment/kubecost-cost-analyzer 9090:9090

Now, open your browser to http://localhost:9090. You should see the Kubecost dashboard, providing an overview of your cluster costs.

2. Right-sizing Workloads: Requests and Limits

One of the most impactful cost optimization strategies is ensuring your workloads are “right-sized.” This means configuring accurate CPU and memory requests and limits for your Pods.

Requests tell Kubernetes how much CPU and memory to reserve for a Pod. This directly influences scheduling and capacity planning. If requests are too low, your Pods might suffer from performance issues due to resource starvation. If they are too high, you’re reserving resources that aren’t being used, leading to wasted capacity and higher costs.

Limits define the maximum CPU and memory a Pod can consume. Exceeding CPU limits results in throttling, while exceeding memory limits leads to the Pod being OOMKilled (Out Of Memory Killed). Setting appropriate limits prevents a single misbehaving Pod from consuming all node resources, ensuring cluster stability. The goal is to set requests as close as possible to the actual average usage and limits slightly above peak usage to allow for bursts without resource waste. Tools like kube-state-metrics and Prometheus can help gather the necessary usage data.

Define Resource Requests and Limits

Here’s an example of a Deployment with defined requests and limits. 


apiVersion: apps/v1
kind: Deployment
metadata:
  name: my-webapp
  labels:
    app: my-webapp
spec:
  replicas: 3
  selector:
    matchLabels:
      app: my-webapp
  template:
    metadata:
      labels:
        app: my-webapp
    spec:
      containers:
      - name: webapp-container
        image: nginx:latest
        resources:
          requests:
            cpu: "100m"  # 0.1 CPU core
            memory: "128Mi" # 128 Mebibytes
          limits:
            cpu: "200m"  # 0.2 CPU core
            memory: "256Mi" # 256 Mebibytes
        ports:
        - containerPort: 80

Verify Resource Configuration

Apply the YAML and then inspect the Deployment to confirm the resources are set. 


# Apply the deployment
kubectl apply -f my-webapp-deployment.yaml

# Get deployment YAML and filter for resource sections
kubectl get deployment my-webapp -o yaml | grep -E 'resources:|requests:|limits:|cpu:|memory:'

Expected Output (snippet): 


    resources:
      limits:
        cpu: 200m
        memory: 256Mi
      requests:
        cpu: 100m
        memory: 128Mi

3. Implement Autoscaling: HPA, VPA, and Cluster Autoscaler

Autoscaling is a cornerstone of cloud cost optimization. Kubernetes offers several types of autoscalers that dynamically adjust your cluster’s resources based on demand, preventing both over-provisioning and under-provisioning.

  • Horizontal Pod Autoscaler (HPA): Scales the number of Pod replicas up or down based on observed CPU utilization, memory usage, or custom metrics. This is ideal for stateless applications.
  • Vertical Pod Autoscaler (VPA): Adjusts the CPU and memory requests and limits for individual Pods. VPA is particularly useful for stateful applications or workloads with fluctuating resource demands within a single replica. It can run in “recommender” mode, suggesting optimal values without applying them, or “updater” mode, which automatically adjusts resources (requiring Pod restarts).
  • Cluster Autoscaler (CA): Scales the number of nodes in your cluster up or down. If Pods can’t be scheduled due to insufficient resources, CA adds new nodes. If nodes are underutilized for an extended period, CA removes them, consolidating Pods onto fewer nodes. This is crucial for optimizing infrastructure costs. For advanced node autoscaling, especially for cost-sensitive environments, consider using Karpenter Cost Optimization.

Deploy Horizontal Pod Autoscaler (HPA)

This HPA will scale the my-webapp Deployment between 1 and 10 replicas, targeting 50% CPU utilization.
For more details, refer to the official HPA documentation. 


apiVersion: autoscaling/v2
kind: HorizontalPodAutoscaler
metadata:
  name: my-webapp-hpa
spec:
  scaleTargetRef:
    apiVersion: apps/v1
    kind: Deployment
    name: my-webapp
  minReplicas: 1
  maxReplicas: 10
  metrics:
  - type: Resource
    resource:
      name: cpu
      target:
        type: Utilization
        averageUtilization: 50

Verify HPA Status

Apply the HPA and then check its status. 


# Apply the HPA
kubectl apply -f my-webapp-hpa.yaml

# Check HPA status
kubectl get hpa my-webapp-hpa

Expected Output: 


NAME            REFERENCE                TARGETS   MINPODS   MAXPODS   REPLICAS   AGE
my-webapp-hpa   Deployment/my-webapp   0%/50%    1         10        3          30s

(The TARGETS will show a percentage once metrics are available and traffic hits the deployment.)

4. Enforce Resource Policies: Quotas and Limit Ranges

To prevent resource abuse and ensure fair sharing of cluster resources among different teams or projects, Kubernetes offers Resource Quotas and Limit Ranges.

  • Resource Quotas: These define hard limits on resource consumption per namespace. You can limit the total CPU, memory, storage, number of Pods, Deployments, Services, etc., within a namespace. This is crucial for multi-tenant environments to prevent one team from hogging all resources.
  • Limit Ranges: These define default resource requests and limits for Pods within a namespace if they are not explicitly specified. They can also enforce minimum and maximum resource values for containers, ensuring that no Pod requests excessively small or large amounts of resources.

By implementing these policies, you can guide developers towards appropriate resource usage and enforce boundaries, directly contributing to cost control.

Define a Resource Quota

This quota limits the development namespace to a total of 2 CPU cores, 4 GiB of memory for requests, and 4 CPU cores, 8 GiB memory for limits, along with a maximum of 20 Pods. 


apiVersion: v1
kind: ResourceQuota
metadata:
  name: dev-resource-quota
  namespace: development
spec:
  hard:
    requests.cpu: "2"
    requests.memory: 4Gi
    limits.cpu: "4"
    limits.memory: 8Gi
    pods: "20"
    persistentvolumeclaims: "5"

Define a Limit Range

This limit range in the development namespace sets default requests and limits for containers if they don’t specify their own. It also enforces a min/max. 


apiVersion: v1
kind: LimitRange
metadata:
  name: dev-limit-range
  namespace: development
spec:
  limits:
  - default:
      cpu: "200m"
      memory: "256Mi"
    defaultRequest:
      cpu: "100m"
      memory: "128Mi"
    max:
      cpu: "1"
      memory: "1Gi"
    min:
      cpu: "50m"
      memory: "64Mi"
    type: Container

Verify Resource Policies

First, create the namespace if it doesn’t exist, then apply the policies. 


# Create the namespace
kubectl create namespace development

# Apply the resource quota
kubectl apply -f dev-resource-quota.yaml

# Apply the limit range
kubectl apply -f dev-limit-range.yaml

# Check resource quota status
kubectl describe resourcequota dev-resource-quota -n development

# Check limit range
kubectl get limitranges -n development -o yaml

Expected Output (describe quota snippet): 


Name:       dev-resource-quota
Namespace:  development
...snip...
Resource               Used  Hard
--------               ----  ----
limits.cpu             0     4
limits.memory          0     8Gi
pods                   0     20
persistentvolumeclaims 0     5
requests.cpu           0     2
requests.memory        0     4Gi

5. Leverage Spot/Preemptible Instances

For fault-tolerant, stateless, or batch workloads, utilizing spot instances (AWS EC2 Spot, GCP Preemptible VMs, Azure Spot VMs) can lead to significant cost savings, often 70-90% compared to on-demand instances. These instances are available at a discount but can be reclaimed by the cloud provider with short notice (e.g., 30 seconds for AWS, 30 seconds for GCP).

Integrating spot instances into your Kubernetes cluster requires careful planning. You’ll need a mechanism to gracefully handle interruptions and ensure your critical workloads are not scheduled on these volatile nodes. Tools like Cluster Autoscaler and node labels/taints can help manage this. For more advanced and intelligent management of spot instances, especially for optimizing costs further, consider solutions like Karpenter.

Configure Node Pools for Spot Instances (GKE Example)

This example shows how to create a separate node pool for preemptible VMs in GKE. Similar concepts apply to AWS EC2 Spot Instances and Azure Spot VMs. 


# Create a GKE cluster (if you don't have one)
# gcloud container clusters create my-gke-cluster --zone us-central1-c --num-nodes 1

# Add a preemptible node pool to your existing cluster
gcloud container node-pools create spot-pool \
  --cluster=my-gke-cluster \
  --zone=us-central1-c \
  --machine-type=e2-medium \
  --num-nodes=1 \
  --preemptible \
  --node-labels=lifecycle=spot \
  --node-taints=lifecycle=spot:NoSchedule

Schedule Workloads on Spot Instances

To ensure your fault-tolerant applications run on the spot pool, you can use node selectors and tolerations. 


apiVersion: apps/v1
kind: Deployment
metadata:
  name: batch-job-processor
spec:
  replicas: 3
  selector:
    matchLabels:
      app: batch-processor
  template:
    metadata:
      labels:
        app: batch-processor
    spec:
      tolerations:
      - key: "lifecycle"
        operator: "Equal"
        value: "spot"
        effect: "NoSchedule"
      nodeSelector:
        lifecycle: spot
      containers:
      - name: processor-container
        image: busybox
        command: ["sh", "-c", "echo Hello from Spot! && sleep 3600"]
        resources:
          requests:
            cpu: "50m"
            memory: "64Mi"

Verify Pod Scheduling

Apply the deployment and check which node the pods are scheduled on. 


# Apply the batch job deployment
kubectl apply -f batch-job-deployment.yaml

# Get pods and their nodes
kubectl get pods -o wide | grep batch-processor

Expected Output (example): 


batch-job-processor-6789abcd-efghj   1/1     Running   0          1m   10.128.0.10   gke-my-gke-cluster-spot-pool-a1b2   <none>           <none>

The pod should be on a node from your spot-pool.

6. Cost Allocation and Chargeback/Showback

FinOps is not just about reducing costs; it’s also about attributing them fairly. Implementing cost allocation allows you to understand which teams, projects, or applications are responsible for which portion of your Kubernetes spend. This enables chargeback (billing teams for their usage) or showback (showing teams their usage without direct billing), fostering a sense of ownership and encouraging cost-aware behavior.

The primary mechanism for cost allocation in Kubernetes involves using labels and annotations. By consistently tagging your Kubernetes resources (namespaces, deployments, services) with metadata like team, project, or environment, you can then use FinOps tools (like Kubecost or cloud provider cost management tools) to filter and report costs based on these tags. This provides the granular data needed for accurate reporting and encourages teams to optimize their own spending.

Tag Resources with Labels

Add labels to your namespaces and deployments. 


# Label an existing namespace
kubectl label namespace development team=frontend project=web-app

# Label an existing deployment
kubectl label deployment my-webapp team=frontend project=web-app environment=dev

Verify Labels


kubectl get namespace development -o yaml | grep labels
kubectl get deployment my-webapp -o yaml | grep labels

Expected Output (snippet): 


  labels:
    project: web-app
    team: frontend
...snip...
  labels:
    app: my-webapp
    environment: dev
    project: web-app
    team: frontend

Once labeled, Kubecost (or similar tools) can aggregate costs based on these labels, providing detailed reports for chargeback/showback.

7. Clean Up Unused Resources

Dangling resources are a common source of wasted cloud spend. In dynamic Kubernetes environments, it’s easy for resources to be provisioned and then forgotten.

  • Unused PersistentVolumeClaims (PVCs) and PersistentVolumes (PVs): These often linger after their associated Pods or Deployments are deleted, continuing to incur storage costs.
  • Unused Load Balancers: Services of type LoadBalancer provision external load balancers that cost money even if no traffic is routed to them.
  • Stale Images: Old or unused container images stored in container registries can accumulate significant storage costs.
  • Zombie Pods/Deployments: Sometimes, resources fail to terminate correctly, or old versions are left running.

Regular auditing and automated cleanup routines are essential. Tools like kube-resource-report or custom scripts can help identify these orphaned resources.

Identify Unused PVCs

This command lists PVCs that are not bound to any Pods. This is a common indicator of unused storage. 


# Get all PVCs
kubectl get pvc --all-namespaces

# Filter for unbound PVCs (STATUS is 'Pending' or not 'Bound' to an active pod)
# This is a bit more complex as 'Pending' might mean waiting for PV,
# but 'Bound' PVCs whose owning Pod/Deployment is gone are the real targets.
# A more robust check involves listing PVCs and then checking if any active Pods
# reference them. For simplicity, we'll just list them.
kubectl get pvc --all-namespaces -o custom-columns='NAMESPACE:.metadata.namespace,NAME:.metadata.name,STATUS:.status.phase,BOUND_BY:.spec.volumeName'

# To find PVCs NOT used by any running pod, you need a more sophisticated script
# or a tool. Here's a conceptual approach:
# 1. Get all PVCs.
# 2. Get all Pods and their mounted volumes (which reference PVCs).
# 3. Compare the lists to find PVCs not referenced by any running Pod.

Conceptual Script to Find Unused PVCs (Advanced): 


#!/bin/bash

echo "Finding potentially unused PVCs..."

# Get all PVCs
all_pvcs=$(kubectl get pvc --all-namespaces -o json)
pvc_list=()
while IFS= read -r line; do
    name=$(echo "$line" | jq -r '.metadata.name')
    namespace=$(echo "$line" | jq -r '.metadata.namespace')
    status=$(echo "$line" | jq -r '.status.phase')
    if [[ "$status" == "Bound" ]]; then
        pvc_list+=("$namespace/$name")
    fi
done <<< "$(echo "$all_pvcs" | jq -c '.items[]')"

# Get all running pods and their volumes
used_pvcs=()
all_pods=$(kubectl get pods --all-namespaces -o json)
while IFS= read -r line; do
    pod_volumes=$(echo "$line" | jq -c '.spec.volumes[]?')
    while IFS= read -r volume_line; do
        if echo "$volume_line" | grep -q "persistentVolumeClaim"; then
            pvc_name=$(echo "$volume_line" | jq -r '.persistentVolumeClaim.claimName')
            pod_namespace=$(echo "$line" | jq -r '.metadata.namespace')
            used_pvcs+=("$pod_namespace/$pvc_name")
        fi
    done <<< "$pod_volumes"
done <<< "$(echo "$all_pods" | jq -c '.items[]')"

# Find PVCs in pvc_list that are NOT in used_pvcs
echo "--- Unused Bound PVCs ---"
for pvc_item in "${pvc_list[@]}"; do
    found=false
    for used_item in "${used_pvcs[@]}"; do
        if [[ "$pvc_item" == "$used_item" ]]; then
            found=true
            break
        fi
    done
    if ! $found; then
        echo "Potential unused PVC: $pvc_item"
    fi
done

To delete an unused PVC: 


kubectl delete pvc <pvc-name> -n <namespace>

Production Considerations

Implementing FinOps in a production Kubernetes environment requires more than just deploying tools; it demands a cultural shift and robust processes.

  • Establish a FinOps Culture: This is paramount. Encourage collaboration between engineering, finance, and operations teams. Promote cost awareness and accountability. Regularly share cost reports and discuss optimization opportunities. The FinOps Foundation offers extensive resources on this.
  • Continuous Monitoring and Alerting: Don’t set and forget. Continuously monitor resource utilization and costs. Set up alerts for cost spikes, underutilized resources, or services exceeding budget. Integrate with your existing observability stack (e.g., Prometheus/Grafana, ELK stack). Consider advanced eBPF-based observability for deep insights, as discussed in eBPF Observability with Hubble.
  • Automate as Much as Possible: Manual optimization is not scalable. Automate right-sizing (VPA), scaling (HPA, CA), and cleanup processes where feasible. Use GitOps principles to manage your Kubernetes configurations, including resource requests/limits and autoscaling policies.
  • Reserved Instances/Savings Plans: Once you have a stable baseline for your core, always-on workloads, consider committing to Reserved Instances or Savings Plans with your cloud provider. These offer significant discounts (up to 70%) for committing to a certain level of usage over 1 or 3 years.
  • Centralized Cost Management Tools: For large organizations, dedicated FinOps platforms (e.g., Kubecost Enterprise, CloudHealth by VMware, Apptio Cloudability) provide advanced reporting, budgeting, forecasting, and anomaly detection features across multiple clusters and cloud accounts.
  • Security and Cost: Security misconfigurations can lead to cost overruns (e.g., exposed services leading to DDoS attacks, or compromised containers mining crypto). Ensure strong security practices, including network policies (Kubernetes Network Policies: Complete Security Hardening Guide) and supply chain security (Securing Container Supply Chains with Sigstore and Kyverno).
  • Advanced Networking: While not directly cost-related, efficient networking can reduce latency and improve resource utilization. Solutions like Cilium WireGuard Encryption can optimize network traffic. Similarly, modern traffic management with the Kubernetes Gateway API can improve routing efficiency.

Troubleshooting

1. Issue: Pods stuck in Pending state due to insufficient resources.

Problem: Your Pods are not scheduling, and kubectl describe pod shows messages like “0/X nodes available: X Insufficient cpu”, “X Insufficient memory”.

Solution:

  • Check Node Capacity: Use kubectl top nodes to see available CPU/memory on your nodes.
  • Review Pod Requests: Examine the resource requests of the pending Pods. Are they too high?
  • Cluster Autoscaler: Ensure your Cluster Autoscaler (or Karpenter) is correctly configured and has permission to add new nodes. Check its logs for errors.
  • Resource Quotas: If you have resource quotas, check if the namespace has hit its limits using kubectl describe resourcequota -n <namespace>.

# Check node resource usage
kubectl top nodes

# Check Cluster Autoscaler logs (replace with your CA pod name/namespace)
kubectl logs -f deployment/cluster-autoscaler -n kube-system

2. Issue: High cloud bill despite seemingly low CPU/memory utilization in Kubernetes dashboard.

Problem: Your monitoring shows low average utilization, but your cloud bill is high.

Solution:

  • Over-provisioned Requests: Your Pods might have high resource requests, even if their actual usage is low. Kubernetes reserves these requested resources, leading to nodes being full of requested but unused capacity. Right-size your requests.
  • Underutilized Nodes: Nodes might be running significantly below capacity. This can be due to inefficient Pod packing or oversized nodes. The Cluster Autoscaler should scale down underutilized nodes.
  • Dangling Resources: Check for unused PersistentVolumes, Load Balancers, or old snapshots that are still incurring costs.
  • Instance Types: Are you using unnecessarily large or expensive instance types for your nodes?

3. Issue: Applications experiencing performance issues or OOMKills after setting resource limits.

Problem: Your application is slow, or Pods are crashing with “OOMKilled” or “CPU Throttling” events.

Solution:

  • Insufficient Limits: Your CPU or memory limits are too low, causing the application to be throttled or killed when it tries to burst beyond its allocated resources.
  • Monitor Actual Usage: Use Prometheus/Grafana or Kubecost to observe the actual peak CPU and memory usage of your application. Set limits slightly above these peaks to allow for bursts.
  • Vertical Pod Autoscaler (VPA): Consider deploying VPA in “recommender” mode to get data-driven suggestions for optimal requests and limits.

# Check specific Pod events for OOMKilled/throttling
kubectl describe pod <pod-name> -n <namespace>

4. Issue: Cluster Autoscaler not scaling down nodes.

Problem: Your cluster has underutilized nodes, but the Cluster Autoscaler isn’t removing them.

Solution:

  • Pod Disruption Budgets (PDBs): PDBs can prevent CA from evicting Pods, thus blocking node scale-down. Review your PDBs.
  • Unmovable Pods: Pods with local storage (hostPath, emptyDir if not cleaned up), Pods not backed by a controller (e.g., bare Pods), or Pods with specific anti-affinity rules can prevent node scale-down.
  • Node Termination Protection: Ensure your cloud provider’s instance termination protection is off for nodes managed by CA.
  • Logs: Check the Cluster Autoscaler logs for specific reasons it’s not scaling down.

5. Issue: Difficulty attributing costs to specific teams or projects.

Problem: Your cloud bill is a lump sum, and you can’t tell which department or application is

Related Posts

Leave a Reply

Your email address will not be published. Required fields are marked *