Deployments
Video Tutorial
A Deployment is a service-oriented encapsulation of pods. A Deployment may manage one or more pods. These pods have the same role, and requests are routed across the pods. All pods in a Deployment share the same volume.
As described in Pods, a pod is the smallest and simplest unit in the Kubernetes object model that you create or deploy. It is designed to be an ephemeral, one-off entity. A pod can be evicted when node resources are insufficient. It automatically disappears when a cluster node fails. Kubernetes provides controllers to manage pods. Controllers can create and manage pods, and provide replica management, rolling upgrade, and self-healing capabilities. The most commonly used controller is Deployment.
A Deployment can contain one or more pod replicas. Pod replicas have the same role. The system automatically distributes requests across multiple pod replicas of a Deployment.
A Deployment integrates a lot of functions, including rollout deployment, rolling upgrade, replica creation, and restoration of online jobs. To some extent, you can use Deployments to realize unattended rollout, which greatly reduces operation risks and improves rollout efficiency.

Creation Methods
Creation Method |
Reference |
---|---|
Creating a Deployment on the console |
|
Creating a Deployment using kubectl |
Creating a Deployment on the Console
- Log in to the CCI console. In the navigation pane on the left, choose Workloads > Deployments. On the page displayed, click Create from Image.
- Specify basic information.
- Workload Name
Enter 1 to 63 characters starting and ending with a lowercase letter or digit. Only lowercase letters, digits, hyphens (-), and periods (.) are allowed. Do not enter two consecutive periods or place a hyphen adjacent to a period. The workload name cannot be changed after creation. If you need to change the name, create another workload.
- Namespace
Select a namespace. If no namespaces are available, create one by following the procedure provided in Namespace.
- Description
Enter a description, which cannot exceed 250 characters.
- Pods
Specify the number of pods. A workload can have one or more pods. Each pod consists of one or more containers with the same specifications. Configure multiple pods for a workload if you want higher reliability. If one pod becomes faulty, the workload can still run normally.
- Pod Specifications
You can select GPU-accelerated and allocate GPUs to the workload only if the namespace is a GPU-accelerated namespace.
For details about the specifications, see "Pod Specifications" in Notes and Constraints.
- Container Settings
A pod generally contains only one container. A pod can also contain multiple containers created from different images. If your application needs to run on multiple containers in a pod, click Add Container and then select an image each time you create a container.
If different containers in a pod listen to the same port, there will be a port conflict, and the pod may fail. For example, if an Nginx container that uses port 80 has been added to a pod, there will be a port conflict when another HTTP service container in the pod tries to listen to port 80.
- My Images: images you have uploaded to SWR
- After Enterprise Management is enabled, if an IAM user needs to use private images in your account, you need to log in to the CCI console using the account, choose Image Repository, and grant the required permission to the user on the SWR console. You can use either of the following methods to grant permission to an IAM user:
- On the details page of an image, click the Permissions tab, click Add Permission, and then grant the read, write, and manage permissions to the user. For details, see Granting Permissions of a Specific Image.
- On the details page of an organization, click the Users tab, click Add Permission, and then grant the read, write, and manage permissions to the user. For details, see Granting Permissions of an Organization.
- Currently, CCI does not support third-party image repositories.
- A single layer of a decompressed image must not exceed 20 GB.
- After Enterprise Management is enabled, if an IAM user needs to use private images in your account, you need to log in to the CCI console using the account, choose Image Repository, and grant the required permission to the user on the SWR console. You can use either of the following methods to grant permission to an IAM user:
- Open Source Images: public images in the image center
- Shared Images: images shared by others through SWR
Select the image version and set the container name, vCPU, and memory. You can also enable the collection of standard output files. If you enable file collection, you will be billed for the log storage space you use.
AOM provides each account with free 500-MB log storage space each month. You will be billed for any extra space you use on a pay-per-use basis. For details, see Product Pricing Details.
You can also configure the following advanced settings for containers:
- Storage: You can mount persistent volumes to containers. Currently, Elastic Volume Service (EVS) and SFS Turbo volumes are supported. Click the EVS Volumes or SFS Turbo Volumes tab, and configure the parameters such as the volume name, capacity, container path, and disk type. After the workload is created, you can manage the storage volumes. For details, see EVS Volumes or SFS Turbo Volumes.
- Log Collection: Application logs will be collected from the path you set. You need to configure policies to prevent logs from being over-sized. Click Add Log Storage, enter a container log path, and set the log storage space. After the workload is created, you can view logs on the AOM console. For details, see Log Management.
- Environment Variables: You can manually set environment variables or add variable references. Environment variables add flexibility to workload configuration. The environment variables for which you have assigned values during container creation will take effect upon container startup. This saves you the trouble of rebuilding the container image.
To manually set variables, enter the variable name and value.
To reference variables, set the variable name, reference type, and referenced value for each variable. The following variables can be referenced: PodIP (pod IP address), PodName (pod name), and Secret. For details about how to reference a secret, see Secrets.
- Health Check: Container health can be checked regularly when the container is running. For details about how to configure health checks, see Setting Health Check Parameters.
- Lifecycle: Lifecycle scripts specify actions that applications take when a lifecycle event occurs. For details about how to configure the scripts, see Container Lifecycle.
- Startup Commands: You can set the commands that will be executed immediately after the container is started. Startup commands correspond to the ENTRYPOINT startup instructions of the container engine. For details, see Setting Container Startup Commands.
- Configuration Management: You can mount ConfigMaps and secrets to a container. For details about how to create ConfigMaps and secrets, see ConfigMaps and Secrets.
- My Images: images you have uploaded to SWR
- Workload Name
- Click Next: Configure Access Settings to configure access information.
Three options are available:
- Do not use: No entry is provided for other workloads to access the current workload. This mode is ideal for scenarios where custom service discovery is used or where access entry is not required.
- Intranet access: Configure a domain name or internal domain name/private IP address for the current workload so that other workloads can access the current workload in a private network. Two network access modes are available: Service and ELB. For details about the private network access, see Private Network Access.
- Internet access: Configure an entry to allow other workloads to access the current workload from the Internet. HTTP, HTTPS, TCP, and UDP are supported. For details about the public network access, see Public Network Access.
- Click Next: Configure Advanced Settings and configure advanced settings.
- Upgrade Policy: Rolling upgrade and In-place upgrade are available.
- Rolling upgrade: gradually replaces an old pod with a new pod. During the upgrade, service traffic is evenly distributed to the old and new pods to ensure service continuity.
Maximum Number of Unavailable Pods: Maximum number of unavailable pods allowed in a rolling upgrade. If the number is equal to the total number of pods, services may be interrupted. Minimum number of alive pods = Total number of pods – Maximum number of unavailable pods
- In-place upgrade: deletes an old pod and then creates a new one. Services will be interrupted during the upgrade.
- Rolling upgrade: gradually replaces an old pod with a new pod. During the upgrade, service traffic is evenly distributed to the old and new pods to ensure service continuity.
- Client DNS Configuration: You can replace and append domain name resolution configurations. For parameter details, see Client DNS Configuration.
- Upgrade Policy: Rolling upgrade and In-place upgrade are available.
- Click Next: Confirm. After you confirm the configuration, click Submit. Then click Back to Deployment List.
In the workload list, if the workload status changes to Running, the workload is created successfully. You can click the workload name to view workload details and press F5 to view the real-time workload status.
If you want to access the workload, click the Access Settings tab to obtain the access address.
Deleting a Pod
You can manually delete pods. Because pods are controlled by a controller, a new pod will be created immediately after you delete a pod. Manual pod deletion is useful when an upgrade fails halfway or when service processes need to be restarted.
To delete a pod, locate the pod and click Delete in the Operation column, as shown in Figure 2.
A new pod is created immediately after you delete a pod, as shown in Figure 3.
Troubleshooting a Failure to Pull the Image
If there is an event indicating that the image fails to be pulled on the workload details page, locate the fault by following the procedure provided in What Do I Do If an Event Indicating That the Image Failed to Be Pulled Occurs?
Troubleshooting a Failure to Restart the Container
If there is an event indicating that the container fails to be restarted on the workload details page, locate the fault by following the procedure provided in What Do I Do If an Event Indicating That the Container Failed to Be Restarted Occurs?
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot