ACK Lingjun managed clusters include pre-installed system components and support optional components that extend cluster capabilities. Install, upgrade, or uninstall components based on your requirements.
Component types
| Type | Installed |
|---|
| System component | Automatically when you create the cluster |
| Optional component | When you create the cluster |
System components handle core cluster functions such as networking, DNS, load balancing, and monitoring. Optional components add capabilities like log collection, advanced monitoring, security policy enforcement, and Ingress routing.
Key components
| Component | Type | Description |
|---|
| Cloud Controller Manager | System component | Create Server Load Balancer (SLB) instances for applications and manage route entries of nodes. |
| Kube API Server | System component | Act as the access gateway of the Kubernetes cluster. |
Networking components
| Component | Type | Description |
|---|
| CoreDNS | System component | Serve as a Domain Name System (DNS) server for the cluster. |
| managed-kube-proxy | System component | Run as a containerized proxy for Services on cluster nodes. |
| Terway | System component | Provide network connectivity within the cluster using Alibaba Cloud's open source Container Network Interface (CNI) plugin. Integrates with Virtual Private Cloud (VPC) and supports standard Kubernetes network policies to control container-to-container communication. |
| Nginx Ingress Controller | Optional component | Parse traffic forwarding rules configured in NGINX Ingresses. |
Logging and monitoring components
| Component | Type | Description |
|---|
| alicloud-monitor-controller | System component | Monitor the lifecycles and status of containers. |
| metrics-server | System component | Collect resource usage data to support auto scaling. |
| ack-node-problem-detector | Optional component | Detect node exceptions and report them to the Kubernetes event center. |
| ack-arms-prometheus | Optional component | Monitor clusters using Managed Service for Prometheus. |
| logtail-ds | Optional component | Collect container logs and deliver them to Log Service. Read the component documentation before updating. |
Storage components
| Component | Type | Description |
|---|
| storage-operator | System component | Manage the lifecycles of storage components. We recommend that you install this component. |
Security components
| Component | Type | Description |
|---|
| gatekeeper | Optional component | Manage and enforce policies executed by Open Policy Agent (OPA) in the cluster. |
| policy-template-controller | Optional component | Manage and apply pod security policies. |
| security-inspector | Optional component | Run security inspections on the cluster. |