Open in app

Sign in

Write

Sign in

Streamlining Development and Testing Environments with vCluster

Explore the benefits of virtual Kubernetes clusters and how they can revolutionize your development and deployment process.

Robert Kozak
The Emburse Tech Blog
7 min readMay 8, 2023

--

Computer generated image of the kubernetes logo
Source: iStockphoto/LuckyStep48

Introduction

In today’s fast-paced software development landscape, effective resource management and efficient workflows are critical for success. Many organizations utilize multiple Kubernetes clusters to manage different environments, such as development, test, and staging. However, this approach can be resource-intensive, time-consuming, and challenging to maintain. In this article, we will explore the benefits of merging all dev, test, and staging clusters into virtual Kubernetes clusters and why they should be on your radar.

What Are Virtual Kubernetes Clusters?

Virtual Kubernetes clusters (vclusters) are lightweight, isolated environments that allow developers to work with Kubernetes resources and applications within a single namespace of the underlying host cluster. Built on the ultra-fast k3s distribution, vclusters offer several advantages over traditional Kubernetes clusters, including cost efficiency, ease of use, and strict isolation.

Key Benefits of Virtual Kubernetes Clusters

  1. Cluster Scoped Resources: Unlike simple namespaces, vclusters provide more powerful resource management, allowing users to utilize Custom Resource Definitions (CRDs), namespaces, and cluster roles, among other features.
  2. Ease of Use: Vclusters can be created in seconds using a single command or cluster-api, making them highly accessible and usable in any Kubernetes cluster.
  3. Cost Efficiency: Vclusters are much cheaper and more efficient than “real” clusters, as they utilize a single pod and share resources in a similar manner to namespaces.
  4. Lightweight and Low-Overhead: Vclusters have minimal overhead per virtual cluster, thanks to their k3s-based design. Other distributions, such as k0s and vanilla k8s, are also supported.
  5. Strict Isolation: Vclusters boast a separate Kubernetes control plane and access point for each instance, while still enabling users to share certain services from the underlying host cluster.
  6. Cluster-Wide Permissions: Users can install apps that require cluster-wide permissions within a single namespace of the host cluster, increasing security and control.
  7. Ideal for Testing: Vclusters are perfect for testing different Kubernetes versions within a single host cluster, even if the host cluster runs a different version.
Diagram of Workload Isolation comparing Separate Namspaces, vCluster, and Separate Clusters.
Workload Isolation / Source: github.com/loft-sh/vcluster

Improved Resource Efficiency

By combining multiple separate clusters into a single, unified cluster, organizations can benefit from more efficient resource allocation. With vCluster, the underlying resources of the physical Kubernetes cluster are shared among the virtual clusters, reducing the need for redundant infrastructure. This results in cost savings and improved overall performance.

Simplified Management and Maintenance

Merging the clusters using vCluster simplifies cluster management and maintenance. Instead of managing multiple physical clusters, administrators can focus on a single Kubernetes control plane. This streamlines operations, reduces administrative overhead, and minimizes the potential for configuration drift or inconsistencies between environments.

Better Isolation and Security

vCluster provides isolation between the virtual clusters, ensuring that one environment does not impact another. This is crucial for maintaining security and ensuring the integrity of each environment. With vCluster, organizations can be confident that development, testing, and staging environments are separate and protected from each other.

Enhanced Scalability

vCluster enables organizations to easily scale their infrastructure as needed. With the ability to add or remove virtual clusters within the physical cluster, teams can respond more quickly to changing demands without the need for time-consuming cluster reconfiguration. This flexibility is particularly beneficial for growing organizations or those with fluctuating resource requirements.

Faster Environment Provisioning

With vCluster, creating new environments is as simple as spinning up a new virtual cluster. This can significantly speed up the process of setting up new development, testing, or staging environments, reducing the time it takes to deliver new features or fixes to production.

Significant Cost Savings

By merging all the dev, test, and staging environments into a single, unified cluster using vCluster, organizations can realize significant cost savings. With vCluster, the physical Kubernetes cluster’s resources are shared among the virtual clusters, allowing for more efficient resource usage. This not only minimizes the number of EC2 instances needed but also reduces costs associated with storage and networking. Moreover, the reduced overhead in managing a single cluster contributes to cost savings in terms of staff hours spent on maintenance and management tasks.

Understanding How vCluster Works

vCluster Architecture
vCluster Architecture / Source: github.com/loft-sh/vcluster

vCluster, developed by Loft Labs, is an innovative solution that enables the creation of virtual Kubernetes clusters within a single physical Kubernetes cluster. It offers better isolation than traditional namespaces and is cheaper than creating separate clusters. With vcluster, users have full admin access within the virtual cluster, allowing them to create namespaces, configure RBAC permissions, and test new ingress controllers. The lightweight architecture with low overhead makes vcluster cost-efficient, and it is highly configurable. Vcluster is free and open-source, and contributions are welcome. To understand how vCluster works, let’s delve into its core components and processes:

  • Virtual Control Plane: vCluster operates by creating a virtual control plane for each virtual cluster. This control plane is implemented using a set of custom resources and controllers running inside the physical cluster. The virtual control plane manages the resources of the virtual cluster, such as pods, services, and deployments, independently from the physical cluster’s control plane.
  • Namespace Isolation: Each virtual cluster is mapped to a dedicated namespace within the physical Kubernetes cluster. This ensures that the resources of the virtual clusters are isolated from each other and from the underlying physical cluster. As a result, each virtual cluster can have its own configurations, roles, and policies, providing a high level of autonomy and security.
  • Virtual Kubelet: vCluster uses a custom implementation of the Kubernetes Kubelet, called the “Virtual Kubelet.” The Virtual Kubelet connects the virtual control plane with the physical cluster’s control plane, translating and forwarding requests between the two. This allows the virtual clusters to share the underlying infrastructure while maintaining isolation and control at the control plane level.
  • Synchronization: vCluster synchronizes the custom resources and objects of the virtual cluster with the corresponding native resources in the physical cluster. This ensures that any changes made within the virtual cluster are accurately reflected in the physical cluster’s resources.
  • Virtual Storage: vCluster also provides support for virtual storage classes, allowing each virtual cluster to have its own storage configuration and policies. This enables users to manage storage resources independently for each virtual cluster, further enhancing isolation and flexibility.

In essence, vCluster works by leveraging a combination of custom resources, controllers, and the Virtual Kubelet to create isolated, autonomous, and lightweight virtual Kubernetes clusters within a single physical cluster. This innovative approach allows organizations to efficiently manage multiple environments, streamline workflows, and optimize resource usage.

Utilizing vCluster for Ephemeral Development Environments and Feature Branches

Ephemeral dev environments and and feature branches
Ephemeral dev environments and and feature branches / Source: github.com/loft-sh/vcluster

vCluster can be particularly advantageous for creating ephemeral development environments tied to feature branches. When a developer creates a pull request (PR), an ephemeral environment can be automatically provisioned for the corresponding feature branch. This allows developers to test, develop, and debug their code in an isolated environment without affecting other environments or resources.

Once the PR is merged into the main branch, the ephemeral environment can be automatically destroyed, freeing up resources for other virtual clusters or purposes. This capability enhances developer productivity, promotes a more agile development process, and optimizes resource usage.

Additional Features of Virtual Kubernetes Clusters

  • Certified Kubernetes Distribution: Vcluster is a certified Kubernetes distribution, ensuring 100% Kubernetes API conformance. Everything that works in a standard Kubernetes cluster will work in a vcluster.
  • No Performance Degradation: Pods are scheduled in the host cluster, so they experience no performance hit while running.
  • Reduced Overhead on Host Cluster: Vclusters can split up large multi-tenant clusters to reduce complexity and boost scalability. They also decrease pressure on the underlying Kubernetes cluster, as most API requests and objects do not reach the host cluster.
  • Easy Provisioning: Vclusters can be created using various tools, including vcluster CLI, helm, kubectl, cluster api, and Argo CD.
  • No Admin Privileges Required: Deploying a vcluster is as simple as deploying a web app to a Kubernetes namespace, with no need for administrative privileges.
  • Easy Cleanup: Deleting the host namespace will immediately remove the vcluster and all associated workloads.
  • Flexible & Versatile: Vclusters support different storage backends (sqlite, MySQL, PostgreSQL, and etcd), plugins, customizable sync behavior, and nested vcluster setups, making them suitable for numerous use cases.

Conclusion

Merging separate clusters into a single, unified cluster using vCluster by Loft Labs offers numerous benefits. By improving resource efficiency, simplifying management, ensuring better isolation and security, enhancing scalability, speeding up environment provisioning, achieving significant cost savings, and leveraging ephemeral development environments for feature branches, vCluster provides a robust solution for streamlining development and testing workflows.

Further reading

Using vcluster with Gloo Mesh for fast k8s Dev Environments

How Codefresh uses vcluster to Provide Hosted Argo CD

5 Tips for Dealing with Kubernetes Day 2 challenges

Vcluster
Kubernetes
Platform Engineering
DevOps
Scalability

--

--

Robert Kozak
The Emburse Tech Blog

Written by Robert Kozak

24 Followers

Robert Kozak is a Kuberntes and containers expert working for Emburse, Inc as a Devops Architect II. He has been working with Kubernetes since 1.4. CKA & CKAD

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams