| title | excerpt | updated |
|---|---|---|
Run Serverless containers on OVHcloud Managed Kubernetes with Knative |
Find out how to install Knative on OVHcloud Managed Kubernetes and deploy your first serverless containers |
2025-04-15 |
Knative is a platform to deploy and manage Serverless applications on Kubernetes.
Knative provides a set of middleware components build on top of Kubernetes, abstracting away the complex details and enabling developers to focus on what matters. Built by codifying the best practices shared by successful real-world implementations, Knative solves the "boring but difficult" parts of deploying and managing cloud native services so you don't have to.
Concretely, you will deploy Knative components and Knative will create Kubernetes components itself. You don't have to worry about Kubernetes components.
Knative supports multiple HTTP routing layers, including Istio, Gloo, Contour, Kourier and Ambassador.
Knative has two components:
- Serving
- Eventing
It helps for:
- Rapid deployment of Serverless containers
- Scale to zero (no call = no pod = no memory/CPU usage)
- Scale from zero (traffic spike start x Pods)
- Configuration & revision management
- Traffic splitting between revisions, blue/green...
- Eventing system
Read more about Knative 1.0 features.
Knative reached the 1.0 milestone. To celebrate this achievement, in this tutorial we are going to install Knative on a freshly created OVHcloud Managed Kubernetes Service cluster and we will deploy an example app using Knative Serving component. You can use the Reset cluster function in the Public Cloud section of the OVHcloud Control Panel{.external} to reinitialize your cluster before following this tutorial.
This tutorial presupposes that you already have a working OVHcloud Managed Kubernetes cluster, and some basic knowledge of how to operate it. If you want to know more on those topics, please look at the deploying a Hello World application documentation.
The Knative CLI (kn) provides a quick and easy interface for creating Knative resources, such as Knative Services and Event Sources, without the need to create or modify YAML files directly.
kn also simplifies completion of otherwise complex procedures such as autoscaling and traffic splitting.
In order to install the CLI, follow the instructions depending on your OS.
Then test the CLI is correctly installed in your computer:
kn versionHere is an example of the result:
$ kn version
Version: v1.17.0
Build Date: 2025-01-22 16:25:15
Git Revision: f7347245
Supported APIs:
* Serving
- serving.knative.dev/v1 (knative-serving v1.17.0)
* Eventing
- sources.knative.dev/v1 (knative-eventing v1.17.0)
- eventing.knative.dev/v1 (knative-eventing v1.17.0)The first thing to do is to install the Knative Serving component:
- Install the required custom resources by running the command:
kubectl apply -f https://github.com/knative/serving/releases/latest/download/serving-crds.yamlHere is an example of the result:
$ kubectl apply -f https://github.com/knative/serving/releases/latest/download/serving-crds.yaml
customresourcedefinition.apiextensions.k8s.io/certificates.networking.internal.knative.dev created
customresourcedefinition.apiextensions.k8s.io/configurations.serving.knative.dev created
customresourcedefinition.apiextensions.k8s.io/clusterdomainclaims.networking.internal.knative.dev created
customresourcedefinition.apiextensions.k8s.io/domainmappings.serving.knative.dev created
customresourcedefinition.apiextensions.k8s.io/ingresses.networking.internal.knative.dev created
customresourcedefinition.apiextensions.k8s.io/metrics.autoscaling.internal.knative.dev created
customresourcedefinition.apiextensions.k8s.io/podautoscalers.autoscaling.internal.knative.dev created
customresourcedefinition.apiextensions.k8s.io/revisions.serving.knative.dev created
customresourcedefinition.apiextensions.k8s.io/routes.serving.knative.dev created
customresourcedefinition.apiextensions.k8s.io/serverlessservices.networking.internal.knative.dev created
customresourcedefinition.apiextensions.k8s.io/services.serving.knative.dev created
customresourcedefinition.apiextensions.k8s.io/images.caching.internal.knative.dev created- Install the core components of Knative Serving by running the command:
kubectl apply -f https://github.com/knative/serving/releases/latest/download/serving-core.yamlHere is an example of the result:
$ kubectl apply -f https://github.com/knative/serving/releases/latest/download/serving-core.yaml
namespace/knative-serving created
role.rbac.authorization.k8s.io/knative-serving-activator created
clusterrole.rbac.authorization.k8s.io/knative-serving-activator-cluster created
clusterrole.rbac.authorization.k8s.io/knative-serving-aggregated-addressable-resolver created
clusterrole.rbac.authorization.k8s.io/knative-serving-addressable-resolver created
clusterrole.rbac.authorization.k8s.io/knative-serving-namespaced-admin created
clusterrole.rbac.authorization.k8s.io/knative-serving-namespaced-edit created
clusterrole.rbac.authorization.k8s.io/knative-serving-namespaced-view created
clusterrole.rbac.authorization.k8s.io/knative-serving-core created
clusterrole.rbac.authorization.k8s.io/knative-serving-podspecable-binding created
serviceaccount/controller created
clusterrole.rbac.authorization.k8s.io/knative-serving-admin created
clusterrolebinding.rbac.authorization.k8s.io/knative-serving-controller-admin created
clusterrolebinding.rbac.authorization.k8s.io/knative-serving-controller-addressable-resolver created
serviceaccount/activator created
rolebinding.rbac.authorization.k8s.io/knative-serving-activator created
clusterrolebinding.rbac.authorization.k8s.io/knative-serving-activator-cluster created
customresourcedefinition.apiextensions.k8s.io/images.caching.internal.knative.dev unchanged
certificate.networking.internal.knative.dev/routing-serving-certs created
customresourcedefinition.apiextensions.k8s.io/certificates.networking.internal.knative.dev unchanged
customresourcedefinition.apiextensions.k8s.io/configurations.serving.knative.dev unchanged
customresourcedefinition.apiextensions.k8s.io/clusterdomainclaims.networking.internal.knative.dev unchanged
customresourcedefinition.apiextensions.k8s.io/domainmappings.serving.knative.dev unchanged
customresourcedefinition.apiextensions.k8s.io/ingresses.networking.internal.knative.dev unchanged
customresourcedefinition.apiextensions.k8s.io/metrics.autoscaling.internal.knative.dev unchanged
customresourcedefinition.apiextensions.k8s.io/podautoscalers.autoscaling.internal.knative.dev unchanged
customresourcedefinition.apiextensions.k8s.io/revisions.serving.knative.dev unchanged
customresourcedefinition.apiextensions.k8s.io/routes.serving.knative.dev unchanged
customresourcedefinition.apiextensions.k8s.io/serverlessservices.networking.internal.knative.dev unchanged
customresourcedefinition.apiextensions.k8s.io/services.serving.knative.dev unchanged
image.caching.internal.knative.dev/queue-proxy created
configmap/config-autoscaler created
configmap/config-certmanager created
configmap/config-defaults created
configmap/config-deployment created
configmap/config-domain created
configmap/config-features created
configmap/config-gc created
configmap/config-leader-election created
configmap/config-logging created
configmap/config-network created
configmap/config-observability created
configmap/config-tracing created
horizontalpodautoscaler.autoscaling/activator created
poddisruptionbudget.policy/activator-pdb created
deployment.apps/activator created
service/activator-service created
deployment.apps/autoscaler created
service/autoscaler created
deployment.apps/controller created
service/controller created
horizontalpodautoscaler.autoscaling/webhook created
poddisruptionbudget.policy/webhook-pdb created
deployment.apps/webhook created
service/webhook created
validatingwebhookconfiguration.admissionregistration.k8s.io/config.webhook.serving.knative.dev created
mutatingwebhookconfiguration.admissionregistration.k8s.io/webhook.serving.knative.dev created
validatingwebhookconfiguration.admissionregistration.k8s.io/validation.webhook.serving.knative.dev created
secret/webhook-certs createdAs the networking layer, you can install the one you want: Istio, Contour, Gloo or Ambassador. In this tutorial, we will install Kourier: a lightweight Knative Serving Ingress.
Install the Knative Kourier controller by running the command:
kubectl apply -f https://github.com/knative/net-kourier/releases/latest/download/kourier.yaml
namespace/kourier-system created
configmap/kourier-bootstrap created
configmap/config-kourier created
serviceaccount/net-kourier created
clusterrole.rbac.authorization.k8s.io/net-kourier created
clusterrolebinding.rbac.authorization.k8s.io/net-kourier created
deployment.apps/net-kourier-controller created
service/net-kourier-controller created
deployment.apps/3scale-kourier-gateway created
service/kourier created
service/kourier-internal created
horizontalpodautoscaler.autoscaling/3scale-kourier-gateway created
poddisruptionbudget.policy/3scale-kourier-gateway-pdb createdConfigure Knative Serving to use Kourier by default by running the command:
kubectl patch configmap/config-network \
--namespace knative-serving \
--type merge \
--patch '{"data":{"ingress.class":"kourier.ingress.networking.knative.dev"}}'As you can see, a new kourier-system namespace is created with a deployment:
$ kubectl get deploy -n kourier-system
NAME READY UP-TO-DATE AVAILABLE AGE
3scale-kourier-gateway 1/1 1 1 104mFetch the External IP address or CNAME by running the command:
kubectl get service kourier -n kourier-systemHere is an example of the result:
$ kubectl get service kourier -n kourier-system
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
kourier LoadBalancer 10.3.15.239 135.125.83.166 80:31357/TCP,443:31782/TCP 2m19sWarning: As the `LoadBalancer` creation is asynchronous, and the provisioning of the load balancer can take several minutes, you will surely get a `<pending>` state for the `EXTERNAL-IP` field. Please try again in a few minutes to get the external IP.
Save this to use in the following Configure DNS section.
A new knative-serving namespace has been created on your Kubernetes cluster with knative serving components, so let's check if Knative Serving components are correctly running:
kubectl get pods -n knative-servingHere is an example of the result:
$ kubectl get pods -n knative-serving
NAME READY STATUS RESTARTS AGE
activator-7c48c6944d-rk6mz 1/1 Running 0 20m
autoscaler-775c659bc6-vnljf 1/1 Running 0 20m
controller-7cf4fbd94-vl8tc 1/1 Running 0 20m
net-kourier-controller-568fb445b-f8kwl 1/1 Running 0 19m
webhook-57ccdb4884-md5jq 1/1 Running 0 20mAnd we can check the Knative Serving installed version:
kubectl get namespace knative-serving -o 'go-template={{index .metadata.labels "app.kubernetes.io/version"}}'
Here is an example of the result:
$ kubectl get namespace knative-serving -o 'go-template={{index .metadata.labels "app.kubernetes.io/version"}}'
1.17.0Knative Serving version 1.17.0 is correctly deployed in our cluster, Cool!
For this tutorial, though it is not mandatory, you can configure DNS to prevent the need to run curl commands with a host header.
To configure DNS for Knative, take the External IP from setting up networking (135.125.83.166 in this example), and configure it with your DNS provider as follows:
Configure a wildcard A record for the domain:
# Here knative.example.com is the domain suffix for your cluster
*.knative.example.com == A 135.125.83.166On OVHcloud you can create a new entry to an existant DNS zone, like this:
Once your DNS provider has been configured, direct Knative to use that domain:
# Replace example.com with your domain suffix
kubectl patch configmap/config-domain \
--namespace knative-serving \
--type merge \
--patch '{"data":{"knative.example.com":""}}'For more information about DNS on OVHcloud, please read our guide on how to configure a DNS zone.
To verify that Knative is truly working in the cluster, you are going to deploy a hello-world application.
The first thing to do is to create a namespace in which our apps will run:
kubectl create namespace knative-apps
Here is an example of the result:
$ kubectl create namespace knative-apps
namespace/knative-apps createdNow, let's create our first Knative Service file named service.yaml:
apiVersion: serving.knative.dev/v1
kind: Service
metadata:
name: hello-world
spec:
template:
spec:
containers:
- image: ovhplatform/hello
ports:
- containerPort: 80
As you can see, the Knative service YAML file is simple and concise.
We need to apply it on our cluster with the command:
kubectl apply -f service.yaml -n knative-apps
Here is an example of the result:
$ kubectl apply -f service.yaml -n knative-apps
service.serving.knative.dev/hello-world createdUnder the hood, Knative created several Knative and Kubernetes components:
A deployment:
$ kubectl get deployment -n knative-apps
NAME READY UP-TO-DATE AVAILABLE AGE
hello-world-00001-deployment 1/1 1 1 8sA pod:
$ kubectl get pod -n knative-apps
NAME READY STATUS RESTARTS AGE
hello-world-00001-deployment-797f65cdd9-h47sk 2/2 Running 0 9sServices:
$ kubectl get svc -n knative-apps
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
hello-world ExternalName <none> kourier-internal.kourier-system.svc.cluster.local 80/TCP 9s
hello-world-00001 ClusterIP 10.3.82.197 <none> 80/TCP 12s
hello-world-00001-private ClusterIP 10.3.0.240 <none> 80/TCP,9090/TCP,9091/TCP,8022/TCP,8012/TCP 12sAnd also Knative service, route and revision:
$ kn service list -n knative-apps
NAME URL LATEST AGE CONDITIONS READY REASON
hello-world http://hello-world.knative-apps.knative.example.com hello-world-00001 51s 3 OK / 3 True
$ kn route list -n knative-apps
NAME URL READY
hello-world http://hello-world.knative-apps.knative.example.com True
$ kn revision list -n knative-apps
NAME SERVICE TRAFFIC TAGS GENERATION AGE CONDITIONS READY REASON
hello-world-00001 hello-world 100% 1 58s 4 OK / 4 TrueAs we can see, by default, 100% of the traffic goes to the hello-world-00001 revision.
Now, we need to retrieve the route URL:
$ kn service describe hello-world -n knative-apps -o url
http://hello-world.knative-apps.example.comWith this information, we can test to call our app:
$ curl http://hello-world.knative-apps.knative.example.com
<!doctype html>
<html>
<head>
<title>OVH K8S</title>
</head>
<style>
.title {
font-size: 3em;
padding: 2em;
text-align: center;
}
</style>
<body>
<div class="title">
<p>Hello from Kubernetes!</p>
<img src="./ovh.svg">
</div>
</body>
</html>
One of Knative Serving's powers is built-in automatic scaling (autoscaling). This means your Knative Service only spins up your application to perform its job, if it is needed; otherwise, it will "scale to zero" by spinning down and waiting for a new request to come in.
So, if you don't send requests to your application, Pods will be terminated automatically! :-)
$ kubectl get po -n knative-apps
No resources found in knative-apps namespace.Cool!
Now you have a working "Hello World" app deployed on Knative on an OVHcloud Managed Kubernetes cluster. Next time we will see Knative awesome features like traffic splitting, blue/green deployment and horizontal scaling.
In this tutorial we only see the Serving component. If you are interested about Knative Eventing component, we recommand you the official documentation.
If you want, you can uninstall Knative apps, serving and core components.
First, delete our Hello World app:
kubectl delete -f service.yaml -n knative-appsThen, delete Knative CRDs:
kubectl api-resources -o name | grep knative | xargs kubectl delete crdThen, delete Knative resources:
kubectl -n knative-serving delete po,svc,daemonsets,replicasets,deployments,rc,secrets --all
kubectl -n kourier-system delete po,svc,daemonsets,replicasets,deployments,rc,secrets --allFinally, delete namespaces:
kubectl delete namespace knative-serving
kubectl delete namespace kourier-system
kubectl delete namespace knative-apps-
If you need training or technical assistance to implement our solutions, contact your sales representative or click on this link to get a quote and ask our Professional Services experts for assisting you on your specific use case of your project.
-
Join our community of users on https://community.ovh.com/en/.