· Engineering  · 5 min read

Kubernetes Explained: Why It’s Basically a Spy Agency

If an explanation feels 'too simple' but works, it isn't stupid. How I taught K8s using Tom Clancy novels instead of documentation.

If an explanation feels 'too simple' but works, it isn't stupid. How I taught K8s using Tom Clancy novels instead of documentation.

If this were a typical technical blog post, I would probably start with something like:

“Kubernetes is a container orchestrator.”

Then I’d feel morally obligated to explain what an orchestrator does. Which would force me to explain scheduling. Which would require explaining containers. Which would inevitably drag us into Linux namespaces, cgroups, and why Docker is not actually the same thing as containers.

Somewhere halfway down that rabbit hole, I would lose attention of about 90% of the readers.
And my own.

So let’s not do that.

For the purpose of this text, it’s enough to know that Kubernetes is a very powerful and very complex tool widely used in modern IT. If you need the details — great news! The internet is full of excellent courses, talks, and tutorials. I am far too lazy to write yet another one.

That’s not my goal here anyway.

The Real Problem: Explaining Complex Things Poorly

My goal here is much simpler: to argue for simplifying how we explain difficult concepts.

Somewhere along the way, we convinced ourselves that the best way to demonstrate competence is by drowning beginners in jargon. Acronyms are deployed like confetti. Sentences get longer. Diagrams get denser. Everyone nods politely while understanding absolutely nothing.

A few months ago, during a mentoring session, I fell straight into that trap.

I was trying to explain Kubernetes (or k8s, because even the name apparently needed optimization) to a younger colleague. I did what engineers do best: I started firing off terms and acronyms as if there were no tomorrow.

After a few minutes, his facial expression suggested he was actively reconsidering his life choices. That’s usually a bad sign.

A Strategic Pivot

So I changed strategy. I asked a simple question:

“Do you watch spy movies? Or read espionage novels?”

We were safe territory here. I’m not going to pretend I know how real intelligence agencies operate. My knowledge of espionage comes entirely from pop culture — roughly at the level of Tom Clancy, David Baldacci, and whatever Netflix happened to recommend that month.

That was enough.

I told him to forget Kubernetes for a moment. Forget YAML. Forget manifests. Forget everything.

“Imagine the CIA,” I said. “The Hollywood version.”

Kubernetes as a Spy Agency

Once we were firmly inside a fictional intelligence agency, things started to click.

  • The Control Plane as HQ Think of the Control Plane as CIA headquarters. It sees the big picture, makes strategic decisions, and sends orders to the field. Without it, the whole operation collapses into chaos.

  • Field Offices = Nodes Around the world, the CIA has local offices doing the actual work. In Kubernetes, those are your Nodes. They execute tasks locally while staying connected to HQ.

  • The Middleman: Kubelet Every field office has someone responsible for reporting back and carrying out orders. That’s the kubelet. Not glamorous, not powerful — but absolutely critical.

  • Agents = Pods Agents are assigned missions, deployed quickly, and quietly retired when no longer needed. Pods work the same way. Efficient, focused, and — let’s be honest — expendable.

  • Specialized Departments = Controllers Back at HQ (or sometimes elsewhere), you have specialized departments: logistics, analysis, operations. In Kubernetes, these are controllers — each focused on one specific responsibility.

  • Secure Communications Espionage without secure communication is a short career. TLS, authentication, and access controls ensure messages come from who they claim to come from — and that hostile actors don’t impersonate your own agents.

  • HQ Is Not a Single Brain The Control Plane isn’t one omniscient entity, just like a headquarters isn’t one person:

    • etcd is the master archive/registry of everything.
    • The API Server is the communication hub (the switchboard).
    • The Scheduler decides who gets which mission based on availability and skills.

Together, they form the intelligence backbone.

And Suddenly… Understanding

It worked.

After about half an hour of this spy-movie storytelling, my colleague genuinely understood what was going on. Not memorized definitions — understood.

Only then did I return to the technical details. YAML. Encryption. Configurations. All the glorious mess engineers secretly enjoy.

This time, the panic was gone. In its place was something far more useful: comprehension. And, surprisingly, curiosity.

Sure, for the next few sessions, I would still hear things like “so now the agent has to call HQ.” But hey — I understood him, and he understood the system. That’s a win. Eventually, the metaphors faded, and he naturally switched to the standard terminology expected by the rest of the nerds.

If It Works, It’s Not Stupid

That experience reinforced something I’ve believed for a long time.

If an explanation feels “too simple” but actually works, then it isn’t stupid. It’s effective.

Complex systems don’t require complex explanations. They require good mental models. So my advice is simple: look for analogies. Metaphors. Familiar stories. Borrow structures your listener already understands.

It doesn’t have to be Kubernetes. It can be any complex system.

And if someone tells you that your explanation isn’t serious enough — but the person you’re explaining to finally gets it — congratulations. You’re doing it right.

Who knows? Next time you explain distributed systems, maybe you’ll use… a pizza delivery chain. 🍕

The Fuckup Almanac series

(Yes, I use a similar approach in The Fuckup Almanac series. No, I don’t teach Kubernetes there — I focus purely on why systems die.)

Share:
Back to Blog

Related Posts

View All Posts »