Startup, Liveness, and Readiness Probes in Kubernetes

-

 



Kubernetes provides startupliveness, and readiness probes to continuously monitor container health.
These probes are a core building block for self-healing systems and allow Kubernetes to make
intelligent decisions during the entire lifecycle of a container: from startup, through steady state,
to failure and recovery.

When used correctly, probes dramatically reduce downtime and protect users from unstable services.

What Kubernetes Means by “Healthy”

A container being running does not necessarily mean it is healthy.

Kubernetes distinguishes between multiple states:

  • The container has not started correctly
  • The container is running but not yet ready
  • The container is running but stuck
  • The container is healthy and serving traffic

Each probe targets exactly one of these states, which is why they should never be treated as interchangeable.

Why Probes Are Essential in Real Systems

Consider the following real-world scenarios:

  • A web API starts, but database migrations are still running
  • A JVM service is alive, but all worker threads are blocked
  • A cache temporarily becomes unavailable
  • An application is overloaded but could recover without a restart

Without probes, Kubernetes cannot react intelligently.
With probes, Kubernetes can restartisolate, or wait — depending on the situation.

Types of Kubernetes Probes

Startup Probe — “Did the application start?”

The startup probe answers a very specific question:

Has the application finished starting up?

Key characteristics:

  • Runs only during container startup
  • Temporarily disables liveness and readiness probes
  • Failure beyond the threshold → container restart
  • Success → liveness and readiness probes are enabled

This probe is critical for slow-starting applications, such as:

  • JVM-based services
  • Applications performing schema migrations
  • Services loading large datasets into memory

Without a startup probe, liveness probes may kill the container before it ever becomes ready.

Liveness Probe — “Is the application still making progress?”

The liveness probe determines whether the application is irreversibly broken.

Important details:

  • Runs continuously for the entire container lifetime
  • Failure threshold exceeded → container restart
  • Designed to detect:
    • Deadlocks
    • Infinite loops
    • Unrecoverable internal errors

A liveness probe should be cheap and reliable.
If it fails, Kubernetes assumes the only safe recovery strategy is a restart.

Readiness Probe — “Should traffic be sent right now?”

The readiness probe controls traffic flow, not container lifecycle.

Key behavior:

  • Runs continuously
  • Failure → container is removed from Service endpoints
  • Container keeps running
  • Success → traffic is restored automatically

Readiness probes are ideal for handling temporary failures, such as:

  • Database connection loss
  • Dependency timeouts
  • Warm-up phases after restarts

How Probes Work Together

Probes are evaluated in a strict order:

  1. Startup probe (only at startup)
  2. Liveness probe (container survival)
  3. Readiness probe (traffic eligibility)

This separation allows Kubernetes to:

  • Avoid killing containers too early
  • Restart containers only when necessary
  • Protect users from unstable instances

Visual Flow of a Startup Probe



During startup:

  • Kubernetes checks whether a startup probe exists
  • If defined, it runs instead of liveness/readiness
  • Failure threshold exceeded → restart
  • Success → normal lifecycle continues

Visual Flow of a Liveness Probe


Key takeaway:

Liveness failures indicate irrecoverable state and trigger restarts.

Visual Flow of a Readiness Probe


Key takeaway:

Readiness failures do not kill containers — they only stop traffic.

Common Probe Configuration Options

FieldDescription
initialDelaySecondsDelay before first execution
periodSecondsInterval between checks
timeoutSecondsProbe execution timeout
failureThresholdFailures before action
successThresholdSuccesses required to recover

Common Mistakes and Anti‑Patterns

  • Using database checks in liveness probes
  • Reusing the same endpoint for all probes
  • Making probes too slow or expensive
  • Forgetting startup probes for slow applications

These mistakes often cause restart loops or unnecessary downtime.

Summary

ProbeQuestion AnsweredAction on Failure
StartupDid startup finish?Restart container
LivenessIs it still healthy?Restart container
ReadinessCan it receive traffic?Stop traffic

Proper probe design enables Kubernetes to:

  • Self-heal automatically
  • Minimize user impact
  • Run production workloads safely

Comments

Post a Comment

Popular posts from this blog

Highlights from the 2025 Stack Overflow Developer Survey

-
Image
Introduction The  15th Annual Stack Overflow Developer Survey  is now out. With over  49,000 responses  from  177 countries , the 2025 findings offer a rich view into how developers work—and how they feel—amid rising AI adoption ( survey.stackoverflow.co ,  survey.stackoverflow.co ). Dev & AI Trends at a Glance Widespread AI Adoption Coupled with Waning Trust A whopping  84%  of developers now use—or plan to use—AI tools in their workflows, up from  76%  last year ( survey.stackoverflow.co ). Yet trust in AI is falling dramatically:  46%  say they do  not trust  AI output, compared to just  31%  in 2024 ( itpro.com ). Positive sentiment toward AI tools dropped from over 70% to roughly  60%  this year ( survey.stackoverflow.co ). The top frustration? Developers cite “ AI solutions that are almost right, but not quite ” as a pain point—leading to increased time spent debugging ( survey.stackoverf...
Read more

Mastering Caddy Logging: A Complete Guide to Access, Error, and Structured Logs

-
Image
  Mastering Logging in Caddy Caddy is a modern, lightweight, and secure web server that’s rapidly gaining popularity thanks to its simplicity, automatic HTTPS, and powerful configuration options. One of the most important aspects of managing a Caddy-powered application is  logging . Proper logging ensures you have visibility into your system, can debug issues efficiently, and monitor performance in real-time. In this article, we’ll break down how logging works in Caddy, why it matters, and how you can configure it for your own projects. What is Logging in Caddy? Logging in Caddy refers to the process of capturing details about requests, errors, and internal server behavior. With logs, you can: Track incoming requests and responses Debug configuration or runtime issues Monitor server performance and health Meet compliance and audit requirements Caddy uses a structured logging system, making logs easier to parse and integrate with external monitoring tools like  Better Stac...
Read more

psql: error: connection to server at "localhost" (127.0.0.1), port 5433 failed: ERROR: failed to authenticate with backend using SCRAM DETAIL: valid password not found

-
Image
ERROR psql: error: connection to server at "localhost" (127.0.0.1), port 5433 failed: ERROR: failed to authenticate with backend using SCRAM DETAIL: valid password not found Since Pgpool-II is a PostgreSQL proxy that works between clients and PostgreSQL servers, the authentication comprises two steps: Authentication between client and Pgpool-II Authentication between Pgpool-II and PostgreSQL servers Starting with Pgpool-II 4.0, Pgpool-II supports scram-sha-256 authentication. scram-sha-256 authentication method is strongly recommended because it is the most secure password-based authentication method. Solution 1 If PostgreSQL servers require  MD5  or  SCRAM  authentication for some user’s authentication but the password for that user is not present in  pool_passwd , then enabling  allow_clear_text_frontend_auth  will allow the  Pgpool-II  to use clear-text-password authentication with user to get the password in plain text form from the user ...
Read more