Graceful Shutdown Pod Termination
Implement graceful shutdown in Kubernetes pods. Handle SIGTERM, drain connections, use preStop hooks, and configure terminationGracePeriodSeconds correctly.
π‘ Quick Answer: deployments
The Problem
This is a fundamental Kubernetes topic that engineers search for frequently. A comprehensive reference with production-ready examples saves hours of trial and error.
The Solution
Shutdown Sequence
1. Pod marked for deletion
2. Pod removed from Service endpoints (no NEW traffic)
3. preStop hook runs (if defined)
4. SIGTERM sent to PID 1 in each container
5. Wait up to terminationGracePeriodSeconds (default: 30)
6. SIGKILL sent if still runningCorrect Configuration
apiVersion: apps/v1
kind: Deployment
spec:
template:
spec:
terminationGracePeriodSeconds: 60 # Give app time to drain
containers:
- name: app
image: my-app:v1
lifecycle:
preStop:
exec:
# Wait for load balancer to update (race condition fix)
command: ["sh", "-c", "sleep 5"]
# Your app must handle SIGTERM!Handle SIGTERM in Your App
# Python
import signal, sys
def shutdown(signum, frame):
print("Received SIGTERM, draining connections...")
server.stop(grace=10) # Stop accepting new, finish existing
sys.exit(0)
signal.signal(signal.SIGTERM, shutdown)// Node.js
process.on('SIGTERM', () => {
console.log('SIGTERM received, shutting down gracefully');
server.close(() => {
console.log('Connections drained');
process.exit(0);
});
// Force exit after timeout
setTimeout(() => process.exit(1), 25000);
});The preStop Sleep Trick
# Why sleep 5 in preStop?
# Race condition: Service endpoint removal is ASYNC
# Without sleep: SIGTERM β app stops β but LB still sending traffic β 502 errors
# With sleep: preStop sleep 5s β LB removes endpoint β SIGTERM β clean shutdown
lifecycle:
preStop:
exec:
command: ["sh", "-c", "sleep 5"]graph TD
A[Pod deletion requested] --> B[Removed from Service endpoints]
A --> C[preStop: sleep 5s]
B -.->|async - may take a few seconds| D[LB stops sending traffic]
C -->|After 5s| E[SIGTERM to app]
E --> F[App drains connections]
F --> G[App exits 0]
G --> H[Pod terminated]Frequently Asked Questions
Why do I get 502 errors during deployments?
The load balancer hasnβt removed the podβs endpoint yet when the pod starts shutting down. Fix: add preStop: sleep 5 to give the Service time to update endpoints before SIGTERM.
What if my app ignores SIGTERM?
After terminationGracePeriodSeconds (default 30s), Kubernetes sends SIGKILL β which cannot be caught. Your app dies immediately. Always handle SIGTERM in your code.
Best Practices
- Start with the simplest configuration that meets your needs
- Test changes in staging before production
- Use
kubectl describeand events for troubleshooting - Document your decisions for the team
Key Takeaways
- This is essential Kubernetes knowledge for production operations
- Follow the principle of least privilege and minimal configuration
- Monitor and iterate based on real-world behavior
- Automation reduces human error and improves consistency
Recommended
Kubernetes Recipes β The Complete Book100+ production-ready patterns with detailed explanations, best practices, and copy-paste YAML. Everything in one place.
Get the Book βLearn by Doing
CopyPasteLearn β Hands-on Cloud & DevOps CoursesMaster Kubernetes, Ansible, Terraform, and MLOps with interactive, copy-paste-run lessons. Start free.
Browse Courses β
π Deepen Your Skills β Hands-on Courses
Courses by CopyPasteLearn.com β Learn IT by Doing
Want More Kubernetes Recipes?
This recipe is from Kubernetes Recipes, our 750-page practical guide with hundreds of production-ready patterns.