Container Image Pulls Throttled by Registry

KubernetesContainersSupply ChainReliability

Interview Question

New pods are failing with ImagePullBackOff and registry logs show rate limiting/throttling. How do you restore service quickly and prevent recurrence?

Key Points to Cover

Confirm registry throttling via events and registry metrics/status
Warm nodes with pre-pulled images or use imagePullPolicy=IfNotPresent
Configure private mirror/registry cache and authenticated pulls
Reduce image churn: smaller layers, less frequent tags, pin SHAs
Add backoff, retries, and alerts on pull failures

Evaluation Rubric

Confirms throttling root cause30% weight

Restores service via mirrors/caching/prepull30% weight

Reduces image churn/size/policy issues20% weight

Adds monitoring and quotas/auth20% weight

Hints

💡Consider node DaemonSets to pre-pull images.

Potential Follow-up Questions

❓How do you mirror public images securely?
❓What KPIs would you track for pull health?

Back to Troubleshooting Scenarios View All Categories