Self-Managed Kubernetes
You can deploy Deepgram using Kubernetes which will provide a scalable instance of Deepgram’s API and Engine services running on your own hardware or in your Kubernetes cloud environment. In this guide, we will look at how to deploy Deepgram on-premises with Kubernetes on a system with a Ubuntu operating system installed.
Prior to deploying Kubernetes you will need to ensure you have a suitable environment per our Deployment Environments guide. You will also need access to the deepgram-self-hosted Helm chart.
If you are not overly familiar with Kubernetes, you should be aware of three main concepts:
Additionally this guide refers frequently to kubectl, the command line tool for interacting with the Kubernetes clusters, kubeadm, the cluster administration tool, and the kubelet node agent.
Kubernetes consists of several components distributed as binaries or container images including an API server for cluster management, proxy server, scheduler, controllers, etc. These components are served from registry.k8s.io, and you will require several helper tools to get up and running including the aforementioned kubectl, kubeadm, and kubelet. Prior to installing Kubernetes you must disable Linux swap permanently. While sudo swapoff -a will temporarily disable swap, you will need to make the change permenent in /etc/fstab or systemd.swap.
Update your package repositories and install dependencies for the Kubernetes repository:
Download the public signing key from Google:
Note: Distributions prior to 22.04 may not have the /etc/apt/keyrings folder. You can create this directory, making it world-readable and writeable only by admins. Add the Kubernetes official repository:
Update packages and install Kubernetes tools:
apt-mark as follows:sudo apt-mark hold kubelet kubeadm kubectl
In order to run nodes and pods you must first create a cluster. This is done using the kubeadm command:
Kubeadm will run verification checks and report any errors, then it will download the required containerized components and initialize a control-plane. You can see configuration options for initialization here, including how set node taints.
Once the control-plane is initialized you will receive instructions to store the cluster configuration and deploy a pod network. Examples below (instructions may differ based on your system):
You will also be presented with a kubeadm join command which should be saved for later use joining worker nodes to the master node. Upon completion you should now be able to query your control-plan and see the standard Kubernetes pods running:
By default Kubernetes does not deploy a CNI for pod communication. Before cluster DNS will start and pods be able to communicate you must install an add-on for the CNI you wish to deploy in your cluster as follows:
As an example, if you were to deploy the Calico network in your cluster you would install the add-on as follows:
A comprehensive though not exhaustive list of common network add-ons is available in the official Kuberenetes Networking and Network Policy documentation. You may utilize only a single CNI per cluster. To verify the network is up and running you can check the CoreDNS pod status. When the CoreDNS pod state shows as Running you may then join nodes to the cluster.
Once the master node is setup you can begin joining worker nodes to the cluster. If you copied the join command output when the cluster was initialized this can be used on each worker node directly. In the event that you did not save the join command you may recover it using kubeadm as follows:
After joining nodes to the cluster you can utilize the kubectl command to verify the status of the cluster nodes:
Kubernets supports metric aggregates from nodes within the cluster, however this is not setup by default upon cluster initialization. If you wish to utilize the Kubernetes metrics server you may deploy the latest version using kubectl:
After deployment you may then query the compute utilization of nodes using the top command from the CLI:
Alternatively you can consume node metrics using your own metrics aggregation service poitned to the metrics API.
Deepgram strongly recommends following best practices for configuring Kubernetes Secrets. Please refer to Securing Your Cluster for more details.
The deepgram-self-hosted Helm chart takes two Secret references. One is a set of distribution credentials that allow the cluster to pull images from Deepgram’s container image repository. The other is your self-hosted API key that licenses each Deepgram container that is created.
Complete the Self Service Licensing & Credentials guide to generate distribution credentials and a self-hosted API key.
If using an external Secret store provider, configure cluster access to these two Secrets, naming them dg-regcred (distribution credentials) and dg-self-hosted-api-key.
If not using an external Secret store provider, create the Secrets manually in your cluster.
Using the distribution credentials username and password generated in the Deepgram Console, create a Kubernetes Secret named dg-regcred.
Create a Kubernetes Secret named dg-self-hosted-api-key to store your self-hosted API key. /
Replace the placeholder YOUR_API_KEY_HERE with the Deepgram API key you generated in the Self Service Licensing & Credentials guide.
Your Deepgram Account Representative should provide you with download links to at least one voice AI model. Copy the provided model files into a dedicated directory on the host machine.
Create a local PersistentVolume in your cluster using this official Kubernetes guide, and set the spec.local.path to the absolute path of the deepgram-models directory you just created.
Deepgram maintains the official deepgram-self-hosted Helm Chart. You can reference the source and Artifact Hub listing for more details. We’ll use this Chart to facilitate deploying Deepgram services in your self-hosted environment.
Download a values.yaml template from Deepgram’s self-hosted resources. For example, here is a template for a basic setup with a self-managed cluster.
In your values.yaml, modify the scaling.replicas.{api,engine} as desired.
In your values.yaml file, insert the name of your local PersistentVolume you created in the previous section.
Install the Helm Chart with your values.yaml file.
kubectl describe pod <pod-name>.Test your environment and container setup with a local file.
Get the name of one of the Deepgram API Pods.
Launch an ephemeral container to send your test request from.
Inside the ephemeral container, download a sample file from Deepgram (or supply your own file).
Send your audio file to your local Deepgram setup for transcription.
If needed, adjust pieces of the above command:
deepgram-api-externaldg-self-hostedYou should receive a JSON response with the transcript and associated metadata. Congratulations - your self-hosted setup is working!
Your Deepgram services are accessible within your cluster via the deepgram-api-external Service that was created by the Helm Chart.
What’s Next
Now that you have a basic Deepgram setup working, take some time to learn about building up to a production-level environment, as well as helpful Deepgram add-on services.