Kubernetes Cost Optimization: Cutting Cloud Spend Without Breaking SLOs

Status: DRAFT

The Kubernetes bill arrives. It is double what was budgeted. Someone asks the engineering team what changed. Nothing specific changed — the cluster just grew because it was easier to over-provision than to tune. This is the default state of most Kubernetes clusters older than eighteen months.

Studies consistently show that 40-70% of provisioned Kubernetes resources go unused. For a company spending ₹50 lakh per month on cloud infrastructure, that is ₹20-35 lakh sitting idle every thirty days.

Why Kubernetes Clusters Overspend by Default

Kubernetes does not manage cost. It manages availability. When in doubt, Kubernetes does the safe thing: it keeps the resource alive, even if nothing is using it.

The three biggest cost drivers in a typical cluster:

• Oversized resource requests: Developers set requests.memory: 2Gi and requests.cpu: 1000m out of caution. The actual usage is 200Mi and 80m. The scheduler reserves the full requested amount and nodes fill up with ghost capacity.
• Idle workloads: Dev and staging environments run 24/7 even though nobody uses them between 10 PM and 9 AM.
• Underutilized node groups: Fixed-size node groups provisioned for peak load sit at 15% utilization for 20 hours a day.

Each of these has a specific fix, and none of them require touching your production SLOs.

Step 1: See What You Are Actually Using

You cannot optimize what you cannot measure. Start with resource usage visibility.

For a proper view, deploy Goldilocks — it watches actual usage and recommends correct requests and limits:

Open the Goldilocks dashboard and you will see a table showing every deployment's actual CPU/memory usage vs its requested values — and an auto-generated recommendation for what the requests should actually be.

Step 2: Fix Resource Requests

This single step is typically worth 30-40% cost reduction for teams that have never done it.

A pod with oversized requests blocks scheduler capacity even while idle. The node reports "full" to the scheduler when it is actually at 20% real utilization.

Here is the pattern: use VPA (Vertical Pod Autoscaler) in recommendation mode to generate correct values, then apply them to your manifests.

Apply the recommended values to your Deployment. Then do this for every service. It is tedious — it is also the highest-ROI work you will do all quarter.

Step 3: Right-Size Your Node Groups with Cluster Autoscaler

Static node groups are a cost trap. A node group provisioned for 100 pods during a Swiggy dinner-rush peak sits at 12 pods at 3 AM.

Cluster Autoscaler (CA) scales your node groups based on pending pods and removes underutilized nodes automatically.

Pair Cluster Autoscaler with Karpenter if you are on AWS — Karpenter provisions exact-fit instances rather than pre-defined node types, which eliminates the "I need 4 CPUs but the only node type available is 8" waste.

Step 4: Scale Non-Production to Zero

Your staging cluster does not need to run at 2 AM on a Sunday. Dev environments do not need to run at all during weekends.

KEDA (Kubernetes Event-Driven Autoscaling) can scale deployments to zero on a schedule and scale them back up before business hours:

For dev namespaces, go further: use kube-downscaler to automatically scale everything to zero outside working hours across entire namespaces, not just individual deployments.

Step 5: Use Spot Instances for Stateless Workloads

Spot (AWS) / Preemptible (GCP) / Spot (Azure) instances cost 60-90% less than on-demand. For stateless workloads — API servers, workers, batch jobs — they are a direct cost lever.

The key is a correct pod disruption budget and fast restart behavior:

Pair this with a node taint for spot nodes so only workloads that tolerate interruption get scheduled there:

Never run stateful workloads (databases, Redis with persistence, Kafka) on spot nodes.

The Dashboard You Need

Wire everything together in Grafana with a cost dashboard that shows spend by namespace, by team, and by workload. OpenCost is the open-source standard for this:

OpenCost breaks down your cloud bill by Kubernetes namespace, label, and deployment — so when engineering leadership asks "which team is spending the most," you have a real answer in thirty seconds.

Production Implementation Guidelines

Don't optimize and change SLOs at the same time. Run two weeks of VPA recommendations in observation mode before applying anything to production. Compare actual resource usage at peak load (dinner time for Swiggy, market open for Zerodha, festive sale launch for Flipkart) to the VPA recommendation before trusting it.

Set LimitRange objects in every namespace to prevent new deployments from landing without resource requests:

This ensures that even if a developer forgets to set requests, the namespace defaults kick in — preventing ghost capacity from accumulating silently.

Trade-offs and Alternatives

Start with fixing resource requests and scaling non-prod to zero. These two alone typically justify the time investment in the first week.

INFORMATION

📚 **References & Further Reading** * [Goldilocks Documentation](https://goldilocks.docs.fairwinds.com/) - VPA-based resource recommendations * [OpenCost](https://www.opencost.io/) - Open-source Kubernetes cost monitoring * [KEDA Documentation](https://keda.sh/docs/) - Event-driven and scheduled autoscaling * [Karpenter](https://karpenter.sh/) - AWS node provisioning with right-sizing