@xdev-asia/xdev-knowledge-mcp 1.0.43 → 1.0.45

package/content/series/luyen-thi/luyen-thi-cka/index.md

@@ -0,0 +1,217 @@
+---
+id: lt-cka-series-001
+title: "Luyện thi CKA — Certified Kubernetes Administrator"
+slug: luyen-thi-cka
+description: >-
+  Lộ trình ôn tập toàn diện cho kỳ thi CKA (Certified Kubernetes Administrator).
+  Bao phủ đầy đủ 5 domain hands-on: Troubleshooting (30%), Cluster Architecture (25%),
+  Services & Networking (20%), Workloads & Scheduling (15%), Storage (10%).
+  12 bài học kèm bài tập thực hành terminal.
+
+featured_image: images/blog/luyen-thi-cka-banner.png
+level: intermediate
+duration_hours: 35
+lesson_count: 12
+price: '0.00'
+is_free: true
+view_count: 0
+average_rating: '0.00'
+review_count: 0
+enrollment_count: 0
+meta: null
+published_at: '2026-04-05T10:00:00.000000Z'
+created_at: '2026-04-05T10:00:00.000000Z'
+
+author:
+  id: 019c9616-d2b4-713f-9b2c-40e2e92a05cf
+  name: Duy Tran
+  avatar: avatars/7e8eb5c6-4cac-455b-a701-4060f085d501.jpeg
+
+category:
+  id: 019c9616-cat9-7009-a009-000000000009
+  name: Luyện thi chứng chỉ
+  slug: luyen-thi
+
+tags:
+
+- name: Kubernetes
+    slug: kubernetes
+- name: CKA
+    slug: cka
+- name: CNCF
+    slug: cncf
+- name: Chứng chỉ
+    slug: chung-chi
+- name: DevOps
+    slug: devops
+- name: Linux Foundation
+    slug: linux-foundation
+
+quiz_slug: cka
+
+sections:
+
+- id: cka-section-01
+    title: "Domain 1: Cluster Architecture, Installation & Configuration (25%)"
+    description: kubeadm, RBAC, cluster upgrade, etcd backup/restore
+    sort_order: 1
+    lessons:
+  - id: cka-d1-l01
+        title: "Bài 1: Kubernetes Architecture & kubeadm Cluster Setup"
+        slug: 01-kien-truc-cka-kubeadm
+        description: >-
+          Control plane components sâu. kubeadm init, join, config.
+          High Availability cluster topology. Certificate rotation.
+          kubectl config, contexts, kubeconfig.
+        duration_minutes: 65
+        is_free: true
+        sort_order: 1
+        video_url: null
+  - id: cka-d1-l02
+        title: "Bài 2: Cluster Upgrade với kubeadm"
+        slug: 02-cluster-upgrade-kubeadm
+        description: >-
+          Upgrade strategy: control plane → worker nodes.
+          drain, cordon, uncordon. Version skew policy.
+          kubeadm upgrade plan/apply. Rollback procedures.
+        duration_minutes: 60
+        is_free: true
+        sort_order: 2
+        video_url: null
+  - id: cka-d1-l03
+        title: "Bài 3: RBAC — Role-Based Access Control"
+        slug: 03-rbac-cka
+        description: >-
+          Role vs ClusterRole. RoleBinding vs ClusterRoleBinding.
+          ServiceAccounts và token. kubectl auth can-i.
+          Aggregated ClusterRoles. Least privilege patterns.
+        duration_minutes: 60
+        is_free: true
+        sort_order: 3
+        video_url: null
+
+- id: cka-section-02
+    title: "Domain 2: Workloads & Scheduling (15%)"
+    description: Deployments, DaemonSets, scheduling, taints/tolerations, affinity
+    sort_order: 2
+    lessons:
+  - id: cka-d2-l01
+        title: "Bài 4: Deployments, DaemonSets & StatefulSets"
+        slug: 04-deployments-daemonsets-statefulsets
+        description: >-
+          Rolling update strategies. Rollback. ReplicaSet vs Deployment.
+          DaemonSet use cases. StatefulSet: headless service, volumeClaimTemplates.
+          Resource requests & limits. QoS classes.
+        duration_minutes: 60
+        is_free: true
+        sort_order: 4
+        video_url: null
+  - id: cka-d2-l02
+        title: "Bài 5: Scheduling — Taints, Tolerations & Affinity"
+        slug: 05-scheduling-taints-affinity
+        description: >-
+          Manual scheduling (nodeName, nodeSelector). Node Affinity/Anti-affinity.
+          Pod Affinity/Anti-affinity. Taints & Tolerations.
+          Priority Classes. Resource quotas & LimitRanges.
+        duration_minutes: 60
+        is_free: true
+        sort_order: 5
+        video_url: null
+
+- id: cka-section-03
+    title: "Domain 3: Services & Networking (20%)"
+    description: Services, DNS, Ingress, NetworkPolicies, CNI
+    sort_order: 3
+    lessons:
+  - id: cka-d3-l01
+        title: "Bài 6: Services, Endpoints & CoreDNS"
+        slug: 06-services-endpoints-coredns
+        description: >-
+          ClusterIP, NodePort, LoadBalancer, ExternalName, Headless.
+          Endpoints & EndpointSlices. CoreDNS configuration.
+          Service discovery patterns. kube-proxy modes (iptables, IPVS).
+        duration_minutes: 60
+        is_free: true
+        sort_order: 6
+        video_url: null
+  - id: cka-d3-l02
+        title: "Bài 7: Ingress, Network Policies & CNI"
+        slug: 07-ingress-networkpolicies-cni
+        description: >-
+          Ingress controllers (nginx). Ingress rules, TLS.
+          NetworkPolicy: ingress/egress rules, label selectors.
+          CNI plugins: Calico, Flannel, Cilium overview.
+          Pod CIDR vs Service CIDR.
+        duration_minutes: 65
+        is_free: true
+        sort_order: 7
+        video_url: null
+
+- id: cka-section-04
+    title: "Domain 4: Storage (10%)"
+    description: PV, PVC, StorageClass, volumes
+    sort_order: 4
+    lessons:
+  - id: cka-d4-l01
+        title: "Bài 8: Persistent Volumes, PVCs & StorageClass"
+        slug: 08-persistent-volumes-storageclass
+        description: >-
+          PersistentVolume, PersistentVolumeClaim lifecycle. Access modes.
+          Reclaim policies. StorageClass & dynamic provisioning.
+          hostPath, emptyDir, NFS. VolumeMount vs VolumeFrom.
+        duration_minutes: 55
+        is_free: true
+        sort_order: 8
+        video_url: null
+
+- id: cka-section-05
+    title: "Domain 5: Troubleshooting (30%)"
+    description: Node, workload, networking troubleshooting, etcd backup
+    sort_order: 5
+    lessons:
+  - id: cka-d5-l01
+        title: "Bài 9: etcd Backup & Restore"
+        slug: 09-etcd-backup-restore
+        description: >-
+          etcd architecture. etcdctl snapshot save/restore.
+          Environment variables: ETCDCTL_API, certificates.
+          Static pod manifest cho etcd. Recovery procedures.
+          Encryption at rest configuration.
+        duration_minutes: 55
+        is_free: true
+        sort_order: 9
+        video_url: null
+  - id: cka-d5-l02
+        title: "Bài 10: Troubleshooting Nodes & Cluster"
+        slug: 10-troubleshooting-nodes
+        description: >-
+          Node NotReady: kubelet, container runtime issues.
+          journalctl, systemctl debugging. Certificate issues.
+          Control plane component failures. Static pods.
+          kubectl describe node, kubectl get events.
+        duration_minutes: 60
+        is_free: true
+        sort_order: 10
+        video_url: null
+  - id: cka-d5-l03
+        title: "Bài 11: Troubleshooting Workloads"
+        slug: 11-troubleshooting-workloads
+        description: >-
+          Pod stuck states: Pending, CrashLoopBackOff, ImagePullBackOff, OOMKilled.
+          kubectl logs, exec, describe. Init container debugging.
+          Resource constraints. Liveness/Readiness probe failures.
+        duration_minutes: 60
+        is_free: true
+        sort_order: 11
+        video_url: null
+  - id: cka-d5-l04
+        title: "Bài 12: Troubleshooting Networking & Exam Strategy"
+        slug: 12-troubleshooting-networking-exam
+        description: >-
+          DNS resolution failures. Service not reachable. kube-proxy issues.
+          Network policy blocking traffic. nslookup, curl debugging.
+          CKA exam tips: time management, kubectl shortcuts, imperative commands.
+        duration_minutes: 60
+        is_free: true
+        sort_order: 12
+        video_url: null

package/content/series/luyen-thi/luyen-thi-ckad/chapters/01-app-design-build/lessons/01-multi-container-pods.md

@@ -0,0 +1,146 @@
+---
+id: ckad-d1-l01
+title: 'Bài 1: Multi-container Pods & Init Containers'
+slug: 01-multi-container-pods
+description: >-
+  Multi-container Pod patterns: Sidecar, Ambassador, Adapter. Init Containers
+  cho prerequisites. Shared volumes giữa containers. CKAD hands-on tasks.
+duration_minutes: 55
+is_free: true
+video_url: null
+sort_order: 1
+section_title: "Domain 1: Application Design and Build (20%)"
+course:
+  id: lt-ckad-series-001
+  title: 'Luyện thi CKAD — Certified Kubernetes Application Developer'
+  slug: luyen-thi-ckad
+---
+
+<img src="/storage/uploads/2026/04/k8s-cert-ckad-bai1-multicontainer.png" alt="Multi-Container Pod Patterns — Sidecar, Ambassador, Adapter và Init Containers" style="max-width: 800px; width: 100%; border-radius: 12px;" />
+
+<h2 id="multi-container">1. Multi-container Pod Patterns</h2>
+
+<p>Containers trong cùng một Pod chia sẻ: network (same IP), IPC, và có thể chia sẻ storage volumes. Dùng nhiều containers khi chúng cần phối hợp chặt chẽ.</p>
+
+<table>
+<thead><tr><th>Pattern</th><th>Vai trò</th><th>Ví dụ thực tế</th></tr></thead>
+<tbody>
+<tr><td><strong>Sidecar</strong></td><td>Extend/enhance container chính (cùng lifecycle)</td><td>Log shipper, service mesh proxy (Envoy), config reloader</td></tr>
+<tr><td><strong>Ambassador</strong></td><td>Proxy traffic đến/từ container chính</td><td>Local proxy cache, connection multiplexer</td></tr>
+<tr><td><strong>Adapter</strong></td><td>Transform output của container chính</td><td>Metrics format converter (app → Prometheus format)</td></tr>
+</tbody>
+</table>
+
+<pre><code class="language-text">Sidecar Pattern:
+┌─────────────────────────────────────────────┐
+│                    POD                      │
+│  ┌──────────────┐    ┌─────────────────┐    │
+│  │  App         │    │  Log Sidecar    │    │
+│  │  Container   │    │  (Fluentd)      │    │
+│  └──────┬───────┘    └────────┬────────┘    │
+│         │                     │             │
+│         └──── Shared Volume ──┘             │
+│              /var/log/app                   │
+└─────────────────────────────────────────────┘</code></pre>
+
+<h2 id="multi-container-yaml">2. Multi-container Pod YAML</h2>
+
+<pre><code class="language-text">apiVersion: v1
+kind: Pod
+metadata:
+  name: web-with-sidecar
+spec:
+  containers:
+  - name: web
+    image: nginx:1.21
+    volumeMounts:
+    - name: shared-logs
+      mountPath: /var/log/nginx
+
+  - name: log-shipper
+    image: fluent/fluentd:v1.14
+    volumeMounts:
+    - name: shared-logs
+      mountPath: /var/log/nginx
+      readOnly: true  # Sidecar reads, doesn't write
+
+  volumes:
+  - name: shared-logs
+    emptyDir: {}     # Ephemeral, lost when pod deleted</code></pre>
+
+<blockquote><p><strong>Exam tip:</strong> CKAD thường cho task tạo Pod với sidecar container. Key điểm: cần shared volume để containers communicate, và cả 2 containers phải mount volume đúng path. Sidecar thường mount <code>readOnly: true</code>.</p></blockquote>
+
+<h2 id="init-containers">3. Init Containers</h2>
+
+<p><strong>Init Containers</strong> chạy trước main containers, phải hoàn thành thành công trước khi Pod start. Dùng cho: DB migration, wait for dependency, pre-populate volume.</p>
+
+<pre><code class="language-text">apiVersion: v1
+kind: Pod
+metadata:
+  name: app-with-init
+spec:
+  initContainers:
+  - name: wait-for-db
+    image: busybox
+    command: ['sh', '-c', 'until nc -z postgres-service 5432; do sleep 2; done']
+
+  - name: db-migrate
+    image: myapp:1.0
+    command: ['python', 'manage.py', 'migrate']
+
+  containers:
+  - name: app
+    image: myapp:1.0
+    ports:
+    - containerPort: 8000</code></pre>
+
+<table>
+<thead><tr><th>Property</th><th>Init Container</th><th>Regular Container</th></tr></thead>
+<tbody>
+<tr><td>Execution order</td><td>Sequential, all before app</td><td>Parallel start</td></tr>
+<tr><td>Must complete?</td><td>Yes (exit 0)</td><td>Runs continuously</td></tr>
+<tr><td>Liveness probe</td><td>Not supported</td><td>Supported</td></tr>
+<tr><td>Resources</td><td>Counted separately</td><td>Normal requests/limits</td></tr>
+</tbody>
+</table>
+
+<h2 id="cheatsheet">4. Cheat Sheet</h2>
+
+<table>
+<thead><tr><th>Câu hỏi exam</th><th>Đáp án</th></tr></thead>
+<tbody>
+<tr><td>Log collection từ app container?</td><td><strong>Sidecar</strong> với shared volume</td></tr>
+<tr><td>Wait for service before starting?</td><td><strong>Init Container</strong></td></tr>
+<tr><td>Run DB migration before app?</td><td><strong>Init Container</strong> với migration command</td></tr>
+<tr><td>Shared storage giữa containers?</td><td><strong>emptyDir</strong> volume</td></tr>
+</tbody>
+</table>
+
+<h2 id="practice">5. Practice Questions</h2>
+
+<p><strong>Q1:</strong> You need to ensure a Pod's main application only starts after a config file is downloaded from an external URL. What is the best approach?</p>
+<ul>
+<li>A) Use a Sidecar container to download the file</li>
+<li>B) Use an Init Container that runs wget and completes before the main container starts ✓</li>
+<li>C) Use a DaemonSet to pre-populate config on all nodes</li>
+<li>D) Mount a ConfigMap as the initial configuration</li>
+</ul>
+<p><em>Explanation: Init Containers run sequentially before main containers and must complete (exit 0). They're perfect for "prerequisites" like downloading config, waiting for services, or running migrations. Sidecar runs in parallel alongside the main container.</em></p>
+
+<p><strong>Q2:</strong> Two containers in the same Pod need to share data. Container A writes to /tmp/data, Container B reads from /tmp/data. What should you configure?</p>
+<ul>
+<li>A) ExternalDNS shared volume</li>
+<li>B) emptyDir volume mounted at /tmp/data in both containers ✓</li>
+<li>C) A PersistentVolumeClaim for each container</li>
+<li>D) ConfigMap mounted as a volume</li>
+</ul>
+<p><em>Explanation: emptyDir is created when a Pod is assigned to a Node, and deleted when the Pod is removed. It's perfect for sharing ephemeral data between containers in the same Pod. Both containers mount it at the same path.</em></p>
+
+<p><strong>Q3:</strong> A Pod has a single Init Container that keeps failing (exit code 1). What happens to the main application container?</p>
+<ul>
+<li>A) The main container starts after a timeout</li>
+<li>B) The main container is skipped and the Pod succeeds</li>
+<li>C) The main container never starts; Pod shows Init:Error or Init:CrashLoopBackOff ✓</li>
+<li>D) The init container failure is ignored if main container is defined</li>
+</ul>
+<p><em>Explanation: Init Containers MUST exit with code 0. If they fail, Kubernetes restarts them based on Pod's restartPolicy. The main container never starts until all init containers complete successfully.</em></p>

package/content/series/luyen-thi/luyen-thi-ckad/chapters/01-app-design-build/lessons/02-jobs-cronjobs-resources.md

@@ -0,0 +1,174 @@
+---
+id: ckad-d1-l02
+title: 'Bài 2: Jobs, CronJobs & Resource Management'
+slug: 02-jobs-cronjobs-resources
+description: >-
+  Jobs (batch tasks), CronJobs (scheduled tasks). Resource requests và limits,
+  LimitRange, ResourceQuota. QoS classes cho CKAD exam.
+duration_minutes: 55
+is_free: true
+video_url: null
+sort_order: 2
+section_title: "Domain 1: Application Design and Build (20%)"
+course:
+  id: lt-ckad-series-001
+  title: 'Luyện thi CKAD — Certified Kubernetes Application Developer'
+  slug: luyen-thi-ckad
+---
+
+<img src="/storage/uploads/2026/04/k8s-cert-ckad-bai2-jobs.png" alt="Jobs và CronJobs — completions, parallelism, concurrencyPolicy" style="max-width: 800px; width: 100%; border-radius: 12px;" />
+
+<h2 id="jobs">1. Jobs</h2>
+
+<p>Một <strong>Job</strong> tạo một hoặc nhiều Pods và đảm bảo chúng hoàn thành thành công. Khi Job hoàn thành, Pods không bị xóa (cho log inspection).</p>
+
+<pre><code class="language-text">apiVersion: batch/v1
+kind: Job
+metadata:
+  name: data-processor
+spec:
+  completions: 3       # Run 3 successful completions
+  parallelism: 2       # Run 2 pods at a time
+  backoffLimit: 4      # Retry up to 4 times on failure
+  template:
+    spec:
+      restartPolicy: Never  # OnFailure or Never (required for Job)
+      containers:
+      - name: processor
+        image: busybox
+        command: ['sh', '-c', 'echo Processing; sleep 5']</code></pre>
+
+<table>
+<thead><tr><th>Field</th><th>Ý nghĩa</th><th>Default</th></tr></thead>
+<tbody>
+<tr><td><code>completions</code></td><td>Số lần phải hoàn thành</td><td>1</td></tr>
+<tr><td><code>parallelism</code></td><td>Số Pods chạy concurrent</td><td>1</td></tr>
+<tr><td><code>backoffLimit</code></td><td>Số lần retry khi fail</td><td>6</td></tr>
+<tr><td><code>activeDeadlineSeconds</code></td><td>Timeout tổng thể của Job</td><td>Unlimited</td></tr>
+</tbody>
+</table>
+
+<blockquote><p><strong>Exam tip:</strong> Job Pods phải có <code>restartPolicy: Never</code> hoặc <code>OnFailure</code>. Không thể dùng <code>Always</code> (default cho regular Pods). CKAD hay test việc tạo Job và kiểm tra completion status.</p></blockquote>
+
+<h2 id="cronjobs">2. CronJobs</h2>
+
+<pre><code class="language-text">apiVersion: batch/v1
+kind: CronJob
+metadata:
+  name: nightly-backup
+spec:
+  schedule: "0 2 * * *"  # Cron syntax: minute hour day month weekday
+  concurrencyPolicy: Forbid  # Allow | Forbid | Replace
+  successfulJobsHistoryLimit: 3
+  failedJobsHistoryLimit: 1
+  jobTemplate:
+    spec:
+      template:
+        spec:
+          restartPolicy: OnFailure
+          containers:
+          - name: backup
+            image: backup-tool:1.0
+            command: ['./backup.sh']</code></pre>
+
+<table>
+<thead><tr><th>concurrencyPolicy</th><th>Hành vi</th></tr></thead>
+<tbody>
+<tr><td><strong>Allow</strong></td><td>Cho phép Jobs chạy concurrent (default)</td></tr>
+<tr><td><strong>Forbid</strong></td><td>Skip new Job nếu previous chưa xong</td></tr>
+<tr><td><strong>Replace</strong></td><td>Cancel previous Job, start new one</td></tr>
+</tbody>
+</table>
+
+<h2 id="resources">3. Resource Requests & Limits</h2>
+
+<pre><code class="language-text">spec:
+  containers:
+  - name: app
+    image: myapp
+    resources:
+      requests:
+        cpu: "250m"      # 0.25 CPU core (minimum guaranteed)
+        memory: "128Mi"  # 128 MiB minimum
+      limits:
+        cpu: "500m"      # Max 0.5 CPU core
+        memory: "256Mi"  # Max 256 MiB (OOM if exceeded)</code></pre>
+
+<pre><code class="language-text">QoS Classes (dựa trên requests/limits):
+
+Guaranteed:  requests == limits (both CPU and memory)
+             → Last to be evicted under pressure
+
+Burstable:   requests < limits (or only one set)
+             → Middle priority for eviction
+
+BestEffort:  NO requests, NO limits
+             → First to be evicted under pressure</code></pre>
+
+<blockquote><p><strong>Exam tip:</strong> Để Pod có QoS class <strong>Guaranteed</strong>: phải set cả <code>cpu</code> và <code>memory</code> trong cả <code>requests</code> và <code>limits</code>, và chúng phải bằng nhau. Mỗi container trong Pod đều phải thỏa mãn điều kiện này.</p></blockquote>
+
+<h2 id="limitrange">4. LimitRange & ResourceQuota</h2>
+
+<table>
+<thead><tr><th>Object</th><th>Scope</th><th>Mục đích</th></tr></thead>
+<tbody>
+<tr><td><strong>LimitRange</strong></td><td>Namespace</td><td>Set default requests/limits cho Pods/Containers trong namespace</td></tr>
+<tr><td><strong>ResourceQuota</strong></td><td>Namespace</td><td>Giới hạn tổng resources namespace được dùng</td></tr>
+</tbody>
+</table>
+
+<pre><code class="language-text">ResourceQuota example:
+apiVersion: v1
+kind: ResourceQuota
+metadata:
+  name: dev-quota
+  namespace: development
+spec:
+  hard:
+    requests.cpu: "4"
+    requests.memory: "8Gi"
+    limits.cpu: "8"
+    limits.memory: "16Gi"
+    pods: "20"</code></pre>
+
+<h2 id="cheatsheet">5. Cheat Sheet</h2>
+
+<table>
+<thead><tr><th>Câu hỏi exam</th><th>Đáp án</th></tr></thead>
+<tbody>
+<tr><td>Job cần restartPolicy gì?</td><td><code>Never</code> hoặc <code>OnFailure</code></td></tr>
+<tr><td>CronJob mỗi 5 phút?</td><td><code>*/5 * * * *</code></td></tr>
+<tr><td>Container bị OOM Kill do gì?</td><td>Vượt <code>limits.memory</code></td></tr>
+<tr><td>QoS Guaranteed cần gì?</td><td>requests == limits (cả CPU và Memory)</td></tr>
+<tr><td>Giới hạn resources của namespace?</td><td><strong>ResourceQuota</strong></td></tr>
+</tbody>
+</table>
+
+<h2 id="practice">6. Practice Questions</h2>
+
+<p><strong>Q1:</strong> A Job is configured with completions: 5 and parallelism: 2. How does it execute?</p>
+<ul>
+<li>A) Creates 5 Pods simultaneously until all complete</li>
+<li>B) Runs 2 Pods at a time, creating new ones as old ones complete, until 5 total completions ✓</li>
+<li>C) Runs 5 Pods sequentially one by one</li>
+<li>D) Creates 2 Pods, each completing 2.5 times</li>
+</ul>
+<p><em>Explanation: completions=5 means 5 PODs must exit successfully. parallelism=2 means at most 2 run at once. As each Pod completes, a new one starts until completion count is reached. Total Pods created could be more if some fail.</em></p>
+
+<p><strong>Q2:</strong> A Pod has no resource requests or limits set. What QoS class is it assigned and how does this affect eviction?</p>
+<ul>
+<li>A) Guaranteed — it will be last to be evicted</li>
+<li>B) Burstable — it has medium eviction priority</li>
+<li>C) BestEffort — it will be first to be evicted under resource pressure ✓</li>
+<li>D) NoQoS — it has no eviction priority</li>
+</ul>
+<p><em>Explanation: Pods with no resource requests or limits get BestEffort QoS class. When nodes face resource pressure, Kubernetes evicts BestEffort Pods first to free resources for higher-priority workloads.</em></p>
+
+<p><strong>Q3:</strong> A CronJob is scheduled every hour. A previous job is still running when the next scheduled time arrives. With concurrencyPolicy: Forbid, what happens?</p>
+<ul>
+<li>A) The running job is cancelled; the new one starts</li>
+<li>B) Both jobs run concurrently</li>
+<li>C) The new job is skipped; the running job continues ✓</li>
+<li>D) The CronJob is suspended until the running job completes</li>
+</ul>
+<p><em>Explanation: Forbid policy prevents a new job from starting if the previous job is still running. The scheduled run is skipped. Use Allow to permit concurrent runs or Replace to cancel the old and start the new one.</em></p>