In this post, we explore how to use AWS Identity and Access Management (IAM) Roles Anywhere, supported by HashiCorp Vault PKI, to facilitate joining EKS Hybrid Nodes to an Amazon EKS Cluster. This solution enables businesses to flexibly make use of compute resources outside of AWS by extending an Amazon Elastic Kubernetes Service (Amazon EKS) data plane beyond the AWS Cloud boundary, addressing use cases focused on data sovereignty, low latency communication, and regulatory compliance.| Containers
Andrei Kvapil, founder of Ænix and core developer of Cozystack, joins Ryan to dive into what it takes to build a cloud from scratch, the intricacies of Kubernetes and virtualization, and how open-source has made digital sovereignty possible.| Stack Overflow Blog
Like Flatcar, Talos is minimal by design; unlike Flatcar, it gets that way by adding just what it needs to a stripped down Linux kernel that only runs cryptographically signed modules. It has only a handful of binaries, including its own process manager...| The Stack
The cloud-native landscape is at an inflection point. While Kubernetes and microservices once dominated the conversation, a growing chorus of organizations is sounding the alarm: complexity doesn’t scale. As experienced system administrators, we’ve watched clients wrestle with Kubernetes’ operational overhead, skyrocketing costs, and the “microservices hangover.” Now, a pragmatic shift is underway, toward solutions that prioritize simplicity,...| Pieter Bakker
Apache Spark and MinIO are powerful tools for data lakes and analytics. Learn how to run them in Kubernetes.| MinIO Blog
SUMMARY: This guide explains how to install the AppDynamics Cluster Agent on a Google Kubernetes Engine (GKE) cluster using a Helm Chart. This approach enables automatic application instrumentation, thereby eliminating the need for manual agent installation, configuration, and complex upgrades across individual workloads. Adopting this streamlined, scalable approach is ideal for dynamic cloud-native environments like […] The post Installing Splunk AppDynamics Cluster Agent on GKE Using Helm...| XTIVIA
Automate SSL/TLS certificate renewal for GKE workloads. Secure communication in cloud-native environments. Learn now.| XTIVIA
In my previous article, I shared with you the steps I took, to further automate setting up my demo environment, and implementing a Service with service type LoadBalancer. Some years ago, I also wrote articles about the Quarkus Kubernetes Extension. This time I wanted to have a look at some others aspects of the Quarkus Kubernetes Extension, that I came across. Part of the “Developer Joy” is the so called “Remote Development”. Run dev mode remotely with changes to local files immediate...| Conclusion AMIS Technology Blog
Learn how to design and roll out Cilium Network Policies in Kubernetes with this hands-on tutorial. See YAML examples, Hubble flow outputs, deny rules, and troubleshooting tips to secure workloads step by step.| vEducate.co.uk
Discover how StorPool empowers enterprises with data storage for Oracle Virtualization designed for mission-critical workloads.| StorPool
Struggling to set up a Kubernetes cluster? Here’s a simple way to deploy one using kubeadm with Calico networking and Longhorn storage.| SysOpsTechnix
This is the third post about running Jepsen against CloudNativePG. Earlier posts: First: shout out to whoever first came up with Oracle Data Guard Protection Modes. Designing it to be explained as a choice between performance, availability and protection was a great idea. Yesterday’s blog post described how the core of all data safety is copies of … Continue reading →| Ardent Performance Computing
Many experienced DBAs joke that you can boil down the entire job to a single rule of thumb: Don’t lose your data. It’s simple, memorable, and absolutely true – albeit a little…| Ardent Performance Computing
You are in the process of putting together your application. While designing your authorization solution, you realize you will need to send emails to potential clients.Using a third-party service (like SendGrid or Mailgun) to cover your needs for now looks pretty attractive. After all, you don’t have any users yet, they offer free tiers, and […] The post Postfix on Kubernetes: A Step-by-Step Email Guide appeared first on RisingStack Engineering.| RisingStack Engineering
Today I learned about Kubernetes environment variable injection, kubectl tree plugin for object hierarchy visualization, enhanced Git CLI tools, SSH host key management, and online typing practice.| Stonecharioteer on Tech
Kubernetes is powerful but not always developer-friendly. Saiyam Pathak explains how vCluster simplifies experience with smart defaults and full customization. The post Developer Experience at the Core: How vCluster Labs Designed vCluster for Simplicity appeared first on TFiR.| TFiR
Julian Fischer, CEO of anynines, discusses how Klutch’s open source strategy is driving new partnerships and simplifying data service automation across Kubernetes. The post How Klutch Is Building Open Source Momentum — Julian Fischer, anynines appeared first on TFiR.| TFiR
Podman Desktop 1.22 has been released!| podman-desktop.io
Los contenedores Linux y Kubernetes están poniendo todos los esfuerzos en crear servicios más nuevos y ágiles a medida que la nube se convierte en una...| Revista Byte TI
As you’ve probably heard, I joined GitLab on September 1st as a Senior Solution Architect. I’m very happy about this move and looking forward to working with our partners and customers. As| viktorious.nl - All things cloud-native
Amazon Elastic Kubernetes Service (EKS) Security Groups for Pods is a powerful feature that enables fine-grained network security controls at the pod level. This guide walks you through implementing this feature, from initial cluster setup to testing...| freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
This post will explore the new support in Azure Application Gateway for Containers (AGC) for the overlay network option in Azure Kubernetes Service (AKS) as documented in https://aka.ms/agc/overlay, as well as whether you can see traffic between AGC and AKS with VNet Flow Logs. This blog is part of a series: What am I talking … Continue reading Application Gateway for Containers: a not-so-gentle intro (4)| Cloudtrooper
Azure Kubernetes Fleet Manager is a very interesting solution that allows you to deploy code to multiple clusters at the same time. I am not going to stir up the debate here of whether this approac…| Cloudtrooper
Tracing the path between process OOM and network outage| Jack's home on the web
Cтворення Victoria Metrics Kubernetes monitoring stack, налаштування експортерів, VMAgent, Grafana, Loki та алертів з VMAlert| RTFM: Linux, DevOps та системне адміністрування | De...
Налаштування доступу по SSH до EC2, створених Karpenter в AWS EKS з AWS Session Manager, AWS EC2 Instance Connect та через EC2 User Data вручну та з Terraform| RTFM: Linux, DevOps та системне адміністрування | De...
Hi!| Teknews Blog
After I created a 4 node k0s cluster, I noticed that some workloads were already provisioned. I believe the intention is to provide a simplified cluster deployment process that is already bootstrapped and ready for receiving its first user workload. Although these pods come with sensible defaults, they can be customized via a config file. I wanted to dive into what these pods are, and what their roles is within the k0s cluster.| Technical Scratchpad
A personal blog about computer science and theoretical physics.| beuke.org
Randy Bias, VP of Strategy & Technology at Mirantis, explains why MCP must evolve beyond tooling experiments into secure, governable control planes before it can support mission-critical enterprise AI.| TFiR
Дебажимо одну проблему з використанням пам’яті в Kubernetes Pods, і вирішили подивитись на пам’ять і кількість процесів на нодах. Сама проблема полягає в тому, що зазвичай Kubernetes Pod з Livekit споживає близько 2 гігабайт пам’яті, але іноді бувають спайки до 10-11 гіг, через що под вбиває...| RTFM: Linux, DevOps та системне адміністрування
This is a follow‑up to the last article: Run Jepsen against CloudNativePG to see sync replication prevent data loss. In that post, we set up a Jepsen lab to make data loss visible when synchronous …| Ardent Performance Computing
Modern cloud-native architectures are composed of multiple microservices running across dynamic environments. Effectively diagnosing performance issues, bottlenecks, or failures requires comprehensive observability. For this, many organizations look to OpenTelemetry, which provides a standardized approach to capturing and analyzing telemetry data. Fir is Heroku’s next generation cloud platform , designed to offer more modern cloud-native capabilities with flexibility and scalability. It’s...| Heroku
In a short amount of time, AI has transformed life, work, and how we think about the future. These rapid advancements have left many of us wondering how to integrate AI into our existing workflows and what it means for the future of app development. The apps we're building today are more than lines of code; they're becoming dynamic, intelligent, and increasingly autonomous. To navigate this new landscape, we need to bring our current skills and technology into this AI-driven future. As part o...| Heroku
For years, Heroku has been empowering developers to deploy and scale their applications with ease. Now, we're thrilled to introduce the general availability of the next generation of the Heroku platform, codenamed Fir , launching later this month April 2025. Built on open source standards and cloud-native technologies, Fir accelerates your development like never before. A change of this scale is not something that we take lightly. Replatforming decisions can represent a massive shift in user ...| Heroku
Over the past year, Heroku has been on a journey of reflection as we rebase the platform to address the changing needs of app teams toward the future without disrupting your business. In the Heroku way, we want to be thoughtful about your experience as we evolve. When we started Heroku, it was the early days of cloud computing, before Docker and Kubernetes were household names in IT. We launched Heroku (and the platform-as-a-service category) to help teams get to the cloud easily with an eleg...| Heroku
Cloud platforms have come a long way since Heroku first set out to empower developers. Today’s cloud native development demands even greater flexibility, openness, and scalability. A fun fact about Heroku is that we use trees to denote the generation of the platform technology stack (aka version). In the tradition of Aspen, Bamboo, and Cedar, we are introducing Fir, the latest Heroku technology stack built on open source standards and cloud native technologies. When we launched Cedar, we in...| Heroku
Heroku is joining the CNCF at the platinum level , upgrading the long-held CNCF Salesforce membership. This marks my third time serving on the CNCF board for different companies, and I’m excited to participate again. Joining the CNCF at the Platinum level signifies a major commitment, reflecting Heroku’s dedication to the evolving landscape. My three board stints aligns with significant shifts in the cloud-native landscape. Two are behind us, one is happening now, and it’s the current o...| Heroku
Packer plugin for KubeVirt that builds VM golden images inside Kubernetes.| KubeVirt.io
A guide on how to run QuestDB’s Java library in hardened environments where /tmp is mounted with noexec, by pre-bundling native libraries and using the questdb.libs.dir system property.| QuestDB Blog
Tooling for maintenance of YAML files| Field Notes
Engineers like to play and learn locally. It does not matter which tool is under investigation: a high-end storage solution, a workflow orchestration engine, or the latest thing in distributed computing. The best way to learn a new technology is to find a way to cram it all on a| MinIO Blog
Ever wished you could monitor your AWS load balancer logs in real-time? AWS ELB access logs are packed with security gold, but they’re usually just sitting in S3 as static files. Let’s …| Yuki Nakamura's Blog
Whilst OpenFaaS comes with predictable, flat-rate pricing, AWS is charged based upon consumption. We’ll explore how to save money.| OpenFaaS - Serverless Functions Made Simple
Learn how to resolve the “Kubernetes configuration file is group-readable or world-readable” warning. This guide explains the cause of the issue and shows the exact steps to secure your kubeconfig file.| vEducate.co.uk
You'll need to switch off ASAP.| matduggan.com
I’ve been researching all summer, both in home automation with Python, zero trust architecture, distributed software and big data with Scala/Spark/Java, a cybersecurity project in which I dis…| Aironman techblog
Security is a very hard thing to define. Something that checks all the boxes for “secure” may be vulnerable to known issues, and something that doesn’t pass scans may actually be secure from malicious actors. Talos Linux does a lot of things differently for two reasons: to reduce maintenance and increase security. Unfortunately, doing things […] The post Which Linux distro is the most secure for Kubernetes? appeared first on Sidero Labs.| Sidero Labs
Once limited to wind farms, hospitals, or tactical deployments, edge is increasingly common across industries. Driven by the growth and demands of AI, sustainability goals, and rising cloud costs, edge adoption is exploding, with full-scale Kubernetes deployments at the edge having grown 400%. Organizations moving to the edge can: Reduce latency and faster response times […] The post Why edge adoption is surging, and how to get it right appeared first on Sidero Labs.| Sidero Labs
For many teams, the first line of defense against rising infrastructure costs is automation, which reduces the time required to perform manual tasks and incrementally builds a more efficient Kubernetes infrastructure. Teams may also look to new cloud providers or tools to cut costs, but each additional layer adds complexity, leading to more work and […]| Sidero Labs
Just got the awaited email from Linux Foundation this morning saying that I passed the CKAD (Certified Kubernetes Application Developer) exam that I took on Sunday. I’m so glad that I passed so that I don’t have to retake exam (even though it’s free). ? The post CKAD Exam Experience and Tips first appeared on djitz.com.| djitz.com
Last night, my friend asked me what are the reasons behind my decision to take Certified Kubernetes Application Developer (CKAD) certification. I already responded to him, but I thought it would be good to share the answers with other people too. So here are my The post Why I’m Going to Take CKAD Certification? first appeared on djitz.com.| djitz.com
Are you in the Pacific Northwest? This Thursday Sep 4 at 6pm we have special guest Nikolay Samokhvalov visiting Seattle and speaking at the Seattle Postgres User Group! Nik is the founder of Postgr…| Ardent Performance Computing
Let's run Kafka in Kubernetes using Minikube and then connect to a topic using kcat running on our host machine.| Strange Leaflet
I’ve just been in Sydney for a couple of days for CloudCon 2025. I think depending on how you count this is my third one of these events — the event has changed names at least twice, so its actually a little hard to work out the lineage of the event. This year’s conference was […]| Made by Mikal
After 8 years away from WordPress, returning to WordCamp US revealed a stale hosting ecosystem. Here’s why I built Displace CLI to bring modern Kubernetes infrastructure to WordPress develope…| Eric Mann's Blog
En multipliant les services exposés sur la toile, il est primordial de les protéger à minima. Déployant mes services dans k3s (article disponible ici), je vous propose de mettre l'outil Anubis dans la boucle. Récemment, j'ai écrit| J.HOMMET.NET
Pour permettre l'accès depuis l'extérieur à vos services dans Kubernetes, plusieurs méthodes existent avec leurs avantages et inconvénients. Que ce soit un "NodePort", un "Ingress" ou encore un "Port Forward", vous avez le choix selon vos besoins et contraintes. Dans cet article, nous allons nous focaliser sur la gateway-api. J'ai| J.HOMMET.NET
Prometheus Kubernetes is a free server that uses a pull-based system to send HTTP requests, creates scrapes. Saves responses in a repository on a server.| CyberPanel
Hi!| Teknews Blog
In 2021, concerns were about Kubernetes and sysadmin basics. By 2025, DevOps is characterized by AI over-reliance and waning technical depth. Kalvad prioritizes foundational knowledge over button-pushing and AI-generated solutions, critiquing current trends humorously.| Kalvad
Managing Kubernetes configurations with Helmfile| Field Notes
I can spin up new VMs on the server in my living room and install software on it. But it's more complex than just installing the software on a baremetal server. Fortunately for me, cloud technologies such as opentofu, cloud-init, and ansible can let me spin up and configure local VMs in seconds.| ergaster.org
Kubernetes v1.34 bringt neue stabile, Beta- und Alpha-Funktionen mit. Quelle: Kubernetes| Linux-Magazin
Kubernetes is one of the most complex architectures and solutions in modern infrastructure. When it comes to K8s, we need to manage control planes, worker nodes, certificates, upgrades, and lifecycle management. This is where Talos Linux and Omni come in. Talos Linux is gaining traction as a favorite for those that want a secure and …| Virtualization Howto
New Zealand startup Novodisq demonstrated ultra high-capacity SSD storage at the FMS 2025 summit, showing an 11.5 PB 2RU blade server.| Blocks and Files
Learn how to monitor Kubernetes in 2025 with key metrics, top tools, and AI-driven strategies for performance, reliability, and cost control.| Logz.io
A small go-through to explore Kubernetes, Helm and Terraform| iO tech_hub
The VMware Cloud Foundation platform 9.0 is now generally available, and comes with a number of tools to speed and simplify AI workloads.| The New Stack
ITGix is now an official Amazon EKS Delivery Partner, offering validated expertise in deploying, managing, and scaling Kubernetes on AWS.| ITGix
Pour faire suite à l'installation d'une instance Kubernetes avec K3S, il est maintenant l'heure de préparer l'observabilité dans l'ensemble du cluster. Dans cet article, j'utiliserai Kubernetes v1.33, VictoriaMetrics v1.124, et Helm 3+. VictoriaMetrics| J.HOMMET.NET
Pour optimiser l’utilisation d’un cluster Kubernetes avec des services nécessitant du stockage, une préparation adéquate est essentielle. Pré-requis avant installation Kubernetes 1.28+ ; Au moins 2 Go de mémoire vive ; Paquet open-iscsi installé et| J.HOMMET.NET
Kube dns -> link-local -> tcpdump -> sudo| Jack's home on the web
This blog post was authored by Robert Northard, Principal Container Specialist SA, Eric Chapman, Senior Product Manager EKS, and Elamaran Shanmugam, Senior Specialist Partner SA. Introduction Amazon Elastic Kubernetes Service (Amazon EKS) Hybrid Nodes transform how you run generative AI inference workloads across cloud and on-premises environments. Extending your EKS cluster to on-premises infrastructure allows you […]| Amazon Web Services
Hi!| Teknews Blog
Hello!| Teknews Blog
Hi!| Teknews Blog
Hi!| Teknews Blog
Hi there!| Teknews Blog
This post is a follow up to my previous post that explains how to set up a Single Node k0s in a LXC Ubuntu Container. I strongly recommend reading/referencing that post to understand the reason beh…| Technical Scratchpad
Since this summer, it’s possible to create encrypted OVHcloud Block Storage with OMK (OVHcloud managed key) in RBX, SBG, Paris & BHS regions. More regions will come in the coming months 💪. And the good news is that you can use encrypted Block Storage using Persistent Volumes in your OVHcloud Managed Kubernetes Service (MKS) clusters […]| OVHcloud Blog
Many teams adopt Argo CD quickly but later face slowdowns and developer frustration. Learn 30 common GitOps antipatterns to avoid and keep deployments efficient.| Codefresh
In my previous article, I shared with you the steps I took, to further automate setting up my demo environment, and implementing a Service of service type NodePort. Some years ago, I also wrote articles about the Quarkus Kubernetes Extension. In this article, you can read more about the steps I took to further automate setting up my demo environment, and implementing a Service with service type LoadBalancer. For the demo environment to start, from the directory named env on my Windows laptop,...| AMIS Technology Blog
Prepare for the upcoming Kubernetes release by learning about the 13 alpha features it brings. They cover various areas of the project, from asynchronous API calls to the new KYAML format.| Palark | Blog
Your complete guide to self-hosting applications Kubernetes on Raspberry Pi including: hardware, HA, Ingress, storage and Operating Systems.| Alex Ellis' Blog
What is the best live demo you've ever seen? Do you still remember it now? Learn how the best do it and how to get an IP address that will travel with you.| Alex Ellis' Blog
Процес апгрейду модуля AWS EKS Terraform module з v20.x на v21.x - основні зміни і можливі проблеми| RTFM: Linux, DevOps та системне адміністрування | De...
Just a short post, because I thought this was pretty remarkable. Below, I have screenshots showing the CPU utilization of two AWS instances in us-west-2 which are running an identical workload. The…| Ardent Performance Computing
RabbitMQ 4.1 includes a completely redesigned peer discovery plugin for Kubernetes.| RabbitMQ Blog
Comment créer des snapshots de volumes persistants dans Kubernetes avec Rook-Ceph.| Une tasse de café
SELinux will try to tag all files in the filesystem, causing the pod start to be delayed until all files are tagged, often when the PVC has a bigger amount of fies this will cause a timeout and the minio container will not even start.| MinIO Blog
AWS EKS Terraform module version v21.0.0 added support for the AWS Provider Version 6. Documentation – here>>>. The main changes in the AWS EKS module are the replacement of IRSA with EKS Pod Identity for the Karpenter sub-module: Native support for IAM roles for service accounts (IRSA) has been removed; EKS Pod Identity is now… Read More » The post Terraform: AWS EKS Terraform module update from version 20.x to version 21. first appeared on RTFM: Linux, DevOps, and system administration.| RTFM: Linux, DevOps, and system administration
If you have heard anything about service meshes, it is that they work using the sidecar pattern: a proxy server is deployed alongside your application code. The sidecar pattern is just that: a pattern. Up until this point, there has been no formal support for sidecar containers in Kubernetes at all. This has caused a number of problems: what if you have a job that terminates by design, but a sidecar container that doesn’t? This exact use case is the most popular ever on the Kubernetes issue...| Istio Blog
Queue Based Scaling is a long awaited feature that matches queued requests to the exact amount of replicas almost instantly.| OpenFaaS - Serverless Functions Made Simple
Does it take 1-2 minutes for new nodes to get added to your cluster? Add some headroom for an instant Pod start.| OpenFaaS - Serverless Functions Made Simple
Learn what K8sGPT offers and how it helps Kubernetes operators become more efficient. This article challenges various GenAI models with several issues and covers running local LLMs.| blog.palark.com
In our big guide on how to use ApplicationSets for Argo CD applications, we explained the best practice of having a 3-level structure for all manifests with a clear distinction between Argo CD Application files and Kubernetes resource files. In that article, we also outlined several anti-patterns that we have seen in the wild, meaning […]| Codefresh
"Kubernetes, also known as K8s, is an open source system for automating deployment, scaling, and management of containerized applications."| Agile & Coding