NixOS can work as a Kubernetes node OS for specific use cases but requires careful management of immutability.
NixOS can work as a Kubernetes node OS for specific use cases but requires careful management of immutability, hardware diversity, and cluster orchestration.
Start with default-deny ingress and refine policies only where necessary to enforce least privilege without overcomplicating.
Start with default-deny ingress and refine policies only where necessary to enforce least privilege without overcomplicating maintenance.
The External Secrets Operator simplifies secret management but requires careful handling of reconciliation and authentication.
The External Secrets Operator simplifies secret management but requires careful handling of reconciliation and authentication tradeoffs to avoid security and stability issues in production.
Cilium and Istio Ambient Mesh offer different tradeoffs for EKS egress control; choose based on mTLS needs, sidecar overhead.
Cilium and Istio Ambient Mesh offer different tradeoffs for EKS egress control; choose based on mTLS needs, sidecar overhead, and operational maturity.
GPU nodes may appear healthy but fail under load due to hardware, driver, or resource issues; here's how to diagnose and fix them.
GPU nodes may appear healthy but fail under load due to hardware, driver, or resource issues; here’s how to diagnose and fix them.
Preventative maintenance, routine care, and repairs for Kubernetes & OpenShift clusters
I’m a Red Hatter working as a Solutions Architect, formerly a Senior Cloud Success Architect, with a focus on and passion for OpenShift and Ansible. Previous life? Cloud Advanced Technology Lead & Big Data Engineer for Lockheed Martin Space, IT/IS Data Center Manager for Lockheed Martin IS&GS, and Senior Infrastructure Designer/Administrator for the City of Gainesville & City of Alachua.
Learn More
Share this post
Twitter
Google+
Facebook
Reddit
LinkedIn
StumbleUpon
Pinterest
Email