Category: Kubernetes

Tetragon is a flexible Kubernetes-aware security observability and runtime enforcement tool that applies policy and filtering directly with eBPF, allowing for reduced observation overhead, tracking of any process, and real-time enforcement of policies. https://isovalent.com/blog/post/can-i-use-tetragon-without-cilium-yes/

Coroot is an open-source eBPF-based observability tool that turns telemetry data into actionable insights, helping you identify and resolve application issues quickly. You can look into the Coroot at: https://github.com/coroot/coroot

Copy at: https://www.acritelli.com/blog/kubectl-delete-sigkill/ Some colleagues and I were recently implementing a Chaos Monkey style test against a Kubernetes deployment. The goal was to forcibly kill an application to understand how it behaved. Specifically, we were looking to see if the application engaged in some atomic I/O operations that were safe, even if they ungracefully terminated while data…

Read More “[K8s] Signals and the “kubectl delete” command” »

Mình clone bài từ link này: https://www.linkedin.com/pulse/auto-restarts-your-k8s-apps-config-changes-reloader-cuong-nguyen-duc/?utm_source=share&utm_medium=member_android&utm_campaign=share_via Cá nhân mình thì thấy tool này vừa hay và vừa thừaNên thôi cứ lưu lại Keeping your applications up-to-date with the latest configuration changes can be challenging. Reloader, an open-source Kubernetes operator, detects changes to ConfigMaps and Secrets and automatically restarts your deployments to ensure a smooth…

Read More “[K8s] Auto-Restarts your k8s apps on Config Changes with Reloader” »

Bạn có thắc mặc HPA sẽ scale download như thế nào không? Here are some additional details on how the Horizontal Pod Autoscaler (HPA) handles pod terminations when scaling down: So in summary, the HPA adjusts replica counts, the pod controllers gracefully terminate pods to reach desired counts, using configurable delays and grace periods to…

Read More “[HPA] How does HPA scale down Pod on Kubernetes?” »

Nguồn: https://krolcloud.com/blog/anonymous-authentication-in-kubernetes/?fbclid=IwAR1U9U6yzxJoF6tKwUQgkHAyqpB-mL8RMJ_ot8SLaXzseHKPEfZEMfDKHi4 Kubernetes Anonymous Users  Let’s uncover the details of Kubernetes 💥anonymous users and how 💥RBAC tooling works with anonymous access. By default, every request to the Kubernetes API that isn’t otherwise associated with a specific user is treated as coming from an anonymous user. This can be startling at first glance, with some wondering…

Read More “[DevSecOps] Anonymous Authentication in Kubernetes” »

refer to: https://medium.com/@nikhil.nagarajappa/deploying-kong-db-less-and-konga-via-raedy-to-use-yaml-files-38dce989674d What is kong? Kong is a popular open-source API gateway and microservices management layer. It acts as an intermediary between clients and backend services by providing a unified entry point for all API traffic. Kong is designed to handle API traffic at scale and provides features such as load balancing, authentication, rate…

Read More “Deploying Kong DB less and Konga via Ready to Use Yaml files” »

Theo 1 bài viết trên mạng thì chúng ta có nên tin vào kubectl top hôm Và đây là 1 số tổng hợp của mình kubectl top vs top* kubectl top show CPU < 100%* top show load avg cho con node 64% CPU từ lệnh trên (hệ thống 4CPU) Đừng để bị lừa ;)) —Update…

Read More “[Kubernetes] Don’t believe kubectl top” »