There are multiple ways to secure your deployed Kubernetes cluster. In this article, the five, most effective steps and ways to achieve your security goals, then protect your cluster from hiking are summarized. Secure cluster access through firewall Control the Kubernetes cluster master management node access through reverse proxy with IPSec encrypted communication between theContinue reading “Secure Kubernetes Cloud in Six Ways”
Tag Archives: Kubernetes
SaaS Upgrade Flow in Cloud Native Environment
With the proliferation of cloud computing environments, new software development and deployment methods are developing rapidly. In the development side, CI/CD, DevOps, SecOps and so on, make the software development, deployment cycle fully automatic: From planning, coding, building, testing to deployment using IaC ( Infrastructure as Code), SaaS(Software as a Service) for containerized cloud functions’Continue reading “SaaS Upgrade Flow in Cloud Native Environment”
Achieve Multiple Network Interfaces inside Kubernetes Pod
By default, Kubernetes use the Calico CNI plugin to allocate network interfaces for the containers within the pod. The result is one network interface within the container. For use cases, such as routing, packet forwarding, content based routing , the container needs more than one interface for its CNF realization. With Multi plugin, this featureContinue reading “Achieve Multiple Network Interfaces inside Kubernetes Pod”
Access K8s API within Container
Modern applications are transformed to microservice based, API driven architecture. When the application is containerized, it needs to access other applications’ published APIs and K8s cluster API for its business logic. In this article, an python application is containerized, its container image is built and pushed into docker register, an kubernetes manifest is created andContinue reading “Access K8s API within Container”
Secure Cloud Infrastructure and Deployed Applications through Multiple Principles
When microservice oriented applications are deployed into Kubernetes orchestrated cloud platform, the security model works well in traditional enterprise application deployment workflow will face a lot of new challenges and needs to be transformed and microservice friendly also. To achieve end to end application level security needs coordination between different components within your cloud cluster:Continue reading “Secure Cloud Infrastructure and Deployed Applications through Multiple Principles”
What,Why and How: Infrastructure Orchestration
In the cloud computing field, there are already a lot of open sourced or private automation tools and infrastructure solutions such as Ansible, Chef, Puppet, OpenStack, Kubernetes. There are many on-premise or public cloud providers available for your infrastructure and applications. People asked why we need more orchestration solutions ? What is Infrastructure Orchestructure ?Continue reading “What,Why and How: Infrastructure Orchestration”
Achieve CNCF WorkFlow using Azure Public Cloud
CNCF recommends four steps to achieve cloud native for your application: Containerization of your application through Docker and push its image into registry Setup CI/CD pipeline for DevOps automation Using orchestrator such as Kubernetes to manage the full application life cycle Add observability and analysis capacity to your deployed application Add building block such asContinue reading “Achieve CNCF WorkFlow using Azure Public Cloud”
Video:Utilize Multiple Technologies for Cloud Infrastructure
Multiple cloud Virtual Infrastructure Manager (VIM) exists for cloud infrastructure, such as OpenStack, Kubernetes, Kubeless, CloudStack to name a few. How to combine and utilize the best pieces from different solutions for the sake of faster cloud deployment, easy to manage, update and upgrade ? What’s the role of service mesh, API gateway will playContinue reading “Video:Utilize Multiple Technologies for Cloud Infrastructure”
Two Key Takeaways from F5 Agility Conference
Digital transform will change the way of code development, service delivery, daily working style and more. How do we adapt to this change? We need to adopt a batch of new technologies, culture changes and promote new best practices. From a technology point of view, a shift from monolithic way of development to cloud native,Continue reading “Two Key Takeaways from F5 Agility Conference”
Four Steps to achieve the ultimate CI/CD goals with Kubernetes
Zero downtime, Zero traffic performance penalty and metric impact are the ultimate goals of enterprise level CI/CD (Continuous Integration/Continue Delivering) workflow in cloud native environment. This can not be achieved by a single piece of tools. We need multiple solutions working together. Kubernetes software release rollup and rollback with canary release support itself is notContinue reading “Four Steps to achieve the ultimate CI/CD goals with Kubernetes”
Knowledge, Experience and Learning 