Published inSystem WeaknessWaiting for hooks in ArgoCDArgoCD is a fantastic tool to deploy applications via GitOps. You can defined all your kubernetes manifests in git and have ArgoCD watch…Feb 14Feb 14
Hunting for and validating SSL certs with our first Argo Workflow.For years I have been managing kubernetes clusters. Running k8s for a long period of time, certificates are always an interesting…Jan 21Jan 21
Published inDevOps.devDumb little things you can do to secure k8s, container signing with kyverno and cosign.As the years go by, more and more things are added to the kubernetes ecosystem. A lot of things have changed from the good old days of…Nov 14, 2023Nov 14, 2023
Create a reasonably scalable k8s cluster with prometheus, istio, hpa, keda and karpenter.Since I was laid off at Gemini, I am bored and thought a post should be in order to explain how to create a kubernetes cluster that can…Sep 9, 20222Sep 9, 20222
Running a web app with kubernetes / istio / cert manager and vault.One of my favorite hashicorp products is vault. Vault is a great way to store secrets, certificates, manage policies, encrypt data and lots…Jul 29, 20221Jul 29, 20221
Fighting against the log4j vulnerability with istio.First things first, I would like to start off by saying you should not run the code below in production, there are a million ways to get…Jan 3, 2022Jan 3, 2022
Multi cluster setup with istioAs everyone knows istio is a great service mesh. The power that it adds to kubernetes makes it where I would never even consider running…Oct 18, 2021Oct 18, 2021
Connecting kubernetes clusters together with istio.Update ( 11/1/21 ): Istio’s multicluster mode is a better way to set this up. I created a blog about it here.Jul 1, 2021Jul 1, 2021
Stop whitelisting IPs, use mTLS instead with the istio ingress controller.In my last blog, I talked about a really exciting feature of istio added a couple versions back where you can write your own code as the…Mar 11, 2021Mar 11, 2021
