Learnings from the field – Running Fluent Bit on Azure Kubernetes Service – Part 1
Daniel's Tech Blog
by danielstechblog
2w ago
This is the first part of a three-part series about “Learnings from the field – Running Fluent Bit on Azure Kubernetes Service”. Logging is one of the central aspects when operating Kubernetes. The easiest way to get started with it is by using the solution your cloud provider provides. On Azure, this is Azure Monitor Container Insights that can also be used on Google Kubernetes Engine and Amazon Elastic Kubernetes Service via Azure Arc. When you look for a platform-agnostic approach that is also highly customizable, you probably end up with Fluent Bit. Besides running Fluent Bit on Kubernetes ..read more
Visit website
Azure Kubernetes Service – Using Kubernetes credential plugin kubelogin with Terraform
Daniel's Tech Blog
by danielstechblog
1M ago
In today’s blog post we have a look at the Kubernetes credential plugin kubelogin for Azure Kubernetes Service and how to use it with Terraform. -> https://github.com/Azure/kubelogin -> https://kubernetes.io/docs/reference/access-authn-authz/authentication/#client-go-credential-plugins The Azure Kubernetes Service cluster I am using for demonstration is an AKS-managed Azure Active Directory one with local accounts disabled. Disabling the local accounts turns off the admin credential endpoint and requires using an Azure Active Directory user or service principal for authentication and acc ..read more
Visit website
Azure Kubernetes Service news from KubeCon North America 2022
Daniel's Tech Blog
by danielstechblog
3M ago
Last week the KubeCon / CloudNativeCon North America took place in Detroit with a lot of news regarding Azure Kubernetes Service. Let us now walk through what has been announced for AKS. Microsoft further enhances the different CNI options that are available for Azure Kubernetes Service. Besides the standard of Azure CNI with Azure Network Policy Manager or Calico for Kubernetes network policies, the bring your own CNI option was introduced recently. At KubeCon North America Microsoft announced the preview of Azure CNI powered by Cilium as the next choice you have at your hand. -> https://a ..read more
Visit website
Migrate an Azure storage account from LRS to ZRS replication without downtime
Daniel's Tech Blog
by danielstechblog
5M ago
This is a rather short blog post about a hidden gem in the Azure documentation. You have two options today migrating an existing Azure storage account from the LRS (locally redundant storage) to ZRS (zone-redundant storage) replication option. A manual migration or live migration. Choosing the manual migration option requires a new target storage account with ZRS and might imply an application downtime during the migration. When you choose the live migration option, Microsoft executes the migration for you without an application downtime and a new target storage account. Your existing storage ..read more
Visit website
How to change the node size of the default node pool in AKS without downtime?
Daniel's Tech Blog
by danielstechblog
5M ago
Currently, as of writing this blog post, Azure Kubernetes Service does not support changing the node size of the default node pool or additional node pools without recreating the whole AKS cluster or the additional node pool. Having all the configuration in infrastructure as code whether it is Bicep or Terraform seems to be a dead end for this simple operation. If we change the node size in our IaC definition for the default node pool, the AKS cluster gets deleted first and then created again in the case of Terraform or just breaks the deployment in the case of Bicep. This is not an option for ..read more
Visit website
Preventing SNAT port exhaustion on Azure Kubernetes Service with Virtual Network NAT
Daniel's Tech Blog
by danielstechblog
6M ago
Last year I have written a blog post about detecting SNAT port exhaustion on Azure Kubernetes Service. -> https://www.danielstechblog.io/detecting-snat-port-exhaustion-on-azure-kubernetes-service/ Today we dive into the topic of how to prevent SNAT port exhaustion on Azure Kubernetes Service with Virtual Network NAT. Since this year the managed NAT gateway option for Azure Kubernetes Service is generally available and can be set during the cluster creation. -> https://docs.microsoft.com/en-us/azure/aks/nat-gateway?WT.mc_id=AZ-MVP-5000119 Unfortunately, as of writing this blog post, you c ..read more
Visit website
Another year as a Microsoft MVP for Azure
Daniel's Tech Blog
by danielstechblog
7M ago
Yesterday, I received a long-awaited email notifying me that I have been awarded for the sixth time as a Microsoft MVP. This is now my third award for the category Microsoft Azure. Happy to be part of this community for another year and looking forward to it. Der Beitrag Another year as a Microsoft MVP for Azure erschien zuerst auf Daniel's Tech Blog ..read more
Visit website
Conditions with for_each in Terraform
Daniel's Tech Blog
by danielstechblog
8M ago
Conditions in Terraform are well-known and can provide in combination with the for_each argument a lot of flexibility. In today’s blog post I walk you through an example storage module I have created to showcase the topic. The module consists of three resources a resource group, a lock, and a storage account. As I am using conditions with for_each for the resource group and the lock I can decide whether my storage account gets created in a new resource group and the resource group is delete protected by the lock or not. resource "azurerm_resource_group" "rg" { for_each = var.resource_group ..read more
Visit website
Kubernetes CPU requests demystified
Daniel's Tech Blog
by danielstechblog
9M ago
Two weeks back I participated in an incredibly good and vivid discussion on Twitter about Kubernetes CPU requests and limits. During the discussion I learned a lot and were proven that my knowledge and statement are not correct. I had made the following statement: “CPU requests are used for scheduling but are not guaranteed at runtime.” The first part about the scheduling is correct and the second part is simply wrong. Reflecting on the discussion, I cannot tell you how it came to this understanding. Four years ago, I read the de-facto standard book about Kubernetes “Kubernetes: Up and Running ..read more
Visit website
Using Rancher Desktop as Docker Desktop replacement on macOS
Daniel's Tech Blog
by danielstechblog
11M ago
Last year I wrote a blog post about running Podman on macOS with Multipass as a Docker Desktop replacement. -> https://www.danielstechblog.io/running-podman-on-macos-with-multipass/ Back at that time I had looked also into Podman Machine and Rancher Desktop. Podman Machine was out very quickly without support for host volume mounts. Rancher Desktop instead was promising but the host volume mount performance was not that what I am used to, and you could not disable the Kubernetes component. Since Rancher Desktop version 1.1.0, which has been released a couple of days ago, you can finally dis ..read more
Visit website

Follow Daniel's Tech Blog on Feedspot

Continue with Google
OR