A Self-Hosted Global Load Balancer for OpenShift

A Self-Hosted Global Load Balancer for OpenShift

Introduction This is the fifth installment on a series of blog posts related to deploying OpenShift in multi-cluster configurations. In the first two posts (part 1 and part 2), we explored how to create a network tunnel between multiple clusters. In the third post, it was demonstrated how to deploy Istio multicluster across multiple clusters […]

Read More...

Considerations on OpenShift PKIs and Certificates

Considerations on OpenShift PKIs and Certificates

OpenShift features several Public Key Infrastructures (PKIs) that manage certificates for specific purposes. To help deploy OpenShift more securely, it’s necessary to know what each of these infrastructures does and how to best configure them. Note that the information discussed in this article refers to OpenShift 3.x and it is subject to change in the […]

Read More...

Combining Federation V2 and Istio Multicluster

Combining Federation V2 and Istio Multicluster

In a previous post, we saw how to leverage Istio Multicluster to deploy an application (bookinfo) on multiple Red Hat OpenShift clusters and apply mesh policies on all of the deployed services. We also saw that the deployment process was relatively complex. In this post we are going to see how Federation V2 can help […]

Read More...

Controlling Namespace Configurations

In the Kubernetes namespace model, the high-level idea is that a development team is given access to a namespace. Within the confines of that sandbox, they have the freedom to perform any action they desire. There are, however, a set of namespaced objects whose ownership is not so immediately clear. For example, while it’s obvious […]

Read More...

Istio Multicluster on OpenShift

Istio Multicluster on OpenShift

Istio Multicluster is a feature of Istio–the basis of Red Hat OpenShift Service Mesh–that allows for the extension of the service mesh across multiple Kubernetes or Red Hat OpenShift clusters. The primary goal of this feature is to enable control of services deployed across multiple clusters with a single control plane. The main requirement for […]

Read More...