OpenShift Commons Briefing: Introduction to Quay with Joey Schorr (Red Hat)

OpenShift Commons Briefing: Introduction to Quay with Joey Schorr (Red Hat)

OpenShift Commons Briefing Summary In this briefing, Red Hat’s Joey Schorr gave a in-depth introduction on and demonstration of Quay, CoreOs’ Application Registry for Kubernetes with OpenShift. Quay is an container registry for building, storing, and distributing your private containers to your servers. Access the slides from this presentation: OCB Intro to Quay Additional Resources […]

Read More...

Kerberos Sidecar Container

Kerberos Sidecar Container

Introduction I was recently asked to help a customer with their app containerization. They had a number of existing applications that used Kerberos to authenticate with external services, for example, using the Microsoft ODBC Driver for SQL Server. The challenge facing this team was how best to implement the Kerberos client for processes running in […]

Read More...

How to Enable Static Egress IP in OCP

How to enable static egress IP in Red Hat OpenShift Container Platform Red Hat OpenShift Container Platform 3.7 release introduced a new feature for egress traffic management. Egress is the traffic that is leaving the OpenShift cluster to an external server. An example of such traffic would be an application running in a container invoking […]

Read More...

Unified Container Monitoring and Security on OpenShift with Sysdig

Unified Container Monitoring and Security on OpenShift with Sysdig

The Sysdig Container Intelligence Platform is now offered as a Red Hat Certified Image The Red Hat OpenShift Container Platform helps developers easily and quickly develop, build, and deploy container-native applications in nearly any infrastructure, public or private. But as you move from development to a large scale production environment, monitoring and security take center […]

Read More...

OpenShift Commons Briefing: CyberArk Conjur Secrets Management on OpenShift

OpenShift Commons Briefing:  CyberArk Conjur Secrets Management on OpenShift

OpenShift Commons Briefing Summary In this briefing, Naama Schwartzblat and Kumbirai Tanekha (CyberArk) discuss and demo how to securely inject secrets into your applications and manage machine identities with CyberArk Conjur. Kumbirai Tanekha and Naama Schwartzblat,the lead developers on Conjur both of whom worked directly on the Conjur-OpenShift integration. They demonstrated how secrets can be […]

Read More...

OpenShift Commons Briefing: OpenContrail (now Tungsten Fabric) Update with DP Ayyadevara (Juniper)

OpenShift Commons Briefing Summary In this briefing, DP Ayyadevara, Savithru Lokanath and Vinay Rao from Juniper Networks provide an update to the Juniper Contrail and OpenShift integration. We discussed an application build environment use case along with support for Network Policies leveraging Contrail Security integration. Contrail Security helps minimizes risk to the applications that run […]

Read More...

Executing commands in Pods using K8s API

Introduction As part of my exploration of Kubernetes, while working on a project I wanted to execute commands inside a pod. Rather then forcing the container to have some specific behaviour, I wanted to utilize the API mechanism exposed as the kubectl exec subcommand. While investigating, I found that exec doesn’t yet sport extensive documentation, […]

Read More...

NetworkPolicies and Microsegmentation

NetworkPolicies and Microsegmentation

Introduction Kubernetes introduced NetworkPolicies in 1.6 and in OpenShift this feature was made GA in 3.7. Microsegmentation is the idea of protecting each host with host-specific firewall rules. In this blog post, we will examine approaches for using NetworkPolicies to implement microsegmentation. NetworkPolicy SDN OpenShift installation requires you to choose the SDN implementation that is […]

Read More...

[Podcast] PodCTL Basics – Windows Containers & Kubernetes

[Podcast] PodCTL Basics - Windows Containers & Kubernetes

It’s been a while since we did a “PodCTL Basics” show (see: Kubernetes, Linux Containers, Containerizing an Application, Services Meshes), but we’ve heard a lot of questions about Windows Containers, so we thought it was time to review the basics. In this short show, we talk about the differences between Linux and Windows containers, the dependencies […]

Read More...