[Podcast] PodCTL – Kube Security, Kube 1.13 and KubeCon

[Podcast] PodCTL  - Kube Security, Kube 1.13 and KubeCon

Heading into the week of KubeCon, we wanted to make sure that listeners had some basics to prepare them for a week of learning and announcements. We discussed the severe Kubernetes bug (Kubernetes Privilege Escalation Flaw) and available patches, all of the new features in Kubernetes 1.13, as some previews of things to expect from […]

Read More...

[Podcast] PodCTL #56 – Windows Containers with Microsoft

One of the most common questions we get asked is for more details about Windows containers. While Linux has overtaken Windows as the leading OS in the cloud, there are still many companies that have a large number of Windows applications that run important parts of their business. As they look to modernize applications, automate […]

Read More...

[Podcast] PodCTL #55 – Kubernetes as the new Application Server

[Podcast] PodCTL #55 - Kubernetes as the new Application Server

We mentioned last week that we’re moving into the 3rd Era of Kubernetes (automated ops, automated apps), with the 2nd Era being about getting a broader set of applications on Kubernetes. Today we thought we’d talk about some design patterns, especially for anyone that’s transitioning from existing applications, and how some of those concepts map […]

Read More...

[Podcast] PodCTL #51 – Reviewing Kubernetes 1.12

[Podcast] PodCTL #51 - Reviewing Kubernetes 1.12

As another calendar quarter passes, so too does another release of Kubernetes arrive. This time it’s version 1.12, the 13th release of Kubernetes. As we always do, we looked at the new GA features, as well as a review of some of the newly introduced features (e.g. in beta) that might be interesting to start […]

Read More...

Kubernetes 1.12 Released

Kubernetes 1.12 Released

The Kubernetes project has grown immensely over the last few years and has come to be respected as a leader in container orchestration and management solutions. With that stature comes the responsibility to build APIs and tools that are well-tested, easy to maintain, highly performant, and scalable; qualities that are trusted and stable. In each […]

Read More...

Kubernetes Ingress vs OpenShift Route

Kubernetes Ingress vs OpenShift Route

Although pods and services have their own IP addresses on Kubernetes, these IP addresses are only reachable within the Kubernetes cluster and not accessible to the outside clients. The Ingress object in Kubernetes, although still in beta, is designed to signal the Kubernetes platform that a certain service needs to be accessible to the outside […]

Read More...

Kubernetes: Naming Things

Kubernetes: Naming Things

An old saying goes something like this: there are only two hard problems in computer science, namely cache invalidation, naming things, and off-by-one errors. We will focus on the naming things topic in the context of Kubernetes, here. As YAML, erm, Kubernetes engineers we are painfully familiar with structures like the following: type: human id: […]

Read More...

Increasing Security of Istio Deployments by Removing the Need for Privileged Containers

Increasing Security of Istio Deployments by Removing the Need for Privileged Containers

With the 1.0 release, Istio is preparing itself for prime time by companies developing container-native applications with a desire for adopting a service mesh solution. However, there is a potential issue that may slow down the adoption rate: Pods that belong to the Istio mesh require elevated privileges in order to function properly. In this […]

Read More...