Anyone know if `system:apiserver` user should be allowed `create` action on `nodes/proxy`?
It's supposed to be the well-known user for the API server as a client to the kubelet (see source link) but it sure seems to be failing. I'd prefer not to just give system:masters
`Internal error occurred: unable to upgrade connection: Forbidden (user=system:apiserver, verb=create, resource=nodes, subresource(s)=[proxy])`
Goodby, Homepage.
Hello, Glance
#DevOps #k8s #learnk8s #cncf #100DaysOfCode #100DaysOfDevOps #kubernetes
It took a few hours, but I've managed to move one of my clients from DigitalOcean to Scaleway.
Perhaps this is also a testiment that Kubernetes is truly cloud agnostic and makes these things easy.
Improve performance of memory intensive applications on EKS cluster using Huge Pages!
#k8s #kubernetes
https://medium.com/@jainshubham0403/improve-performance-of-memory-intensive-applications-on-eks-cluster-using-huge-pages-44ba7a25f4b1
Boosting Kubernetes Performance by 60% with externalTrafficPolicy & sessionAffinity
Learn how fine-tuning just two settings can drastically reduce latency & improve throughput.
🔬 Includes benchmarks, diagrams & when to apply (or avoid) these options.
🔗 https://medium.com/@ismailkovvuru/boosting-kubernetes-performance-by-60-with-externaltrafficpolicy-and-sessionaffinity-18ac95ff8a7a
#Kubernetes #DevOps #CloudNative #K8s #Sysadmin #SRE #Networking #aws
Just had a power outage which took down my lab. Recovery was...fun 😅:
- Pi-hole was down because it couldn't locate its secret.
- My secrets are managed by External Secrets, and that
was failing because it couldn't resolve the dns name for Infisical because.... Pi-hole was down
#DevOps #k8s #learnk8s #cncf #100DaysOfCode #100DaysOfDevOps #kubernetes
Love these scenarios (from a Kubernetes, CKAD, certification sample question). Adding a little bit of realism, you know?
"Listen up rookie, Team SUN ☀️ needs FOUR Nginx servers exposed on port 9999 STAT! No we don't need a volume! Lets get those "Welcome to nginx!"-pages rolling!!"
Dur de choisir son ingress-controller, entre @projectcontour @traefik @thekonginc @apacheapisix @ingressnginx… et j'en passe!
Vient découvrir la #GatewayAPI, interface officielle de #k8s pour les contrôler tous!
https://link.davinkevin.fr/GwAPI-riviera25-program
Hâte de vous retrouver à @rivieradev
Vault8s: доставляем секреты из HashiCorp Vault в Kubernetes
Мы все знаем, что Hashicorp Vault — это фактический стандарт для хранения секретов, а Kubernetes — для размещения приложений. Но как подружить их вместе? Существует множество инструментов для интеграции Vault с Kubernetes, и каждый из них имеет свои плюсы и минусы. Как выбрать подходящий? В этой статье, созданной по мотивам выступления на DevOpsConf’25, вы узнаете о самых популярных инструментах доставки секретов из Hashicorp Vault в Kubernetes, таких как External Secrets Operator, Hashicorp Vault Secrets Operator, Hashicorp Vault Agent Injector, Hashicorp Vault CSI Provider, Bank Vaults-Vault Secrets Webhook. Для каждого инструмента будет приведён пример настройки, объяснено, как именно секрет попадает в приложение, а также мы с вами сравним их с точки зрения ротации секретов и удобства использования. Меня зовут Михаил Кажемский , я Lead DevOps из Hilbert Team . Я в IT уже больше 10 лет и пришёл в DevOps из разработки, поэтому побывал по обе стороны баррикад. Соавтор ряда курсов для инженеров на Яндекс Практикум по направлениям DevOps, Security и Data. Hilbert Team — провайдер IT-решений для крупного и среднего бизнеса в области облачных технологий, DevOps, DevSecOps, DataOps, MLOps и FinOps. Партнёр Yandex Cloud со специализацией Yandex Cloud Professional по направлениям DevOps и Data Platform.
https://habr.com/ru/companies/oleg-bunin/articles/919234/
#secrets #hashicorp_vault #kubernetes #vault #k8s #secretsmanagement #External_Secrets_Operator #HashiCorp_Vault_Secrets_Operator #HashiCorp_Vault_CSI_Provide #HashiCorp_Vault_Agent_Injector
New Kubernetes Release
:kubernetes: Kubernetes v1.30.14 :kubernetes:
https://github.com/kubernetes/kubernetes/releases/tag/v1.30.14
New Kubernetes Release
:kubernetes: Kubernetes v1.31.10 :kubernetes:
https://github.com/kubernetes/kubernetes/releases/tag/v1.31.10
New Kubernetes Release
:kubernetes: Kubernetes v1.32.6 :kubernetes:
https://github.com/kubernetes/kubernetes/releases/tag/v1.32.6
New Kubernetes Release
:kubernetes: Kubernetes v1.33.2 :kubernetes:
https://github.com/kubernetes/kubernetes/releases/tag/v1.33.2
This is quite elegant actually. #k8s #Kubernetes
#GitOps for #Kubernetes With Nixidy and #ArgoCD
Someone wrote about my project nixidy!
https://tech.aufomm.com/gitops-for-kubernetes-with-nixidy-and-argocd/
☁️ Discover more about #VictoriaMetrics Cloud today! https://hubs.li/Q03rqcH-0
#Monitoring #TimeSeries #CloudNative #DevOps #k8s #cloud
Kubernetes going Discord lol
> ... they have already explored what a Kubernetes Discord would look like. Discord would allow us to implement new tools and integrations which would help the community, such as GitHub group membership synchronization.
https://kubernetes.io/blog/2025/06/16/changes-to-kubernetes-slack/
New Kubernetes Alpha Release
:kubernetes: Kubernetes v1.34.0-alpha.1 :kubernetes:
https://github.com/kubernetes/kubernetes/releases/tag/v1.34.0-alpha.1
