Background skip to practical Introduced on April 2015, EFS is an AWS abstraction over NFS - network file system, allowing you to share a server volume between multiple machines on the network. In this tutorial I will show you my painless way to deploy such EFS as a Kubernetes Persistent...

In my company we use fluxcd gitops operator to manage our kubernetes clusters. We also use flux official helm-operator, to deploy our helm charts. the helm-operator was originally designed for helm2 charts, but once helm V3 was out, fluxcd team did a great work on the helm-operator, and now it...

The issue with helm2 (spoiler: Tiller is causing troubles as usual) As a heavy user of helm2 charts in production, I came across an issue which you are likely to run into when using helm2 charts in a large scale: Under the hood, Tiller (helm server) is creating a ConfigMap...

On this post I will show you how to give IAM permissions to a k8s service account, right from the CLI with a few simple commands. As an example, we will create Fluentd and Cloud-watch DaemonSets which will collect logs across the cluster and stream them to AWS CloudWatch logs...

In this post I will go through the traditional secrets management and than cover some sick new CRDs I work with, designed for GitOps cluster management. 1. kubernetes-native secrets management Secrets are core part of kubernetes, Offering you the ultimate secured way to store your passwords. Once “kubectl applied”, kubernetes...

In this post I will document the steps for running my self-hosted kubernetes cluster. 1. firmware My cluster is made of 2 RaspberryPi 4X4, 1 Raspberry 3B+, and 1 old lenovo PC running Ubuntu16. you also need a microSD card, a power cable and an ethernet cable for each rpi...

I use Kubernetes external names and endpoints for custom DNS mapping over the cluster. the most important lesson I learned from the work that was done here is to look for the simple stuff. k8s got build in solutions for so many things, all you have to do is learn...