Daniel's Tech Blog

Cloud Computing, Cloud Native & Kubernetes

  • Azure Kubernetes Fleet Manager – Advance your Kubernetes cluster update management on Azure

    The Azure Kubernetes Fleet Manager comes with two different configuration options with and without a hub cluster configuration. In today’s blog post, we focus on the Azure Kubernetes Fleet Manager without a hub cluster configuration. This configuration option only provides the Azure Kubernetes Service update management, and this is our focus for today, Before we…

  • Configure Microsoft Defender for Cloud continuous export via Terraform

    Microsoft Defender for Cloud supports the continuous export of a variety of data to Azure Event Hubs and Azure Log Analytics workspaces. When you use Azure Event Hubs, you can stream those data also to 3rd-party solutions or Azure Data Explorer. The continuous export is handy for security alerts to maintain them for a longer…

  • Azure PostgreSQL Flexible Server – Feature set on par with Single Server

    The Azure PostgreSQL Flexible Server was from its launch the better option than the Single Server, especially from a performance perspective. However, the Flexible Server was missing important features that were built-in in the Single Server from the beginning. Since the retirement announcement of the Single Server, it was time for Microsoft to bring the…

  • Using HTTP status code 307/308 for HTTPS redirect with the Istio ingress gateway

    The gateway definition for the Istio ingress gateway provides a configuration parameter to enable the HTTPS redirect of HTTP connections. -> https://istio.io/latest/docs/reference/config/networking/gateway/#ServerTLSSettings apiVersion: networking.istio.io/v1beta1 kind: Gateway metadata: name: azst-aks-gateway namespace: istio-config spec: selector: istio: ingressgateway # use Istio default gateway implementation servers: – hosts: – “*.danielstechblog.de” port: number: 80 name: http protocol: HTTP tls: httpsRedirect:…

  • Fluent Bit and Kata Containers on Azure Kubernetes Service

    In the past, I have written two blog posts about how to run untrusted workloads on Azure Kubernetes Service. -> https://www.danielstechblog.io/running-gvisor-on-azure-kubernetes-service-for-sandboxing-containers/ -> https://www.danielstechblog.io/using-kata-containers-on-azure-kubernetes-service-for-sandboxing-containers/ Today, I walk you through how you gather log data of an untrusted workload isolated by Kata Containers with Fluent Bit. When you hear isolated, it always comes to mind that only…

  • Running Fluent Bit on Azure Linux in Azure Kubernetes Service

    In May this year, Microsoft announced the general availability of the Azure Linux support in Azure Kubernetes Service. -> https://azure.microsoft.com/en-us/updates/generally-available-azure-linux-support-in-aks/?WT.mc_id=AZ-MVP-5000119 -> https://techcommunity.microsoft.com/t5/linux-and-open-source-blog/introducing-the-azure-linux-container-host-for-aks/ba-p/3824101?WT.mc_id=AZ-MVP-5000119 Azure Linux is Microsoft’s Linux distribution of CBL-Mariner. -> https://github.com/microsoft/CBL-Mariner You can choose now between using Ubuntu or Azure Linux as the host operating system for your node pools in Azure Kubernetes Service,…

Search

WordPress Cookie Notice by Real Cookie Banner