SSH access to AKS nodes for troubleshooting purposes

Under normal circumstances you do not need SSH access to your AKS nodes. Even when you create a new AKS cluster you do not have to provide an admin username and a public SSH key. Deployment method admin username required? public SSH key required? Azure portal No, cannot be set No, cannot be set Azure CLI Optional Optional ARM templates Required Required Terraform Required Required Why Read more [...]

Running Linkerd on Azure Kubernetes Service

Certainly, you have heard the term service mesh in the context of Kubernetes. Istio is one of the service mesh implementations that you might have heard of mostly. Beside Istio, Linkerd is the other popular service mesh implementation for Kubernetes. In this blog post I talk about the installation of Linkerd and running it on Azure Kubernetes Service. The easiest part to get started with Linkerd Read more [...]

Configure Azure Traffic Manager endpoint monitoring for container applications behind an ingress controller on AKS

Running an ingress controller on Azure Kubernetes Service requires configuration of the Azure Traffic Manager endpoint monitoring options when Traffic Manager is used in front of it. In this blog post I will show you an example configuration of the Traffic Manager endpoint monitoring for a container application behind the Ambassador API gateway running on AKS. First, here is the Kubernetes service Read more [...]

Azure Load Balancer behavior when externalTrafficPolicy is set to Local in the Kubernetes service object

In one of my last blog posts I talked about running the Ambassador Kubernetes-native microservices API gateway on Azure Kubernetes Service. Specially to define and set the configuration option externalTrafficPolicy to Local on the Ambassador Kubernetes service object. -> https://www.danielstechblog.io/running-ambassador-api-gateway-on-azure-kubernetes-service/ But have you ever asked yourself Read more [...]

Publishing Azure Functions on AKS through the Ambassador API gateway

In my last blog post I introduced you to the Ambassador Kubernetes-native microservices API gateway as an ingress controller running on Azure Kubernetes Service. -> https://www.danielstechblog.io/running-ambassador-api-gateway-on-azure-kubernetes-service/ Today I would like to show you how to publish an Azure Function running on Kubernetes through the Ambassador API gateway. It is nothing Read more [...]

Running Ambassador API gateway on Azure Kubernetes Service

Lately I was playing around with the Ambassador Kubernetes-native microservices API gateway as an ingress controller on Azure Kubernetes Service. -> https://www.getambassador.io/ Ambassador is based on the popular L7 proxy Envoy by Lyft. Beside the API gateway capabilities, you can use Ambassador just as an ingress controller for publishing your container applications to the outside world. -> Read more [...]

Azure Kubernetes Service cluster autoscaler configurations

Currently you have two options on Azure Kubernetes Service to run the cluster autoscaler. The first one is the integrated solution on the managed master control plane side. This one is in preview and only available when using the AKS VMSS preview. You can configure AKS during the creation process to use the cluster autoscaler or enable the CA afterwards, when it is an AKS VMSS-based cluster. Use Read more [...]

Updating the base image of an VMSS aks-engine cluster

In mid-February was a CVE for runc published and immediately patched on the major cloud provider platforms. -> https://seclists.org/oss-sec/2019/q1/119 -> https://kubernetes.io/blog/2019/02/11/runc-and-cve-2019-5736/ -> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5736 As an example if you were running an Azure Kubernetes Service cluster with Kubernetes version 1.12.4, you Read more [...]

Taking backups from Azure Files attached to AKS via Azure Backup

In one of my last articles I showed you how to automate the backup process for Azure Disks attached to AKS. -> https://www.danielstechblog.io/taking-backups-from-azure-disks-attached-to-aks-via-azure-automation/ Today we look at the process for the second natively supported Azure storage option in Kubernetes on Azure, Azure Files. The good news is that we can use Azure Backup with its support Read more [...]

Running Azure Functions on Kubernetes like on Azure in the consumption plan

Azure Functions 2.0 introduced the capability to run Functions in a container. So, you have the choice to run your Functions natively on Azure in the consumption plan for automated massive scale or in a container on your Azure Kubernetes Service or Kubernetes cluster. But how you configure automated scaling for a Functions application in a container on Kubernetes to run it like on Azure? The Read more [...]