Running Ambassador API gateway on Azure Kubernetes Service

Lately I was playing around with the Ambassador Kubernetes-native microservices API gateway as an ingress controller on Azure Kubernetes Service. -> https://www.getambassador.io/ Ambassador is based on the popular L7 proxy Envoy by Lyft. Beside the API gateway capabilities, you can use Ambassador just as an ingress controller for publishing your container applications to the outside world. -> Read more [...]

Azure Kubernetes Service cluster autoscaler configurations

Currently you have two options on Azure Kubernetes Service to run the cluster autoscaler. The first one is the integrated solution on the managed master control plane side. This one is in preview and only available when using the AKS VMSS preview. You can configure AKS during the creation process to use the cluster autoscaler or enable the CA afterwards, when it is an AKS VMSS-based cluster. Use Read more [...]

Updating the base image of an VMSS aks-engine cluster

In mid-February was a CVE for runc published and immediately patched on the major cloud provider platforms. -> https://seclists.org/oss-sec/2019/q1/119 -> https://kubernetes.io/blog/2019/02/11/runc-and-cve-2019-5736/ -> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5736 As an example if you were running an Azure Kubernetes Service cluster with Kubernetes version 1.12.4, you Read more [...]

Taking backups from Azure Files attached to AKS via Azure Backup

In one of my last articles I showed you how to automate the backup process for Azure Disks attached to AKS. -> https://www.danielstechblog.io/taking-backups-from-azure-disks-attached-to-aks-via-azure-automation/ Today we look at the process for the second natively supported Azure storage option in Kubernetes on Azure, Azure Files. The good news is that we can use Azure Backup with its support Read more [...]

Running Azure Functions on Kubernetes like on Azure in the consumption plan

Azure Functions 2.0 introduced the capability to run Functions in a container. So, you have the choice to run your Functions natively on Azure in the consumption plan for automated massive scale or in a container on your Azure Kubernetes Service or Kubernetes cluster. But how you configure automated scaling for a Functions application in a container on Kubernetes to run it like on Azure? The Read more [...]

Taking backups from Azure Disks attached to AKS via Azure Automation

When you followed the Azure docs on how to dynamically create Azure Disks via a Kubernetes PVC, you saw the instructions to create a backup of the disk. Snapshots are leveraged for this. But it is a manual task you must accomplish. -> https://docs.microsoft.com/en-us/azure/aks/azure-disks-dynamic-pv#back-up-a-persistent-volume It would be nice to have an automated solution which also take Read more [...]

Stream Analytics on IoT Edge – deployment changes

Microsoft released the GA version of Stream Analytics on IoT Edge two weeks ago. -> https://azure.microsoft.com/en-us/blog/azure-stream-analytics-on-iot-edge-now-generally-available/ Beside the changes with the GA version one is most important. When you deploy the Stream Analytics container onto an edge device you must provide the plan id as an environment variable. The plan id is needed for billing Read more [...]

Best practices – Azure IoT Edge deployments with Azure Kubernetes Service

Today I am talking about some best practices in regards of Azure IoT Edge deployments with Azure Kubernetes Service. Just a short recap about the IoT Edge deployment options with Kubernetes. The connection between Kubernetes and the Azure IoT Hub is established via the IoT Edge Virtual Kubelet Provider. The IoT Edge VK Provider consists of two containers. The Virtual Kubelet that receives the Kubernetes Read more [...]

Azure Functions – Azure Kubernetes Service Advanced Networking IP address calculation

Lately I was playing around with Azure Functions especially the HTTP Trigger Function and was seeking for a good use case of a Function taking JSON input and providing JSON as output. Looking at a certain task you need to do before you can deploy AKS with Advanced Networking enabled. I had found my use case. Before you can deploy AKS with Advanced Networking, Azure CNI plugin, you are required to Read more [...]

Kubernetes network policies on Azure Kubernetes Service with Azure NPM

Microsoft provides an own network policy module to implement Kubernetes network policies with the Azure CNI plugin for acs-engine and AKS called Azure NPM. -> https://github.com/Azure/azure-container-networking/tree/master/npm The Azure NPM is available since quite some time for acs-engine and natively integrated, but not yet for AKS. If you want to use Azure NPM on Azure Kubernetes Service, Read more [...]