Microsoft provides an own network policy module to implement Kubernetes network policies with the Azure CNI plugin for acs-engine and AKS called Azure NPM.
The Azure NPM is available since quite some time for acs-engine and natively integrated, but not yet for AKS. If you want to use Azure NPM on Azure Kubernetes Service, Read more [...]
Looking at Azure Container Service (AKS) – Managed Kubernetes you may have recognized that AKS currently does not support bring your own VNET and private Kubernetes masters. If you need both capabilities and one of them today, you must use ACS Engine to create the necessary Azure Resource Manager templates for the Kubernetes cluster deployment.
Beside Read more [...]
It is quite simple to keep a Kubernetes cluster created by ACS Engine on Azure up-to-date, because the master and agent nodes are configured by default to automatically apply security patches on a nightly schedule.
But you need a solution like Kured to automatically reboot the agent nodes in the cluster, so the security patches take effect. Rebooting the master nodes is a manual task after all.
-> Read more [...]