Daniel's Tech Blog

Cloud Computing, Cloud Native & Kubernetes

Tag: Cloud

  • Deploy Azure DNS security policies via Terraform

    Today, I walk you through a new feature that has been released this year: Azure DNS security policies. -> https://azure.microsoft.com/en-us/updates?WT.mc_id=AZ-MVP-5000119&id=497535 Azure DNS security policies allow you to get insights into your DNS traffic at the Virtual Network level. The two main use cases for DNS security policies are blocking name resolution of known or malicious…

  • Restrict access to the IMDS endpoint on Azure Kubernetes Service with Cilium

    In today’s blog post, we take a look at restricting access to the Azure IMDS endpoint on an Azure Kubernetes Service (AKS) cluster with Cilium using the BYOCNI approach. The Instance Metadata Service (IMDS) endpoint, also known as short IMDS, can be called directly from every Azure VM or VMSS instance via the following command.…

  • How to send Cilium metrics to Azure Managed Prometheus

    In today’s blog post, I walk you through the setup on how to send Cilium metrics to Azure Managed Prometheus. Our setup covers two scenarios. The first one is an Azure Kubernetes Service cluster using Cilium via the BYOCNI (Bring Your Own CNI) option, and the second one is a K3s single node cluster running…

  • Identifying values for the Azure Policy field parameter

    In Azure, you can use Azure Policy with its field parameter to check for or enforce certain Azure resource configurations. For instance, the built-in policy “Allowed virtual machine size SKUs” uses the field parameter to restrict the available VM SKUs. This is especially useful for not accidentally provisioning very expensive VM SKUs like the ones…

  • Microsoft drops data transfer charges between Availability Zones

    An important announcement during this year’s Microsoft Build has not gotten much traction and might have been missed in the vast amount of updates and announcements. Microsoft did an update to its pricing structure for inter-zone traffic. “We are announcing that Azure will not charge for the data transfer across availability zones regardless of using…

  • Cost optimize your Azure PostgreSQL Flexible Server deployments

    As I am currently preparing my session for Experts Live Germany about Azure Cost Optimization, I thought it might be good to share parts of the session as blog articles with the community. So, expect more to come in the next weeks and months. Today we focus on cost-optimizing Azure PostgreSQL Flexible Server deployments. Therefore, we look at the…

WordPress Cookie Notice by Real Cookie Banner