Tag: Container
-
Fluent Bit and Kata Containers on Azure Kubernetes Service
In the past, I have written two blog posts about how to run untrusted workloads on Azure Kubernetes Service. -> https://www.danielstechblog.io/running-gvisor-on-azure-kubernetes-service-for-sandboxing-containers/ -> https://www.danielstechblog.io/using-kata-containers-on-azure-kubernetes-service-for-sandboxing-containers/ Today, I walk you through how you gather log data of an untrusted workload isolated by Kata Containers with Fluent Bit. When you hear isolated, it always comes to mind that only…
-
Running Fluent Bit on Azure Linux in Azure Kubernetes Service
In May this year, Microsoft announced the general availability of the Azure Linux support in Azure Kubernetes Service. -> https://azure.microsoft.com/en-us/updates/generally-available-azure-linux-support-in-aks/?WT.mc_id=AZ-MVP-5000119 -> https://techcommunity.microsoft.com/t5/linux-and-open-source-blog/introducing-the-azure-linux-container-host-for-aks/ba-p/3824101?WT.mc_id=AZ-MVP-5000119 Azure Linux is Microsoft’s Linux distribution of CBL-Mariner. -> https://github.com/microsoft/CBL-Mariner You can choose now between using Ubuntu or Azure Linux as the host operating system for your node pools in Azure Kubernetes Service,…
-
Azure Kubernetes Service news from KubeCon Europe 2023
Last month the KubeCon + CloudNativeCon Europe took place in Amsterdam with a lot of news regarding Azure Kubernetes Service. Let us now walk through some of the highlights that have been announced for Azure Kubernetes Service. A lot of networking news has been made at KubeCon Europe. Starting with the general availability of the…
-
Using Kata Containers on Azure Kubernetes Service for sandboxing containers
Last year I wrote a blog post about running gVisor on Azure Kubernetes for sandboxing containers. -> https://www.danielstechblog.io/running-gvisor-on-azure-kubernetes-service-for-sandboxing-containers/ Back then, the only managed Kubernetes service that supported sandboxing containers in dedicated node pools was Google Kubernetes Engine via gVisor. A few weeks back, Microsoft announced the public preview of Kata Containers for Azure Kubernetes Service.…
-
Azure Kubernetes Service – Using Kubernetes credential plugin kubelogin with Terraform
In today’s blog post we have a look at the Kubernetes credential plugin kubelogin for Azure Kubernetes Service and how to use it with Terraform. -> https://github.com/Azure/kubelogin -> https://kubernetes.io/docs/reference/access-authn-authz/authentication/#client-go-credential-plugins The Azure Kubernetes Service cluster I am using for demonstration is an AKS-managed Azure Active Directory one with local accounts disabled. Disabling the local accounts turns…
-
Azure Kubernetes Service news from KubeCon North America 2022
Last week the KubeCon / CloudNativeCon North America took place in Detroit with a lot of news regarding Azure Kubernetes Service. Let us now walk through what has been announced for AKS. Microsoft further enhances the different CNI options that are available for Azure Kubernetes Service. Besides the standard of Azure CNI with Azure Network…