Use Glusterfs for Dynamic Volume Provisioning in Kubernetes


I recently setup a single node Kubernetes cluster on-premise for testing Jira and Confluence Data Center (which I will write a seperate blog later). In this blog, I want to share how I use Glusterfs as the shared storage which supports dynamic volume provisioning. Traditionally, to use persistent volume (PV) in a pod, you have … Continue reading Use Glusterfs for Dynamic Volume Provisioning in Kubernetes

Use Image Scanning for AWS ECR


Amazon just announced that ECR now has the image scanning capability. It is a good News if you use ECR as your Docker image registry, as you just can consume it for free! A good use case is to add it into your CI pipeline for image scanning. A quick example of scanning the Docker … Continue reading Use Image Scanning for AWS ECR

Port Forwarding over AWS Session Manager


Continue with the Session Manager over PrivateLink, another good use case for session manager is port forwarding. Here is a quick demo: First, login into the EC2 instance with session manager to install a Apache server # Install Apachesudo yum -y install httpd # Start Apache web serversudo systemctl start httpd # Ensure port 80 … Continue reading Port Forwarding over AWS Session Manager

Use AWS SSM Session Manager Over PrivateLink


AWS SSM Session Manager is a great addition to the existing AWS services, simply speaking it provides a secured, manageable and easier way to access the instance inside the VPC, and more (e.g. port forwarding). There are two ways to use session manager: over Internet vs over PrivateLink. Over Internet: The instance communicates to the … Continue reading Use AWS SSM Session Manager Over PrivateLink

Improved VPC networking for AWS Lambda functions


AWS just recently announced the improved VPC networking for AWS Lambda functions. Simply speaking the improvement is made by that Lambda functions now uses AWS HyperPlane to connect to customers' VPC instead of the individual ENI. AWS HyperPlane is a distributed Network Function Virtualization platform that works at the VPC flow level, it tracks the … Continue reading Improved VPC networking for AWS Lambda functions

kubectl unable to connect minikube on VPN


I installed minikube in my Mac, and I noticed that kubectl is unable to connect to it while my Mac in on VPN (Cisco Anyconnect). $ kubectl cluster-infoKubernetes master is running at https://192.168.99.100:8443To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.Unable to connect to the server: dial tcp 192.168.99.100:8443: i/o timeout Here are … Continue reading kubectl unable to connect minikube on VPN