In this post, I want to show you how to run multiple OCI container runtimes on Kubernetes. You will see how to configure containerd to run both runC and Kata Containers. Then we will use the Kubernetes RuntimeClass API to let workloads choose the different container runtimes. Why Different Container Runtimes When multiple tenants…

This post is about the new Kubernetes API Priority and Fairness (APF) feature. I will like to share with you what I have learned and show you how to define policies to prioritize and throttle inbound requests to the Kubernetes API server. …

If you have been working with container virtualization and orchestration software like Docker and Kubernetes, then you probably have heard of network namespace. Recently, I started exploring the Linux ip command. In this post, I will show you how to use the command to connect processes in two different network…

This post is a write-up on some of the key concepts of the Pulumi SDK. If you are using Pulumi too, I hope you will find the content in this post useful. Recently, I finished my first Pulumi program where I used Pulumi to provision some resources on Azure. The…

If you are interested in finding out how kubectl exec works, then I hope you will find this post useful. We will look into how the command works by examing the relevant code in kubectl, K8s API Server, Kubelet and the Container Runtime Interface (CRI) Docker API. About This Command Thekubectl exec command…

If deploying applications to Kubernetes is part of your daily development workflow, you will find Tilt very useful. Tilt can continuously build and deploy your local code change to your Kubernetes cluster. In this post, I will show you how I use Tilt to automate continuous build and deployment of…

Following William’s post on gRPC Load Balancing on Kubernetes without Tears, I become interested in finding out how much work is actually involved to implement gRPC load balancing. In this post, I’ll like to share with you what I’ve learned about using the gRPC-Go balancer and resolver packages to implement…

I use Minikube to manage my local development Kubernetes clusters. Often, I find the needs to spin up one-off clusters to review and test pull request changes, reproduce bugs and try out new releases, while retaining a default environment for my ongoing sprint tasks. In this post, I’ll like to…

In this post, we’re going to experiment with deploying Linkerd 2.x to a Kubernetes cluster that uses network policies to govern ingress network traffic between pods. UPDATE (Sept 24, 2020): The linkerd inject command has since been modified to use the same code path as the auto proxy injection feature…