lcalcote
|
2 years ago
|
on: The Cloud Native Playground
A Multiplayer Kubernetes Designer - Explore the Cloud Native Computing Foundation's graduated, incubation, and sandbox projects as well as many other popular open source projects. Use Meshery Playground to explore a new way of DevOps - visual and collaborative configuration management for your infrastructure.
lcalcote
|
2 years ago
|
on: What Are Kubernetes Validating Admission Controllers?
In this blog post, we will be discussing a new feature in Kubernetes called "Validating Admission Policies" which is currently in alpha stage. This feature allows administrators to define custom validation rules for resources being created in the cluster and enforce those rules using admission controllers.
lcalcote
|
2 years ago
Meshery, the open source cloud-native manager, has just reached a huge milestone of 1,000 contributors! This is an incredible achievement, and we would like to extend a huge thank you to all of our users and contributors for their support. It is thanks to your dedication and hard work that Meshery as a project and community has grown so quickly. The project has garnered over 2,000 GitHub stars to date and the community has become the #1 most popular Linux Foundation Internship (LFX internship).
lcalcote
|
7 years ago
|
on: The service mesh era: Using Istio and Stackdriver to build an SRE service
Not all, but some other vendor solutions autoinstrument popular languages, frameworks, runtimes as well. Many, many customers leverage these capabilities happily, relying on those engineered solutions (akin to the reliance others place on the engineering put into OC).
lcalcote
|
7 years ago
|
on: The service mesh era: Using Istio and Stackdriver to build an SRE service
It is a good note to make. How does this bear weight on the question above?
lcalcote
|
7 years ago
|
on: LinkerD picking up steam from ISTIO
As I help lead the Istio User Experience Working Group, I can confirm that there's a cost to telemetry gathered and sent to Mixer and that tuning the type and amount of telemetry sent can can a dramatic impact on the overhead involved in using the service mesh.
In general, the question of overhead is concern that most adopters of a service mesh ask. Akin to deploying an application performance monitoring agent to your server or an SNMP poller to your network, there's a price to be paid for the ability to observe and control your workloads. Illuminating this cost, understanding and controlling this cost is the goal of an open source project, Meshery (https://layer5.io/meshery). Meshery acts as a performance benchmark for multi-mesh performance comparison (an apples-to-apples comparison across different service meshes).
Note that it's not necessary for each sidecar proxy call to validate every network call with Mixer. Many of these validations are locally cached in the sidecar proxy and do not involve Mixer.
lcalcote
|
7 years ago
|
on: Istio – An open platform to connect, manage, and secure microservices
One way of interpreting this simile is to say that as just as one technology has subsumed (become the focal point) another technology, so does a service mesh as a layer on top of a container orchestrator. A fifth layer as described in The Enterprise Path to Service Mesh Architectures -->
https://layer5.io/books/the-enterprise-path-to-service-mesh
lcalcote
|
7 years ago
|
on: Istio – An open platform to connect, manage, and secure microservices
Good summary.
lcalcote
|
7 years ago
|
on: Tell HN: Pingdom we will no longer offer free plans as of February 6, 2019
50 free checks at 5 min intervals. Hmm.
lcalcote
|
7 years ago
|
on: AWS App Mesh – Service Mesh for Microservices on AWS
lcalcote
|
9 years ago
|
on: A new upstream project to break up Docker into independent components
Users shouldn't be confused as they are able to continue using docker as they have in the past. The Moby project doesn't affect their consumption and use of docker.
lcalcote
|
9 years ago
|
on: Portainer, a UI for Docker
@ncresswell, more create and update capabilities would be great (e.g. the ability to create a network, connect a container, etc.)
lcalcote
|
9 years ago
|
on: Running Socket.IO Applications on Kubernetes
"That's because ELBs forward requests to backend instances without modifying the request headers and the client IP is not sent in case of TCP load balancing." - - not sure this is quite what the author meant?
lcalcote
|
9 years ago
|
on: What I found wrong in Docker 1.12
This is true. The team packed a lot into this new codebase. Many miles to go, however.
lcalcote
|
10 years ago
|
on: Building highly available applications using Kubernetes new multi-zone clusters
Are next steps for multi-zone support inclusive of these capabilities?
1) HA for master components
2) Multi-zone support for PersistentVolumes
3) Federated master components governing separate deployments
lcalcote
|
10 years ago
|
on: Building highly available applications using Kubernetes new multi-zone clusters
Noting that the scheduling spread strategy is centrally configured using the SelectorSpreadPriority, can you override the scheduling behavior on a per service or pod basis?
