Other articles


  1. LinkerD with Automatic certificate rotation on Ubuntu 22.04

    Here are my findings about LinkerD Service Mesh and its mutual automatic TLS feature that encrypts communications between meshed Pods without any modification needed to them.

    We'll start from a slightly (ok, severely) outdated K8S cluster to test the appropriate update procedure, too.

    This article is meant as a work-in-progress …

    read more
  2. Using a Microsoft AKS cluster to test Keydb's resilience with Python clients

    Today's task: verifying that a Keydb cluster, when deployed via Helm with default values (apart from activating LoadBalancer Service and a custom password), could be resilient to the sudden death of any one of its composing Pods, with no client connection's disruption.

    Also today's task: learn to interact with Redis …

    read more
  3. Monitoring and logging for Kubernetes via Beats -> ElasticSearch (ECK or Elastic Cloud managed service), visualization with Kibana

    First of all, neither the monitored (test) AKS cluster nor the ElasticCloud (test) instance exist anymore, so I've kept the YAML files nearly unedited. You'll find them (complete version) at the end of the article, while throughout it I'll reference some snippets of them. Of course there's a lot of …

    read more
  4. Using Caddyserver on Debian11 to reverse proxy a legacy HTTPS site: no need for Certbot

    Using a more modern and lightweight way for dealing with obsolete combos of OSs and application versions.

    Credits/bibliography

    I've been following Caddyserver's official site guidance here

    https://caddyserver.com/

    Installing Caddy

    ferdi@fsmntest0:~$ sudo apt update
    ferdi@fsmntest0:~$ sudo apt upgrade -y
    ferdi@fsmntest0:~$ sudo apt install -y debian-keyring …
    read more
  5. Using Debian 11's Apache to reverse proxy a legacy HTTPS site, with SSL certificate provided by Certbot/Let'sEncrypt

    A common requirement when dealing with obsolete combination of OS and applications.

    Credits/bibliography

    I've been following this site's hints here

    https://blog.containerize.com/2021/05/21/how-to-configure-apache-as-a-reverse-proxy-for-ubuntudebian/

    Assumptions

    • Your old, not updateable combo of webserver and application has IP address 192.168.105.37
    • It's currently published on …
    read more

links

social