Clik here to view.
Autoscaler on OpenShift Dedicated
At the time of writing, OpenShift dedicated (v3.5.5.31) only supports autoscaling based on the CPU metrics. So the first step is to ensure the CPU request is in place. It can be setup in the section of...
View ArticleClik here to view.
Run Hubot on OpenShift
In this article, I will demonstrate how to build a Hubot bot on OpenShift. Four key take-away points. Create secret for git clone Use docker strategy to build if you prefer Dockerfile over S2I Inject...
View ArticleClik here to view.
Kubernetes is the winner
There used to be lots of debates on what is the best container orchestration platform? Is it ECS or Mesos or Nomad or swarm or Kubernetes ? With some moves in the industry recently, I think the answer...
View ArticleClik here to view.
Kubernetes as a Service
I still remember that more than two years ago, I spent a couple of days to setup a Kubernetes cluster in vSphere (refer this article ' Install Kubernetes' that I wrote in 2015). During that time not...
View ArticleClik here to view.
OpenShift build error: fatal: git fetch-pack: expected shallow list
If you are seeing such error when doing build in OpenShift - 'error: build error: fatal: git fetch-pack: expected shallow list', then you probably have missed the ref in your build configuration, ref...
View ArticleClik here to view.
Horizontal Pod Autoscaling
I did a quick test of the HPA (Horizontal Pod Autoscaling) on OpenShift, here are some key findings: Heapster metric is not near realtime, it is about 2 minutes delay in my test. HPA only has one...
View ArticleClik here to view.
Simple version of CICD Workflow
Above is my simple version of CICD workflow that I use as a guidance in day to day work. A bit explanations on how to use it. The workflow has six stages and seven scenarios. Six Stages: Commit Change:...
View ArticleThe myth of memory requests and limits in Kubernetes
I summarised a list of FAQ about the memory request and limit in Kubernetes. Also I have a real example down the bottom. 1) What if Container exceed memory request? Totally fine, a Container can exceed...
View ArticleThings you need to know about AWS VPC based Lambda
There are two types of AWS Lambda networking settings: No VPC and VPC-based. The major difference is that VPC-based Lambda allows you to access the resources in your VPC, e.g your EC2 resources sitting...
View ArticleRedis CPU Usage Ramps Up after Kernel Patching
I guess you have heard the name of Meltdown and Spectre already. If not, check out this site https://meltdownattack.com/. Definitely, it is not a good start of a New Year. All Cloud providers are busy...
View ArticleAWS ELB: CLB vs ALB vs NLB
At the time of writing, there are 3 types of Elastic Load Balancer: CLB (Classic Load Balancer), ALB (Application Load Balancer) and NLB (Network Load Balancer). AWS releases CLB first, then ALB, thats...
View Article2 Weeks Challenge of ‘AWS Certified Solutions Architect – Associate’
New year new resolutions. I have just setup a 2 weeks challenge for myself - get the 'AWS Certified Solution Architect - Associate'. Exam has been booked for 31/Jan, no prep has been done yet. Updates:...
View ArticleCertStuff
Do you know how many Amazon issued certificates (ACM) or user uploaded certificates (IAM) in your AWS accounts? How many certificates have been deployed to production in your Akamai contracts? Not...
View ArticleNew to AWS GuardDuty?
If you are new to AWS GuardDuty, FAQ is the best place to start from. I am currently working on a GuardDuty relevant project, and here are some bullets that I quickly summarised. Hope it is useful to...
View ArticleAWS GuardDuty Manager
As mentioned in my previous blog New to AWS GuardDuty? I have been working on open sourcing the tool that I wrote for internal use. Now it is public available on my GitHub: AWS GuardDuty Manager...
View ArticleAWS One Page Advisor
If you are interested to have a high level overview of all your AWS accounts status (security, cost, performance, limits and fault tolerance), then it might be worth checking out my new tool AWS One...
View ArticleCICD on OpenShift Part Two
Continue with part one, I will show you the details of the CICD scripts and also the Bamboo plan. Lets start with the CICD scripts, it can be found in my OpenShift-CICD repository on GitHub. The key...
View ArticleCertificate Transparency
Starting April 28, 2018, AWS will start to support Certificate Transparency. I am new to this, here are somethings that I learned so far. What exactly is certificate transparency? Certificate...
View ArticleSAML-Based Federation for AWS Access
I am currently working on a Cloud migragion project. The goal is to move the on-premise applications (mostly are Atlassian tools) to AWS. And we need to build everything from scratch. I take it as a...
View ArticleInstall Kubernetes on AWS with kops
It was year 2015 when I first time installed Kubernetes. Back then, installing Kubernetes is not a simple task like what it is Today. Nowadays, there are a few handy tools that you can choose, eg....
View Article