Terraform: EKS and Karpenter version upgrade 19.21 to 20.0
0 (0)

13 July 2024

It seems like a common task to update a version of a Terraform module, but terraform-aws-modules/eks version 20.0 had some pretty big changes with breaking changes. The changes relate to authentication and authorization in AWS IAM and AWS EKS, which I analyzed in the post AWS: Kubernetes and Access Management API, the new authentication in… Read More: Terraform: EKS and Karpenter version upgrade 19.21 to 20.00 (0) »

Loading

EcoFlow: monitoring with Prometheus and Grafana
5 (1)

7 July 2024

In continuation of the topic with Підготовка до зими 2024-2025: ДБЖ, інвертори, та акумулятори (in Ukrainian). Surprise – there’s even a Prometheus exporter for the EcoFlow – berezhinskiy/ecoflow_exporter! It looks really cool. I launched it, looked at it, and ran to write this post. It can be run in a couple of clicks with Docker… Read More: EcoFlow: monitoring with Prometheus and Grafana5 (1) »

Loading

AWS: Kubernetes and Access Management API, the new authentication in EKS
0 (0)

7 July 2024

Another cool feature that Amazon showed back at the last re:Invent in November 2023 is changes in how AWS Elastic Kubernetes Service authenticates and authorizes users. And this applies not only to the cluster’s users, but also to its WorkerNodes. I mean, it’s not really a new scheme (November 2023) – but I just now… Read More: AWS: Kubernetes and Access Management API, the new authentication in… »

Loading

AWS: RDS IAM database authentication, EKS Pod Identities, and Terraform
0 (0)

7 July 2024

We’re preparing to migrate our Backend API database from DynamoDB to AWS RDS with PostgreSQL, and finally decided to try out AWS RDS IAM database authentication, which appeared in 2021. IAM database authentication, as the name implies, allows us to authenticate to RDS using AWS IAM instead of the login-password from the database server itself.… Read More: AWS: RDS IAM database authentication, EKS Pod Identities, and Terraform0… »

Loading

AWS: Cost optimization – an overview of Bills, Cost Explorer, and the costs control
0 (0)

23 June 2024

Let’s continue our series on cost optimization in AWS. Previous posts: AWS: cost optimization – purchasing RDS Reserved Instances AWS: Cost Explorer – costs checking on the CloudWatch Logs example AWS: Cost optimization – services expenses overview and traffic costs in AWS Now that we understand what we pay for in AWS, let’s see what… Read More: AWS: Cost optimization – an overview of Bills, Cost Explorer,… »

Loading

Kubernetes: containers, and the “lost” SIGTERM signals
0 (0)

23 June 2024

We have an API service with Gunicorn in Kubernetes that periodically returns 502, 503, 504 errors. I started debugging it, and found a weird thing: there were no messages in the logs about the received SIGTERM, so I first went to deal with Kubernetes – why doesn’t it send it? The Issue So, here’s what… Read More: Kubernetes: containers, and the “lost” SIGTERM signals0 (0) »

Loading

Kubernetes: monitoring Events with kubectl and Grafana Loki
0 (0)

23 June 2024

In Kubernetes, in addition to metrics and logs from containers, we can get information about the operation of components using Kubernetes Events. Events usually store information about the status of Pods (creation, evict, kill, ready or not-ready status of pods), WorkerNodes (status of servers), Kubernetes Scheduler (inability to start a pod, etc.). Kubernetes Events types… Read More: Kubernetes: monitoring Events with kubectl and Grafana Loki0 (0) »

Loading

AWS: Karpenter and SSH for Kubernetes WorkerNodes
0 (0)

23 June 2024

We have an AWS EKS cluster with WorkerNodes/EC2 created with Karpenter. The process of creating the infrastructure, cluster, and launching Karpenter is described in previous posts: Terraform: Building EKS, part 1 – VPC, Subnets and Endpoints Terraform: Building EKS, part 2 – an EKS cluster, WorkerNodes, and IAM Terraform: Building EKS, part 3 – Karpenter… Read More: AWS: Karpenter and SSH for Kubernetes WorkerNodes0 (0) »

Loading

Pritunl: launching a VPN in AWS on EC2 with Terraform
0 (0)

23 June 2024

I’ve already written a little about Pritunl before – Pritunl: Running a VPN in Kubernetes. Let’s return to this topic again, but this time on EC2 in AWS, without Kubernetes. So, what we need to do is to run some kind of VPN service for the project to have access to Kubernetes APIs/Kubernetes WorkerNodes/AWS RDS/etc… Read More: Pritunl: launching a VPN in AWS on EC2 with Terraform0… »

Loading

Renovate: GitHub, and Helm Charts versions management
0 (0)

30 May 2024

Dependabot (see Dependabot: GitHub, and Terraform versions management) is interesting because it’s fairly quick and easy to configure, but the fact that it still can’t work with Helm charts (although a feature request was opened in 2018) makes it a bit useless for us. So, instead, let’s take a look at Renovate, which is a… Read More: Renovate: GitHub, and Helm Charts versions management0 (0) »

Loading