The cluster nodes are deployed into an Azure Virtual Network (VNet) subnet when using Azure CNI Overlay, but IP addresses for pods are obtained from a private CIDR that is logically separate from the VNet hosting the cluster nodes. The Overlay network is used for pod and node traffic inside the cluster, while Network Address…
Read More →Tag: Azure-Kubernetes
You must establish a connection to the private AKS cluster either through the cluster virtual network, a peer network, or a configured private endpoint in order to access the cluster. Required prerequisites Run a single command with command invoke As an example: If you want to run a command on your cluster, run az aks…
Read More →Developers may quickly create and deploy microservices and containerized apps with Azure Container Apps. Without having to deal with Kubernetes’ complexity, developers can take advantage of the highly optimized developer productivity features of Azure Container Apps, while operators can offer developers a platform that is extremely productive while still maintaining ultimate control over the Kubernetes…
Read More →If you want to resize an existing node pool, called nodepool01, from SKU size Standard_DS3_v2 to Standard_DS4_v2. To complete this task, you’ll need to create a new node pool using Standard_DS4_v2, move workloads from nodepool01 to the new node pool, and remove nodepool01. In this example, call this new node pool testnodepool. View Existing nodes in AKS: Create a new…
Read More →You can add a node pool to your AKS cluster with CVM using the generally available confidential VM sizes (DCav5/ECav5). Confidential VMs with AMD SEV-SNP support introduces a new set of security features, including full VM memory encryption, to protect data in use. These features enable CVM-enabled node pools to migrate highly sensitive container workloads…
Read More →#Azure Service Fabric is a distributed systems platform that makes scalable and reliable microservices and containers easy to package, deploy, and manage. A Service Fabric cluster is a network-connected collection of virtual machines where you can deploy and manage your microservices. We will explain and Required pre-requisites Create client certificate using Azure Key Vault Create…
Read More →Azure Service Fabric is a distributed systems platform that makes scalable and reliable microservices and containers easy to package, deploy, and manage. A Service Fabric cluster is a network-connected collection of virtual machines where you can deploy and manage your microservices. We will explain and Required pre-requisites Create client certificate using Azure Key Vault Create…
Read More →Azure Container Apps enables you to connect to cloud services in just a few steps by using Service Connector. Service Connector manages network configuration and connection information between different services. The requirements before creating Service Connector Container Apps that are deployed to a region that is supported by a service connector, Service Connector region supported…
Read More →Soft delete policies are available in Azure Container Registry (ACR) to recover accidentally deleted artifacts. The feature is available to all service tiers (SKUs) The Soft delete policy can be enable/disable at your discretion. When you enable the soft delete policy, ACR treats deleted artifacts as soft deleted artifacts with a specified retention period. As…
Read More →Azure Data Explorer offering: the Kusto Emulator is a local environment Docker Container that encapsulating the Kusto Query Engine, it doesn’t require provisioning Azure services or incurring any cost. Prerequisites The host operating system must be either: Windows Server 2022 Windows Server 2019 Version 10.0.17763.2928 or newer Windows 11 2 gigabytes (GB) of RAM minimum;…
Read More →Container Apps offer integrated secret management that you can use to store your secrets. You can use the secrets for storing connection strings for KEDA-based scale triggers or pass them as environment variables to the containers you deploy. Never store the secret value in the repository. Store the secrets as GitHub secrets, HashiCorp Vault, or Azure Key…
Read More →Azure Container Apps allows you to bind one or more custom domains. Every domain name must be associated with a domain certificate. Certificates are applied to the container app environment and are bound to individual container apps. You must have role-based access to the environment to add certificates. SNI domain certificates are required. Ingress must be…
Read More →Zone redundancy must be enabled when creating a container app environment. Your environment must contain a virtual network (VNet) with an infrastructure subnet. To properly distribute replicas, you must configure the minimum and a maximum number of app replicas to a value divisible by 3. The minimum number of replicas should be 3 or more….
Read More →There are instances where we need a specific set of libraries to generate our build. In the earlier approaches of VMs, it used to be creating a dedicated VM for our build pipeline and installing all the required libraries, and making sure our build will run inside that VM. This however will result in the…
Read More →An app registration with the Microsoft identity platform can be generated automatically by the Container Apps Authentication feature. A registration that you or a directory administrator generates independently may also be used. Below is the two options: Create a new app registration automatically Use an existing registration created separately Configure your container app to use…
Read More →Custom Themes I will explain how to perform upgrades using Helm operators Run the following command: helm install wp bitnami/wordpress You will force an update of the image of the MariaDB container. Let’s first check the version of the current image: kubectl describe statefulset wp-mariadb | grep Image Getting the current image of the StatefulSet…
Read More →You will update your existing cluster to include Azure AD integration. You will do this using the Azure portal: Note: Once a cluster has been integrated with Azure AD, this functionality cannot be disabled. To start, you will need an Azure AD group. You will later give admin privileges for your AKS cluster to this…
Read More →Introduction This article will explain and show the use cases for using Nodepools in Kubernetes: Describe nodepools. System and user nodepools: what are they? How can I use Labels and nodeSelector to schedule application pods on a particular nodepool? How can Taints and Tolerations be used to schedule only certain application pods on a nodepool?…
Read More →Azure Kubernetes Service (AKS) now allows for Azure Active Directory (AAD) integrated clusters to be created without any local admin user account. By default, when you create a Kubernetes cluster, access to the cluster is through a local admin account. This is not desirable for security reasons as anyone can use a local account. It…
Read More →AKS support for Kubernetes release 1.20 is now generally available. Kubernetes 1.20 delivers a total of 42 enhancements in various stages of maturity. These include capabilities such as CSI Volume Snapshot graduating to stable, Kubectl Debug to Beta, and introduction of new capabilities such as Graceful Node Shutdown in Alpha. Learn more about Kubernetes release 1.20…
Read More →