Home ยป Field Notes ยป Page 3

Field Notes

Experience from real life projects

  • Thumbnail for Optimize CPU and Memory for Kubernetes Pod

    Optimize CPU and Memory for Kubernetes Pod

    When optimizing workload performance, it is important to understand how on earth operating system allocates CPU and memory to processes. This helps understand how to…

    Read
  • Thumbnail for EKS impression

    EKS impression

    I’ve worked on a few AKS projects previously. Since I joined AWS I wanted to put aside some time to check out EKS (Elastic Kubernetes…

    Read
  • Thumbnail for Istio Operation Gotchas

    Istio Operation Gotchas

    In this post I discuss a few aspects when putting istio in operation. Installation Istio installation can be confusing, due to architectural and guideline changes…

    Read
  • Thumbnail for Service Proxy – from Nginx to Envoy

    Service Proxy – from Nginx to Envoy

    Update (Nov 20, 2022): 1. Envoy’s configuration schema can be hard to get used to. It is lacking examples because the documentation is mostly generated.…

    Read
  • Thumbnail for Istio External Authorization via OIDC

    Istio External Authorization via OIDC

    Istio service mesh allows application developers to offload non-core features to infrastructure layer. We explored authentication and authorization with Istio in a basic lab. In…

    Read
  • Thumbnail for Istio Authentication and Authorization

    Istio Authentication and Authorization

    Applications running on Kubernetes platform seeks to offload common non-business features to the platform. Istio helps Kubernetes bridge that gap. It can enforce mTLS communication,…

    Read