Krumware

Multi-Cluster HA is an interesting topic and can be bit overwhelming for users that are new to k8s. A common problem I see is the how to leverage the GLB for multiple cluster ingress. If you're trying to solve this - I hope this post will help: In this the first problem I like to tackle is giving each cluster an IP or a VIP that floats around. The job of the GLB is to balance clusters NOT nodes. Nodes themselves should be dynamic for autoscaling purposes and should be invisible to the cluster scoped GLB (encapsulation is a good thing :)). A layer 4 loadbalancer to balance the nodes on each cluster to do the trick. You don't need any deticated hardware for this either. Tools like Kube-VIP or MetalLB are free and can solve this exact problem. The next thing is the GLB should be passing traffic with TLS passthrough (L4 mode) but with healthchecks to the /healthz endpoint (either on the ingress or the application itself). The reason for this is because you want encryption down to the cluster - but should be able to failover given a non 200/300 status code - encrypted traffic will be passed through and healthchecks can be async of requests. Keep TLS termination at the cluster level and let ingress rule (or better yet Gateway-API) drive the policy for application access and within the cluster. Use kubernetes native RBAC tooling for controlling traffic access within the cluster. Finally, keep both clusters in sync with GitOps patterns with tools such as ArgoCD or Flux. With this you should have 2+ clusters that are always ready to serve similar applications, that dont expose unencrypted traffic and gives the upstream LB the ability to fail over! Hope this helps someone!

Day 02 #KubeCon Coverage with Richard Simon and our new podcaster Live from #SaltLakeCity Colin Griffin from Krumware it was super fun to host this when you have Collin with you, #PlatformeEgineeringDay,#WASMCON, #Cilium #eBPFDAY REACAP ?????????? ?????? ?????????????????? [https://lnkd.in/d4MJjvM9], Guess who joined us Live from #KubeCon Salt Lake??Liz Rice?from?Isovalent, State of eBPF, Book Signing, and Fav KubeCon. She has signed 100 books already, so go grab yours if you are around. Colin Griffin has walked us through every possible booth at the conference hall #KONG, #ISOVALENT, #KUBECOST, #FLUX, #KAUMA #FERMYON #Linkerd and many others you need to watch the recording. ???????????????? ???? ?????? ???????? ?????????? ???????????????? ?? ???? ?????? Grab the link: https://lnkd.in/dur-TRYq #KuebCon #cloudnativecon #platformengineeringday #ciliumCon #linkerd #istio #servicemesh #wasm #opentelemetry #gitops #genAI

Have you heard? It's Kubecon 2024! Check out our special reporter Colin Griffin delivering all of the latest news from the conference. #kubecon #cloudnative #k8s #kubernetes #containers #platform

Attending Kubecon in Salt Lake City and wanting to learn how to provide dev teams with their own clusters, complete with the tools they need for instant apps? Colin Griffin will be demonstrating how operators can use Harvester, Fleet, and Epinio to deploy cloud-native software factories, and the patterns that make it possible. Join us at the SUSE booth (D2) on Thursday from 1:45pm-2:30pm! More general info about SUSE's Kubecon schedule at the click ??

NMDP is saving lives with SUSE Rancher. We're proud to be their SUSE partner!

Last week at All Things Open Conference ?? was a blast (and a blur ??)! Thanks to Todd Lewis for creating and hosting such an important conference ?? ! It's inspiring to see so many people (6k attendees ??) dedicated to the Open Source philosophy and ecosystem ?? #buildbettersoftware #krumware #opensource #ato #allthingsopen

Thank you Krumware for sponsoring #AllThingsOpen at the Gold Level! Their support helps us to bring together 200+ of the best #OpenSource leaders! Check out which speakers you can learn from and register for just $197 today! https://buff.ly/4dByFxw

??? Come and See: FINOS CCC - Join Damien Burks of Citi & Rudra Gupta of Krumware at our Open Source in Finance Forum on September 30th & October 1st. ? https://hubs.ly/Q02Q0kPt0 ?? Talk Abstract The FINOS Common Cloud Controls (CCC) project has drawn cloud service providers and financial institutions together to define a common set of security and compliance controls for cloud services. In a related effort, the Compliant Financial Infrastructure (CFI) project automates compliance conformance and verification. Take a deep dive into recent controls and automation tools produced by the CCC and CFI projects to learn how you can dramatically reduce the cost of demonstrating compliance. ?? OSFF Schedule: https://hubs.ly/Q02Q0qDq0 Event presented by FINOS & The Linux Foundation #OSFF2024 #OSinFinance #opensource #fintech #financialservices #techevent #conference #opensourcecommunity #Cloud

Tune in tomorrow to Rancher Live, to watch SUSE's Divya Mohan and Krumware's Colin Griffin talk about Platform Engineering!

You may have heard of platform engineering. ?? But what is it, and how does it impact the way we work ?? If these are some of the questions that you have ????, tune in to the upcoming episode of Rancher Live, where Divya Mohan will be hosting the co-chair of Cloud Native Computing Foundation (CNCF)'s Platform Engineering Working Group, Colin Griffin, to discuss all this and more! ???: 29th August 2024 ??: 10 AM ET ??: https://okt.to/3hYXsm