| |
| 🔗 Stories, Tutorials & Articles |
| |
|
| |
| 8 Terraform continuous validation use cases for AWS, Google Cloud, and Azure |
| |
| |
Continuous validation is a foundational feature for HashiCorp Terraform Cloud Plus, ensuring that infrastructure is working as expected by providing long-term visibility and checks for health and security. Users can define assertions using check blocks in Terraform configuration to monitor various aspects such as security gaps, budgets, certificate expiration, and the status of virtual machines. These assertions proactively monitor configurations and modules, notifying users if any assertions fail and helping them identify and address issues early on. |
|
| |
|
| |
|
| |
| Centrally manage the scope of Istio resources in a multi-tenant Kubernetes cluster |
| |
| |
Istio resources, such as VirtualService, ServiceEntry, and DestinationRule, have a default behavior of applying to the entire cluster, which can lead to undesired effects in multi-tenant clusters. To mitigate this, the article suggests three ways to limit the impact of Istio resources: setting the default configuration to apply only to the namespace they are created in, using Open Policy Agent (OPA) Gatekeeper to restrict resource creation and mutation to the same namespace, or changing the default scope in the Istio mesh configuration. |
|
| |
|
|
| |
|
| |
| New report: State of Kubernetes Cost Optimization |
| |
| |
The inaugural State of Kubernetes Cost Optimization report provides insights and best practices for running cost-efficient clusters in the public cloud without compromising performance or reliability. The report highlights the importance of setting resource requests for workloads and offers tools to identify workloads that do not have requests set, emphasizing the need for workload rightsizing. |
|
| |
|
|
| |
|
| |
| Cloud Expenditure - A Storm is Brewing |
| |
| |
Expenditure on cloud computing services reached $225 billion in 2022. With rising costs and resource wastage, organizations are implementing FinOps frameworks and facing challenges in right-sizing Kubernetes workloads. StormForge offers solutions for visibility, intelligence, and automation to optimize cloud resources and reduce wastage, leading to significant cost savings. |
|
| |
|
|
| |
|
| |
| GKE (Google Kubernetes Engine) Review ✅ |
| |
| |
GKE (Google Kubernetes Engine) is praised as the best managed Kubernetes product available, offering a seamless experience for users. It simplifies various tasks such as node management, upgrades, and security, making it an attractive choice for those serious about using Kubernetes. GKE Autopilot, in particular, provides an even easier deployment experience, suitable for small companies that prefer to avoid infrastructure management. |
|
| |
|
| |
|
| |
| Cloud Backed SQLiteLogin |
| |
| |
The cloud back-end SQLite (CBS) system allows databases to be stored within a cloud storage account, enabling reading and writing to the database without first downloading the entire database. The system supports concurrent access to the database by multiple clients and provides APIs for managing concurrent access. |
|
| |
|
| |
|
| |
| Implementing GCP VPC Service controls using Terraform (Terragrunt) |
| |
| |
VPC Service Controls is a powerful security feature offered by Google Cloud Platform that allows you to create a service perimeter to control communication within and across Google-managed resources. By defining ingress and egress rules, you can regulate access to resources and protect against unauthorized actions. Implementing VPC Service Controls involves configuring YAML files, setting up infrastructure using Terraform and Terragrunt, and adjusting access levels and permissions. |
|
| |
|
|
| |
