After 20 years in this industry, I’ve seen Production Model Deployment Patterns evolve from [past state] to [current state]. The fundamentals haven’t changed, but the implementation details have. Let me share what I’ve learned. The Fundamentals Understanding the fundamentals is crucial. Many people skip this and jump to implementation, which leads to problems later. How… Continue reading
Category: Kubernetes
Azure Kubernetes Service (AKS): A Solutions Architect’s Guide to Enterprise Container Orchestration
After two decades of deploying and managing containerized workloads across enterprises, I’ve watched Kubernetes evolve from a complex orchestration tool into the de facto standard for container management. Azure Kubernetes Service (AKS) represents Microsoft’s fully managed Kubernetes offering, and having architected dozens of AKS deployments, I can share the patterns and practices that separate successful… Continue reading
Scaling Up Your Pods: How Horizontal Pod Autoscaling Wins
After two decades of managing containerized workloads across production environments, I’ve come to appreciate that the difference between a good Kubernetes deployment and a great one often comes down to how intelligently it responds to changing demand. Horizontal Pod Autoscaling (HPA) represents one of those fundamental capabilities that separates reactive operations from proactive infrastructure management.… Continue reading
Mastering AWS EKS Deployment with Terraform: A Comprehensive Guide
Introduction: Amazon Elastic Kubernetes Service (EKS) simplifies the process of deploying, managing, and scaling containerized applications using Kubernetes on AWS. In this guide, we’ll explore how to provision an AWS EKS cluster using Terraform, an Infrastructure as Code (IaC) tool. We’ll cover essential concepts, Terraform configurations, and provide hands-on examples to help you get started… Continue reading
What is Landing Zone in Azure? How to implement it via Terraform
In Azure, a landing zone is a pre-configured environment that provides a baseline for hosting workloads. It helps organizations establish a secure, scalable, and well-managed environment for their applications and services. A landing zone typically includes a set of Azure resources such as networks, storage accounts, virtual machines, and security controls. Implementing a landing zone… Continue reading
GitOps with a comparison between Flux and ArgoCD and which one is better for use in Azure AKS
GitOps has emerged as a powerful paradigm for managing Kubernetes clusters and deploying applications. Two popular tools for implementing GitOps in Kubernetes are Flux and ArgoCD. Both tools have similar functionalities, but they differ in terms of their architecture, ease of use, and integration with cloud platforms like Azure AKS. In this blog, we will… Continue reading
The Rise of GitOps: Automating Deployment and Improving Reliability
GitOps is a relatively new approach to software delivery that has been gaining popularity in recent years. It is a set of practices for managing and deploying infrastructure and applications using Git as the single source of truth. In this blog post, we will explore the concept of GitOps, its key benefits, and some examples… Continue reading
Private Kubernetes cluster in AKS with Azure Private Link
Today, we’ll take a look at a new feature in AKS called Azure Private Link, which allows you to connect to AKS securely and privately over the Microsoft Azure backbone network. In the past, connecting to AKS from an on-premises network or other virtual network required using a public IP address, which posed potential security… Continue reading
Difference between workload managed identity, Pod Managed Identity and AKS Managed Identity
Azure Kubernetes Service(AKS) offers several options for managing identities within Kubernetes clusters, including AKS Managed Identity, Pod Managed Identity, and Workload Managed Identity. Here’s a comparison of these three options: Key Features AKS Managed Identity Pod Managed Identity Workload Managed Identity Overview A built-in feature of AKS that allows you to assign an Azure AD… Continue reading
How is AKS workload identity different from AKS pod managed identity?
AKS workload identity and AKS pod managed identity both provide a way to manage access to Azure resources from within a Kubernetes cluster. However, there are some key differences between the two features. Scope AKS pod managed identity provides a managed identity for each individual pod within a Kubernetes cluster. This allows you to grant… Continue reading