Alexandre Vazquez

Using Kubernetes Ingress on OpenShift: How Routes Are Generated and When to Use Each

by Alexandre Vazquez
2025-09-222025-09-22

OpenShift supports both its native Route resources and Kubernetes Ingress. While Ingress objects are automatically translated into Routes by the OpenShift Router, this approach comes with caveats. In this article we break down how the translation works, how annotations can tune behavior, and when you should prefer Routes directly to unlock advanced features like weighted backends, wildcard hosts, or special TLS modes.

Talos: A Modern Kubernetes-Optimized Linux Distribution

by Alexandre Vazquez
2025-07-132025-07-13

Talos Linux is a secure, minimal OS built for Kubernetes. Explore its architecture, unique benefits, real-world applications, and how it compares to traditional Linux distributions.

Introducing XSLTPlayground.com — The Modern Way to Test, Optimize, and Debug XSLT in Real Time

by Alexandre Vazquez
2025-07-062025-07-06

Discover XSLTPlayground.com — a free, web-based tool to edit, test, and optimize XSLT in real time. Supports multi-input, parameter sync, performance insights, and more.

Helm v3.17 Introduces take-ownership: What It Solves and When To Use It

by Alexandre Vazquez
2025-06-122025-06-12

Helm v3.17 introduces the `–take-ownership` flag to help Kubernetes users handle release migrations, renaming, and GitOps workflows more gracefully — without running into object ownership conflicts. Learn what it solves, its caveats, and when to use it.

Extending Kyverno Policies: Creating Custom Rules for Enhanced Kubernetes Security

by Alexandre Vazquez
2024-11-042024-11-04

Extending Kyverno policies enables Kubernetes administrators to establish and enforce tailored security and operational practices within their clusters. By leveraging Kyverno’s capabilities in validation, mutation, and generation, you can automate compliance, streamline operations, and reinforce security standards seamlessly.

Kyverno: A Detailed Way of Enforcing Standard and Custom Policies

by Alexandre Vazquez
2024-10-292024-10-29

Learn how Kyverno extends beyond Kubernetes’ built-in Pod Security Admission (PSA) to provide a flexible and powerful way to enforce policies across your cluster. This post covers installation, policy deployment, and compliance reporting using Kyverno.

Kubernetes Policy Enforcement: Understanding Pod Security Admission (PSA)

by Alexandre Vazquez
2024-10-122024-10-12

Kubernetes has introduced the Pod Security Admission (PSA) mechanism to replace the deprecated Pod Security Policies (PSP). This article dives into the key capabilities Kubernetes offers for policy enforcement out of the box, particularly focusing on the PSA framework. We will explore the core Pod Security Standards, how PSA improves security practices, and how to configure policies using Kubernetes labels to apply them to different namespaces.

Understanding Helm Hooks: A Guide to Using Hooks in Your Helm Charts

by Alexandre Vazquez
2024-09-22

Learn how to leverage Helm hooks to control the lifecycle of your Kubernetes deployments. This guide covers all available hooks, their use cases, and important annotations for fine-tuning your Helm charts

Advanced Helm Tips and Tricks: Uncommon Commands and Flags for Better Kubernetes Management

by Alexandre Vazquez
2024-09-152024-09-29

Discover advanced Helm tips and tricks to enhance your Kubernetes management. Learn how to retrieve deployment values, optimize upgrades, and ensure chart quality in CI/CD pipelines.

Exposing TCP Ports Using Istio Ingress Gateway

by Alexandre Vazquez
2024-09-102024-09-23

Learn how to expose TCP ports using Istio Ingress Gateway in Kubernetes. This guide covers the steps to configure Istio for TCP traffic, including practical use cases like exposing TIBCO EMS servers, databases, and custom TCP services.