Kubernetes

Using Kubernetes Ingress on OpenShift: How Routes Are Generated and When to Use Each

by Alexandre Vazquez
2025-09-222025-09-22

OpenShift supports both its native Route resources and Kubernetes Ingress. While Ingress objects are automatically translated into Routes by the OpenShift Router, this approach comes with caveats. In this article we break down how the translation works, how annotations can tune behavior, and when you should prefer Routes directly to unlock advanced features like weighted backends, wildcard hosts, or special TLS modes.

Talos: A Modern Kubernetes-Optimized Linux Distribution

by Alexandre Vazquez
2025-07-132025-07-13

Talos Linux is a secure, minimal OS built for Kubernetes. Explore its architecture, unique benefits, real-world applications, and how it compares to traditional Linux distributions.

Helm v3.17 Introduces take-ownership: What It Solves and When To Use It

by Alexandre Vazquez
2025-06-122025-06-12

Helm v3.17 introduces the `–take-ownership` flag to help Kubernetes users handle release migrations, renaming, and GitOps workflows more gracefully — without running into object ownership conflicts. Learn what it solves, its caveats, and when to use it.

Extending Kyverno Policies: Creating Custom Rules for Enhanced Kubernetes Security

by Alexandre Vazquez
2024-11-042024-11-04

Extending Kyverno policies enables Kubernetes administrators to establish and enforce tailored security and operational practices within their clusters. By leveraging Kyverno’s capabilities in validation, mutation, and generation, you can automate compliance, streamline operations, and reinforce security standards seamlessly.

Kyverno: A Detailed Way of Enforcing Standard and Custom Policies

by Alexandre Vazquez
2024-10-292024-10-29

Learn how Kyverno extends beyond Kubernetes’ built-in Pod Security Admission (PSA) to provide a flexible and powerful way to enforce policies across your cluster. This post covers installation, policy deployment, and compliance reporting using Kyverno.

Kubernetes Policy Enforcement: Understanding Pod Security Admission (PSA)

by Alexandre Vazquez
2024-10-122024-10-12

Kubernetes has introduced the Pod Security Admission (PSA) mechanism to replace the deprecated Pod Security Policies (PSP). This article dives into the key capabilities Kubernetes offers for policy enforcement out of the box, particularly focusing on the PSA framework. We will explore the core Pod Security Standards, how PSA improves security practices, and how to configure policies using Kubernetes labels to apply them to different namespaces.

Advanced Helm Tips and Tricks: Uncommon Commands and Flags for Better Kubernetes Management

by Alexandre Vazquez
2024-09-152024-09-29

Discover advanced Helm tips and tricks to enhance your Kubernetes management. Learn how to retrieve deployment values, optimize upgrades, and ensure chart quality in CI/CD pipelines.

Exposing TCP Ports Using Istio Ingress Gateway

by Alexandre Vazquez
2024-09-102024-09-23

Learn how to expose TCP ports using Istio Ingress Gateway in Kubernetes. This guide covers the steps to configure Istio for TCP traffic, including practical use cases like exposing TIBCO EMS servers, databases, and custom TCP services.

ConfigMap with Optional Values in Kubernetes

by Alexandre Vazquez
2024-09-032024-09-23

In this article, we will explore how to define an item in a Kubernetes ConfigMap as optional. This is essential to prevent deployment issues, such as `CreateContainerConfigError`, when the ConfigMap is not available. We’ll also discuss scenarios where optional ConfigMap values are useful, such as setting environment variables like proxy settings only when needed. A sample application will demonstrate how to implement this in your YAML configurations.

Boosting Kubernetes Security: Exploring KubeSec – A Must-Have Tool for Safeguarding Your Cluster

by Alexandre Vazquez
2023-08-272023-08-27

Discover KubeSec: Elevate your Kubernetes security with this essential tool. Developed by ControlPlane, KubeSec empowers experts and novices alike to assess security risks in Kubernetes resources. Learn about its versatile operational modes and JSON-based output for seamless integration. Strengthen your Kubernetes security standards with KubeSec’s user-friendly approach