Testing outbound connections in AKS-Kubenet and ACI

What happens if a pod in AKS initiates a connection with a private endpoint? Which private IP address does the outbound connection uses? This is relevant for a private IP inside the same VNET, a peered VNET or an IP accessible via a VPN or Express Route. In general, the private IP of the VM … More Testing outbound connections in AKS-Kubenet and ACI

Network Policies with Calico in AKS

Calico network plugin is finally supported within Azure Kubernetes Services (AKS). There is a very good tutorial on the online documentation, so we won’t give a walkthrough here. Instead we will highlight a couple of points about Network Policies in general and in AKS. Online references On top of the aforementioned AKS tutorial, we recommend … More Network Policies with Calico in AKS

Azure AD Pod Identity in AKS

I wanted to start looking at a few modules helping integrate AKS with the rest of Azure. A big integration point is identity. For many reasons, we’ll want our pods to use service principal identities: Access an Azure service supporting AAD-integration Data Lake Store Azure SQL DB Azure Key Vault Many more… Access Azure Resource … More Azure AD Pod Identity in AKS

Custom Logs on AKS & Azure Monitor

Let’s look at a concrete problem: I have containers deployed in AKS Those container log into custom files I want to analyse those logs using Azure Monitor (Log Analytics) We’ll look at how to do that. We leverage Azure Monitor for containers. Custom logs in Log Analytics also is interesting. That component allows us to … More Custom Logs on AKS & Azure Monitor

Understanding multiple Ingress in AKS

Last time, I covered the ins and outs of Ingress on AKS. We looked at how to install nginx ingress controller and how the controller is deployed as a load balanced service. We did some URL based routing and domain name overloading. This was in the spirit of clarifying the magic behind Ingress Controllers. Another … More Understanding multiple Ingress in AKS

Understanding simple HTTP Ingress in AKS

We looked at Kubernetes Ingress conceptually. We looked at different use cases: URL based routing and multiple domains. We also looked at how ingress was implemented from an AKS perspective, i.e. where traffic was routed in nodes. In this article, I wanted to get hands on. I figured we could start slowly with simple configuration: … More Understanding simple HTTP Ingress in AKS