Enable SR-IOV on Broadcom NICs and configure VF count
Running broadcom network cards using SR-IOV might require configuration of the cards firmware. This also applies for example if you want to adjust the total number of virtual functions.
Multus - pod stuck in terminating state
Having multus in place, pods might be stuck in starting or terminating state if you made a mistake in the config.
Get filesystem access using an ephemeral container in kubernetes
Sometimes you need to access a containers filesystem but the container itself is eventually distroless or does not offer any shell. Here's how to access the filesystem anyway using ephemeral containers!
Using AKS kubectl (kubelogin) on headless systems or pipelines
Running kubectl on pipelines with interactive authentication is somewhat non-optimal :-) Let's make it better without using long-living tokens.
Choosing a postgres operator
This post describes my journey on the selection of the postgres operator that matches our demand.
SAML tokens and too much accuracy on clients
Having multiple clients not being able to log in we discovered that our ADFS tokens NotBefore date is maybe too accurate for some very picky clients. Let's add some tolerance.
Manually remove a member from etcd
Recently, I needed to rollback a kubernetes control-plane node to an older snapshot. This cause (obviously) that etcd could not operate anymore in the etcd cluster. The approach in this scenario is to remove the etcd node from the cluster and add it again. The removal of it is rather
Ubuntu 22.04 (or 21.10), kubernetes & cgroups v2
On some of our systems we've recently upgraded Ubuntu to 22.04 LTS (from 20.04 LTS). And one thing that has been problematic afterwards is that containers kept crashing - or to be more exact: the containers have been killed because the probes failed. This affected cilium