Network
Terraform map expansion - interface ranges Paid Members Public
Expanding value ranges dynamically in terraform can help you to compact your configuration and keep the focus on the values. It takes a few moments to expand the values using regex magic, still it's worth the effort!
Cannot access more than a few virtual functions using SRIOV Paid Members Public
SRIOV is a powerful technology with it's own challenges. Sometimes simple things are the solutions. Still you can always learn a little more about how it works behind the curtain!
multus - deadlock state on thick plugin Paid Members Public
Using Multus CNI's 'thick plugin' in Kubernetes can cause pod startup deadlocks due to circular dependencies between pods and the Multus daemon. Switching to the daemonless 'thin plugin' mode effectively resolves this initialization issue.
Enable SR-IOV on Broadcom NICs and configure VF count Paid Members Public
Running broadcom network cards using SR-IOV might require configuration of the cards firmware. This also applies for example if you want to adjust the total number of virtual functions.
Multus - pod stuck in terminating state Paid Members Public
Having multus in place, pods might be stuck in starting or terminating state if you made a mistake in the config.
Migrate a netadapter configuration in an atomic command Paid Members Public
You know the situation: You need to perform multiple commands that will disconnect you in the middle. Functions to the rescue!
Linux kernel keyrings, container isolation and maybe some kerberos Paid Members Public
On a recent project I've been stumbling on the case that kerberos tickets have been inadvertently shared across containers on a node - which obviously caught my attention as I'm not keen on sharing such secrets across workloads. This post describes why this happens and what to do to prevent this.
openvpn 2.6.0 released Paid Members Public
The new openvpn 2.6.0 has some very nice and shiny features you might want to starting using soon. This post highlights some of them.
