Trying Out Some Security Tools for Kubernetes

Looking over the CNCF landscape Security & Compliance section there are a bunch of tools out there: So I decided to try out a few: falco From their page: Falco parses Linux system calls from the kernel at runtime,...

Cert Manager, Botkube, and Tekton Pipelines with Conditions

I wanted to configure Cert Manager to automatically renew a Wild Card SSL Certificate and I also wanted to get notified when the renewal occurred. I ran into a couple of options for the notifications component: k8s-notify from Redhat This looked really good it just...

Simple CI/CD Elements with Tekton

Tekton Pipelines Tekton, well from their page, is: Tekton is a Kubernetes-native, continuous integration and delivery (CI/CD) framework that enables you to create containerized, composable, and configurable workloads declaratively through CRDs. As I ran into the project I decided to give it a quick test. <h3...

Monitoring Other Targets with Prometheus

I slowly started using prometheus for monitoring my kubernetes cluster and I realized I wanted to use prometheus for other targets: solaris machines, S.M.A.R.T attributes, and VMware. As I was doing research I actually ran into each of targets covered one way or another. I will try to break...

Adding a node to a Kubernetes cluster with kubeadm

I initially installed kubernetes with just a one-node setup and I got some new hardware so I wanted to add one more node to the cluster which I previously used kubeadm to install. I installed ubuntu on it and then followed the instructions from Installing kubeadm....

NGINX Ingress with Alertmanager and Prometheus

I installed the nginx-ingress controller a while back and that setup is covered in my previous post (Using the Nginx Ingress Controller with Kubernetes). Now let’s use the existing deployment to add some ingress resources. I found a couple of sites that got me started: <a...

Alerting with Prometheus on Kubernetes

After doing the setup with metricbeat I decided to try also try out prometheus to monitor a kubernetes cluster. As I kept doing some research I ran into a couple of guides that shared a common deployment: Kubernetes Monitoring with Prometheus: AlertManager, Grafana, PushGateway (part 2)....

Monitoring Kubernetes with Metricbeat

I wanted to capture kubernetes events and send them to elasticsearch which I installed a couple of days before. I ran into a couple of guides and I wanted to give metricbeat a shot: Alerting on Kubernetes Events with EFK Stack Example: Add logging and metrics to...

Adding Foreman Hosts with ansible and AWX

I wanted to checkout the provisioning capabilities of ansible. So I wanted to accomplish the same tasks as I did in my previous post and create a VM in VMware and then add a host to foreman which will create the boot profile for the VM. Creating a...

Creating an IPSec Tunnel between Google Cloud Platform and PFSense

Existing Documentation As I was trying to create a tunnel between my VPC in Google Cloud Plattform and my PfSense machine at home, I ran into a couple of resources: PFSense IPSec VPN connection to GCP Cloud VPN -> Creating a VPN Cloud VPN...