Devops

Secure Kubernetes Cluster Upgrades: A Step-by-Step Guide In this post, I’ll document a recent Kubernetes cluster upgrade process I implemented, focusing on security, automation, and best practices. I’ll walk through the entire process from environment assessment to verification, highlighting challenges and solutions along the way. Environment Overview Our setup consisted of a small K3s Kubernetes cluster running on Ubuntu 24.04 with: 1 master node (control plane) 2 worker nodes All nodes running an older kernel version (6.8.0-56-generic) Multiple security updates pending Upgrade Objectives Update all system packages across all nodes Apply kernel updates securely Minimize downtime by implementing a rolling upgrade Establish secure automation for future upgrades Step 1: Setting Up Secure Access The first step was to establish secure, password-less authentication using SSH keys instead of using plaintext passwords. ...

Managing Proxmox Containers with Terraform Infrastructure as Code (IaC) has revolutionized the way we manage and deploy infrastructure. In this blog post, I’ll walk you through setting up and managing LXC containers in Proxmox using Terraform, a popular IaC tool. We’ll also explore a common challenge when provisioning SSH access and how to work around it effectively. Prerequisites Before we begin, make sure you have: A Proxmox VE server up and running (I’m using version 8.x) Terraform installed on your local machine (version 1.0+) LXC templates downloaded on your Proxmox server API token created in Proxmox with the appropriate permissions Project Structure Let’s set up a simple project structure for our Terraform configuration: ...