Index¶

December 20, 2022
in Product Blog, Best Practices
3 min read

Multi-tenancy: Best practices for shared Kubernetes clusters¶

Some of the key questions that platform teams have to think about very early on in their K8s journey are:

How many clusters should I have? What is the right number for my organization?
Should I set up dedicated or shared clusters for my application teams?
What are the governance controls that need to be in place?

The model that customers are increasingly adopting is to standardize on shared clusters as the default and create a dedicated cluster only when certain considerations are met.

graph LR
  A[Request for compute from Application teams] --> B[Evaluate against list of considerations] --> C[Dedicated or shared clusters];

A few example scenarios for which Platform teams often end up setting up dedicated clusters are:

Application has low latency requirements (target SLA/SLO is significantly different from others)
Application has specific requirements that are unique to it (e.g. GPU worker nodes, CNI plugin)
Based on Type of environment - ‘Prod’ has a dedicated clusters and 'Dev', 'Test' environments have shared clusters

With shared clusters (which is the most cost efficient and therefore the default model in most customer environments), there are certain challenges that platform teams have to solve for around security and operational efficiencies.

December 19, 2022
in Product Blog, Rafay Terraform Provider, Infrastructure as Code (IaC)
2 min read

Rafay Terraform Provider - Dec 2022 Update¶

Customers can interface with the Rafay Kubernetes Operations Platform via multiple approaches:

Web Console/UI
RCTL CLI (with declarative specs)
Rafay Terraform Provider
Open API

Many of our customers that are standardized on the Infrastructure as Code (IaC) pattern are heavy users of HashiCorp's Terraform. They use Rafay's Terraform Provider for their automation requirements. They specifically use the Rafay Terraform Provider to configure and spin up entire "Kubernetes Operating Environments" for downstream teams in minutes.

As we add new capabilities to the platform, we add support for these in our Terraform Provider as well. On 18^th Dec, 2022, we rolled out our v1.12 of Rafay's Terraform Provider. In this blog, we will describe one of the interesting enhancements.

Rafay Terraform Provider

December 18, 2022
in Product Blog, Upgrade to EKS v1.23, EBS Volumes, Amazon EKS
3 min read

Considerations for In-Place Upgrades to Amazon EKS v1.23¶

Earlier this year, AWS added support for Kubernetes v1.23 for their Amazon EKS offering. One significant change with this version is with the Container Storage Interface (CSI) for working with AWS Elastic Block Store (Amazon EBS) volumes.

Specifically, the updates to the CSI driver require customers to take action to ensure a seamless upgrade process for EKS clusters from previous versions. The CSI was developed in Kubernetes to replace the in-tree driver. With the CSI, there is now a simplified plug-in model that makes it easier for storage providers to decouple their releases from the Kubernetes release cycle.

graph LR
  A[In-Tree Storage Driver] --> B[CSI Plugin for EBS CSI];

In a nutshell, this transition is good for Amazon EKS users because they do not have to upgrade Kubernetes versions for their EKS clusters just to get some additional functionality or bug fixes for EBS storage via the "in-tree driver".

December 17, 2022
in Product Blog, Hands-on Learning, Basics of Kubernetes
3 min read

Learn Basics of Kubernetes For Everyone¶

Are you an App Developer struggling to learn the basics of Kubernetes because you have no time and no access to resources that help you with this in a step-by-step manner?

Learn Kubernetes

December 16, 2022
in Product Blog, Product Documentation
2 min read

New User Experience for Product Documentation¶

We invest a lot of time creating and maintaining our customer facing product documentation. Over the last few years, as we added significant width to our platform, we found ourselves in a situation where the way the content was presented especially for new users was overwhelming to them.

We have been working behind the scenes for a few weeks to present the breadth of capabilities of the platform in our documentation in a format that is "visually easy" for the user to navigate. Today, we launched our refreshed Product Documentation site. We thought it would be fun to memorialize this milestone by writing a brief blog.

December 12, 2022
in Product Blog, Training, Istio Service Mesh
3 min read

Enforce mTLS using Rafay's Managed Service Mesh¶

Earlier this week, we provided "hands-on, labs based training" for approximately 25 technologists on the recently introduced "Managed Service Mesh" capability in the Rafay Kubernetes Operations Platform.

Here's what we setup for the enablement session:

Each attendee was provided with their own Kubernetes cluster.
We spun up 25 Kubernetes clusters on Digital Ocean just a few hours before the session.
Each attendee had their own dedicated "project" in the "Training" Org

25 Training Clusters

Background¶

It is now becoming a standard operational requirement for applications to require the use of a Zero Trust security model. One of the important aspects of this model is the use of mutual TLS (mTLS) to ensure all communication between services are mutually authenticated and strongly encrypted.

Application teams commonly find themselves having to deal with this in the 11^th hour. At this point, it is either "too late" to retrofit their application business logic or the legacy containerized application is not capable of being retrofitted. The service mesh's sidecar based enforcement approach is a perfect solution for scenarios like this.

Sidecar

December 9, 2022
in Product Blog, Training, Amazon EKS Lifecycle Management
3 min read

Takeover Lifecycle Management of Amazon EKS Clusters¶

We invest a lot of time training our employees, partners and customers on capabilities that are seeing a lot of inbound interest from our customers.

Earlier this week, we provided "hands-on, labs based training" for approximately 30 technologists on a very interesting "capability" in the Rafay Kubernetes Operations Platform.

Background¶

Many of our customers that use AWS typically already have a few Amazon EKS clusters provisioned and in use before they intercept with the Rafay Kubernetes platform. They may have provisioned these clusters using Terraform or one of the many alternatives that exist in the market.

As they start using the platform, they naturally stumble onto the "Convert to Managed" option next to their imported EKS clusters and learn about this capability.

Convert 2 Managed

November 30, 2022
in Product Blog, Training, Cost Management
2 min read

Integrated Cost Visibility & Governance for Kubernetes¶

Last week, we wrapped up "hands-on enablement" on our recently released "Integrated Cost Management" service for approximately 25 technologists. Here's what the team experienced in the 60-minute lab.

Integrated Cost Management

1. What does it take to enable cost visibility and management for a fleet of clusters spanning Amazon EKS, Azure AKS, and on-premises clusters in data centers?

With the Rafay Kubernetes Operations Platform, you can do this literally in a "single click/step".