Blog | Rmn Technology

Restrict K8s Secret access to a specific ServiceAccount

Rafael Natali

Oct 42 min read

Restrict K8s Secret access to a specific ServiceAccount

Restrict K8s Secret access to a specific ServiceAccount. Good practices for Kubernetes Secrets.

92 views0 comments

Hands-on: Assigning Pods to Nodes using Affinity Rules

Rafael Natali

Sep 212 min read

Hands-on: Assigning Pods to Nodes using Affinity Rules

Create a highly available and resilient Kubernetes platform using Pod Affinity/Anti-affinity.

57 views0 comments

Handling Kubernetes vulnerabilities with CIS Benchmark

Rafael Natali

Sep 134 min read

Handling Kubernetes vulnerabilities with CIS Benchmark

In this article, I will use a tool called kube-bench to evaluate a Kubernetes cluster for vulnerabilities covered in the CIS benchmark.

16 views0 comments

Securing your Azure Kubernetes Services Cluster

Rafael Natali

Sep 72 min read

Securing your Azure Kubernetes Services Cluster

In this article, I will present my perspective on securing an Azure Kubernetes cluster with the principle of least privilege as a top priori

20 views0 comments

Rafael Natali

Aug 315 min read

Kubernetes Certification Learning Path

Kubernetes is a widely adopted technology, with 84% of organisations actively using or evaluating it, according to the 2023 Cloud Native...

12 views0 comments

Unlocking Kafka Security with Access Control Lists (ACLs)

Rafael Natali

Mar 164 min read

Unlocking Kafka Security with Access Control Lists (ACLs)

Apache Kafka employs Access Control Lists (ACLs) as a vital component of its security infrastructure. ACLs regulate access to Kafka...

58 views0 comments

Rafael Natali

Feb 52 min read

Kubernetes Network In Action - 3/3

This is the third and final articles explaining and detailing the Kubernetes Network model with a hands-on approach. In the first article...

54 views0 comments

Rafael Natali

Jan 303 min read

Kubernetes Network In Action - 2/3

This is the second of three articles explaining and detailing the Kubernetes Network model with a hands-on approach. In the first...

60 views0 comments

Rafael Natali

Jan 222 min read

Kubernetes Network In Action - 1/3

This is the first part of three articles explaining and detailing the Kubernetes Network model with a hands-on approach. The series will...

102 views0 comments

Monitoring Kafka Container Health with Probes

Rafael Natali

Jan 152 min read

Monitoring Kafka Container Health with Probes

This article will describe how to use Kubernetes Probes to monitor the health of your Kafka pods. Container Health K8s provides a number...

86 views0 comments

Rafael Natali

Dec 18, 20231 min read

Backing up an etcd cluster

All Kubernetes objects are stored on etcd. Periodically backing up the etcd cluster data is important to recover Kubernetes clusters...

24 views0 comments

Monitoring Kafka with Prometheus and Grafana

Rafael Natali

Nov 23, 20232 min read

Monitoring Kafka with Prometheus and Grafana

This page describes the steps to quickly implement basic monitoring for Kafka Brokers using Prometheus and Grafana. Enabling Prometheus...

57 views0 comments

Rafael Natali

Nov 14, 20233 min read

Automate the AWS Cost Report creation

This article describes how to automate the AWS Cost Report creation and send it via email to specific subscribers.

11 views0 comments

Automatically Reassigning Partitions in Apache Kafka Cluster

Rafael Natali

Oct 9, 20233 min read

Automatically Reassigning Partitions in Apache Kafka Cluster

When you need to reassign a partition to another broker or brokers, the kafka-reassign-partitions tool comes in handy. It's particularly...

135 views0 comments

Improving the performance of a Kafka Connect CSV source connector

Rafael Natali

Oct 2, 20232 min read

Improving the performance of a Kafka Connect CSV source connector

When you create a source connector in Kafka Connect, by default it will use the broker's default batch.size which is 16384 bytes (16Kb)....

39 views0 comments

Running Kafka in Kubernetes with Kraft mode and SASL authentication.

Rafael Natali

Sep 26, 20233 min read

Running Kafka in Kubernetes with Kraft mode and SASL authentication.

Learn how to launch an Apache Kafka with the Apache Kafka Raft (KRaft) consensus protocol and SASL/PLAIN authentication. This article is...

1,051 views0 comments

Running Kafka in Kubernetes with KRaft mode and SSL

Rafael Natali

Sep 20, 20233 min read

Running Kafka in Kubernetes with KRaft mode and SSL

Learn how to launch an Apache Kafka with the Apache Kafka Raft (KRaft) consensus protocol and SSL encryption. This article is a...

151 views0 comments

Running Kafka in Kubernetes with KRaft mode

Rafael Natali

Sep 14, 20233 min read

Running Kafka in Kubernetes with KRaft mode

Learn how to launch an Apache Kafka with the Apache Kafka Raft (KRaft) consensus protocol, removing Kafka's dependency on Apache...

1,572 views0 comments

Securing Kubernetes Workloads: Implementing Effective Network Policies

Rafael Natali

Aug 22, 20233 min read

Securing Kubernetes Workloads: Implementing Effective Network Policies

Network Policies are an application-centric construct that allows you to specify how a pod is allowed to communicate with various network...

4 views0 comments

Deploying Applications in Kubernetes Engine Made Easy with Ansible

Rafael Natali

Aug 22, 20233 min read

Deploying Applications in Kubernetes Engine Made Easy with Ansible

Ansible infrastructure-as-code to automate Nginx deployment in Google Kubernetes Cluster (GKE) on Google Cloud Platform (GCP)....

10 views0 comments