Articles
In this blog, we configure mutual TLS (mTLS) using Gateway API on GKE, securing ingress traffic with client certificate validation.
An end-to-end guide for creating a lab container for DevOps training.
In this deep dive, we set up a secure, production-ready CI/CD pipeline from GitHub Actions to GKE using Workload Identity Federation—no secrets needed.
Using GKE DNS-based endpoints for Secure cluster access
How to setup a private network for your EKS cluster with Twingate
Extend your private API Gateway with secure access from other VPCs using PrivateLink and enforce IAM-based authentication.
Learn how to deploy a secure, private-only API Gateway inside your VPC using interface endpoints, resource policies, and VPC integration.
A hands-on guide to configuring AWS Route 53 for latency-based routing across multiple regions, incorporating health checks for automatic failover.
Secure Your Kubernetes with SPIFFE + SPIRE: Zero-Trust Identity for Workloads
A hands-on technical guide to implementing AWS PrivateLink between VPCs using Terraform.
In the first part of our Container Networking Deep Dive, we explore how to set up a single network namespace inside a VM and connect it to the host using a veth pair.
In the second part of our Container Networking Deep Dive, we connect two network namespaces via a bridge on the same Linux host.
A step-by-step guide to setting up a Kafka cluster on a local Kind cluster using the Strimzi operator, with optional Terraform provisioning.
Falco Kubernetes Lab: Runtime Threat Detection with Prometheus & Grafana
Crossplane + LocalStack on kind: 100 % Local AWS Infrastructure-as-Code
How we migrated our CDN to AWS CloudFront at Trainline
Deep Dive into EC2 Networking: ENIs, IP Addressing and Deployment Architectures
An end-to-end guide for baking a Vault AMI using Packer and deploying a Vault EC2 instance on AWS.
A look at the ever-changing landscape of modern applications
A hands-on article on deploying an application on Kubernetes with Fargate.