Focused on sharing DevOps, Kubernetes, Linux, Docker, Istio, microservices, Spring Cloud, Python, Go, databases, Nginx, Tomcat, cloud computing, and related technologies.
This article explains why traditional Linux monitoring tools often miss deep kernel issues and shows how to use eBPF‑based utilities such as biolatency, runqlat, and offcputime to pinpoint CPU, I/O, and lock‑contention problems with concrete command examples and a practical troubleshooting workflow.
When a Harbor registry is deployed on a cloud ECS without a public IP or GUI, you can still list projects, view repositories, retrieve image digests, and delete images entirely through RESTful API calls using curl, followed by a manual garbage‑collection step to reclaim disk space.
This guide shows how to map a low‑level containerd task ID to the corresponding Kubernetes Pod using ctr, kubectl, and jq commands, then provides step‑by‑step debugging actions such as pod inspection, log retrieval, and resource checks to quickly resolve container issues.
Learn how to prevent multiple replica pods from landing on the same node by using Kubernetes Pod Anti-Affinity, understand hard and soft scheduling rules, apply a ready‑to‑use YAML example, and verify that each replica runs on a separate host for high availability.
When a Kubernetes cluster’s etcd reaches its default 2 GB quota, it triggers a “NOSPACE” alarm that blocks all write operations, causing critical services to fail; this guide explains the root cause, how to diagnose the issue with etcdctl, and step‑by‑step remediation including compaction, defragmentation, and quota expansion.
A severe security flaw in the ingress‑nginx controller (CVE‑2025‑19742) allows unauthenticated attackers to inject malicious NGINX configuration via the auth‑tls‑match‑cn annotation, leading to remote code execution, secret leakage, and potential full Kubernetes cluster takeover, with detailed remediation steps provided.
This guide walks through upgrading a binary‑deployed Kubernetes cluster from v1.30.0 to v1.32.3, covering preparation, master and node upgrade procedures, deprecated API handling, validation, rollback, and best‑practice recommendations for production environments.
This article walks through Nginx's role as a high‑performance reverse proxy and load balancer, explains core concepts, provides step‑by‑step configuration examples—including upstream pools, server blocks, and location directives—and details performance optimizations such as gzip, connection reuse, worker settings, static‑file caching, and proxy caching.
This guide walks through two practical examples—creating a Docker image for Nginx with a custom HTML page and packaging a Go Gin‑based web service into a container—covering directory setup, Dockerfile creation, image building, container execution, and verification steps.
This guide explains how to upgrade a Kubernetes cluster from v1.30.0 to v1.30.1 without service interruption by backing up etcd, checking health, planning the rollout, upgrading master nodes and Calico, and using rolling updates and Istio canary releases for seamless application migration.
