The operations journey never stops—pursuing excellence endlessly.
This guide walks through enabling Basic Authentication in Envoy Gateway by creating an .htpasswd file, storing it as a Kubernetes Secret, applying a SecurityPolicy, and verifying access with curl, while highlighting important security considerations such as using HTTPS.
This tutorial explains how to use Envoy Gateway on Kubernetes to implement circuit breaker and connection‑limit policies, walks through the necessary YAML configurations, demonstrates verification with the hey load‑testing tool, and shows how these mechanisms improve system resilience in microservice architectures.
This guide shows how to configure Envoy Gateway's URLRewrite filter to transform request prefixes, replace full paths, and rewrite hostnames, providing step‑by‑step YAML examples, kubectl commands, and validation screenshots for microservice integration on Kubernetes.
This tutorial walks you through installing Envoy Gateway as a CNCF sandbox project on a Kubernetes cluster, compares it with other gateway solutions, and shows how to configure a simple HTTP route, verify the deployment, and access the service using the Gateway API.
Ingress NGINX will be officially retired in March 2026 with no further releases or security fixes, prompting users to migrate to alternatives like the modern Gateway API or other supported Ingress controllers to maintain cluster security and functionality.
This article explains the Kubernetes subPath feature, how it works under the Kubelet, and provides step‑by‑step examples for avoiding ConfigMap/Secret overwrites and achieving file isolation with PVCs, while highlighting practical tips and limitations for production use.
This article explains Envoy's request mirroring feature, shows how it copies live HTTP requests to a test backend without affecting the original response, and provides step‑by‑step configuration examples for mirroring all traffic, selective paths, percentage‑based sampling, and header‑driven routing, plus practical tips and typical use cases.
This guide walks through designing a high‑availability architecture for the open‑source Nightingale monitoring platform, covering principles such as stateless services and data redundancy, step‑by‑step cluster setup, database initialization, configuration files, systemd service creation, and HA load balancing with HAProxy to ensure resilient monitoring for modern IT operations.
This article explains the scalability limits of Prometheus, introduces vmagent as a lightweight, high‑performance collector compatible with Prometheus, and provides a step‑by‑step guide—including configuration, systemd service setup, and verification—to deploy a resilient vmagent cluster in production.
This guide walks you through deploying a fault‑tolerant, scalable VictoriaMetrics monitoring cluster on bare‑metal or virtual machines, covering architecture, component setup, systemd services, HAProxy load balancing, and verification steps for a production‑grade observability solution.
