Among the system integrators that have chosen the D2iQ Kubernetes Platform (DKP) is Dinohead, an IT services and consulting firm that applies high levels of engineering expertise to commercial and government projects. After choosing the D2iQ Kubernetes Platform (DKP) as the basis for its container management solutions, Dinohead created production-ready Kubernetes management solutions for three U.S. Air Force Software Factories.

This Kubernetes Architecture series covers the main components used in Kubernetes and provides an introduction to Kubernetes architecture. After reading these blogs, you’ll have a much deeper understanding of the main reasons for choosing Kubernetes as well as the main components that are involved when you start running applications on Kubernetes. This blog series covers the following topics.

Kubernetes is a popular open-source container orchestration platform. It is highly configurable and feature-rich, but it also requires a deep understanding of containerization. When you are running Kubernetes in production, you need to account for cluster monitoring and logging, governance, and security. In this article, you will learn about Kubernetes security, including pro tips to help you handle architecture concerns, dependencies, and container vulnerabilities.

In a recent meetup I hosted alongside Kunal Kushwaha, we discussed Cilium, an eBPF-powered open-source cloud-native networking solution that offers security, observability, scalability, and superior performance. Throughout this blog I will explore how the increased usage of Kubernetes has led to the need for advanced networking, security, and observability solutions. This will allow us to take a closer look at how Cilium can benefit Kubernetes users.

In our previous blogs on Capturing Application State and using Ephemeral Containers for Debugging Kubernetes, we discussed the value of being able to deploy specific tools to gather diagnostics for later analysis, while also providing the responder to the incident the means to resolve infrastructure or application issues.

As we announced at Cephalocon 2023 in Amsterdam, Canonical has started to make container images for Ceph available. We received lots of questions at the booth about what it means to the average Ceph user who has or wants to deploy Ceph on Ubuntu. In this blog post, we will cover the benefits to users who are running containerised Ceph on Ubuntu, and specifically how these images can provide an improved security posture.

Cloud and cluster sprawl is a problem affecting numerous organizations, undermining the efforts that led to cloud-native Kubernetes deployments and resulting in wasted resources, inefficient operations, and poor return on investment. The best way to bring cloud and cluster sprawl under control is through centralized multi-cloud and multi-cluster fleet management. There are a number of reasons why the D2iQ Kubernetes Platform (DKP) provides unmatched fleet management capabilities.

According to the recent Datadog report on real world container usage, Redis is among the top 5 technologies used in containerized workloads running on Kubernetes. Redis database is deployed across multi-region clusters to be Highly Available(HA) to a microservices application.

Custom metrics is a key component for many companies. Stock available in warehouses, shopping cart status, number of products sold, and operational status for industrial machines are some of the many KPIs that companies need for their own business tracking purposes. When it comes to custom metrics and observability platforms costs, many companies are struggling to find a good balance between availability, performance, reliability, and costs.

Since Kubernetes Monitoring launched in Grafana Cloud last year, we have introduced highly customizable dashboards and powerful analytics features. We’ve also focused on how to make monitoring and managing resource utilization within your fleet easier and more efficient. But what’s an easy way to add resources to your cluster while using Kubernetes Monitoring?

Kubernetes is now the de-facto standard for container orchestration. With more and more organizations adopting Kubernetes, it is essential that we get our fundamental ops-infra in place before any migration. In this post, we will learn about leveraging Jenkins and Spinnaker to roll out new versions of your application across different Kubernetes clusters.

This blog dives into detail about one of StackState’s most unique and powerful features, Kubernetes dependency maps. Dependency maps are Kubernetes service and infrastructure maps, enhanced with real-time topology, that show dependencies between all components at any moment in time.

Container technologies have revolutionized the field of software development. By using containers, you can bundle together an application's source code with its libraries, dependencies, and configurations, ensuring that it runs predictably and reliably on different machines. But how can you be sure that your containers are running smoothly once deployed? That's where container monitoring tools like cAdvisor come in. Below, we'll go over what cAdvisor is and the different use cases for cAdvisor.

Join us for a must-see webinar in which Kubernetes and DevSecOps experts from D2iQ and General Dynamics International Corporation (GDIT) share their insights on how to achieve zero trust security within a Kubernetes environment as part of government modernization. GDIT is among the major system integrators that have chosen D2iQ as the Kubernetes management platform on which they are creating highly secure Kubernetes solutions for their government clients.

As we’ve shown in previous blogs, Elastic® provides a way to ingest and manage telemetry from the Kubernetes cluster and the application running on it. Elastic provides out-of-the-box dashboards to help with tracking metrics, log management and analytics, APM functionality (which also supports native OpenTelemetry), and the ability to analyze everything with AIOps features and machine learning (ML).

As technology evolves in the enterprise, oftentimes the processes and tools used to manage it must also evolve. The increased adoption of Kubernetes has become a major inflection point for those of us in the monitoring and management side of the IT operations world. What has worked for decades (traditional infrastructure monitoring) has to be adjusted to the complexity and ephemeral nature of modern distributed systems where Kubernetes has a prime role.

Kubernetes is essential to modern application development and runtime. As a powerful container orchestration platform, its benefits include improved scalability, portability, and automation, all of which contribute to more resilient applications and cost savings. More and more organizations are adopting Kubernetes to develop applications that can scale, recover from failures, and quickly adapt to changing business requirements.

OpenStack is no doubt a wonderful and successful piece of software. It allows you to create your own cloud infrastructure, and thanks to its open-source nature, it’s free to use for everyone. But as with many giant software projects, all that power comes with a challenge: it is reasonably complex to install and configure.

The Docker project was initiated by dotCloud, a platform-as-a-service (PaaS) company that created Docker to run their internal infrastructure. Slowly, Docker became more successful than any of their other products, so dotCloud rebranded as Docker Inc. Docker provides easy-to-use tooling and grew into an entire ecosystem for container management.

While cloud native architecture offers many benefits when it comes to application modernization, some challenges remain for customers. However, VMware Tanzu for Kubernetes Operations on Dell VxRail can improve application resiliency and the performance needed to quickly and securely build, deploy, and manage your multi-cloud environment.

The way to solve Kubernetes complexity is with tools. Ironically, this also creates a lot of complexity because there are many options for each type of tool and, thus, an unfathomable number of combinations. Each stack of tools first requires unique integrations, and then there's ongoing work to keep all those tools integrated and working together. It's no wonder, then, that we've seen a strong willingness for organizations to spend money on Kubernetes tools.

Technology is a fast-moving commodity. Trends, thoughts, techniques, and tools evolve rapidly in the software technology space. This rapid change is particularly felt in the software the engineers in the cloud-native space make use of to build, deploy, and operate their applications. One particular area where we see rapid evolution in the past few years/months is Observability.

D2iQ is pleased to offer AWS members a self-hosted free trial of the D2iQ Kubernetes Platform (DKP) on AWS. All that is required is an active AWS account. Once you qualify, you will receive all the directions and credentials you need. Surveys show that the top challenges organizations face in deploying Kubernetes and cloud-native technologies are complexity, security, and a skills gap.

We've seen a tremendous transition in the architecture of our systems over the years, from basic, linear systems to increasingly sophisticated, non-linear systems. We've moved away from monolithic programs, where a single person could comprehend the entire operation of a system, and toward a distributed world dominated by a microservices design.

One of the unique advantages of Codefresh is the easy way for sharing data between pipeline steps. In other CI solutions it is your responsibility to decide what files should be shared with the next pipeline step or not and you need to manually upload/download or save/restore the exact folders that need to be shared. This is not only cumbersome to setup but also super slow in the case of big artifacts.

This is the first article of a series of two covering the advantages and disadvantages of hosted and non-hosted Kubernetes management platforms. First, let’s introduce hosted what is hosted Kubernetes management platform (KMP) and provide a broader view of hosted KMPs.

This article is the second in a series covering Kubernetes Management Platforms (KMPs). In the first article, we analyzed hosted KMPs, exploring their potential benefits and customer base. This blog will examine non-hosted KMPs and the organizational customer profiles that can benefit the most from this solution. After the first article, you may think that hosted KMPs are the way to go, but there are many things to consider before deciding.

At Platform.sh, we run containers. Lots and lots of containers. On hundreds of virtual machines rented from various IaaS providers. These containers run your software. They also team up with other containers that run other software that your software depends upon (such as databases or caches). This is naturally an extremely complex system, and today we'll take a look at how we wire (most of) it up.

One of the biggest issues related to large-scale cloud deployments is overspending. It’s no surprise that as organizations scale their cloud-native Kubernetes environments, the associated costs rise along with that growth. However, there is a disconnect between the rising expenses and how well businesses can accurately and effectively monitor and control costs in the cloud, across multiple clouds and in hybrid cloud environments.

Spiraling costs are causing organizations to look for ways to reduce their monthly spend – hidden charges and unexpected bills are surprises that CFOs can no longer afford. With current costs from hyperscaler cloud providers skyrocketing, many are now asking whether going cloud-native is the right move for them. There are, however, a number of tips and tricks that you can action today that will help you reduce your cloud bill at any provider.

At Logz.io, we’re seeing a very fast pace of adoption for Kubernetes–at this point, it’s even outpacing cloud adoption, with companies running on-prem fully adopting Kubernetes in production. Why are companies going in this direction? Kubernetes provides additional layers of abstraction, which helps create business agility and flexibility for deploying critical applications. At the same time, those abstraction layers create additional complexity for observability.

We are proud to announce that we have been named one of America’s Best Startup Employers 2023 by Forbes! The Forbes list of America’s Best Startup Employers 2023 was compiled by evaluating 2,600 companies with at least 50 employees in the United States. All of the companies considered were founded between 2013 and 2020, from the ground up, and were not spin-offs of existing businesses. Just like other Forbes lists, businesses cannot pay to be considered.

Spring is here and so are the latest G2 Badges! I’m happy to share that G2 has awarded 15 badges to SUSE in its 2023 spring report, including the overarching ‘Users Love Us’ badge (again). G2, the world’s largest and most trusted tech marketplace, recognized Rancher, SLE Desktop, SLE Real Time, SLES and SUSE Manager as High Performers and Momentum Leaders. G2 also awarded the openSUSE Tumbleweed Linux distribution.

If you’re interested in Kubernetes, chances are extremely high the reason is because you want to support developers, by using Kubernetes to run the applications they write for your organization. There are other use cases, such as data analysis and running enterprise applications, but most Kubernetes workloads are there to help run an organization’s custom-written applications. So how is Kubernetes helping to reach that goal?

At a time when rapid innovation has become a strategic business imperative, application development and developer experience are more important than ever.

Organizations increasingly deploy and manage their applications using Kubernetes, which has emerged as the de facto standard for container orchestration. Monitoring these resources becomes critical for ensuring that the applications running on the platforms remain healthy.

Over the years, open source has become a way of working that allows people to modify and share designs to inspect, alter, and enhance source code. This has led to a range of benefits for users of open source, such as having more control over software, better security, more stability, and an inspired community. Last year, Mark Boost, CEO at Civo, spoke with OpenUK as part of their yearly report to discover the UK’s journey with open source.

Starting the journey for Elasticsearch monitoring is crucial to get the right visibility and transparency over its behavior. Elasticsearch is the most used search and analytics engine. It provides both scalability and redundancy to provide a high-availability search. As of 2023, more than sixty thousand companies of all sizes and backgrounds are using it as their search solution to track a diverse range of data, like analytics, logging, or business information.

Developers and security experts are now tasked with bolstering, extending, and adjusting cloud and Kubernetes security to protect against cyberattacks that are ever more complex, volatile, and frequent. To foil attacks and create a secure foundation for applications and infrastructure from the beginning, DevSecOps (Development, Security, and Operations) has become the trending development and operations practice. In the DevSecOps model, security becomes a shared responsibility.

Cloud computing revolutionized how a business can establish its digital presence. Nowadays, by leveraging cloud features such as scalability, elasticity, and convenience, businesses can deploy, grow, or test an environment in every corner of the world without worrying about building the required infrastructure.

The 2023 edition of VMware’s annual State of Kubernetes report is now out, and it’s got a lot of great information about how organizations are using Kubernetes today, as well as the benefits and challenges that go along with that. In this blog post, I’m focusing on one area: multi-cloud.

The PodSecurityPolicy API, initially deprecated in Kubernetes v1.21, was entirely removed in Kubernetes v1.25. Because the API was removed, you cannot create, edit or query PodSecurityPolicy resources in a Kubernetes v1.25 cluster. Also, because its admission controller was removed, your clusters can no longer enforce any PodSecurityPolicy rules that were created in Kubernetes v1.24 and prior.

KubeCon + CloudNativeCon is the premier event that focuses on cloud-native technologies and Kubernetes. This year’s European edition took place in person and was completely sold out, with 10,000 attendees. Datadog joined the event as a platinum sponsor, and several of our engineers delivered talks on various topics, ranging from etcd to image signing and verification. In this post, we’ll share more details on these talks, along with our takeaways from the event.

So you want to spin up a Postgres database on your local machine, but you don't fancy having to install and manage everything manually? Running Postgres inside Docker is a great way to simplify the situation. It lets you: In this article I will explain how to do this step by step.

Cyber security has become a top priority across all industry sectors, public and private. Securing a Kubernetes environment presents new challenges to organizations that are transitioning from traditional IT infrastructures to container management solutions in the cloud. As D2iQ VP of Product Management Dan Ciruli points out in “ Air-gapped Advantages in a Non-Air-gapped World,” surveys show a large percentage of Kubernetes environments are vulnerable to attack, as high as 87%.

If you’re in DevOps, you know the word ‘Kubernetes’. While saying that mouthful of a word (generally shortened to k8s in text) would have gotten you a weird look and someone asking if you need to lie down before 2017, it’s been sacrilegious to even consider starting a project without architecting your solution on top of it in the last few years.

In our previous blog, we discussed the difficulty in capturing all relevant diagnostics during an incident before a “band-aid” fix is applied. The most common, concrete example of this is an application running in a container and the container is redeployed—perhaps to a prior version or the same version—simply to solve the immediate issue.

Securing sensitive data is crucial for any application, but managing this data can be complex and error-prone. Docker secrets provide a reliable and secure way to handle sensitive information like passwords, API keys, and certificates in your Docker environment. In this introductory guide, we’ll explore what Docker secrets are, how to use them with practical examples, and share some best practices to help you safeguard your sensitive data effectively.