In this blog post we are going to cover how to perform Docker image scanning on the Gitlab CI/CD platform using Sysdig Secure. Container images that don’t meet the security policies that you define within Sysdig Secure will be stopped, breaking the build pipeline before being pushed to your production Docker registry.
Kubernetes, Google’s open-source container management platform, offers one of the most robust toolsets for facilitating container configuration and automation. However, the level of abstraction that is native to Kubernetes presents a lot of challenges to monitoring and, while the level of abstraction and auto-scaling Kubernetes offers is incredibly powerful, without proper monitoring, it can create even larger pain points for your team and customers.
Service mesh provides a dedicated network for service-to-service communication in a transparent way. Istio aims to help developers and operators address service mesh features such as dynamic service discovery, mutual transport layer security (TLS), circuit breakers, rate limiting, and tracing. Jaeger with Istio augments monitoring and tracing of cloud-native apps on a distributed networking system.
Well, the answer is yes and no. Containerization is a relatively new technology and needs significant efforts to containerize an application, orchestrate, secure, manage and monitor it. Hence it’s worth looking at what does it take to containerize, deploy and run an application in real production in bit details for you to take a call whether you want to venture into it yourself or not.
With the agility of modern development practices and infrastructure comes a new set of challenges – namely, that applications consist of more parts, and the relationship between infrastructure and code is much tighter. In this post, I will discuss the monitoring and alerting considerations that IT needs to think about for modern applications running on containers.
There’s been an explosion in container adoption lately and our latest release of Splunk App for Infrastructure 1.4 is focused around non-other than containers! We're excited, we're here for it, and we hope you are too.