No matter where organizations are in their cloud journey, cloud cost optimization remains an essential and top-priority concern. As organizations align increasing workloads to the cloud in terms of size there is a high possibility to lose sight of the overall cloud environment and the costs associated with it. Therefore, it’s essential to optimize cloud costs so as to maximise return over investment (ROI). With the same concern we were working towards reducing the cost of provisioned storage for one our clients. This post covers a particularly interesting issue around the same.
Continue reading “Enable Support to Provision GP3 Volumes in Storage Class”
Hello from OpsTree
A niche Cloud & DevSecOps transformation partner!
We are a huge fan of Kubernetes, Microservices & all things DevSecOps. Here, in this monthly newsletter, we share our learnings and experiences with these technologies.
The Challenges of a Microservices Journey
Microservices can save us from ‘we sail together or sink together’ paradigm of Monoliths. But with the increased modularity and a promise of faster time-to-market, comes along a unique set of challenges. While failures are inevitable, we can either plan to ring-fence them OR allow them to create a domino effect! Read more..
Continue reading “Monthly Newsletter (June’21)”
Container adoption is significantly increasing across various modern use cases, but it’s not a simple plug-and-play. Adopting containers becomes highly complicated, especially when it comes to executing them at scale as most enterprises have only limited skills and capabilities.
Many leading companies believe that Kubernetes is the first step to building scalable modern applications and they are adopting K8s to overcome container adoption barriers.
Spotify is one of these. Leveraging Kubernetes benefits, Spotify has observed significant cost-saving values as described in this case study. It has seen 2-3x CPU utilization by using the orchestration capabilities of K8s, resulting in better spend optimization.
Continue reading “A Comparison Between Various Container Orchestration Services! (ECS vs Kubernetes)”
For many of us, Kubernetes is the solution for some of the never-ending microservices application delivery problems, but Kubernetes setup and management comes with its own set of challenges. According to a report, there are 9 key Kubernetes challenges. In this blog, I’m focusing on the two primary challenges, which are Security & Networking.
Why is Security becoming such a Big Challenge for Organizations?
It’s mainly because Kubernetes is very complex and highly vulnerable if not monitored properly. As we implement Kubernetes for container orchestration, more and more containers are deployed and due to its distributed nature, hence it gets difficult to investigate which container might have vulnerabilities. Hence as a result the organization will start to feel the threat of outsiders breaching in.
One of the best examples of this situation: In 2018 Tesla’s Kubernetes admin console (which was not password protected) was breached by Hackers and mining of cryptocurrencies was done by Tesla’s cloud resources on amazon web services (AWS).
Continue reading “Challenges of Kubernetes & How to Solve it!”
In the last blog, we discussed some approaches and best practices. You can even consider some of these. Well, that was just the beginning and there are even more. Let’s dive into other approaches while configuring & managing AWS IAM.
Continue reading “AWS IAM: Best practices [ part 2 ]”