AWS Container Announcements

• Networking Best Practices for EKS is now available
• Announcing Workload Consolidation for Karpenter
  • The long awaited consolidation feature is now available with Karpenter v0.15.0
  • Consolidation will automatically look for opportunities to reschedule workloads onto a set of more cost-efficient EC2 instances
  • For more information, visit karpenter.sh
• Red Hat OpenShift Service on AWS (ROSA) is now available in the Asia Pacific Region
• AWS Support launches support for managing cases in Slack
  • Use the AWS Support App to collaborate with support agents on cases through Slack
  • See the documentation for additional information

AWS Container Blogs

• Addressing IPv4 address exhaustion in Amazon EKS clsuters using private NAT gateways
  • Describes different ways to address the IP exhaustion issue when running EKS
  • The private NAT gateway option allows instances in private subnets of a VPC to connect to other VPCs and on-premises networks with overlapping CIDR ranges
  • Since a peering connection cannot be used to connect VPCs with overlapping CIDRs, a transit gatway is necessary
  • Perform a thorough cost analysis based on AWS Transit Gateway pricing and assess whether the scale of your operations justifies the additional cost of using a transit gateway
• Run event-driven workflows with Amazon EKS and AWS Step Functions
  • Event-driven architectures with Smart Endpoints and Dump Pipes patterns further decouple services, which makes it easier to develop, scale, and maintain complex systems
  • They’re efficient because they start when the event occurs and terminate when processing completes
  • This post describes how to use Step Functions to execute Kubernetes pods/jobs in response to an event
  • The walk-through illustrates how to use Step Functions/EKS to split a large file into smaller files and stores the results in an EFS file system
• Deploying AWS Lambda functions using AWS Controllers for Kubernetes (ACK)
  • With ACK for AWS Lambda, you can use manifest files to provision Lambda functions without creating separate process to deploy Lambda functions
  • This post walks you through deploying a sample Lambda function from a Kubernetes cluster provided by Amazon EKS
• Using Kubernetes Migration Factory (KMF) to migrate from Google Kubernetes Engine (GKE) to Amazon Elastic Kubernetes Service (Amazon EKS)
  • Developed by AWS Professional Services, this tool can migrate Kubernetes resources and container images to EKS and ECR respectively
  • Although GKE is specifically called out, this tool can migrate from any Kubernetes cluster to EKS
  • The tool is available on GitHub under the Apache 2.0 license

Videos and Webinars

• K8s IRL
• EKS wildcard fargate profiles for servers kubernetes
• How To Create Virtual Kubernetes Clusters With vcluster By loft

Ecosystem News

• Introducing COSI: Object Storage Management using Kubernetes APIs
• GCP, AWS, and Azure ARM-based server performance comparison
• Kubernetes resources under the hood — Part 3
• What can Confidential Computing do for the Kubernetes community?
• GitOps Days 2022: Flux Flagger deep dive
• Kubernetes 1.25: cgroup v2 graduates to GA
• PodSecurityPolicy: The Historical Context
• Kubernetes Load Testing | 8 Tools & Best Practices
• Flux leverages Kubernetes workload identity and IAM when pulling OCI artifacts from managed registries
• Enterprise Kubernetes: Lessons Learned from Moneygram and HP
• Halving Kubernetes Compute Costs With Vertical Pod Autoscaler
• What Happens When Deleting a Pod
• How did we upgrade our EKS clusters from 1.15 to 1.22 without K8s knowledge?

GitHub Projects

• BotKube
  • BotKube helps you monitor your Kubernetes cluster, debug critical deployments and gives recommendations for standard practices by running checks on the Kubernetes resources
  • Integrates with multiple communication platforms, such as Slack, Discord, or Mattermost
• Mandoo Operator
  • Performs a security assessment of your cluster
  • Mondoo ships out-of-the-box security policies for Kubernetes: CIS Kubernetes Benchmark and the Kubernetes Application Benchmark
• dcp
  • Extracts the contents of an image onto the local filesystem or stdout

For Fun

• An oldie but goodie