⚙️ Configuration
Configure K8s right: ConfigMaps, Secrets, resource limits, node management, MachineConfigPools, GPU Operator, NicClusterPolicy, and DOCA driver builds.
Crossplane Kubernetes Infrastructure Management
Manage cloud infrastructure as Kubernetes resources with Crossplane. Provision AWS, GCP, and Azure resources using custom resource
Kubernetes CronJob ConcurrencyPolicy Guide
Configure Kubernetes CronJob concurrencyPolicy with Allow, Forbid, and Replace options. Control concurrent job execution, prevent overlapping runs, and handle
Kubernetes EnvFrom ConfigMap Environment Variables
Inject all ConfigMap keys as environment variables using envFrom in Kubernetes pods. Configure configMapRef, secretRef, prefix options, and selective key
Kubernetes Kind Local Development Cluster
Create local Kubernetes clusters with kind (Kubernetes in Docker). Multi-node clusters, ingress setup, local registry, port mapping, volume mounts, and CI/CD
Kubernetes Kustomize Configuration Management
Manage Kubernetes configurations with Kustomize. Build overlays for multiple environments, patch resources, generate ConfigMaps and Secrets, and integrate
Kubernetes Labels and Annotations Best Practices
Implement Kubernetes labels and annotations following best practices. Recommended label keys, organizational conventions, selectors, annotations vs labels
Kubernetes Namespace Best Practices
Organize Kubernetes clusters with namespace best practices. Separation strategies, resource quotas, network policies, RBAC per namespace, naming
Kubernetes Pod Priority and Preemption
Configure pod priority and preemption in Kubernetes for critical workloads. PriorityClass definitions, preemption behavior, protecting system
Kubernetes Taints and Tolerations Node Scheduling
Control pod scheduling with Kubernetes taints and tolerations. Dedicate nodes to specific workloads, prevent scheduling on control-plane nodes, implement GPU
OpenShift Support Lifecycle and Version Matrix
OpenShift Container Platform support lifecycle, version EOL dates, Kubernetes version mapping, upgrade paths, and Extended Update Support (EUS). Plan upgrades
Mirror OpenShift Releases to Disconnected Registry
Mirror OCP release images to an air-gapped Quay registry using oc adm release mirror. Auth setup, proxy config, ImageDigestMirrorSet, and disconnected updates.
Image Pull Optimization for Kubernetes
Optimize container image pull performance in Kubernetes. Layer caching, pre-pulling with DaemonSets, image streaming, lazy pulling with stargz/nydus, registry
OCI Container Image Internals on Kubernetes
Understand OCI container image internals: layers as tar archive diffs, image configuration JSON, content-addressable storage with SHA-256, multi-platform image
OpenShift Cluster Update Process Explained
Complete guide to OpenShift Container Platform cluster updates. CVO workflow, Runlevels, Machine Config Operator node updates, update channels
Kubernetes Cost Optimization Strategies
Comprehensive cost reduction strategies for Kubernetes clusters: right-sizing, spot instances, autoscaling, idle resource detection, namespace budgets, and GPU
Kubernetes 1.36 Declarative Type Validation
Kubernetes 1.36 introduces declarative validation for native API types using validation-gen. Replaces hand-written validation code with struct tag annotations.
Migrate from gitRepo Volume in Kubernetes 1.36
The gitRepo volume plugin is permanently removed in Kubernetes 1.36. Migrate to init containers or OCI volumes to avoid broken deployments.
Kubernetes 1.36 Graceful Leader Transition
Configure graceful leader transitions in Kubernetes 1.36 control plane components. Eliminate brief outages during leader election failovers.
Kubernetes 1.36 L3 Cache Topology in CPU Manager
Configure L3 cache topology awareness in Kubernetes 1.36 CPU Manager. Allocate CPUs sharing L3 cache for better performance in latency-sensitive workloads.
Kubernetes 1.36 Memory QoS with cgroups v2
Configure memory quality of service with cgroups v2 in Kubernetes 1.36. Set memory.min and memory.high for guaranteed memory and throttling before OOM kills.
Kubernetes 1.36 Mixed Version Proxy
Use the Mixed Version Proxy in Kubernetes 1.36 to handle API version skew during rolling upgrades. Ensures API availability across mixed control plane versions.
Kubernetes 1.36 Pod-Level Resource Limits
Set resource requests and limits at the Pod level in Kubernetes 1.36 instead of per-container. Simplifies multi-container Pod resource management.
NATS: Lightweight Messaging for Kubernetes
Deploy NATS messaging in Kubernetes for pub/sub, request/reply, and JetStream persistent streaming. High-performance alternative to Kafka for cloud-native mi...
kubectl apply vs create: Key Differences
Understand when to use kubectl apply vs kubectl create. Declarative vs imperative, last-applied annotation, server-side apply, and GitOps workflows.
kubectl Cheat Sheet: Essential Commands
Complete kubectl cheat sheet with essential commands for pods, deployments, services, debugging, and cluster management. Copy-paste ready examples.
kubectl explain: API Resource Reference
Use kubectl explain and api-resources to discover Kubernetes API objects. Field documentation, resource versions, short names, and API group exploration.
Backstage: K8s Developer Portal and Catalog
Deploy the Backstage developer portal on Kubernetes for a service catalog, API docs, software templates, and TechDocs documentation.
Cluster API: Declarative K8s Management
Manage Kubernetes cluster lifecycle with Cluster API. Provision, upgrade, and scale clusters declaratively using management clusters and infrastructure provi...
K8s ConfigMap: Create and Mount Guide
Create Kubernetes ConfigMaps from files, literals, and directories. Mount as volumes or environment variables with hot-reload and immutable ConfigMap patterns.
K8s Container Runtimes: containerd vs CRI-O
Compare Kubernetes container runtimes containerd and CRI-O. Configuration, crictl debugging, runtime class for gVisor and Kata, and migration from Docker.
K8s Custom Resources: CRD Development
Create Kubernetes Custom Resource Definitions with schema validation, additional printer columns, subresources, and conversion webhooks.
Crossplane: Provision Cloud from Kubernetes
Manage cloud infrastructure with Crossplane in Kubernetes. Provision AWS RDS, S3, Azure databases, and GCP resources using Kubernetes manifests and compositi...
etcd Deep Dive: K8s Data Store Operations
Master etcd operations for Kubernetes. Backup and restore, compaction, defragmentation, health checks, member management, and performance tuning for production.
kubeadm init: Bootstrap K8s Cluster
Bootstrap a Kubernetes cluster with kubeadm init and join. Control plane setup, worker node joining, pod network installation.
K8s kubeadm Upgrade: Step-by-Step Guide
Upgrade Kubernetes clusters with kubeadm from one minor version to the next. Control plane upgrade, worker node drain, kubelet upgrade, and rollback procedures.
kubectl Plugins: Extend with Krew
Install kubectl plugins with Krew package manager. Essential plugins for debugging, resource management, and cluster operations. Build custom kubectl plugins.
kubectl wait: Script K8s Operations
Use kubectl wait for scripting Kubernetes operations. Wait for pod ready, job completion, deployment rollout, and custom conditions in CI/CD pipelines.
K8s Kubelet Configuration and Tuning
Configure Kubernetes kubelet with KubeletConfiguration API. Resource reservation, eviction thresholds, image garbage collection, and node allocatable settings.
Kustomize: Customize K8s Manifests
Use Kustomize to customize Kubernetes manifests without templates. Overlays, patches, configMapGenerator, secretGenerator.
Kubernetes Labels Best Practices
Kubernetes labels best practices for organizing workloads. Recommended label schemas, selector patterns, naming conventions, and operational label strategies.
Kubernetes Namespaces: Complete Guide
Create and manage Kubernetes namespaces for multi-tenant isolation. Resource quotas, RBAC per namespace, network policies, and LimitRange configuration.
K8s Projected Volumes: Combine Sources
Configure Kubernetes projected volumes to combine secrets, configmaps, downward API, and service account tokens into a single mount.
K8s QoS Classes: Guaranteed vs Burstable
Understand Kubernetes QoS classes for pod eviction priority. Guaranteed, Burstable, and BestEffort resource configurations and eviction behavior under pressure.
K8s ResourceQuota and LimitRange Guide
Configure Kubernetes ResourceQuota and LimitRange for namespace resource management. CPU and memory quotas, pod count limits, and default container limits.
K8s Taints and Tolerations Explained
Configure Kubernetes taints and tolerations for pod scheduling. NoSchedule, PreferNoSchedule, NoExecute effects, GPU node taints, and drain behavior.
Air-Gap OpenShift Upgrade oc-mirror OSUS
Upgrade air-gapped OpenShift with oc-mirror and OSUS. Mirror release payloads and Cincinnati graph, configure IDMS, and drive CVO upgrades.
Cincinnati Graph OpenShift Upgrades
Understand Cincinnati upgrade graph for OpenShift. Query graph endpoints, decode channels, blocked edges, conditional updates, and debug upgrade paths.
containerd certs.d Registry CA Trust
Configure containerd to trust private registry CAs using /etc/containerd/certs.d. Set up hosts.toml for custom CA certificates and mirror registries.
kubectl create secret docker-registry
Create Kubernetes Docker registry secrets with --docker-password-stdin. Authenticate to private registries and configure imagePullSecrets securely.
OpenShift IDMS ITMS Mirror Rules Guide
Configure IDMS and ITMS mirror rules in OpenShift for disconnected registries. NeverContactSource vs AllowContactingSource and ICSP migration.
IDMS ITMS ICSP Disconnected OpenShift
Configure ImageDigestMirrorSet, ImageTagMirrorSet, and ImageContentSourcePolicy for disconnected OpenShift. Redirect image pulls to your mirror registry.
Kubernetes ConfigMap Secrets Management
Manage ConfigMaps and Secrets in Kubernetes. Create, mount, update, and secure application configuration and sensitive data effectively.
Kubernetes Namespace Management Guide
Create, manage, and organize Kubernetes namespaces for multi-tenancy. Resource isolation, RBAC scoping, namespace quotas, and lifecycle best practices.
Kubernetes ResourceQuota LimitRange
Configure ResourceQuota and LimitRange for Kubernetes namespace resource governance. CPU, memory, storage, and object count limits for multi-tenant clusters.
OSUS Direct vs Replicated OpenShift
Choose between direct and replicated OSUS graph data modes in OpenShift. Configure UpdateService for connected and disconnected environments.
Flexera License Management Kubernetes
Manage software licenses in Kubernetes with Flexera. FlexNet Manager, container license tracking, GPU software metering, and compliance for enterprise K8s.
crun vs runc Container Runtime 2026
Compare crun vs runc container runtimes for Kubernetes. Performance benchmarks, memory usage, cgroup v2 support, and migration from runc to crun guide.
K8s Admission Controllers List Guide
Complete list of Kubernetes admission controllers. Enable and disable controllers, PodSecurity, ResourceQuota, and custom validating webhooks guide.
Kubernetes API Versions Explained
Understand K8s API versions: alpha, beta, stable. API deprecation policy, migration strategy, and kubectl api-versions usage.
ConfigMap subPath Update Fix K8s
Handle ConfigMap subPath mount limitations in Kubernetes. Why subPath mounts don't auto-update, workarounds, and alternative patterns.
Docker Registry Secret kubectl
Create Kubernetes docker-registry secrets with kubectl. --docker-password-stdin, .dockerconfigjson format, and automating registry authentication.
Kubernetes Downward API: Complete Guide
Expose pod and container metadata to applications using the Downward API. Environment variables, volume files, fieldRef, resourceFieldRef, and common patterns.
Env Variables from ConfigMap K8s
Inject environment variables from ConfigMaps and Secrets in Kubernetes. envFrom, valueFrom, configMapKeyRef, and secretKeyRef patterns.
envFrom ConfigMapRef Kubernetes
Inject all ConfigMap keys as environment variables using envFrom configMapRef in Kubernetes. Bulk injection, prefix, and selective key patterns.
etcd Performance Tuning Kubernetes
Tune etcd for Kubernetes cluster performance. Disk IOPS requirements, compaction, defragmentation, and monitoring etcd health metrics.
imagePullSecrets Pod Config K8s
Configure imagePullSecrets for pulling from private container registries on Kubernetes. Docker registry secrets, service account default.
K8s Labels vs Annotations Explained
Kubernetes labels vs annotations differences explained. When to use each, recommended labels, label selectors, and annotation best practices for K8s.
Resource Format 200m 256Mi Syntax
Understand Kubernetes resource format: CPU millicores (200m, 500m, 1) and memory units (256Mi, 1Gi). Syntax reference for requests, limits.
Kustomize vs Helm Comparison Guide
Kustomize vs Helm comparison for Kubernetes. When to use each tool, complexity trade-offs, GitOps compatibility, and combined workflow patterns.
OpenShift Lifecycle Versions Guide
OpenShift Container Platform lifecycle, version support, and upgrade planning. EUS versions, support timelines, K8s version mapping, and EOL dates.
API Priority and Fairness K8s Guide
Configure Kubernetes API Priority and Fairness to protect the API server. Covers FlowSchemas, PriorityLevelConfigurations, and request concurrency tuning.
ConfigMap Best Practices K8s Guide
ConfigMap best practices for Kubernetes applications. Size limits, binary data, environment variables vs volume mounts, and hot-reload patterns.
ConfigMap Reload Patterns Kubernetes
Implement automatic ConfigMap reload in Kubernetes using volume projection, Reloader operator, checksum annotations, and inotify sidecars.
Immutable ConfigMaps and Secrets
Use immutable ConfigMaps and Secrets for performance and safety in Kubernetes. Reduce API server load, prevent accidental changes.
Container Runtime Comparison K8s
Compare Kubernetes container runtimes: containerd vs CRI-O vs Kata Containers. Performance, security, and use cases for each runtime in production.
CRD Development Kubernetes Guide
Design and implement Kubernetes Custom Resource Definitions. Schema validation, status subresource, printer columns, conversion webhooks.
Crossplane Infrastructure as Code
Manage cloud infrastructure from Kubernetes with Crossplane. Covers Composite Resources, Compositions, and provider configuration for AWS and GCP.
etcd Backup and Restore Kubernetes
Back up and restore etcd for Kubernetes disaster recovery. Covers automated snapshots, S3 upload, and point-in-time restore procedures.
Finalizers and Ownership Guide
Understand Kubernetes finalizers and owner references for resource lifecycle management. Prevent resource leaks, implement cleanup logic.
Kustomize Advanced Patterns Kubernetes
Advanced Kustomize patterns for Kubernetes configuration management. Strategic merge patches, JSON patches, components, replacements.
Kustomize Overlays Guide Kubernetes
Manage Kubernetes manifests with Kustomize overlays. Base and overlay patterns, strategic merge patches, JSON patches, ConfigMap generators.
Multi-Cluster K8s Mgmt Patterns
Manage multiple Kubernetes clusters with kubectx, Cluster API, Fleet, and federation patterns. Context switching, workload distribution.
Resource Limits and Requests Guide
Configure CPU and memory requests and limits for Kubernetes pods. Guaranteed vs Burstable vs BestEffort QoS classes, OOMKill prevention.
CPU and Memory Limits Deep Dive
Deep dive into Kubernetes CPU and memory management. CFS bandwidth throttling, OOMKill scoring, cgroup v2 behavior, memory.high vs memory.
Disable OperatorHub Default Sources
Disable default OperatorHub catalog sources in OpenShift for air-gapped clusters. Use OperatorHub CR to disable individual or all sources with Ansible auto.
Databases on K8s: Memory Overcommit
Why vm.overcommit_memory must be disabled for production databases on Kubernetes. Configure guaranteed QoS, disable swap.
Kubernetes startupProbe Configuration Guide
Configure startupProbe for slow-starting containers to prevent premature kills. Understand interaction with liveness and readiness probes.
Kubernetes imagePullPolicy Guide
Configure imagePullPolicy correctly: Always, Never, and IfNotPresent behavior. Understand digest pinning and tag mutability implications.
Kubernetes Job Parallelism Guide
Configure Kubernetes Jobs with parallelism, completions, and indexed completion mode for efficient batch processing and parallel workloads.
Kubernetes LimitRange Defaults
Set default resource requests and limits per namespace with LimitRange. Enforce min/max constraints and prevent unbounded resource consumption.
Kubernetes Node Affinity Guide
Schedule pods to specific nodes with requiredDuringScheduling and preferredDuringScheduling node affinity. Control placement with expressions and weights.
Pod Priority Preemption Kubernetes
Configure PriorityClasses to ensure critical workloads get resources by preempting lower-priority pods. Understand preemption mechanics and safeguards.
Pod Topology Spread Constraints Guide
Use topologySpreadConstraints to distribute pods evenly across zones, nodes, and failure domains for high availability in Kubernetes.
Install Kubernetes on Fedora with kubeadm
Step-by-step guide to install Kubernetes on Fedora Linux using kubeadm. Disable swap, configure containerd, install kubeadm kubelet kubectl.
Create ConfigMap from File in Kubernetes
Create Kubernetes ConfigMaps from files, directories, and env files with kubectl. Mount as volumes or inject as environment variables in pods.
Kubernetes Downward API: Pod Metadata in Env
Expose pod metadata to containers using Kubernetes Downward API. Access pod name, namespace, node name, labels, annotations.
Kubernetes Finalizers Explained
How Kubernetes finalizers work: prevent resource deletion until cleanup completes. Custom finalizer patterns, stuck resource recovery.
Kubernetes kustomization.yaml Guide
Write kustomization.yaml files for Kubernetes resource management. Overlays, patches, generators, transformers, and multi-environment deployment patterns.
Kubernetes Liveness Probe Best Practices
Configure Kubernetes liveness probes correctly. Best practices for httpGet, exec, and tcpSocket probes. Avoid database checks, thundering herd.
K8s PriorityClass and Missing Pod Priority
Fix missing pod priority in Kubernetes. PriorityClass configuration, preemption behavior, system-critical classes, and scheduling order for GPU workloads.
Kubernetes Release Cycle and Version Support
Kubernetes release cycle explained: 3 releases per year, 14-month support window, patch cadence, version skew policy, and upgrade planning timeline.
terminationGracePeriodSeconds Default
Configure Kubernetes terminationGracePeriodSeconds for graceful pod shutdown. Default 30s, SIGTERM handling, preStop hooks, and per-container settings.
Record kubectl Sessions for Kubernetes
Record and replay kubectl sessions for auditing, documentation, and training. Terminal recording with asciinema, script, and kubectl plugins for OpenShift.
Namespace Templates: Instant Envs in K8s
Create production-ready namespace templates for instant environment provisioning. One command deploys namespace, RBAC, quotas, network policies, and monitoring.
Platform Engineering: Golden Paths in K8s
Build golden paths for developers on Kubernetes. Internal developer platform with Backstage, self-service namespaces, pre-built Helm charts.
IOMMU on K8s: GPU Passthrough and SR-IOV
Enable and configure IOMMU for GPU passthrough, SR-IOV, and VFIO on Kubernetes. Kernel parameters, IOMMU groups, device isolation, and troubleshooting guide.
OpenShift MachineConfig and MCP Deep Dive
Master MachineConfig and MachineConfigPool on OpenShift. Configure kernel args, files, systemd units, and manage rolling node updates with MCP strategies.
kubectl Config: Manage Contexts and Clusters
Manage kubectl contexts with kubectl config commands. Switch clusters, delete contexts, rename entries, and merge multiple kubeconfig files safely.
K8s imagePullSecrets: Private Registry Auth
Configure imagePullSecrets for pulling container images from private registries. Create docker-registry secrets, attach to pods and ServiceAccounts.
Kubernetes 1.35 and 1.36 Upgrade Checklist
Kubernetes 1.35 and 1.36 upgrade checklist with deprecated APIs, removed features, new GA capabilities, and step-by-step migration guide for production clu.
K8s ConfigMap Hot Reload Without Restart
Reload Kubernetes ConfigMaps without pod restarts. Volume-mounted auto-update, Reloader controller, checksum annotations.
Kubernetes CronJob concurrencyPolicy Explained
Configure Kubernetes CronJob concurrencyPolicy: Allow, Forbid, and Replace. Control overlapping job execution, prevent duplicate runs, and handle slow jobs.
K8s Finalizers: Prevent Premature Deletion
How Kubernetes finalizers work to prevent premature resource deletion. Add, remove, and troubleshoot stuck finalizers on PVCs, namespaces, and custom resources.
Kubernetes Resource Limits CPU Memory Format
Kubernetes container resource limits and requests syntax. CPU units (200m, 500m, 1), memory units (256Mi, 1Gi), QoS classes, and YAML format examples.
Kubernetes Startup Probes for Slow Containers
Configure Kubernetes startup probes for containers with long initialization. Separate startup from liveness checks, failureThreshold tuning.
OpenShift Upgrade Planning for 2026
Plan OpenShift upgrades for 2026. EUS-to-EUS paths, operator compatibility, pre-upgrade checks, canary node pools, and rollback strategy for OCP 4.14 to 4.18.
K8s Change Mgmt for Enterprise Operations
Implement ITIL-aligned change management for Kubernetes with approval gates, maintenance windows, rollback procedures, and change audit trails.
Kubernetes Disaster Recovery for Enterprise
Kubernetes disaster recovery with Velero backup and restore. Cross-region replication, etcd snapshots, multi-cluster failover, and RTO/RPO strategies.
Kubernetes Affinity and Anti-Affinity Guide
Schedule pods with Kubernetes node affinity, pod affinity, and anti-affinity rules. Spread across zones, co-locate related services, and optimize
Essential Kubernetes Commands Reference
Master the most used Kubernetes commands for daily operations. Complete kubectl reference for pods, deployments, services, debugging, and cluster management.
ConfigMap Patterns in Kubernetes
Create and use Kubernetes ConfigMaps for application configuration. Mount as files, inject as environment variables, and manage config updates without
Kubernetes Labels and Selectors Explained
Use Kubernetes labels and selectors to organize and query resources. Covers label conventions, selector types, recommended labels, and label-based operations.
Kubernetes Pod Lifecycle Explained
Understand the Kubernetes pod lifecycle from creation to termination. Covers pod phases, container states, init containers, hooks, and graceful shutdown
Taints and Tolerations in Kubernetes
Control pod scheduling with Kubernetes taints and tolerations. Dedicate nodes for specific workloads, prevent scheduling on control plane nodes, and handle GPU
Kubernetes Cordon, Drain, and Uncordon Nodes
Safely manage Kubernetes nodes with cordon, drain, and uncordon. Prepare nodes for maintenance, upgrades, and decommissioning without disrupting workloads.
Kubernetes Health Checks Best Practices
Design effective Kubernetes health checks with liveness, readiness, and startup probes. Avoid common anti-patterns like database checks in liveness probes.
Kubernetes Init Containers Guide
Use Kubernetes init containers to run setup tasks before your main application starts. Covers database migrations, config generation, dependency
Kubernetes LimitRange and ResourceQuota
Configure LimitRange and ResourceQuota in Kubernetes namespaces. Set default resource requests, enforce limits, and prevent resource exhaustion across teams.
Kubernetes Sidecar Containers Pattern
Implement the sidecar pattern in Kubernetes for logging, proxying, syncing, and monitoring alongside your main application container. Covers native K8s 1.28+
Kubernetes Node and Pod Affinity Guide
Configure node affinity, pod affinity, and anti-affinity rules for advanced Kubernetes scheduling. Control pod placement across zones, nodes, and topologies.
Kubernetes Annotations Complete Guide
Use Kubernetes annotations for metadata, automation, and controller config. Common patterns for ingress annotations, Helm labels, and triggers.
Kubernetes Backup and Restore with Velero
Backup and restore Kubernetes clusters with Velero. Covers namespace backups, scheduled backups, disaster recovery, and migration between clusters.
Kubernetes Cluster Upgrade Step-by-Step
Upgrade Kubernetes clusters safely with kubeadm. Covers pre-flight checks, control plane upgrade, worker node drain, and rollback procedures.
Kubernetes Environment Variables Guide
Set Kubernetes environment variables with envFrom, configMapRef, secretKeyRef, and the Downward API. Variable ordering, fieldRef, and best practices.
Kubernetes Labels and Selectors Guide
Master Kubernetes labels and selectors for organizing and querying resources. Label conventions, equality selectors, set-based selectors, and field selectors.
Kubernetes Pod Lifecycle and States Explained
Understand the Kubernetes pod lifecycle from Pending to Terminated. Covers pod phases, container states, restart policies, graceful shutdown, and preStop hooks.
kubectl Port-Forward: Access Pods and Services
Use kubectl port-forward to access Kubernetes pods, services, and deployments from your local machine. Debug, test, and access internal services securely.
Kubernetes Resource Requests and Limits Guide
Configure CPU and memory requests and limits in Kubernetes. Understand QoS classes, OOMKilled, CPU throttling, and right-sizing with VPA recommendations.
Kubernetes Taints and Tolerations Guide
Use Kubernetes taints and tolerations to control pod scheduling. Dedicate nodes for GPU workloads, isolate teams, and prevent scheduling on specific nodes.
Fix ConfigMap Changes Not Applied to Pods
Debug ConfigMap updates not reflected in running pods. Covers volume mount propagation delays, env var immutability, and sidecar-based reload strategies.
Kubernetes API Deprecation Migration Guide
Migrate deprecated Kubernetes APIs before cluster upgrades. Detect deprecated resources with pluto, kubent, and kubectl convert.
Kubernetes Disaster Recovery Planning
Build a Kubernetes disaster recovery plan with etcd backups, Velero, cross-region replication, and RTO/RPO targets for production clusters.
Kubernetes etcd Operations and Maintenance
Manage etcd for Kubernetes: backup, restore, compaction, defragmentation, member management, and disaster recovery procedures.
Kubernetes Sidecar Container Patterns
Implement sidecar containers for logging, proxying, config reload, and security. Built-in sidecar support in Kubernetes 1.28+ with restartPolicy Always.
KubeCon EU 2026 Book Giveaway Recap
Recap of the Kubernetes Recipes book giveaway at KubeCon EU 2026 Amsterdam. Photos from the signing sessions, community highlights, and how to get your copy.
Inspect MachineConfig Annotations on Nodes
Read and interpret MachineConfig annotations on OpenShift nodes. Check desired vs current config, node state, and rendered config hashes to diagnose MCP issues.
Configure NTP Chrony via MachineConfig
Set custom NTP servers on OpenShift RHCOS nodes using MachineConfig. Fix time drift, configure chrony, and verify time synchronization across your cluster.
Set Kernel Parameters via MachineConfig
Tune kernel sysctl parameters on OpenShift nodes using MachineConfig. Set networking, memory, and performance sysctls on RHCOS.
Configure Container Registries via MachineC...
Set up mirror registries and blocked registries on OpenShift nodes using MachineConfig to control CRI-O image pull on RHCOS.
Configure MCP maxUnavailable for Rollouts
Control how many nodes the MachineConfig Operator updates simultaneously. Set maxUnavailable for faster rollouts or safer one-at-a-time updates in production.
Pause and Unpause MCP Rollouts
Temporarily pause MachineConfigPool rollouts to batch multiple MachineConfig changes or coordinate with maintenance windows. Unpause to resume node updates.
Automate MCP Updates with Drain Script
Bash script to automate OpenShift MachineConfigPool updates when drains are blocked by PDB violations. Auto-detects blockers, scales down, drains, and restores.
Separate Worker and Infra MachineConfigPools
Create dedicated MachineConfigPools for infrastructure and GPU nodes. Isolate MCP rollout blast radius and control update order for different node types.
Use oc adm drain Dry-Run for Diagnostics
Preview node drain impact without evicting pods. Identify PDB violations, unmanaged pods, and local storage blockers before maintenance.
OpenClaw Multi-Model Provider Setup
Configure OpenClaw with multiple AI providers on Kubernetes. Anthropic, OpenAI, Gemini, OpenRouter with fallback chains and cost control.
OpenClaw Node Pairing for IoT and Edge Devices
Pair phones, Raspberry Pi, and edge devices with OpenClaw on Kubernetes. Camera, location, screen control, and remote command execution.
Cordon, Drain, and Uncordon Nodes
Safely remove workloads from OpenShift and Kubernetes nodes for maintenance. Cordon to prevent scheduling, drain to evict pods, uncordon to restore.
Configure PDBs for OpenShift Routers
Set PodDisruptionBudgets for OpenShift IngressController routers. Balance availability during maintenance with node drain ability.
Restore Scaled Deployments After Node Drain
Restore deployments scaled down for maintenance. Verify node health, check pod scheduling, and confirm service availability.
Scale Deployments to Unblock Node Drains
Safely scale down deployments that block node drains due to PDB violations. Record original replicas, scale to zero, drain, then restore after the node returns.
ITMS External-to-External Registry Mirroring
Configure OpenShift ImageTagMirrorSet to map external registries to your private registry. Mirror Docker Hub, GHCR, Quay.io, and NVIDIA NGC.
How ITMS Updates registries.conf via Machin...
How ITMS and IDMS update /etc/containers/registries.conf on immutable CoreOS nodes via MCO and MachineConfig. Full chain deep-dive.
400 Recipes Milestone: What We Built & What...
Kubernetes Recipes reaches 400 articles. Explore new AI/GPU infrastructure, NVIDIA networking, ArgoCD GitOps, OpenShift, and RHACS security recipes.
KubeCon EU 2026 Book Signing Events
Join Luca Berton at two KubeCon Amsterdam events: Signal Overflow at Booking.com HQ (Mon 23 Mar) and book signing at vCluster booth #521 (Tue 24 Mar).
ClusterPolicy MOFED Upgrade Strategy
Configure safe MOFED driver upgrade policies in the NVIDIA GPU Operator ClusterPolicy with rolling updates, node draining, and rollback procedures.
NVIDIA DOCA Driver Container in Kubernetes
Deploy and configure NVIDIA DOCA Driver containers via NicClusterPolicy for RDMA, NFS-RDMA, and precompiled driver builds.
DOCA Driver on OpenShift with DTK
Build and deploy precompiled NVIDIA DOCA Driver containers on OpenShift using DriverToolKit, MachineConfig, and upgrade lifecycle.
GPU Operator ClusterPolicy Complete Reference
Complete reference for the NVIDIA GPU Operator ClusterPolicy CRD covering driver, toolkit, device plugin, MOFED, GDS, MIG, and DCGM configuration options.
NVIDIA GPU Operator MOFED Driver Configuration
Configure the NVIDIA GPU Operator to deploy Mellanox OFED drivers for high-performance RDMA networking on Kubernetes GPU nodes with InfiniBand and RoCE support.
GPU Cluster Upgrade Version Matrix
Maintain a version compatibility matrix for GPU Operator, Network Operator, drivers, firmware, CUDA, and OpenShift for safe upgrades.
MOFED and DOCA Driver Building for OpenShift
Build NVIDIA MOFED and DOCA drivers for OpenShift using DriverToolKit, Buildah, and MachineConfig for RDMA and GPU networking.
NicClusterPolicy MOFED Affinity & Node Sele...
Configure NicClusterPolicy node selectors and affinity rules to deploy MOFED drivers only on RDMA-capable nodes in Kubernetes clusters.
Open Kernel Modules and DMA-BUF for GPUs
Migrate from proprietary NVIDIA kernel modules and nvidia-peermem to open kernel modules with DMA-BUF for safer GPU upgrades.
OpenClaw Cron Jobs and Heartbeats
Configure OpenClaw's built-in cron scheduling and heartbeat system on Kubernetes for proactive notifications, periodic checks, and automated background.
Manage OpenClaw Skills on Kubernetes
Deploy and manage OpenClaw agent skills (tools, automations, integrations) on Kubernetes using ConfigMaps, PVCs, and git-sync for dynamic capability.
GitOps for OpenClaw Workspaces on Kubernetes
Manage OpenClaw agent workspaces (SOUL.md, skills, memory) with GitOps using Flux or ArgoCD, enabling version-controlled AI persona management on.
Create Custom CatalogSources for OLM Operators
Configure CatalogSource in OpenShift to serve custom operator catalogs from private registries or air-gapped environments.
OpenShift Lifecycle and Version Support
OpenShift support lifecycle guide covering version support phases, EUS releases, end-of-life dates, and upgrade planning for production clusters.
OpenShift Project Request Template Pull Sec...
Configure an OpenShift Project Request Template so every new namespace automatically gets a ServiceAccount with imagePullSecrets for your private Quay registry.
PriorityClasses for GPU Workloads
Configure Kubernetes PriorityClasses for GPU workloads with training, serving, batch, and interactive tiers and preemption policies.
ResourceQuota and LimitRange for GPUs
Configure ResourceQuota and LimitRange for GPU workloads with per-tenant caps on GPU, CPU, memory, and object counts in Kubernetes.
RHCOS Node Management for OpenShift
Understand and manage Red Hat Enterprise Linux CoreOS (RHCOS) for OpenShift nodes including MachineConfig, ignition, OS updates, and node customization.
Configure ClusterPolicy kernelModuleType GP...
Understand and configure the driver.kernelModuleType field in the NVIDIA GPU Operator ClusterPolicy to choose between auto, open, and proprietary kernel.
Switch to Open NVIDIA Kernel Modules on Ope...
Step-by-step guide to migrate the NVIDIA GPU Operator from proprietary to open kernel modules on OpenShift, enabling DMA-BUF and GPUDirect Storage support.
Tune NCCL Env Variables for RDMA & Ethernet
Apply safe NCCL environment variable profiles for RDMA-capable and Ethernet-only GPU clusters to maximize collective communication throughput.
Crossplane for Cloud Infrastructure Management
Use Crossplane to provision and manage cloud infrastructure resources like databases, storage, and networking using Kubernetes-native APIs and GitOps.
Multi-Node NVLink with ComputeDomains
Configure ComputeDomains for robust and secure Multi-Node NVLink (MNNVL) workloads on NVIDIA GB200 and similar systems using DRA
Dynamic Resource Allocation GPUs NVIDIA DRA...
Learn to use Kubernetes Dynamic Resource Allocation (DRA) for flexible GPU allocation, sharing, and configuration with the NVIDIA DRA Driver
MIG GPU Partitioning with DRA on Kubernetes
Dynamically partition NVIDIA A100 and H100 GPUs using Multi-Instance GPU (MIG) technology with Dynamic Resource Allocation for flexible workload isolation
Mixed Accelerator Workloads with DRA
Orchestrate heterogeneous accelerator workloads combining GPUs, TPUs, FPGAs, and custom AI chips using Dynamic Resource Allocation
TPU Allocation Dynamic Resource Allocation
Configure Google Cloud TPUs in Kubernetes using DRA for flexible allocation, multi-slice workloads, and optimized machine learning training
Kubernetes API Aggregation Layer
Extend the Kubernetes API with custom API servers using the aggregation layer to add new resource types and functionality without modifying core components
How to Upgrade Kubernetes Clusters Safely
Perform Kubernetes cluster upgrades with zero downtime. Learn upgrade strategies, pre-flight checks, rollback procedures, and best practices for.
Kubernetes Scheduler Configuration and Tuning
Customize the Kubernetes scheduler with scheduling profiles, plugins, and advanced placement strategies for optimal pod placement and resource utilization
Manage K8s API Versions and Deprecations
Handle Kubernetes API version changes and deprecations. Migrate resources to stable APIs and ensure cluster upgrade compatibility.
Create Custom Resource Definitions (CRDs)
Extend Kubernetes API with Custom Resource Definitions. Define custom objects, configure validation schemas, and manage CRD lifecycle.
K8s Downward API: Pod Metadata Access
Use Kubernetes Downward API to expose pod metadata to containers. Access labels, annotations, resource limits, and node information as env vars or files.
Configure Environment Variables and ConfigMaps
Manage application configuration with environment variables and ConfigMaps. Learn injection methods, mounting as files, and dynamic configuration updates.
How to Configure Image Pull Secrets
Pull container images from private registries using image pull secrets. Configure authentication for Docker Hub, GCR, ECR, ACR, and private registries.
How to Manage Kubernetes Contexts and Clusters
Switch between multiple clusters efficiently. Configure kubeconfig, manage contexts, and set up secure multi-cluster access.
How to Optimize Kubernetes Costs
Reduce cloud costs in Kubernetes clusters. Right-size resources, use spot instances, implement autoscaling, and monitor spending effectively.
How to Use Kubernetes Finalizers
Manage resource cleanup with Kubernetes finalizers. Implement custom cleanup logic and understand how finalizers prevent premature resource deletion.
How to Use Labels and Annotations Effectively
Organize and manage Kubernetes resources with labels and annotations. Implement labeling strategies for selection, filtering, and metadata.
Use Kustomize for Configuration Management
Manage Kubernetes configurations with Kustomize overlays. Customize base manifests for different environments without template duplication.
How to Implement K8s Taints and Tolerations
Control pod scheduling with taints and tolerations. Dedicate nodes for specific workloads, handle node conditions, and implement scheduling constraints.
How to Use Pod Presets and Mutations
Automatically inject configurations into pods using admission controllers. Configure environment variables, volumes, and annotations at deployment time.
How to Configure Pod Resource Management
Set CPU and memory requests and limits effectively. Understand QoS classes, resource quotas, and optimize container resource allocation.
K8s Resource Limits: CPU 500m Memory 256Mi
Configure Kubernetes container resource limits and requests. CPU 200m/500m, memory 256Mi syntax and format explained with QoS classes and right-sizing.
How to Configure Resource Quotas per Namespace
Implement resource quotas to limit CPU, memory, and object counts per namespace. Ensure fair resource allocation across teams and environments.
How to Configure Resource Quotas
Limit resource consumption per namespace with ResourceQuotas. Control CPU, memory, storage, and object counts to ensure fair cluster sharing.
Manage ConfigMaps and Secrets Effectively
Master Kubernetes ConfigMaps and Secrets for application configuration. Learn creation methods, mounting strategies, and security best practices.
How to Manage K8s Namespaces Effectively
Master Kubernetes namespace organization for multi-team environments. Learn resource quotas, network policies, and RBAC per namespace.
Set Resource Requests and Limits Properly
Master Kubernetes resource management with proper CPU and memory requests and limits. Avoid OOMKills, throttling, and resource contention.