Hugh Tipping
@hughtipping.bsky.social
Python, AWS Infra, Terraform, Kubernetes, SRE, DevOps
Writer.
Like any of the stuff I post? Buy me a coffee: https://ko-fi.com/htipping
Writer.
Like any of the stuff I post? Buy me a coffee: https://ko-fi.com/htipping
4/4 MaxSkew explained - Control the balance precision you need
April 15, 2025 at 12:34 AM
4/4 MaxSkew explained - Control the balance precision you need
3/4 Custom topology keys - Create your own spread dimensions (rack, power supply)
April 15, 2025 at 12:34 AM
3/4 Custom topology keys - Create your own spread dimensions (rack, power supply)
2/4 Node spreading - Balance pods evenly across your cluster nodes
April 15, 2025 at 12:34 AM
2/4 Node spreading - Balance pods evenly across your cluster nodes
February 4, 2025 at 4:08 AM
4/5 Fetch & process certificates/secrets from external sources
February 4, 2025 at 4:08 AM
4/5 Fetch & process certificates/secrets from external sources
3/5 Handle DB schema migrations before app starts
February 4, 2025 at 4:08 AM
3/5 Handle DB schema migrations before app starts
2/5 Run pre-flight checks (DNS, service deps, storage)
February 4, 2025 at 4:08 AM
2/5 Run pre-flight checks (DNS, service deps, storage)
5/5 Best practice: For critical jobs, consider pushing job results to external monitoring/logging for longer retention without K8s overhead. 📊
February 3, 2025 at 1:44 AM
5/5 Best practice: For critical jobs, consider pushing job results to external monitoring/logging for longer retention without K8s overhead. 📊
4/5 Use kubectl get cronjobs <name> -o yaml | grep History to quickly check current limits. Can be adjusted on the fly! 🛠️
February 3, 2025 at 1:44 AM
4/5 Use kubectl get cronjobs <name> -o yaml | grep History to quickly check current limits. Can be adjusted on the fly! 🛠️
3/5 Pro tip: Setting these too high impacts etcd storage & API server performance. Find your sweet spot based on retention needs. ⚖️
February 3, 2025 at 1:44 AM
3/5 Pro tip: Setting these too high impacts etcd storage & API server performance. Find your sweet spot based on retention needs. ⚖️
2/5 There's also .spec.failedJobsHistoryLimit (default=1) for tracking failed executions. Both help with debugging and audit trails. 🔍
February 3, 2025 at 1:44 AM
2/5 There's also .spec.failedJobsHistoryLimit (default=1) for tracking failed executions. Both help with debugging and audit trails. 🔍
6/6 Regular audits for unused/overly permissive rules
February 2, 2025 at 2:46 AM
6/6 Regular audits for unused/overly permissive rules
5/6 Use separate SGs for different tiers (web/app/db)
February 2, 2025 at 2:46 AM
5/6 Use separate SGs for different tiers (web/app/db)
4/6 Enable VPC flow logs & AWS Config rules
February 2, 2025 at 2:46 AM
4/6 Enable VPC flow logs & AWS Config rules
3/6 Document temporary rules with expiration dates
February 2, 2025 at 2:46 AM
3/6 Document temporary rules with expiration dates