• kubernetes
• istio
• linkerd
• service-mesh
• mtls
• networking
• security

Comparing Istio 1.29 (sidecar mode) and Linkerd 2.19: data plane, mTLS, egress, resource overhead, observability, and when to use each.

• rclone
• nfs
• azure
• s3
• systemd
• bash
• packaging
• backup
• replication

Learn how to sync an NFS share to Azure Blob Storage or S3 with rclone. Production hardening, monitoring, and benchmark strategy for large file trees.

• rust
• kubernetes
• logging
• containers
• devops
• filebeat
• openshift

vigil-log-relay streams logs from Kubernetes pods, HTTP endpoints, or Unix sockets and forwards them as ndjson to any TCP-capable log collector. No DaemonSet, no node-level access, no filesystem mounts — just a single binary with a namespace-scoped ServiceAccount.

• envoy
• envoy-gateway
• rate-limiting
• kubernetes
• kustomize
• helm
• valkey
• redis
• xds
• gateway-api

How to wire envoyproxy/ratelimit as a self-hosted service into Envoy Gateway v1.7 using EnvoyPatchPolicy — three xDS patches, namespace-admin self-service, and the pitfalls to avoid.

• rust
• haproxy
• spoe
• deployment
• container
• podman
• kubernetes
• openshift
• systemd

Deploying the haproxy-spoe-rs SPOA agent in production — container image, podman-compose, Kubernetes, HAProxy configuration, health checking, logging, and systemd.