When maintenance is performed on a service users should get a meaningful message while administrators need to be able to access the service at the same time. I will demonstrate how to achieve this using traefik and cookies. In addition I will show how to display a message of the day (MOTD) using the same approach.
When a request is unknown, traefik displays a very basic 404 page. Wouldn’t it be nice to provide more guidance to your users? Fortunately, you can customize error pages for services behind traefik and use that feature to catch unknown services. Let’s take a closer look at this!
I am using traefik as the ingress controller in multiple Kubernetes clusters. Those instances are running standalone (without the integrated high availability). To make sure that users are able to reach traefik, a DNS record points to the host IP. So far, an init container was responsible for updating DNS if the traefik pod restarts. But recently I decided to decouple the DNS update from traefik. This led to writing a Kubernetes controller to watch the traefik pod for restarts and update DNS accordingly. This post provides details about writing the controller in bash.
Docker does not implement the concept of a pod. But pods can be created by explicitly sharing the network namespace of containers. With docker-compose it is possible to manage pods in an declarative way using the network_mode field.
I am very happy to announce that I have been awarded Microsoft Most Valuable Professional (MVP) in Cloud and Datacenter Management again. I have now been an MVP for 10 years :-)
After my talk about BuildKit at DockerCon Live 2020 I wanted to provide a detailed answer to a question from the audience. I was asked how to use BuildKit in GitLab CI and this post will explain this for running the BuildKit daemon as a service and using BuildKit daemonless in a job.
This week I had the honor of talking at DockerCon Live 2020. It was a dream come true and I was really excited considering that over roughly 70K registered for the event and nearly 24K watched the keynote. I presented how to improve container image builds using BuildKit. In contrast to many other virtual conferences, talks were pre-recorded and played at the designated time. This approach allowed speakers to interact with the audience during the talk.
When authenticating against a container registry, the user only supplies username and password. But in the background, Docker daemon and registry are using token authentication. This post demonstrates how to build a registry with a separate authentication service for token authentication.
This week I had the honour of giving a talk at the Docker Virtual Meetup about how to improve your Docker image builds. It was a very interactive crowd :-)
There has been much confusion around the container entrypoint and parameters. This post will shed some light on this topic and present an script to serve as an flexible entrypoint.