Vault upgraded to 1.6.1
We have updated our Kubernetes based Vault setups to the latest version 1.6.1 in the past days.
Grafana main dashboard updated
We have fixed a problem in our main Grafana dashboard. Previously we counted the resources for all pods (including those who already completed). This gave an incorrect indication on the cluster usage. Now we filter out the failed and succeeded pods so the dashboard indicates a more correct usage of the cluster.
More …Upgraded Dex version with security patch
We’ve upgraded Dex on all our clusters with a new version (v2.27.0) that contains a fix for a security vulnerability.
More …Configurable default certificate and default backend on nginx-ingress
The Nginx Ingress Controller has configuration options for setting a default TLS certificate and a default backend. We have now exposed this settings to be configurable on a per-cluster basis.
More …New log shipper added - Fluent Bit
We already offer a cost-effective and default logging solution based on Grafana Loki. However we realize this logging solution is not a perfect fit for everybody and thus now also allow deploying and configuring Fluent Bit through our reference solution offering, including all the benefits like regular updates.
More …Updated Teleport to version 4.4.5
We’ve updated all Teleport clusters to version 4.4.5. This is a minor release, which includes mostly bugfixes and small improvements.
More …Upgrade EKS to 1.18
We have started rolling out EKS 1.18. This brings EKS on Kubernetes v1.18.9.
Fixed issue with Vault certificate renewal
For increased security, our Vault setups are configured to terminate TLS sessions directly at the Vault server process. To do so, we use cert-manager to provision LetsEncrypt certificates that the Vault server Pods can use. There was an issue with this setup, where the Vault servers didn’t reload the certificate when this was renewed by cert-manager, rendering Vault insecure / unavailable.
More …Fall component upgrades
As part of our regular upgrade cycle, the following Kubernetes cluster components have been updated. We’ve already rolled these out to all staging clusters. Production clusters will follow in the coming days.
More …Support for GPU node pools in Azure Kubernetes Service (AKS)
We’re adding support for GPU node pools in AKS (Azure Kubernetes Service). GPU nodes are great for compute-intensive workloads such as graphics and visualization workloads, or machine-learning processes. Azure uses the NVIDIA device plugin to make the GPU capacity of a node available to Kubernetes workloads.
More …Support for Azure Kubernetes Service (AKS)
This is the first release of our Kubernetes Reference Solution for Azure AKS.
More …Concourse upgraded to v6.7.1
We have upgraded our Concourse setups to the latest version 6.7.1 (from version 6.6.0).
More …Improved monitoring for Kubernetes backups
We use Velero for automated backups of Kubernetes resources. Although we were scraping backup-related metrics into Prometheus, we hadn’t defined any automated alerts in case of backup failures.
More …Concourse upgraded to v6.6.0
We have upgraded our Concourse setups to the latest version 6.6.0 (from version 6.5.1).
More …Vault upgraded to 1.5.4
We have updated our Kubernetes based Vault setups to the latest version 1.5.4 in the past days.
Use the Vertical Pod Autoscaler to make your life easier and optimise cluster costs
As of today we offer the Vertical Pod Autoscaler as an optional component to your clusters.
More …Bugfix - Concourse workers out of disk space and crashing
We have identified a problem where our Concourse workers went unavailable. It turned out that the root EBS volume was filling up with logs too fast for the logrotation to take care of the archiving.
More …Kubernetes events now available in Loki
Next to your container logs, we now also ship Kubernetes events (kubectl get events -n <namespace>) to Grafana Loki. You can query these via {app="eventrouter", namespace="<mynamespace>"}.
Updated Teleport to version 4.3.5
We’ve updated all Teleport clusters and nodes to version 4.3.5. This is a major release, which includes a brand new UI. This should make Teleport in general easier to use, but more importantly the Audit Log is now also fully exposed through the UI.
More …Grafana main dashboard updated
We’ve added a Grafana dashboard called Overview with a new dashboard that contains all relevant info from your cluster. We’ve made this dashboard the default for Grafana to replace the default home page of Grafana. This change will be rolled out during the next release.