GP2-encrypted is now the default storageclass
We’re making the use of encryption at rest our default. For this we switched our default PV storageclass on K8s from gp2 to gp2-encrypted.
Always use encryption at rest for OpenVPN storage
We’re making the use of encryption at rest our default and only option for OpenVPN storage. Until now it was enabled by default, but it was still possible to disable it.
More …Support for RabbitMQ and AmazonMQ monitoring
We’ve added support for monitoring both self-hosted RabbitMQ and AmazonMQ for RabbitMQ clusters through Prometheus. The monitoring coverage differs slighly for those two services.
More …Initial support for Milvus database
We have added initial support for Milvus. It is available as an optional add-on for all customers using our Kubernetes Reference Solution on AWS.
More …Encrypted storage layer of Teleport
We’ve updated all Teleport clusters so the underlaying volume that is used is encrypted. For this we are using Amazon EBS encryption.
More …Upgrade AKS and EKS clusters to 1.20
We have started rolling out AKS and EKS 1.20. This brings AKS on Kubernetes v1.20.7 and EKS on Kubernetes v1.20.4-eks-6b7464.
Istio dashboards in Grafana
We have added the official Istio dashboards to Grafana. If you have Istio enabled on your cluster the following dashboards are now available:
More …Istio upgraded to version 1.10.0
We have upgraded Istio on all clusters that use it. The version was upgraded from 1.9.2 to 1.10.0. The new version comes with some features meant for operators and no breaking changes that you should be aware of.
More …Vault upgraded to 1.7.2
We have upgraded our Kubernetes based Vault setups to the latest version 1.7.2.
Upgraded several cluster components
As part of our regular upgrade cycle, the following Kubernetes cluster components have been updated. We’ve already rolled these out to all non-prod clusters and production will follow in the coming days.
More …Adding support for EFS backed Persistent Volumes in Kubernetes
We’ve added a new component to our AWS Kubernetes reference solution, the EFS CSI driver. This adds support for using EFS file systems in EKS clusters with PersistentVolumes.
Concourse upgraded to v7.2.0
We have upgraded our Concourse setups to the latest version 7.2.0
More …Vault upgraded to 1.7.1
We are in the process of upgrading our Kubernetes based Vault setups to the latest version 1.7.1.
Extra alerts for excessive resource usage
Our monitoring solution fires a number of alerts notifying of the application and cluster’s health.
More …Updated Teleport to version 4.4.9
We’ve updated all Teleport clusters and nodes to version 4.4.9. This update mainly contains bug fixes and performance improvements.
More …Merging AKS and EKS reference solution codebases and improving automation
Since the end of 2020 we’ve started supporting Azure AKS environments, next to our already fleshed out offering around Amazon EKS. What initially started as a proof of concept has become bigger and bigger.
More …Adding support for Istio service mesh
We now support Istio service mesh for all customers using our Kubernetes Reference Solution (AWS EKS and Azure AKS). A service mesh makes it easier to connect, secure and observe micro-services.
More …Upgraded several cluster components (patch-level)
We’ve upgraded several addons to their latest patch-level so important bugfixes are included:
More …Vault upgraded to 1.7.0
We are in the process of upgrading our Kubernetes based Vault setups to the latest version 1.7.0.
Upgrade AKS and EKS clusters to 1.19
We have started rolling out AKS and EKS 1.19. This brings AKS on Kubernetes v1.19.7 and EKS on Kubernetes v1.19.6-eks-49a6c0.