Jonathan is a cloud and Kubernetes engineer focused on running secure, observable, and high-performance workloads on AWS. His writing dives deep into Kubernetes internals, EKS features, secrets management, Gateway API, and real-world operational pitfalls.
10 articles from this blog
Explains CPU throttling in Kubernetes, how to identify it via metrics, and discusses a Linux kernel regression causing the issue.
Compares two Kubernetes tools for integrating external secret managers: Secrets Store CSI Driver and External Secrets Operator.
A guide to using the open-source security tool Falco for dynamic security monitoring and threat detection in AWS EKS Kubernetes clusters.
An analysis of AWS EKS Pod Identity, comparing it to IRSA, explaining its benefits, and discussing why the author's company hasn't adopted it yet.
A technical guide exploring Gateway API resources in Kubernetes, covering installation, GatewayClass, Gateway, and HTTPRoute configurations.
Introduction to Kubernetes Gateway API, its role as the successor to Ingress, and key differences for managing external traffic routing.
A hands-on review of K8sGPT, an AI-powered CLI tool for analyzing and troubleshooting Kubernetes clusters, including setup with local LLMs.
A guide to managing Kubernetes secrets across multiple AWS accounts using External Secrets Operator (ESO) and AWS Secrets Manager for centralized access.
Explains how to use AWS EBS-backed ephemeral volumes in Kubernetes for temporary storage, avoiding node disk pressure and multi-attach errors.
Explains how Kubernetes exposes metrics for monitoring, covering the Metrics API, Kubelet/cAdvisor, and different metric categories.
