Kratik Jain β€” BlogDevOps & Infrastructure Engineer writing about Kubernetes, AWS, Terraform, and cloud-native systems.https://www.kratik.cloud/ndots : The Hidden DNS Logic Behind resolving Kubernetes Service Nameshttps://blogs.kratik.dev/what-is-ndots-in-dnshttps://blogs.kratik.dev/what-is-ndots-in-dnsEver wondered how Kubernetes resolves a service name like my-service without any domain attached?In this blog, we’ll dive into the DNS concept of ndots, understand how it works, and see how it plays a crucial role in Kubernetes DNS resolution. Before...Wed, 21 Jan 2026 13:55:50 GMTEKS IAM Access Entries - End of aws-auth ConfigMap!https://blogs.kratik.dev/how-to-use-aws-eks-iam-access-entrieshttps://blogs.kratik.dev/how-to-use-aws-eks-iam-access-entriesHi People! Hope you're happy managing your EKS clusters. There is this one thing we all do in our EKS related shenanigans - To provide an IAM entity access to your EKS Cluster. I personally find this annoying as I have to go and manually edit a Confi...Sat, 10 Aug 2024 04:50:44 GMTEKS Pod Identity : A better way to delegate IAM access to podshttps://blogs.kratik.dev/eks-pod-identity-a-better-way-to-delegate-iam-access-to-podshttps://blogs.kratik.dev/eks-pod-identity-a-better-way-to-delegate-iam-access-to-podsHello Beautiful People of Internet! πŸ‘‹ Hope you guys are doing well tinkering with your clusters :) The Question Let me ask you folks a question: "How do you provide IAM access to your pods in your EKS Cluster?" Possible Answers Hardcoding AWS Acc...Sat, 03 Aug 2024 14:32:05 GMTStep by Step Guide to Create a Custom GitHub Action and Publish it to the GitHub Marketplacehttps://blogs.kratik.dev/step-by-step-guide-to-create-a-custom-github-actionhttps://blogs.kratik.dev/step-by-step-guide-to-create-a-custom-github-actionHello beautiful people of the internet ☘️Guess who decided to break the hiatus with some insightful blog. Hope you find value in this piece. Your feedback is appreciated. Intro to GitHub Actions I assume you already have some knowledge about GitHub ...Wed, 24 Apr 2024 19:13:02 GMTHow to use Vault with External Secrets for Kubernetes in Production?https://blogs.kratik.dev/how-to-use-vault-with-external-secrets-for-kubernetes-in-productionhttps://blogs.kratik.dev/how-to-use-vault-with-external-secrets-for-kubernetes-in-productionHello, beautiful people on the Internet! 🌻 Today we are going to discuss how can we optimize the flow of storing secrets in Kubernetes and Also, learn to empower our developers to View/Modify secrets deployed in our Kubernetes cluster. We'll also de...Fri, 20 Oct 2023 10:15:05 GMTOptimizing Your Container Registry: Pushing Helm Charts to AWS ECRhttps://blogs.kratik.dev/pushing-helm-charts-to-aws-ecr-and-docker-hubhttps://blogs.kratik.dev/pushing-helm-charts-to-aws-ecr-and-docker-hubWe have always used container registries like AWS ECR, Docker Hub, etc. to host our container images but did you know you can also push other artifacts like Helm Charts to your favorite registry? Let's learn how can we do that with AWS ECR. Bonus! -...Sat, 03 Jun 2023 13:47:55 GMTNotification Anxiety - How to reduce it?https://blogs.kratik.dev/dealing-with-notification-anxietyhttps://blogs.kratik.dev/dealing-with-notification-anxietyIt will be a little different than the usual blogs but bear with me, I want to share something I tried and I think can be useful for others as well. We all are addicted to our phones, checking notifications, getting distracted, and end up replying to...Tue, 21 Mar 2023 04:38:30 GMTBuild multi-CPU architecture compatible Container Imageshttps://blogs.kratik.dev/build-multi-cpu-architecture-compatible-container-imageshttps://blogs.kratik.dev/build-multi-cpu-architecture-compatible-container-imagesToday, we are going to learn how we can build docker images for containers that will be compatible with the amd64 and arm64 CPU architecture types. I chose these two CPU types because amd64 is already widely used with our Linux/Windows/Mac Computers ...Sun, 11 Sep 2022 08:15:42 GMTSecuring your Logging Solution for Docker [with NGINX Reverse Proxy]https://blogs.kratik.dev/securing-loki-with-basic-authhttps://blogs.kratik.dev/securing-loki-with-basic-authThe Issue From our past blog Best Logging Solution for Docker [Basic Version], https://kratik.hashnode.dev/best-logging-solution-for-docker We saw how to make logging a piece of cake using Loki & Grafana. But I think there is one minor issue If your ...Fri, 12 Aug 2022 13:23:39 GMTHow to attach IAM roles to Pods in AWS EKS Clusterhttps://blogs.kratik.dev/how-to-attach-iam-roles-to-pods-in-aws-eks-clusterhttps://blogs.kratik.dev/how-to-attach-iam-roles-to-pods-in-aws-eks-clusterHello World! 🌎 I hope everyone is doing well and learning new things. When you are running an EKS cluster, you may have encountered some situations where you wanted to authorize your PODs to access AWS services. For Ex - Read/Write a file to/from S...Thu, 05 May 2022 03:47:56 GMTHow to set up users in Kubernetes?https://blogs.kratik.dev/how-to-set-up-users-in-kuberneteshttps://blogs.kratik.dev/how-to-set-up-users-in-kubernetesWhen we set up Kubernetes the default config file (aka kubeconfig file) has admin privileges. This is fine when you are the only one who is going to access the cluster(still not a good practice tho!) but what if there are multiple teams/devs involved...Sat, 16 Apr 2022 06:47:33 GMTUpdate ConfigMap without restarting Pods in Kuberneteshttps://blogs.kratik.dev/update-configmap-without-restarting-pods-in-kuberneteshttps://blogs.kratik.dev/update-configmap-without-restarting-pods-in-kubernetesThis blog is basically a tip around Kubernetes Administration. I am assuming you know about and have some experience in Kubernetes & ConfigMaps. Anyways I will try to explain concepts as easy as possible πŸ˜€ This is how I used to feel when I started...Sun, 27 Feb 2022 17:13:53 GMTWhat are CMD and ENTRYPOINT in Docker?https://blogs.kratik.dev/cmd-and-entrypoint-in-dockerhttps://blogs.kratik.dev/cmd-and-entrypoint-in-dockerLet's Start When I was writing Dockerfiles initially, I found CMD and ENTRYPOINT very confusing to me. I assume there will be folks out there who are still not so sure about these two syntaxes and their use cases. So let's try to understand the conce...Sun, 30 Jan 2022 13:58:55 GMTBest Solution for Collecting Logs/Metrics for AWS EC2https://blogs.kratik.dev/using-cloudwatch-agent-for-logs-and-metricshttps://blogs.kratik.dev/using-cloudwatch-agent-for-logs-and-metricsπŸͺ”πŸͺ”πŸͺ”πŸͺ”πŸͺ”πŸͺ”πŸͺ” Problems - Suppose you have a web server, deployed on AWS EC2. Now to check your app logs you have to SSH to that EC2 and then cat the logs. Or when you wanted to check some metrics for that EC2, you went to the built-in CloudWatch met...Sat, 06 Nov 2021 10:07:00 GMTHow to prevent users from downloading files using S3 URLshttps://blogs.kratik.dev/prevent-users-to-download-files-using-s3-urlshttps://blogs.kratik.dev/prevent-users-to-download-files-using-s3-urlsSuppose you have some assets for your platform which is being served to your customers in form of MP4 videos, PDFs, Etc. I am assuming that data is important but not that sensitive, so this guide can be applicable for some specific use cases. For ea...Sun, 17 Oct 2021 06:48:50 GMTUsing Multiple Docker-Compose fileshttps://blogs.kratik.dev/using-multiple-docker-compose-fileshttps://blogs.kratik.dev/using-multiple-docker-compose-filesI have assumed that you have some basic knowledge of Docker & Docker Compose! What is Docker 🐬 ? An Open-Source tool that can be used to bundle your application with all the required dependencies. Similar to VMs but way more lightweight than it. Us...Sun, 19 Sep 2021 16:28:11 GMTWhat does it mean by adding a Security Group ID as a source in another Security Group ?https://blogs.kratik.dev/what-does-it-mean-by-adding-a-security-group-id-as-a-source-in-another-security-grouphttps://blogs.kratik.dev/what-does-it-mean-by-adding-a-security-group-id-as-a-source-in-another-security-groupAt some places like Documentation and Tutorials, I have seen that In the source of a rule in the Security Group, they add another security group which seems weird πŸ€” Attached a screenshot below : Okay, so this was pretty difficult for me to unders...Sat, 18 Sep 2021 18:11:54 GMTWhat are Network ACLs in AWS Virtual Private Cloud?https://blogs.kratik.dev/what-are-network-acls-in-aws-virtual-private-cloudhttps://blogs.kratik.dev/what-are-network-acls-in-aws-virtual-private-cloudNetwork ACLs or NACLs are one of the additional layers of security AWS provides to safeguard your resources in the AWS Cloud. It acts as a firewall for controlling traffic in and out. Image Source: https://docs.aws.amazon.com/vpc/latest/userguide/...Sun, 12 Sep 2021 04:27:56 GMTBest Logging Solution for Docker [Basic Version]https://blogs.kratik.dev/best-logging-solution-for-dockerhttps://blogs.kratik.dev/best-logging-solution-for-dockerLogs are important, right? While debugging something, It helps us more than anything. Generally, we use commands to check logs of each container, for example, docker logs -f container_1 and it is fine for a few containers, but suppose, you have a c...Sun, 11 Jul 2021 13:12:55 GMTHow to Prevent a file to be overwritten in a Git Repo?https://blogs.kratik.dev/prevent-changes-in-git-using-hookshttps://blogs.kratik.dev/prevent-changes-in-git-using-hooksHey All! We all have worked with at least one Version Control System Softwares in our day-to-day tasks and Git is one of those and the most widely used VCS Tool in the world! What are Hooks in Git? According to the official site, Hooks are programs ...Sun, 13 Jun 2021 13:14:51 GMT