Posts
All the articles I've posted.
[Az] Day 10: Implementing a Helm Deployment CI/CD AzureDevOps Pipeline for a Private AKS Cluster.
Published: at 12:00 PMIn this tutorial, We will create Helm charts for nginx-ingress and cert-manager, and set up a robust CI/CD pipeline using Azure DevOps for Helm deployments to a private AKS cluster.
[Az] Day 11: Exposing a Private AKS Application via Cloudflare Tunnel.
Published: at 12:00 PMIn this tutorial, We demonstrate how to securely expose an application running on a private AKS cluster to the internet using Cloudflare Tunnel, without the need for public IP addresses or open ports. We’ll also show how to apply authentication to all exposed applications and centralize access control using Azure Entra ID Groups, ensuring only authorized users have access.
[Az] Day 12: Enabling MDM Devices by leverage Cloudflare Tunnel and WARP.
Published: at 12:00 PMIn this final tutorial, We'll discover how to safely expose the private AKS cluster and applications to the internet with Cloudflare. It'll delve into the benefits of using Cloudflare Tunnel and WARP, exploring alternative ways to provide secure access while maintaining the integrity of the corporate network.
[K8s] A Complete Series of Articles on Kubernetes Environment Locally
Published: at 12:00 PMA concise series guiding you through setting up a local Kubernetes environment using K3s on Raspberry Pi 4 clusters. Learn how to install K3s, configure Nginx Ingress, implement SSL certificates with Cert-Manager and Cloudflare, and host applications like Outline VPN and Longhorn.
[Tools] Automating Let's Encrypt Certificate Management with Azure Key Vault and Cloudflare
Published: at 12:00 PMThis post introduces a tool that automates the generation and renewal of Let's Encrypt certificates, importing them into Azure Key Vault. It detects certificates nearing expiration and only regenerates those, supporting multiple domains managed via Cloudflare. The tool runs as a monthly cron job on AKS, ensuring SSL certificates are always up to date without manual intervention.
[Tools] Cleaning Up Azure Service Bus Dead-Letter Queues with .NET
Published: at 12:00 PMThis post highlights the importance of regularly cleaning Azure Service Bus Dead-Letter Queues (DLQs) to prevent `QuotaExceededException` storage issues and maintain performance. It explains how to automate the process with a .NET background service that moves dead-letter messages to Azure Blob Storage for future analysis, along with a ready-to-use Docker image for easy deployment.
[.NET] Aspire, Simplifying Local Development Environment and Testing.
Published: at 12:00 PMSetting up a new project can be challenging, especially with the involvement of various technologies. This guide explores how .NET Aspire simplifies development by streamlining local environment setup, testing, and continuous integration, while also detailing the end-to-end process with an Azure DevOps CI/CD pipeline.
[DevOps] Automating Branch Cleanup in Azure DevOps with Node.js
Published: at 12:00 PMA comprehensive guide on automating the cleanup of old branches in Azure DevOps Git repositories using a Node.js script. The script identifies branches that haven't been updated in the last 90 days and deletes them if they meet certain criteria.
[AKS] Implementing Cert Manager with Private Azure Kubernetes Service (AKS).
Published: at 12:00 AMExploring the deployment and management of SSL certificates using cert-manager in a private Azure Kubernetes Service (AKS) environment. This article covers the architecture involving CloudPC and AKS VNETs, the use of NGINX ingress for private connections, and the implementation of Cloudflare DNS management to secure internal communications.
[AZ] How to Scan and Disable Inactive Accounts on Azure EntraID
Published: at 12:00 PMInactive accounts in Azure EntraID can pose significant security risks. This post discusses the importance of implementing a housekeeping strategy and introduces a streamlined approach using Azure DevOps.