GCR Image from External Kubernetes

Pulling GCR image from external Kubernetes with Config Connector

Let’s say you use Google Cloud Registry (GCR) to store your images. If you are running your workloads on GKE (Google Kubernetes Engine) that is in the same project as GCR, you should have access by default. GKE clusters are created with read-only permissions for Storage buckets. However, what if you are not running Kubernetes … Read moreGCR Image from External Kubernetes

Anthos Config Management and Config Connector

Anthos Config Management works together with Config Connector

In the past several posts we looked at Config Connector for Kubernetes. With Config Connector you can create GCP resources, like Spanner or PubSub, using declarative K8s model. In this post we will show how Config Connector works together with Anthos Config Management (ACM). Why ACM? In all the examples before, we actuated GCP resources … Read moreAnthos Config Management and Config Connector

Workload Identity with Config Connector

In the previous post, we discussed how you can use Config Connector to provision isolated and secure workspace for your teams. For each of them, we created a team Kubernetes namespace, which we then linked to a team GCP project. We configured permissions on the namespace, so that each team can create K8s resources. Likewise, … Read moreWorkload Identity with Config Connector

Provisioning Multiple Teams with Config Connector

Provisioning multiple teams with Config Connector

With Config Connector you can initialize your Google Cloud resources in the same way you’re provisioning your Kubernetes workloads. As we explain this concept to organizations, we see excitement about using declarative, idempotent, eventually-consistent and self-healing model. Often we demo Config Connector to platform teams. Platform teams are responsible for spinning up infrastructure for multiple … Read moreProvisioning Multiple Teams with Config Connector

Creating Policies for GCP resources

Creating policies for GCP resources

In the last several posts we explored building configurations with Config Connector. Config Connector is a Kubernetes extension that enables managing Google Cloud resources. It allows you to use Kubernetes resource model: declarative, idempotent, eventually consistent. In this post we’ll discuss Gatekeeper – open policy agent for Kubernetes. Using Gatekeeper you can create policies for … Read moreCreating Policies for GCP resources

Why Kubernetes Config Connector?

Config Connector extension for Kubernetes

In the last several posts we focused on various Kubernetes Config Connector use cases. We configured WordPress site running on Kubernetes, powered by Google Cloud MySQL database. Additionally, we explored multi-cluster ingress. In this post, I would like to step back to discuss some of the benefits of using Kubernetes Config Connector. And if you … Read moreWhy Kubernetes Config Connector?

Load Balancing with Config Connector: MCI part 3

Configuring load balancing with Config Connector

In the first part of the post on multi-cluster ingress, we covered simpler options of exposing your cluster to receive external traffic: ClusterIP, NodePort, LoadBalancer, Ingress. In the second part we proceeded to create regional clusters spanning multiple zones. This final post will focus on adding the load balancing resources using Config Connector. This will … Read moreLoad Balancing with Config Connector: MCI part 3

Provision Kubernetes Clusters using Config Connector: MCI part 2

Kubernetes multi-cluster ingress with Config Connector: set up clusters.

In the first part of the post on multi-cluster ingress, we covered simpler options of exposing your cluster to receive external traffic: ClusterIP, NodePort, LoadBalancer, Ingress. In this part, we’ll provision Kubernetes clusters using Config Connector. First of all, let us create a project and cluster that will have Config Connector installed. You can start … Read moreProvision Kubernetes Clusters using Config Connector: MCI part 2

Kubernetes Multi-Cluster Ingress With Config Connector – part 1

If you want to expose your cluster to receive external traffic, there are multiple ways to do it. Before we get to how you can configure Kubernetes multi-cluster ingress with Config Connector, let’s review other load balancing concepts. Specifically, you can use the following to expose a single cluster to receive external traffic. ClusterIP – … Read moreKubernetes Multi-Cluster Ingress With Config Connector – part 1

Wait for Kubernetes Config Connector objects to be ready

Sometimes you need to wait for Kubernetes objects to be ready

If you are using Kubernetes Config Connector to manage your Google Cloud objects, then you know these objects behave just like any Kubernetes objects. The configuration is declarative, idempotent, eventually-consistent and self-healing. It also means, that you can use standard commands to wait for Kubernetes Config Connector objects to be ready. Why do we ever … Read moreWait for Kubernetes Config Connector objects to be ready