Active Active Kubernetes Clusters Design Architecture

Kubernetes clusters that is Master Nodes and Worker Nodes were designed to work in a Local Area Network(LAN) environment. They are not recommended to be distributed across multiple Data Centers. 2 Data Centers Active Active Design If you have 2 Data Centers, I would recommend the following design for Active Active setup. Dedicated Kubernetes Clusters for each DC Applications would be deployed twice, once in each DC Use of a Global Site Load Balancer (GSLB) such as F5 GTM, AVI Networks, A10 to direct Ingress traffic to each Kubernetes Clusters Have security controls such as software based network firewalls to be able to support Kubernetes Network Policy. ...

How to install Openshift Container Platform OCP with NSX-T NCP

The last few blog posts I wrote about the installation steps for Openshift Container Platform (OCP) with NSX-T NCP attracted some good interest from the community as well as VMware internal folks. However, those materials were written quite awhile back and some of software used then were not up to date. My customers were also looking at the later versions of software. Lastly, in OCP 3.11, the ansible playbooks for NSX-T NCP integration comes out of the box and therefore makes the integration much simpler. ...

Openshift Container Platform native integration with VMware NSX-T

Many of you might not be aware, Openshift Container Platform 3.11 now has native integration with VMware NSX-T! The ansible playbooks for installing NCP and CNI for Openshift has be merged into the official 3.11 deploy-cluster playbooks. If you are interested, you can take a look at the github repo here. Last two weeks, I have been successfully tested this integration with Redhat Openshift with NSX-T in my lab as well as customer environment. ...

Openshift or PKS – Using NSX-T API Certificate – Principal Identity

Normally for my lab or POC, I will use NSX-T admin and password for integration. However, in a production environment, customer might not accept that and therefore you might need to result to using certificate for API access. In this blog post, I will show you how to create the certificate and key to be used for Openshift Integration.   Step 1: Generate and Register the Certificate and Key Provided below is the create_certificate. ...