Over the years, I’ve tried a number of note-taking and Markdown editing tools, including Typora, Notion, and Obsidian, each of which has its advantages and disadvantages, but in the end I’ve decided to migrate my notes to Obsidian, and this post will detail my thought process, comparative analysis, and reasons for the migration. Obsidian notes […]
Why did I migrate my notes from Notion to Obsidian? Read More »
This is the first in my series of articles on the Istio ambient mode. In the next few posts, I’ll dive into the key components of the ambient pattern and how they work, including how ztunnel forwards traffic to the waypoint proxy, how the waypoint proxy handles traffic, and a complete understanding of the operation
Transparent traffic interception process in Istio ambient mode explained in detail Read More »
在Previous Blog.In Istio Ambient, I outlined the iptables rules injected within the Pod network namespace in the Istio Ambient model. In this article, I’ll dive deeper into parsing these rules to explore how they enable transparent traffic interception and redirection within the Pod. iptable rules within the Pod Within the Pod’s network namespace, the Istio
Explanation of iptable rule injection within a Pod in Istio Ambient mode Read More »
Last week, I applied to join the Google Bard waitlist. I did not expect to receive a trial invitation so soon. Compared with other generative AI chat tools, it takes weeks or even months to pass the trial application. It is much faster. Introduction to Google Bard Google Bard is an early experimental project that
I have something to say after experiencing Google Bard Read More »
Artificial intelligence (AI) is changing our lives, making our work more efficient and intelligent. In this rapidly evolving field, there are many AI utilities that can help us do our jobs better. In the future, proficiency in using various AI tools to optimize your workflow and improve work efficiency will be a must-have skill for
AI Tool Recommendation: A Sharp Tool to Improve Work Efficiency Read More »
Yesterday, my application for the new Bing experience was approved, and I went to experience it immediately. This article records my initial impression of the new Bing. How to experience the new Bing Visit Bing International ( bing.com ) and download the Bing App (non-Chinese version), and apply to join the waitlist. I applied on
Try the new Bing—the chat-style search engine assistant Read More »
Recently, the Istio community is working on Issue 17763 , to add Istio support for certificate revocation, which is currently under development, see PR #42859 – OSCP Stapling and OCSP Stapling for Istio Gateways . This blog will introduce you to the way of certificate revocation and the progress of Istio’s solution. Istio uses Envoy
Support for Certificate Revocation in Istio Gateway Read More »
What are your study plans for 2023? I plan to learn a new technology – WebAssembly! Why learn WebAssembly? In 2019, Docker founder Solomon Hykes caused an uproar in the industry when he posted a tweet (see tweet below) saying that if WebAssembly and WASI existed in 2008, he would not have needed to create
Why learn WebAssembly? Read More »
This article will take the Bookinfo application as an example to set a real TLS/SSL certificate for the Istio ingress gateway. We will use Let’s Encrypt, cert-manager to manage certificates for the ingress gateway in Istio. Prepare Please refer to the Istio documentation first Install Istio and Bookinfo application , I installed Istio 1.16 in
Set up certificates for ingress gateways in Istio using cert-manager ACME Issuer Read More »
In cloud-native applications, a request often needs to be processed by a series of APIs or background services. Some of these services are parallel, some are serial, and they are located on different platforms or nodes. So how to determine the service path and node passed by a call to help us troubleshoot? At this
How to use SkyWalking for distributed tracing in Istio? Read More »
This article will take Kubernetes Ingress, Istio, and Envoy Gateway as examples to introduce you to the ingress gateway and Gateway API in Kubernetes, and introduce the new trend of Gateway API integrating Kubernetes and service mesh ingress gateways. Viewpoint of this article Ingress, as the first-generation ingress gateway of Kubernetes, its resource model is
Why Gateway API is the future of gateways in Kubernetes and service mesh ingress? Read More »
Istio defined dozens of CRDs when it was just open-sourced, including RouteRule , DestinationPolicy , EgressRule , etc. for traffic governance, and later launched the v1alpha3 API Replaced the previous API with VirtualService and DestinationRule etc. However, the definition of these resource objects is not as intuitive as in Kubernetes, and it is somewhat difficult
How to understand VirtualService and DestinationRule in Istio? Read More »
before the start As of this writing, the highest version of Istio is 1.15.2, and official support for version 1.13 has ended. Please refer to the release status description in the Istio documentation Determine if you need to upgrade Istio. Istio official website gives several ways to upgrade Istio : Canary upgrade In-place upgrade Upgrading
How to upgrade Istio without downtime? Read More »