OpenShift day-two operations for application teams
Upgrades, monitoring, logging, quotas, backup mindset, and when to escalate to the platform team — the work that starts after the first deploy succeeds.
11 posts on this topic.
Upgrades, monitoring, logging, quotas, backup mindset, and when to escalate to the platform team — the work that starts after the first deploy succeeds.
Argo CD on OCP, the OpenShift GitOps operator, app-of-apps cautions, sync versus platform guardrails, and drift on managed clusters — without pretending Git is the whole story.
What ImageStreams are for, how BuildConfigs produce tags, S2I vs Dockerfile builds, and when to skip in-cluster builds and pull from an external registry instead.
The oc commands worth learning first on OpenShift: login and projects, how oc relates to kubectl, common platform verbs, and a calm debugging order.
How Projects relate to Namespaces, what view/edit/admin mean, ServiceAccounts, oc adm policy, and how to test permissions before they become incident surprises.
Why OpenShift uses SCCs, how restricted and anyuid differ, common Pod failures, and a practical path to debug denials without reaching for cluster-admin.
A practical guide to OpenShift Routes for people who know Services and Ingress: how Routes differ, edge TLS, hostnames, oc get route, and debugging traffic from the edge to the Pod.
A practical comparison for Kubernetes users meeting OpenShift: same core API, vendor packaging, Routes, SCCs, Projects, Operators, where skills transfer, and honest limits.
A beginner-friendly explanation of the Kubernetes Control Plane, Kubelets, Pods, Services, and more through the lens of a nationwide supermarket chain.
What I try to do first when a cluster or workload looks wrong — before random kubectl and hoping.
Zero trust in Kubernetes sounds right until you lock yourself out of DNS — how I roll out NetworkPolicy without turning Friday into a outage.