A minimal deployment on an EKS Cluster to configure and test many DevOps tools.
Still a work in progress.
- Istio and its supported addons (Kiali, Jaeger, Prometheus, Grafana).
- Cluster Autoscaler
- Horizontal Pod Autoscaler
- Kubecost
- LitmusChaos
- Kubeshark
- Cert Manager
- Metrics Server
- EBS CSI Driver
- CNI
- ExternalDNS
- Gateway API (in place of ingress controllers)
- Buy a domain name and properly configure the gateways for the services
- Write all the needed workflows and logic.
- Implement the needed automated testing (Checkov, Tfsec, Tflint, Falco)
- Configure Fluentd for log aggregation and integrate it with Falco.
- Implement Slack channels for notifications
- Implement RBAC to namespaces by creating users in the cluster.
- Convert terraform code to custom modules and make the whole deployment use terragrunt.
- Deploy Docker registry to cluster and make the deployments use it.
- Implement image verification in registry.
- Use vault for storing secrets.
- Use Packer to create node AMIs.
- Write checkers for the null_resource deployments.
- Properly expose and configure all the tools and services.
- Research Karpenter.