sanmarg.hashnode.devCluster Mesh vs Service Mesh in KubernetesWhile these ideas are common, in reality, Service Meshes, Cluster Meshes, and Multi-Cluster setups solve fundamentally different problems, and confusing them often leads to unnecessary complexity, operational headaches, and confusion within teams. Th...Feb 1·6 min read
sanmarg.hashnode.devFrom Packets to Identity: How Cilium Rewrites Kubernetes SecurityThe Hidden Problem After Fixing Latency After replacing kube-proxy with Cilium’s eBPF dataplane, the cluster felt smooth. No CPU spikes. No rollout-induced latency cliffs. No iptables during incidents. But something else became obvious once the noise...Dec 29, 2025·3 min read
sanmarg.hashnode.devHow eBPF Transformed Kubernetes NetworkingYou might have seen that while managing a Kubernetes cluster, things seem fine... and then, out of nowhere, you hit that kube-proxy wall. It quietly does its thing, managing all those network rules via iptables in the background. And it works... unti...Dec 12, 2025·5 min read
sanmarg.hashnode.devSecuring Kubernetes Using AppArmorWhen deploying applications at scale in Kubernetes, security becomes a non-negotiable factor. In modern production setups, simply using RBAC and NetworkPolicies isn’t enough—especially when you're running critical workloads that handle sensitive data...Jul 13, 2025·6 min read
sanmarg.hashnode.devKubernetes Self-CorrectionRemember that feeling? You deploy a pod, it starts up okay initially, maybe you even get logs saying everything is fine. But then... nothing. It's hanging in the "ContainerCreating" state for ages, or worse – it deploys and runs sporadically until so...Jun 25, 2025·8 min read
