Building reliable automatic gateway failover for critical infrastructure recovery access. How naive health checks broke everything, and why a 30-second stable recovery is better than a 5-second flapping failover. »
Security patches can’t wait, but unplanned reboots break production. The update runbook for Debian, FreeBSD, and OpenBSD — with real scripts, hold patterns, and a zero-downtime cluster update sequence. »
Kubernetes storage is either ephemeral or expensive. We run a FreeBSD VM with ZFS + NFS in the same VPC as our K8s cluster. Hourly snapshots protect your data. Fast recovery. No vendor lock-in. Here’s how we do it. »
We run two OpenBSD firewalls in CARP HA mode in front of a private Kubernetes cluster. Sub-second failover, full state sync, and pf rules that load-balance across worker nodes. »