Zakaria EL BAZI
Articles
A Practical Guide to NUMA Affinity in Kubernetes
NUMA effects are one of those problems that don’t show up in dashboards, but will happily show up in your p99 latency and in “why is this box slower than the …
A Practical Guide to CPU Pinning in Kubernetes
I recently attended the Cloud Native Days France 2026 conference in Paris, where Ricardo Rocha (Head of Infrastructure at CERN) opened the session with a talk …
Deploying an OpenTelemetry-Native LGTM Stack on Kubernetes
In my previous article on Observability 2.0, I talked about how ClickStack and unified platforms solve the fragmented three-pillar problem by storing everything …
Kubernetes Resource Lifecycle Management with CronJob-Scale-Down-Operator
A practical guide to Kubernetes operators with the CronJob-Scale-Down-Operator - automate resource scaling and cleanup to optimize cloud costs.
Observability 2.0: Breaking the Three-Pillar Silos for Good
Managing observability at scale has really changed with the rise of distributed systems, and the traditional three-pillar approach (metrics, logs, traces) has …
AWS PrivateLink Native Cross‑Region Connectivity
AWS PrivateLink has long been the go-to solution for private connectivity of services within a region. Until recently, sharing services across regions required …
Terraform Infrastructure as Code: Essential Tools for Clean, Maintainable Production Environments
Managing cloud resources has really changed with the Infrastructure as Code (IaC) approach, and Terraform has become one of the best tools for the job.
Helm Charts in Production: Essential Plugins and Features for Reliable Kubernetes Deployments
Kubernetes has revolutionized the way we deploy applications, but managing numerous Kubernetes resources for complex applications can quickly grow to become a …
Secure Secrets Management in Terraform — Part2: AWS Secret Manager
Following our previous tutorial about using AWS KMS for secrets management, this second part explores how to
Secure Secrets Management in Terraform Part1: Leveraging AWS KMS
One of the key principles of modern Infrastructure as Code is the secure management of sensitive information. In thins first part of our series about secure …
Thanos Deep Dive: Addressing Prometheus Limitations at Scale
Prometheus has clearly established itself as the benchmark solution for metrics collection and alerting in cloud-native environments. Its pull-based …
AWS Client VPN: A Practical Guide to Secure Infrastructure Access
Providing secure access to cloud infrastructure is one of the biggest challenges facing IT professionals today. AWS Client VPN offers a robust solution to this …
EKS Pod Identity or IAM Roles for Service Accounts (IRSA) ?
Himu](https://unsplash.com/@isfakulhemal?utm_source=medium&utm_medium=referral) on Unsplash
Exposing Ports in Kubernetes: What You Should to Know
Kubernetes is a popular tool for managing containerized applications. However, there are a few misunderstandings about how it works. One of the most common
AWS EKS Required Add-Ons: A Comprehensive Guide
Amazon Elastic Kubernetes Service (EKS) is a managed Kubernetes service that simplifies the process of deploying, managing, and scaling containerized …
AWS VPC Endpoints: Balancing Security, Performance, and Cost
In the world of AWS networking, securing and optimizing communication between your VPC resources and AWS services is crucial. This is where AWS VPC Endpoints …
AWS IAM Roles For Kubernetes Service Accounts (IRSA)
In the world of Kubernetes and AWS, managing access to AWS resources from your Kubernetes cluster can be tricky. That’s where AWS IAM Roles for Service
Getting Started With OpenTofu (v1.7.0) on AWS — State Encryption.
OpenTofu is a new open source tool for Infrastructure-as-Code (IaC) management across multiple cloud providers, created by the community following the …
Low-Cost, Unlimited Metrics Storage with Thanos: Monitor All Your K8s Clusters Anywhere and More.
Monitoring large-scale, multi-cloud Kubernetes environments can be a hard task, especially when dealing with high-cardinality metrics and long-term data
Chat With Your AWS Resources Using ChatGPT
In the ever-evolving world of cloud computing, where efficiency and productivity are paramount, developers and DevOps engineers often find themselves navigating …
Do Pods Really Get Evicted Due to CPU Pressure?
As Kubernetes administrators and developers, we’ve all heard the notion that pods can get evicted due to high CPU pressure on a node. But is this really
Exploring Steampipe for Terraform Drift Detection
In Terraform, drift detection helps spot any mismatches between the infrastructure you’ve outlined in your code and what’s actually out there running in your …
Welcome to AWS Morocco’s first newsletter!
Dear AWS Enthusiasts,
How Does AWS PrivateLink Work ?
In the world of cloud networks, security and confidentiality are crucial. [AWS PrivateLink](https://docs.aws.amazon.com/vpc/latest/privatelink/what-is-
AWS Inter-Region PrivateLink using Terraform
AWS PrivateLink provides a secure and reliable way to connect VPCs within the same region, but it doesn’t directly support connections between VPCs in different …
CSI Drivers (EBS, EFS, S3) on EKS And How To Use Them
Container Storage Interface (CSI) drivers play a crucial role in managing persistent storage for containerized applications. When working with Amazon Elastic …
Lessons Learned From Mounting Secrets to Pods on Kubernetes
Kubernetes secrets are objects conceived to hold sensitive information such as passwords, tokens and certificates that can be used by pods without the need
Getting Started With Terraform on AWS — State backend & State Locking
Getting started with Terraform is an exciting journey, but as the complexity of your infrastructure increases, so does the importance of managing its state. In …
Enhancing Efficiency with KMS Cache in Amazon S3 Buckets
In the realm of cloud computing and data storage, the integration of Amazon Simple Storage Service (S3) with AWS Key Management Service (KMS) represents a
Monitoring Kubernetes with Prometheus and Alertmanager: Setting Up Alerts with Slack Integration
In this tutorial, we will learn how to set up Prometheus rules and configure Alertmanager to send alerts to a Slack channel. Prometheus is a popular monitoring …
All you need to know about Terraform provisioners and why you should avoid them.
As defined in the Terraform documentation, provisioners can be used to model specific actions on the local machine running the
Submit your articles to Aws Morocco
AWS Morocco Medium publication is dedicated to providing insightful articles and tutorials on AWS products, services, and the latest news and updates. If …
How hackers can find your exposed Elasticsearch clusters using Shodan!
For the last couple of months, I have been exploring Elasticsearch and I even shared some articles about it talking about how impressive the technology behind …
Machine learning on Elastic Search using Apache Spark and ES-Hadoop — Part 2
In the previous article (Part1), we installed the ELK stack along with the ES-Hadoop connector and spark, then we did some visualizations in Kibana with the …
Machine learning on Elastic Search using Apache Spark and ES-Hadoop — Part 1
Before digging into any technical details, I will start with brief descriptions of the tools that I will be using for the tutorials (this part and the coming …
