Somaz Tech Blog

AWS Load Balancer Complete Comparison Guide

Fri, 17 Apr 2026 00:00:00 +0000

Overview

AWS provides various types of load balancers to enhance application availability, scalability, and security. Each load balancer has unique characteristics and optimized use cases, making the right choice significantly impact system performance and costs.

This guide provides an in-depth analysis of AWS’s four major load balancers (ALB, NLB, CLB, Gateway Load Balancer), covering their features, performance, use cases, practical implementation with Terraform, and cost optimization strategies.

Through this, I’ll provide practical knowledge to help you select the most suitable load balancer for your architecture and operate it efficiently.

1....

Upgrading a Kubernetes Cluster with Kubespray (2026V.)

Wed, 15 Apr 2026 00:00:00 +0000

Overview

Operating a Kubernetes cluster requires periodic upgrades for security patches, new features, and certificate renewal.

Kubespray supports automated upgrades through the upgrade-cluster.yml playbook, following the order of etcd → Control Plane → Worker. Instead of manually connecting to each node and running kubeadm upgrade, you can upgrade the entire cluster with a single Ansible command.

This guide covers the following key areas:

Kubespray ↔ Kubernetes version mapping
etcd backup and restore
Kubespray version transition (v2.28.0 → v2.30.0)
Kubernetes upgrade using upgrade-cluster.yml (v1.33.3 → v1.34.3)
Certificate auto-renewal
Errors...

Python Methods Explained: Instance, Class, and Static Methods - A Complete Guide

Tue, 14 Apr 2026 00:00:00 +0000

Overview

Python classes support three distinct types of methods: instance methods, class methods, and static methods. Understanding the differences between these method types is crucial for writing clean, efficient, and maintainable object-oriented code.

Each method type serves a specific purpose and has unique characteristics that make it suitable for different scenarios. By mastering these three method types, developers can create more organized and intuitive class structures that follow best practices in object-oriented programming.

1. Instance Method

Instance methods are the most common type of method in Python classes....

Building an Automated APK QR Code Generator Bot with Jenkins CI/CD and Slack Integration

Fri, 10 Apr 2026 00:00:00 +0000

Overview

In mobile app development environments, distributing APK builds to testers can be surprisingly cumbersome. You copy download links and paste them into Slack, then testers must manually enter or copy these links on their mobile devices. Long URLs are particularly prone to input errors.

To solve this inconvenience, I developed a bot that automatically converts APK download links into QR codes and sends them to Slack channels. When Jenkins builds complete, QR codes are automatically generated and sent to Slack, allowing testers to simply scan the QR code with their mobile devices to download...

Building a Kubernetes Cluster with Kubespray (2026V.)

Thu, 09 Apr 2026 00:00:00 +0000

Overview

There are several ways to build a Kubernetes cluster, but if you want repeatable and automated installations in an on-premises environment, Kubespray is one of the most powerful options.

Kubespray is an Ansible-based provisioning tool that allows flexible installation of Kubernetes clusters — including HA configurations — across various environments (GCP, AWS, on-premises, etc.) by simply defining YAML-based inventory files.

This guide covers the following key areas:

Kubernetes v1.34 cluster deployment on Ubuntu 24.04 using Kubespray
Cilium CNI, Helm, Metrics Server, and Krew addon configuration
containerd insecure registry (Harbor) setup
Worker Node addition...

Python Virtual Environment Setup on WSL2 Ubuntu: Managing Multiple Python Versions with pyenv and virtualenv

Tue, 07 Apr 2026 00:00:00 +0000

Introduction to Python Virtual Environment Management

In modern Python development, managing multiple projects with different Python versions and package dependencies is a common challenge. This guide demonstrates how to leverage pyenv and virtualenv on WSL2 Ubuntu to create isolated development environments, ensuring each project maintains its own dependencies without conflicts.

When operating Python projects, developers frequently encounter scenarios where different projects require different Python versions or distinct package configurations. This guide provides a systematic approach to solving these challenges by:

Installing specific Python versions using pyenv
Creating isolated...

AWS Monitoring Stack Complete Analysis - CloudWatch vs X-Ray vs 3rd Party Solutions

Sat, 04 Apr 2026 00:00:00 +0000

Overview

Modern cloud-native applications demand comprehensive monitoring and observability strategies that provide real-time insights into system performance, user experience, and operational health. AWS offers a robust ecosystem of native monitoring tools, while third-party solutions provide specialized capabilities and cross-cloud compatibility.

The monitoring landscape has evolved beyond simple metrics collection to encompass distributed tracing, application performance monitoring (APM), and intelligent alerting systems. Organizations must navigate the complexity of choosing between AWS-native solutions like CloudWatch and X-Ray, or integrating third-party platforms such as Datadog, New Relic, and Prometheus-based stacks.

This comprehensive analysis examines the technical capabilities, architectural...

GCP CDN Services Complete Guide - Cloud CDN vs Media CDN vs Firebase Hosting Implementation Strategy

Sat, 28 Mar 2026 00:00:00 +0000

Overview

Global content delivery has become a critical factor in application performance and user experience. Google Cloud Platform offers three distinct CDN solutions: Cloud CDN for general web content, Media CDN for streaming and large file delivery, and Firebase Hosting for static web applications. Each service addresses specific content delivery requirements with unique optimization strategies and cost structures.

Understanding the differences between these services enables architects to design optimal content delivery architectures that balance performance, cost, and operational complexity. Cloud CDN integrates seamlessly with Google Cloud Load Balancing for dynamic content acceleration, while Media CDN...

AWS Container Strategy - Lambda vs ECS vs EKS Comprehensive Guide

Fri, 27 Mar 2026 00:00:00 +0000

Overview

Modern cloud-native application development demands strategic container deployment decisions that directly impact system performance, scalability, and operational efficiency. AWS provides a comprehensive spectrum of container services, ranging from fully serverless Lambda functions to enterprise-grade Kubernetes clusters through EKS.

The container orchestration landscape has evolved significantly, with each AWS service targeting specific use cases and operational models. Lambda revolutionizes event-driven architectures through serverless execution, while ECS provides simplified container orchestration with deep AWS integration. EKS delivers complete Kubernetes compatibility for complex, production-grade workloads requiring advanced orchestration capabilities.

This comprehensive analysis examines the technical architecture, performance...

Jenkins Server Recovery After Power Outage - Resolving Plugin Version Mismatch

Tue, 24 Mar 2026 00:00:00 +0000

Overview

Unexpected server power outages can cause serious issues in Jenkins environments. When developers update plugins before an outage, the restart process may result in plugin version mismatches, preventing Jenkins from functioning properly.

This article shares practical solutions for recovering Jenkins when the UI breaks and Jobs become invisible after a power outage. We’ll cover upgrade procedures for various platforms including macOS, Linux, Docker containers, and Kubernetes.

Problem Description

Issues Encountered

Unexpected server power outage causing abnormal Jenkins termination
Developer had updated plugins before outage, plugin versions increased...

GCP AI/ML Platform Complete Guide - Vertex AI vs AutoML vs Custom Training Implementation Strategy

Sat, 21 Mar 2026 00:00:00 +0000

Overview

As cloud-based machine learning becomes a core competitive advantage for enterprises, Google Cloud Platform’s AI/ML services are gaining significant attention. From Vertex AI and AutoML to Custom Training and BigQuery ML, GCP provides an integrated platform that meets diverse ML requirements across different maturity levels.

This comprehensive guide examines the characteristics and selection criteria for each service, MLOps pipeline construction strategies, and practical architecture patterns that can be immediately applied in production environments. We’ll explore the trade-offs between pre-trained and custom model development, automated model deployment with A/B testing, and real-time inference system implementation.

...

Who Ran kubectl edit? — Building a Kubernetes Cluster Drift Detection Tool

Wed, 18 Mar 2026 00:00:00 +0000

Overview

When operating Kubernetes clusters, a common problem arises: the actual cluster state diverges from the manifests defined in Git — known as Cluster Drift. Someone uses kubectl edit to manually change replicas, or kubectl scale to quickly adjust capacity, and suddenly the Git source and cluster state are out of sync.

While kubectl diff can compare manifests, it only supports plain YAML files, cannot directly handle Helm or Kustomize, and its raw unified diff output is difficult to read.

This post introduces two tools built to solve these...

Complete Guide to Kubernetes Storage Types: iSCSI, NFS, Ceph RBD, and Cloud Solutions

Tue, 17 Mar 2026 00:00:00 +0000

Overview

When configuring persistent storage in Kubernetes, the first question encountered is: “Which storage type should I choose?” NFS is simple but performance concerns arise. iSCSI is fast but setup appears complex. Cloud environments offer additional options to consider.

This comprehensive guide compares characteristics and trade-offs of major storage types used in Kubernetes environments, providing guidance for optimal selection based on specific situations. Drawing from practical experience, we’ll explore which storage type suits which workload with concrete examples.

Understanding the right storage solution requires analyzing multiple factors: performance requirements, access patterns, operational complexity, and cost...

GKE Autopilot vs Standard vs Cloud Run Container Strategy Guide - Complete Implementation and Optimization

Sat, 14 Mar 2026 00:00:00 +0000

Overview

When operating container-based applications on Google Cloud, the main platforms available are GKE Standard, GKE Autopilot, and Cloud Run. Each has different operational complexity and cost structures, with the optimal choice varying based on workload characteristics.

GKE Standard is a traditional Kubernetes cluster providing maximum control but with significant operational overhead. GKE Autopilot is a serverless Kubernetes solution where Google manages node operations, while Cloud Run is a fully managed serverless container platform. This guide analyzes the characteristics and appropriate use cases of each platform to help establish optimal container strategies.

Modern container orchestration...

Network Topology Models Complete Guide - From Hub-and-Spoke to Mesh

Tue, 10 Mar 2026 00:00:00 +0000

Overview

Network topology refers to the physical or logical connection structure between nodes in a computer network. The correct topology selection directly impacts network performance, scalability, cost, and management complexity.

This guide provides comprehensive comparative analysis of core topology models in modern network design, exploring their characteristics and application scenarios in depth. We focus particularly on the Hub-and-Spoke model, which has gained attention in cloud environments, from a practical perspective.

Modern cloud architectures demand sophisticated network topologies that can handle distributed workloads, provide security isolation, and scale efficiently. Understanding the nuances of different topology patterns...

GCP Database Selection Complete Guide - Cloud SQL vs Spanner vs Firestore vs BigQuery

Fri, 06 Mar 2026 00:00:00 +0000

Overview

Modern application data requirements are more complex and diverse than ever before. Google Cloud Platform (GCP) provides comprehensive database services spanning relational, NoSQL, and analytical databases to meet these varied requirements. Each database has unique strengths and application scenarios, making the right choice crucial for application performance and cost efficiency.

Cloud SQL serves as a fully managed relational database service supporting MySQL, PostgreSQL, and SQL Server, optimized for migrating existing applications to the cloud. Cloud Spanner is Google’s innovative globally distributed relational database that uniquely provides both ACID transactions and horizontal scalability.

Firestore is...

Valkey: The Open-Source Alternative to Redis in 2026

Wed, 04 Mar 2026 00:00:00 +0000

Table of Contents

Overview

What is Valkey?

Redis vs Valkey Comprehensive Comparison

Deploying Valkey on Kubernetes with Helm

Project Directory Structure

Conclusion

References

Overview

For years, Redis has been synonymous with in-memory data stores. Its exceptional performance across diverse workloads—caching, session management, message queuing—established it as the de facto industry standard.

However, in March 2024, Redis Inc. fundamentally altered the landscape by abandoning the BSD 3-Clause license in favor of source-available licensing. This decision represented a significant shift from true open-source principles, triggering concerns across...

AWS CDN Complete Analysis - CloudFront vs Global Accelerator

Mon, 02 Mar 2026 00:00:00 +0000

Overview

In modern web applications, delivering fast and reliable content to global users has become an essential requirement. AWS provides two primary services to meet these needs: CloudFront and Global Accelerator.

Both services leverage AWS’s global network infrastructure to improve performance, but each serves different purposes and offers distinct advantages. CloudFront operates as a traditional Content Delivery Network (CDN), caching static and dynamic content at edge locations worldwide to serve users from geographically closer positions.

In contrast, Global Accelerator functions at the network layer, routing traffic through optimized paths via AWS’s global network infrastructure. This...

GitLab CI/CD YAML Optimization: Eliminating Duplication and Enhancing Reusability

Sat, 28 Feb 2026 00:00:00 +0000

Overview

As GitLab CI/CD pipelines grow in complexity, YAML configuration files often accumulate duplicated code and intricate configurations. This increases maintenance overhead and creates opportunities for errors. GitLab provides powerful YAML reusability features to address these challenges.

This comprehensive guide explores three core methods for optimizing GitLab CI/CD YAML files, enabling teams to build maintainable, scalable, and efficient pipeline configurations.

GitLab CI/CD offers three primary YAML optimization tools that can be categorized as follows:

YAML Anchors: Traditional YAML syntax for basic reusability

extends keyword: GitLab’s recommended configuration inheritance approach

!reference tag: Flexible selective referencing...

EKS Fargate vs EC2 Node Groups Complete Analysis - Kubernetes Worker Node Options

Wed, 25 Feb 2026 00:00:00 +0000

Overview

Amazon Elastic Kubernetes Service (EKS) provides two primary compute options for running Kubernetes workloads: Fargate and EC2 Node Groups.

Each approach offers distinct advantages and trade-offs in terms of operational overhead, cost structure, performance characteristics, and deployment flexibility.

This comprehensive analysis examines the technical architecture, cost implications, and operational considerations of both options, providing guidance for optimal Kubernetes cluster design decisions.

EKS Compute Architecture Overview

graph LR subgraph "EKS Fargate Architecture" EKSControl1[EKS Control Plane] FargateProfile[Fargate Profile] Pod1[Pod 1] Pod2[Pod 2] Pod3[Pod 3]...

GCP Network Connectivity Complete Guide - VPC Peering vs Cloud Interconnect vs VPN

Sun, 22 Feb 2026 00:00:00 +0000

Overview

Secure and efficient connectivity between various resources is fundamental to modern IT infrastructure in cloud networking. Google Cloud Platform (GCP) provides diverse networking options for connecting on-premises environments, other cloud providers, and internal GCP resources.

VPC Peering provides private connections between VPCs within the same organization or across different organizations, while Cloud Interconnect ensures high bandwidth and low latency through dedicated connections between on-premises networks and GCP. Cloud VPN enables cost-effective hybrid connections through encrypted tunnels over the internet.

Recent developments in GCP’s networking services have become increasingly sophisticated. From centralized network management through...

AWS CDN Complete Implementation Guide - Kubernetes + CloudFront for API and Static File Optimization

Wed, 18 Feb 2026 00:00:00 +0000

Overview

Content Delivery Networks (CDN) have evolved from optional infrastructure to mission-critical components in modern web applications.

For organizations operating global services or handling high-volume traffic, a well-architected CDN strategy is essential for maintaining user experience and server stability.

This comprehensive guide demonstrates how to build a complete CDN solution using Kubernetes and AWS CloudFront, optimizing both API server responses and static file delivery.

We’ll cover automated DNS management with External-DNS, dual distribution patterns (ALB + CloudFront and S3 + CloudFront), and enterprise-grade security configurations.

Architecture Overview

Our...

GCP Load Balancer Complete Comparison Guide

Sat, 14 Feb 2026 00:00:00 +0000

Overview

Google Cloud Platform offers a comprehensive suite of load balancing solutions designed to meet diverse application requirements and architectural patterns. From global HTTP(S) load balancing to regional TCP/UDP load balancing, GCP provides the flexibility and performance needed for modern cloud-native applications.

Load balancers serve as the critical entry point for user traffic, ensuring high availability, optimal performance, and seamless scaling. Understanding the nuances of each GCP load balancer type enables architects and engineers to make informed decisions that directly impact application performance, cost efficiency, and operational complexity.

Recent developments in GCP’s load balancing ecosystem...

AWS Network Connection Methods Complete Comparison - VPC Peering vs Transit Gateway vs VPN

Wed, 11 Feb 2026 00:00:00 +0000

Overview

Network connectivity between multiple VPCs is a core component of modern cloud infrastructure design.

AWS provides various networking connection options including VPC Peering, Transit Gateway, and VPN, each with unique characteristics and application scenarios.

This comprehensive guide analyzes the technical features of these three methods, compares them across scalability, cost, and security dimensions, and examines key considerations for designing hybrid cloud architectures.

Network Connection Architecture Overview

graph LR subgraph "VPC Peering Architecture" A[VPC A] ---|Peering| B[VPC B] A...

Building an On-Premises LLM System with Ollama + Open WebUI

Mon, 09 Feb 2026 00:00:00 +0000

Table of Contents

Overview

System Architecture & Requirements

Step 1: NVIDIA Driver Installation

Step 2: Docker & NVIDIA Container Toolkit

Step 3: NFS Storage Configuration

Step 4: Docker Network Setup

Step 5: Ollama Server Deployment

Step 6: Open WebUI Installation

Step 7: API Integration & Usage

Step 8: Monitoring & Maintenance

Troubleshooting Guide

Security Considerations

Performance Optimization

Conclusion

References

Overview

While commercial LLM services like ChatGPT and Claude have become mainstream, security-conscious enterprise environments often cannot transmit...

Docker Image Optimization Practical Guide

Sat, 07 Feb 2026 00:00:00 +0000

Overview

As a DevOps engineer, oversized Docker images have consistently been a persistent challenge throughout my career. Python machine learning stacks and Go development tools often result in images exceeding 1GB, creating significant operational obstacles.

Recent experiments with personal projects revealed critical issues with initial image sizes consuming excessive local development environment disk space. This investigation focused on three primary pain points:

Deployment Time: Extended image build and transfer duration

Development Environment: Local disk space constraints

Security Vulnerabilities: Unnecessary packages introducing potential risks

Through several weeks of optimization experimentation, I successfully reduced a...

AWS Network ACL vs Security Group - Complete Comparison and Implementation Guide

Wed, 04 Feb 2026 00:00:00 +0000

Overview

AWS provides two primary network security mechanisms within VPC (Virtual Private Cloud): Security Groups and Network ACLs (Access Control Lists).

Understanding the differences between these stateful and stateless firewalls is crucial for implementing robust security architectures in AWS.

This comprehensive guide explores the fundamental differences, use cases, limitations, and best practices for both security mechanisms.

What are Security Groups and Network ACLs?

Security Groups act as instance-level stateful firewalls, while Network ACLs function as subnet-level stateless firewalls.

Both work together to provide layered security for your AWS...

Context Switch Deep Dive - The Hidden Performance Cost in Container Environments

Sat, 31 Jan 2026 00:00:00 +0000

Overview

Does the CPU really process multiple tasks simultaneously?

We take “multitasking” for granted as we run dozens of containers, processes, and threads concurrently every day. However, the CPU actually processes only one task at any given moment. The core technology that makes rapid task switching appear like true multitasking is called Context Switching.

But context switching isn’t free. As the number of containers increases and task switching becomes more frequent, the CPU spends more resources saving and restoring contexts rather than performing actual computations.

This article explores what Context Switching is, why it leads...

AWS Elastic File System (EFS) with Kubernetes - Complete Implementation Guide

Tue, 27 Jan 2026 00:00:00 +0000

Overview

AWS Elastic File System (EFS) is a scalable, fully managed NFS file system that provides shared storage accessible by multiple EC2 instances simultaneously.

In Kubernetes environments, EFS is particularly valuable when multiple pods need to share the same data.

This comprehensive guide will walk you through implementing EFS with Terraform and utilizing it in Kubernetes for persistent storage solutions.

What is EFS?

Amazon Elastic File System (EFS) is a fully managed NFS (Network File System) service provided by AWS.

It can be understood as the cloud version...

TLS Handshake and Certificate Architecture - A Deep Dive into HTTPS Security

Sat, 24 Jan 2026 00:00:00 +0000

Overview

Every time you see that green padlock icon in your browser, a sophisticated cryptographic dance has just occurred behind the scenes. This dance is called the TLS Handshake, and it’s the foundation of secure web communication.

In our interconnected world, billions of HTTPS connections are established daily, protecting everything from casual web browsing to critical financial transactions. Yet despite its ubiquity, the inner workings of TLS (Transport Layer Security) remain mysterious to many developers and system administrators.

This comprehensive guide answers fundamental questions about web security: How does TLS establish trust between strangers on...