{"id":28,"date":"2021-01-05T18:05:00","date_gmt":"2021-01-05T18:05:00","guid":{"rendered":"http:\/\/blog.firatyasar.com\/?p=28"},"modified":"2021-03-31T18:25:33","modified_gmt":"2021-03-31T18:25:33","slug":"aks-cluster-isolation","status":"publish","type":"post","link":"https:\/\/blog.firatyasar.com\/?p=28","title":{"rendered":"AKS &#8211; Cluster Isolation"},"content":{"rendered":"\n<p>Bir den fazla cluster&#8217;\u0131 y\u00f6netmek operat\u00f6rler i\u00e7in farkl\u0131 zorluklar\u0131 beraberinde getirir. Y\u00f6netim maliyetlerinden ka\u00e7\u0131nmak ve cluster say\u0131s\u0131n\u0131 d\u00fc\u015f\u00fcrmek i\u00e7in d\u00fc\u015f\u00fcn\u00fclmesi gereken \u015fey izolation&#8217;d\u0131r. <\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" width=\"577\" height=\"353\" src=\"\/wp-content\/uploads\/2021\/03\/logical-isolation.png\" alt=\"\" class=\"wp-image-29\" srcset=\"\/wp-content\/uploads\/2021\/03\/logical-isolation.png 577w, \/wp-content\/uploads\/2021\/03\/logical-isolation-300x184.png 300w\" sizes=\"(max-width: 577px) 100vw, 577px\" \/><\/figure>\n\n\n\n<p>Bir organizasyon i\u00e7erisinde fiziksel cluster say\u0131s\u0131 azalt\u0131lmak istenirse ayn\u0131 cluster&#8217;\u0131 kullanacak farkl\u0131 tak\u0131mlar\u0131n ve bunlara ba\u011fl\u0131 olarak da uygulamalar\u0131n izole edilmeleri gerekir. Bu ama\u00e7la i\u015f y\u00fcklerini ve kaynaklar\u0131 ayn\u0131 cluster \u00fczerinde birbirlerinden izole edebilmek i\u00e7in namespace yap\u0131lar\u0131 kullan\u0131l\u0131r.<\/p>\n\n\n\n<p>\u00dczerinde birden \u00e7ok uygulamay\u0131 bar\u0131nd\u0131ran cluster&#8217;lar ayn\u0131 altyap\u0131y\u0131 payla\u015ft\u0131klar\u0131 i\u00e7in bar\u0131nd\u0131rd\u0131klar\u0131 i\u015f y\u00fcklerinin g\u00fcvenli oldu\u011funu idda etmek yanl\u0131\u015f olur. Bu sebeple g\u00fcvenlik seviyesini daha yukar\u0131 \u00e7ekebilmek i\u00e7in security policy ve RBAC mekanizmalar\u0131n\u0131n kullan\u0131lmas\u0131 gerekir.<\/p>\n\n\n\n<p>E\u011fer belirli i\u015f y\u00fckleri i\u00e7in %100 bir izolasyon ihtiyac\u0131 varsa bun noktada \u00f6nerilen bu i\u015f y\u00fckleri i\u00e7in ayr\u0131 cluster&#8217;lar konumland\u0131rmakt\u0131r.<\/p>\n\n\n\n<p>Tabi ayr\u0131 cluster kullanmak bize g\u00fcvenlik anlam\u0131nda tamamen izolasyon sa\u011flasa da maliyet ve y\u00f6netim anlam\u0131nda ek y\u00fck getirecektir. Ayr\u0131ca b\u00f6yle bir tercihte %100 utilize edilemeyen cluster kapasiteleri cloud kullan\u0131lan ortamlarda eksta maliyet olu\u015fturmu\u015f olacakt\u0131r.<\/p>\n\n\n\n<p>Bu sebeplerden dolay\u0131 uygulamalar\u0131n izolasyon ihtiya\u00e7lar\u0131 iyi g\u00f6zlemlenmeli e\u011fer yeterli olacaksa namespace gibi mant\u0131ksal izolasyon ile bu ihtiya\u00e7lar kar\u015f\u0131lanmal\u0131 ve security policy ve RBAC gibi mekanizmalar ile desteklenmelidir. Fakat \u00e7ok daha s\u0131k\u0131 izolasyon gereksinimi olan durumlarda ikinci cluster ihtiyac\u0131 d\u00fc\u015f\u00fcn\u00fclmelidir.<\/p>\n\n\n<p class=\"wp-block-tag-cloud\"><a href=\"https:\/\/blog.firatyasar.com\/?tag=add-second-node-pool-on-different-subnet\" class=\"tag-cloud-link tag-link-4 tag-link-position-1\" style=\"font-size: 8pt;\" aria-label=\"Add second node pool on different subnet (1 item)\">Add second node pool on different subnet<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=add-second-node-pool-to-aks\" class=\"tag-cloud-link tag-link-3 tag-link-position-2\" style=\"font-size: 8pt;\" aria-label=\"Add second node pool to aks (1 item)\">Add second node pool to aks<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=agentic-ai\" class=\"tag-cloud-link tag-link-149 tag-link-position-3\" style=\"font-size: 15.549019607843pt;\" aria-label=\"agentic AI (6 items)\">agentic AI<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=ai-agents\" class=\"tag-cloud-link tag-link-151 tag-link-position-4\" style=\"font-size: 13.490196078431pt;\" aria-label=\"AI Agents (4 items)\">AI Agents<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks\" class=\"tag-cloud-link tag-link-5 tag-link-position-5\" style=\"font-size: 18.156862745098pt;\" aria-label=\"aks (10 items)\">aks<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks-cluster-security\" class=\"tag-cloud-link tag-link-71 tag-link-position-6\" style=\"font-size: 10.470588235294pt;\" aria-label=\"AKS Cluster Security (2 items)\">AKS Cluster Security<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks-free-tier\" class=\"tag-cloud-link tag-link-15 tag-link-position-7\" style=\"font-size: 8pt;\" aria-label=\"AKS free tier (1 item)\">AKS free tier<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks-node-image-upgrade\" class=\"tag-cloud-link tag-link-17 tag-link-position-8\" style=\"font-size: 8pt;\" aria-label=\"AKS node image upgrade (1 item)\">AKS node image upgrade<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks-node-pool\" class=\"tag-cloud-link tag-link-2 tag-link-position-9\" style=\"font-size: 10.470588235294pt;\" aria-label=\"Aks Node pool (2 items)\">Aks Node pool<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks-os-patch\" class=\"tag-cloud-link tag-link-19 tag-link-position-10\" style=\"font-size: 8pt;\" aria-label=\"AKS OS Patch (1 item)\">AKS OS Patch<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks-os-upgrade\" class=\"tag-cloud-link tag-link-18 tag-link-position-11\" style=\"font-size: 8pt;\" aria-label=\"AKS OS Upgrade (1 item)\">AKS OS Upgrade<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks-sla\" class=\"tag-cloud-link tag-link-14 tag-link-position-12\" style=\"font-size: 8pt;\" aria-label=\"AKS SLA (1 item)\">AKS SLA<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks-slo\" class=\"tag-cloud-link tag-link-16 tag-link-position-13\" style=\"font-size: 8pt;\" aria-label=\"AKS SLO (1 item)\">AKS SLO<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks-spot-nodepool\" class=\"tag-cloud-link tag-link-21 tag-link-position-14\" style=\"font-size: 8pt;\" aria-label=\"AKS spot nodepool (1 item)\">AKS spot nodepool<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks-spot-nodes\" class=\"tag-cloud-link tag-link-23 tag-link-position-15\" style=\"font-size: 8pt;\" aria-label=\"AKS spot nodes (1 item)\">AKS spot nodes<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks-ssd-disk\" class=\"tag-cloud-link tag-link-9 tag-link-position-16\" style=\"font-size: 8pt;\" aria-label=\"aks ssd disk (1 item)\">aks ssd disk<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks-uptime-sla\" class=\"tag-cloud-link tag-link-13 tag-link-position-17\" style=\"font-size: 8pt;\" aria-label=\"AKS Uptime SLA (1 item)\">AKS Uptime SLA<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=aks-version-upgrade\" class=\"tag-cloud-link tag-link-20 tag-link-position-18\" style=\"font-size: 8pt;\" aria-label=\"AKS Version Upgrade (1 item)\">AKS Version Upgrade<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=api-gateway\" class=\"tag-cloud-link tag-link-24 tag-link-position-19\" style=\"font-size: 10.470588235294pt;\" aria-label=\"API Gateway (2 items)\">API Gateway<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=api-gateway-communication\" class=\"tag-cloud-link tag-link-27 tag-link-position-20\" style=\"font-size: 10.470588235294pt;\" aria-label=\"API Gateway communication (2 items)\">API Gateway communication<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=api-gateway-design\" class=\"tag-cloud-link tag-link-25 tag-link-position-21\" style=\"font-size: 8pt;\" aria-label=\"API Gateway Design (1 item)\">API Gateway Design<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=api-gateway-design-pattern\" class=\"tag-cloud-link tag-link-28 tag-link-position-22\" style=\"font-size: 8pt;\" aria-label=\"API Gateway Design Pattern (1 item)\">API Gateway Design Pattern<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=api-gateway-pattern\" class=\"tag-cloud-link tag-link-26 tag-link-position-23\" style=\"font-size: 8pt;\" aria-label=\"API Gateway pattern (1 item)\">API Gateway pattern<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=azure\" class=\"tag-cloud-link tag-link-85 tag-link-position-24\" style=\"font-size: 21.450980392157pt;\" aria-label=\"azure (18 items)\">azure<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=azure-aks\" class=\"tag-cloud-link tag-link-75 tag-link-position-25\" style=\"font-size: 13.490196078431pt;\" aria-label=\"Azure AKS (4 items)\">Azure AKS<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=azure-kubernetes-service\" class=\"tag-cloud-link tag-link-7 tag-link-position-26\" style=\"font-size: 12.117647058824pt;\" aria-label=\"azure kubernetes service (3 items)\">azure kubernetes service<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=azure-open-ai\" class=\"tag-cloud-link tag-link-150 tag-link-position-27\" style=\"font-size: 16.921568627451pt;\" aria-label=\"Azure Open AI (8 items)\">Azure Open AI<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=azure-saas\" class=\"tag-cloud-link tag-link-174 tag-link-position-28\" style=\"font-size: 10.470588235294pt;\" aria-label=\"Azure SaaS (2 items)\">Azure SaaS<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=backstage\" class=\"tag-cloud-link tag-link-127 tag-link-position-29\" style=\"font-size: 16.235294117647pt;\" aria-label=\"backstage (7 items)\">backstage<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=backstage-on-azure\" class=\"tag-cloud-link tag-link-132 tag-link-position-30\" style=\"font-size: 10.470588235294pt;\" aria-label=\"Backstage on azure (2 items)\">Backstage on azure<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=backstage-plugins\" class=\"tag-cloud-link tag-link-136 tag-link-position-31\" style=\"font-size: 10.470588235294pt;\" aria-label=\"Backstage plugins (2 items)\">Backstage plugins<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=container-image-scan\" class=\"tag-cloud-link tag-link-45 tag-link-position-32\" style=\"font-size: 10.470588235294pt;\" aria-label=\"container image scan (2 items)\">container image scan<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=developer-experience-platform\" class=\"tag-cloud-link tag-link-129 tag-link-position-33\" style=\"font-size: 10.470588235294pt;\" aria-label=\"Developer Experience platform (2 items)\">Developer Experience platform<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=firatyasar\" class=\"tag-cloud-link tag-link-12 tag-link-position-34\" style=\"font-size: 8pt;\" aria-label=\"firatyasar (1 item)\">firatyasar<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=idp\" class=\"tag-cloud-link tag-link-128 tag-link-position-35\" style=\"font-size: 14.588235294118pt;\" aria-label=\"IDP (5 items)\">IDP<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=kube-advisor\" class=\"tag-cloud-link tag-link-6 tag-link-position-36\" style=\"font-size: 8pt;\" aria-label=\"kube-advisor (1 item)\">kube-advisor<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=kubernetes\" class=\"tag-cloud-link tag-link-8 tag-link-position-37\" style=\"font-size: 14.588235294118pt;\" aria-label=\"kubernetes (5 items)\">kubernetes<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=microsoft\" class=\"tag-cloud-link tag-link-133 tag-link-position-38\" style=\"font-size: 22pt;\" aria-label=\"Microsoft (20 items)\">Microsoft<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=multi-tenancy\" class=\"tag-cloud-link tag-link-175 tag-link-position-39\" style=\"font-size: 12.117647058824pt;\" aria-label=\"Multi Tenancy (3 items)\">Multi Tenancy<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=platform-engineering\" class=\"tag-cloud-link tag-link-130 tag-link-position-40\" style=\"font-size: 13.490196078431pt;\" aria-label=\"Platform Engineering (4 items)\">Platform Engineering<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=pv\" class=\"tag-cloud-link tag-link-11 tag-link-position-41\" style=\"font-size: 8pt;\" aria-label=\"pv (1 item)\">pv<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=pvc\" class=\"tag-cloud-link tag-link-10 tag-link-position-42\" style=\"font-size: 8pt;\" aria-label=\"pvc (1 item)\">pvc<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=saas\" class=\"tag-cloud-link tag-link-170 tag-link-position-43\" style=\"font-size: 13.490196078431pt;\" aria-label=\"SaaS (4 items)\">SaaS<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=saas-application\" class=\"tag-cloud-link tag-link-169 tag-link-position-44\" style=\"font-size: 10.470588235294pt;\" aria-label=\"Saas Application (2 items)\">Saas Application<\/a>\n<a href=\"https:\/\/blog.firatyasar.com\/?tag=spot-vm\" class=\"tag-cloud-link tag-link-22 tag-link-position-45\" style=\"font-size: 8pt;\" aria-label=\"spot vm (1 item)\">spot vm<\/a><\/p>\n\n\n<p>Firat<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Bir den fazla cluster&#8217;\u0131 y\u00f6netmek operat\u00f6rler i\u00e7in farkl\u0131 zorluklar\u0131 beraberinde getirir. Y\u00f6netim maliyetlerinden ka\u00e7\u0131nmak ve cluster say\u0131s\u0131n\u0131 d\u00fc\u015f\u00fcrmek i\u00e7in d\u00fc\u015f\u00fcn\u00fclmesi gereken \u015fey izolation&#8217;d\u0131r. Bir organizasyon i\u00e7erisinde fiziksel cluster say\u0131s\u0131 azalt\u0131lmak istenirse ayn\u0131 cluster&#8217;\u0131 kullanacak farkl\u0131 tak\u0131mlar\u0131n ve bunlara ba\u011fl\u0131 olarak da uygulamalar\u0131n izole edilmeleri gerekir. Bu ama\u00e7la i\u015f y\u00fcklerini ve kaynaklar\u0131 ayn\u0131 cluster \u00fczerinde birbirlerinden\u2026 <span class=\"read-more\"><a href=\"https:\/\/blog.firatyasar.com\/?p=28\">Read More &raquo;<\/a><\/span><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/blog.firatyasar.com\/index.php?rest_route=\/wp\/v2\/posts\/28"}],"collection":[{"href":"https:\/\/blog.firatyasar.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.firatyasar.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.firatyasar.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.firatyasar.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=28"}],"version-history":[{"count":1,"href":"https:\/\/blog.firatyasar.com\/index.php?rest_route=\/wp\/v2\/posts\/28\/revisions"}],"predecessor-version":[{"id":30,"href":"https:\/\/blog.firatyasar.com\/index.php?rest_route=\/wp\/v2\/posts\/28\/revisions\/30"}],"wp:attachment":[{"href":"https:\/\/blog.firatyasar.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=28"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.firatyasar.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=28"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.firatyasar.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=28"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}