Personal notes on software engineering, Linux systems, and cloud infrastructure.
Understanding how Docker Swarm overlay networks work under the hood. We explore the VXLAN tunneling mechanism, service discovery with embedded DNS, and the iptables rules that make container communication possible...
This guide walks through creating a lightweight network traffic monitor using eBPF XDP programs. We cover the kernel BPF verifier, map types, and how to attach programs to network interfaces without impacting throughput...
Exploring practical concurrency patterns in Java 21, including virtual threads, structured concurrency, and the new scoped values API. Includes benchmark comparisons between traditional thread pools and Project Loom...
A step-by-step guide to enabling mutual TLS in a service mesh. Covers certificate rotation with Citadel, PeerAuthentication policies, and how to debug common TLS handshake failures in production...
Practical guide to tuning Nginx for high-concurrency workloads. Covers worker_processes, worker_connections, sendfile, tcp_nopush, kernel socket buffer tuning, and the often-misunderstood proxy_buffer settings...