Skip to main content


DevOps, Agile, Software Development, Networking, Azure, Terraform, CI/CD, … there’s a lot to blog about! Keep informed and subscribe my RSS feed!




Short introduction to Hashicorp Terraform Cloud (Free) and AzureRM

·4 mins
Hashicorp Terraform is an infrastructure of code tool that is cloud-agnostic and supports on-premises aswell. I’m using the Terraform CLI quite some time, but nowadays there is another option: Terraform Cloud. Terraform Cloud is the managed service offering of Hashicorp and is the easiest way to start with Terraform today. Let’s check it out!

Flash ESPEasy on NodeMCU ESP32-WROOM-32

·2 mins
I bought some NodeMCU ESP32-WROOM-32 development boards to monitor temperatures of my central heating system with 20+ underfloor heating groups. I want to know the temperature of each group to optimize the system. I use ESPEasy because it is more or less plug-and-play. In this blog post I share how you flash and install ESPEasy on your ESP32.

Lightning speed development on Windows 10 with WSL 2, Docker, Terminal and Jetbrains IntelliJ/PyCharm/PHPStorm

·5 mins
Developing on Windows was challenging before Microsoft introduced WSL 2. Running Linux Virtual Machines with SMB/CIFS shares mounted into Windows was the best solution I could come up before there were tools like Vagrant. But all these solutions have one common problem. They mounted a Windows volume in Linux or visa versa which resulted in (very) poor I/O performance. Fortunately, WSL 2 resolves all these issues by running Docker and IDE’s like Jetbrains IntelliJ, PyCharm and PHPStorm in WSL 2.


Deploy a secure instance of Elasticsearch on Kubernetes

·5 mins
It’s easy to deploy Elasticsearch on Kubernetes. You get yourself a copy of the Elastic Helm Charts and you run helm install. Job well done… or not? The default Elasticsearch configuration doesn’t enable any encryption or security mechanism, that doesn’t sound really safe! In this blog post, I’ll explain how you secure your Elasticsearch instance by enabling encryption (SSL transport and HTTP over SSL) and native authentication.

Automate your home with a Shelly 1 Wi-Fi module

·5 mins
I’m a bit conservative about automating my home because of the vendor lock-in or the requirement to have a central hub. Last Black Friday I came across the Shelly products. Shelly doesn’t require a central hub and only needs a Wi-Fi connection and there isn’t a vendor lock-in because the modules do have their own web interface and API. Interesting and I bought a couple of Shelly 1’s! In this article more about the Shelly 1 and how I use them to automate my front door and back door lights.

Deploy Kubernetes Cluster with Rancher Kubernetes Engine (RKE)

·6 mins
In this blog post, I’ll explain how you deploy a brand new Kubernetes Cluster with Rancher Kubernetes Engine (RKE). Rancher Kubernetes Engine doesn’t include the Rancher management application itself and will deploy a vanilla Kubernetes Cluster for you, the exact same thing as kubeadm can do for you but much more simple!


Use Kubernetes Certificate Manager to automatically add SSL/TLS certificates to ingresses

·3 mins
Kubernetes Certificate Manager (cert-manager) is a native Kubernetes controller helping you to issue certificates from a variety of sources, such as Let’s Encrypt, HashiCorp Valut, a signing keypair and self-signed. The Certificate Manager ensures certificates are valid and up-to-date, and attempt to renew certificates at a configured time before expiry.

Install Keycloak on CentOS 7 with MySQL backend

·4 mins
Keycloak is an open source Identity and Access Management solution aimed at modern applications and services. It makes it easy to secure applications and services with little to no code. I’m using Keycloak as an Identity Broker and have multiple Active Directories added to Keycloak.