Luis Lavena

Service port proxying (or forwarding) is coming to Uncloud: uc proxy SERVICE [LOCAL_PORT]:REMOTE_PORT It’s useful for troubleshooting an internal service that is not exposed publicly, testing a web service before publishing it, or accessing a database. One handy command for many use cases. It’s like ‘ssh -L’ but it automatically handles the wiring to the right container on the right remote machine. And it’s only ~80 LOC as we already had the right primitives so an external contributor could easily put them together. Love it!

Just shipped Uncloud v0.18 🎉 → Deploy plan got a glow-up - much nicer to read and understand 👇 → Pre-deploy hooks - run DB migrations before new code goes live → System 'ssh' is now the default - faster commands and full SSH config support → Pin compose.yaml to cluster with 'x-context' 📚 New docs!

🎙️ I went on go podcast() this week to talk about why I’m building Uncloud - Docker Compose for production, bridging the gap between Docker and Kubernetes. We covered: - why most projects don't need k8s and what alternatives we have - a hybrid setup mixing cloud VMs and on-prem - WireGuard mesh networking - unregistry - direct image push to servers without a registry Give it a listen on any podcast platform and let me know what you think! 🎧👇

Just released Uncloud 0.17 🚀 Think multi-machine Docker Compose for production Rolling deployments now monitor crashes + health checks after new containers start. If a container keeps restarting or turns unhealthy, the deployment rolls it back to prevent downtime. Enjoy safer deploys by default.

TIL that K8s rolling deployments are not zero-downtime by default. To achieve zero downtime during rollout (stateless workloads), old containers should typically be terminated the following way: 1. Remove the container endpoint from the ingress/load balancer to stop sending new requests to it but continue processing the active ones. 2. Gracefully stop and remove the container. On stop, the process in the container should stop accepting new requests and finish serving all active ones, then terminate. The updated ingress will guarantee that new requests won't be sent to the stopping container. The strict order is essential. Alternatively, if updating the ingress configuration is not practical, the ingress should be able to automatically detect unhealthy endpoints and retry the failing requests with healthy endpoints (aka passive health checks). The problem is that K8s doesn't coordinate pod termination with the ingress, nor do popular ingress controllers implement retries for failed requests by default. It simply terminates a pod which triggers the ingress update and process shutdown simultaneously. If the process happens to start terminating before the ingress removes the endpoint, new requests will get 5xx - downtime. The workaround is to add a wonky sleep(10s) in the app’s shutdown handler or as a preStop hook in the pod. This ensures the changes are propagated to the ingress before actually stopping the process in the container. It's a shame that the behaviour the majority would expect is not the default. Sensible defaults matter. UX first please