2 posts tagged with "k8s" | GRAN Software Solutions Blog

Automating Production Postgres on Kubernetes: A PGO and Ansible IaC Pattern

July 14, 2025 · 11 min read

Software Engineer @ GRAN Software Solutions GmbH

AA robotic arm in an 80s sci-fi style installing server equipment into a rack within a modern data center. — The future of IT infrastructure built with automation

This guide details a production-grade, Infrastructure as Code (IaC) pattern for deploying the Crunchy Data Postgres Operator (PGO) on Kubernetes with Ansible. It's designed for experienced engineers managing their own infrastructure on platforms like K3s, not for those using managed cloud database services like RDS or Cloud SQL.

By wrapping PGO's Helm chart and cluster definitions in Ansible, you create a version-controlled, repeatable, and automated system. By the end, you will have a complete playbook that deploys PGO and provisions a Postgres cluster with production-ready, S3-backed backups.

Beyond SSH Tunnels: Secure K8s Access with WireGuard & Ansible

July 4, 2025 · 7 min read

Greg Glazewski

Software Engineer @ GRAN Software Solutions GmbH

A digital painting in a retro 80s style depicting a horde of orcs in ushankas and orange armor laying siege to a formidable white castle under a dark, stormy sky. — Even the most secure fortress can face an unexpected horde

Directly accessing Kubernetes services from outside the cluster can be a security and convenience nightmare. Tedious port-forward commands and exposed proxies are risky. This post details how I built a better solution: a secure, automated VPN tunnel into my cluster using WireGuard and Ansible, giving me direct, private network access to my K3s cluster.