Kubernetes on Cozystack

Flux-aio, Kubernetes mTLS and the Chicken and Egg Problem

Fri, 12 Dec 2025 00:00:00 +0000

Here at Cozystack, we’re once again solving the chicken-and-egg problem: how to deploy CNI and kube-proxy through Flux, while ensuring Flux itself works without CNI and kube-proxy.

Flux can be started without CNI and kube-proxy using the flux-aio project (by the creator of Flux), which runs a single deployment with all controllers configured to communicate with each other via localhost.

The specific challenge for Cozystack is that we deploy a small HTTP server with Helm charts and other assets used in the platform to each cluster. Flux reads these charts and installs them into the system.

Cozystack v0.38: Virtual Private Cloud, VNC Console, Configurable Worker K8s Versions, and HTTPS Enforcement

Tue, 25 Nov 2025 00:00:00 +0000

Cozystack v0.38: Virtual Private Cloud, VNC Console, Configurable Worker K8s Versions, and HTTPS Enforcement

Version 0.38 brings network isolation capabilities, improved VM access, and security hardening across the platform.

Major Features and Improvements

Virtual Private Cloud (VPC)

The headline feature of v0.38 is VPC support with Multus CNI integration. Operators can now create isolated virtual networks with:

Subnet management for fine-grained network layout.
Network isolation between tenants at the network level.
Full integration with the Cozystack dashboard for VPC lifecycle management.

VNC Console for VMs

Virtual machines now have a VNC console accessible directly from the dashboard, enabling graphical access to VMs without external tools.

Protofire Experience Operating Kubernetes with Cozystack

Wed, 10 Sep 2025 00:00:00 +0000

Protofire Experience Operating Kubernetes with Cozystack

In a recent infrastructure transition that spanned several months, our team explored alternative container orchestration platforms to simplify operations and optimize costs. At the time, our environment consisted of nearly a hundred AWS accounts running multiple ECS services, along with managed PostgreSQL, Redis, RabbitMQ, and ALBs.

One of the goals was to consolidate our deployment architecture under Kubernetes while maintaining support for stateful services, without introducing significant operational complexity. After evaluating different options, we decided to adopt Cozystack, primarily due to its all-in-one approach and compatibility with bare-metal infrastructure.

CNCF Webinar: One API to Rule Them All — Building a Unified Platform with Kubernetes Aggregation

Wed, 03 Sep 2025 00:00:00 +0000

CNCF Webinar: One API to Rule Them All — Building a Unified Platform with Kubernetes Aggregation

Speaker: Andrei Kvapil, Ænix CEO, Cozystack maintainer
When: Sep, 4

How do you build a unified product from a stack of open-source tools? In this talk, a Cozystack core maintainer walks through the engineering journey of integrating Helm, Operators, and the Kubernetes Aggregation Layer to build a general-purpose API — without using etcd.

Cozyhr: How We Simplified Local Development with Helm and Flux

Wed, 18 Jun 2025 00:00:00 +0000

Cozyhr: How We Simplified Local Development with Helm and Flux

Hi! I’m Andrei Kvapil CEO of Ænix and developer of Cozystack, an open source platform and framework for building cloud infrastructure. In this article I’ll walk through the way we deliver applications to Kubernetes, explain why regular GitOps can be awkward in local development, an show how the new tool cozyhr fixes those pain points. The article targets engineers who already know Helm and Flux.

Cozystack became a Certified Kubernetes Platform

Fri, 06 Jun 2025 00:00:00 +0000

Cozystack became a Certified Kubernetes Platform

We’re proud to announce: Cozystack has achieved Certified Kubernetes Platform status. Thanks to our community and especially to our good friends from Hidora.

How we built a dynamic Kubernetes API Server for the API Aggregation Layer in Cozystack

Thu, 12 Dec 2024 00:00:00 +0000

How we built a dynamic Kubernetes API Server for the API Aggregation Layer in Cozystack

Hi there! I’m Andrei Kvapil, but you might know me as @kvaps in communities dedicated to Kubernetes and cloud-native tools. In this article, I want to share how we implemented our own extension api-server in the open-source PaaS platform, Cozystack.

Kubernetes truly amazes me with its powerful extensibility features. You’re probably already familiar with the controller concept and frameworks like kubebuilder and operator-sdk that help you implement it. In a nutshell, they allow you to extend your Kubernetes cluster by defining custom resources (CRDs) and writing additional controllers that handle your business logic for reconciling and managing these kinds of resources. This approach is well-documented, with a wealth of information available online on how to develop your own operators.

Installing a Kubernetes Cluster Managed by Cozystack: A Detailed Guide by Gohost and Ænix

Fri, 16 Aug 2024 00:00:00 +0000

Installing a Kubernetes Cluster Managed by Cozystack: A Detailed Guide by Gohost and Ænix

This article was written by Vladislav Karabasov from Kazakhstani hosting company gohost, therefore the narrative will be conducted in the first person.

At the time of my transition to gohost.kz, the company had already been operating in the Kazakhstan market for 15 years, providing clients with a standard set of services: VPS/VDC, IaaS, virtual hosting, etc. However, clients developed new needs, so I was tasked with developing the direction of Kubernetes as a Service.

Cozystack v0.9: KubeVirt v1.2.2, Kamaji v1.0, Tenant K8s v1.30, and Node Group Upgrades

Wed, 10 Jul 2024 00:00:00 +0000

Cozystack v0.9: KubeVirt v1.2.2, Kamaji v1.0, Tenant K8s v1.30, and Node Group Upgrades

Version 0.9 brings major component updates and improves the tenant Kubernetes lifecycle.

Major Features and Improvements

Component Updates

KubeVirt updated to v1.2.2 with stability improvements.
Kamaji reaches v1.0.0 — a significant milestone for the tenant control plane manager.
Piraeus updated to v2.5.1.
Cluster API updated with hardcoded version pinning for reproducibility.

Tenant Kubernetes v1.30.1

Tenant Kubernetes clusters are upgraded to v1.30.1, the latest stable release at the time.

DIY: Create Your Own Cloud with Kubernetes (Part 3)

Fri, 05 Apr 2024 07:40:00 +0000

Author: Andrei Kvapil (Ænix)

Approaching the most interesting phase, this article delves into running Kubernetes within Kubernetes. Technologies such as Kamaji and Cluster API are highlighted, along with their integration with KubeVirt.

Previous discussions have covered preparing Kubernetes on bare metal and how to turn Kubernetes into virtual machines management system. This article concludes the series by explaining how, using all of the above, you can build a full-fledged managed Kubernetes and run virtual Kubernetes clusters with just a click.

DIY: Create Your Own Cloud with Kubernetes (Part 2)

Fri, 05 Apr 2024 07:35:00 +0000

Author: Andrei Kvapil (Ænix)

Continuing our series of posts on how to build your own cloud using just the Kubernetes ecosystem. In the previous article, we explained how we prepare a basic Kubernetes distribution based on Talos Linux and Flux CD. In this article, we’ll show you a few various virtualization technologies in Kubernetes and prepare everything need to run virtual machines in Kubernetes, primarily storage and networking.

We will talk about technologies such as KubeVirt, LINSTOR, and Kube-OVN.

DIY: Create Your Own Cloud with Kubernetes (Part 1)

Fri, 05 Apr 2024 07:30:00 +0000

Author: Andrei Kvapil (Ænix)

At Ænix, we have a deep affection for Kubernetes and dream that all modern technologies will soon start utilizing its remarkable patterns.

Have you ever thought about building your own cloud? I bet you have. But is it possible to do this using only modern technologies and approaches, without leaving the cozy Kubernetes ecosystem? Our experience in developing Cozystack required us to delve deeply into it.