The Everything Feed - All Packet Pushers Pods D2DO286: Scaling Kubernetes Across Clouds – Identity, DNS, and Security
Nov 5, 2025
In this discussion, Goutam Tadi, a Staff Software Engineer at Astronomer, shares his vast experience in managing Kubernetes across GCP, AWS, and Azure. He dives into the complexities of workload identity, detailing how OIDC-based solutions can enhance security by replacing static keys with short-lived tokens. Goutam also explains the crucial role of DNS in Kubernetes, offering tips to optimize query resolution and reduce latency. His insights are invaluable for anyone navigating multi-cloud environments.
AI Snips
Chapters
Transcript
Episode notes
Greenplum On Kubernetes Journey
- Goutam started working on Greenplum on Kubernetes in 2018 and built an MVP with Python scripts before operators existed.
- That exploration produced a production-like, highly available Greenplum deployment and three patents.
Stateful Workloads Are Possible On Kubernetes
- Kubernetes' orchestration benefits can apply to stateful systems if you solve storage availability and backups.
- Treat stateful deployments as design challenges, not impossibilities, to gain automation and resiliency.
Managing Multi-Cloud Kubernetes At Astronomer
- At Astronomer, Goutam helps manage hundreds of Kubernetes clusters and thousands of nodes across GCP, AWS, and Azure.
- The team handles upgrades, CVE patches, monitoring, and customer infrastructure support centrally.