Thoughts on Digital Ocean K8S (DOKS) in Production
Here are some of my thoughts on issues with DOKS based on advising companies migrating to AWS EKS:
- You can’t have granular permission scoping and access control. As companies scale, they need to be able to control what access they hand out. You also can’t have SSO tied to your Kubernetes cluster auth on DO.
- The networking primitives in Digital Ocean ended up being too restrictive. For example, they wanted static egress IPs, which was much harder to do in Digital Ocean than in AWS.
- Not DOKS, but migrating data off managed DO Postgres with zero downtime is very difficult, if not impossible. AWS Data Migration Service (DMS) requires that DO Postgres provides logical replication via pg logical, which currently isn’t supported.
Master GitHub Actions with a Senior Infrastructure Engineer
As a senior staff infrastructure engineer, I share exclusive, behind-the-scenes insights that you won't find anywhere else. Get the strategies and techniques I've used to save companies $500k in CI costs and transform teams with GitOps best practices—delivered straight to your inbox.
Not sure yet? Check out the archive.
Unsubscribe at any time.