Day 6β’3 min readβ’Intermediate
Day 06: Private DNS & The Split-Horizon0
Machines talk to IPs, humans talk to names. We build a Private DNS Zone to decouple Identity from Location.
Read Post
Latest Entry
Day 07: The Manual Load Balancer (Nginx Reverse Proxy)
We peel back the abstraction of Cloud Load Balancers by building one manually using Nginx. We cover Round Robin, Failover, Sticky Sessions, and the architectural journey of a packet.
Day 74 min readRead Story
Previous Entries
Day 5β’4 min readβ’Advanced
Day 05: Building a Manual NAT Gateway (No 'Cloud NAT' Allowed)β
We build a router from scratch using Linux primitives. A step-by-step guide to forwarding, masking, and routing traffic manually.
Read Post
Day 4β’5 min readβ’Intermediate
Day 04: The Rule of 4 & The Alias IP Secret0
Why GCP steals 4 IPs, why you can't shrink subnets, and how Alias IPs form the backbone of Kubernetes networking.
Read Post
Day 3β’4 min readβ’Fundamental
Day 03: The Keymaster (SSH & Metadata)0
We disable 'OS Login' to manage raw SSH keys manually. Learn how to generate keys, inject them via Metadata, and recover access if you lose them.
Read Post
Day 2β’4 min readβ’Intermediate
Day 02: The Data Plane Gap (IAM vs. Linux Permissions)0
Cloud IAM stops intruders at the door, but Linux permissions protect the room. A tutorial on mounting disks, using ACLs, and blocking malware execution.
Read Post
Day 1β’4 min readβ’Fundamental
Day 01: The Lie of the Open Firewall0
A step-by-step guide to building a raw Python server and understanding why '0.0.0.0' matters more than your firewall rules.
Read Post
SO 1β’3 min readβ’Advanced
Special Ops: Automating Security Operations (The 429 Analyzer)0
We build a Python-powered security bot that analyzes Cloud Armor alerts and sends high-impact result cards to Google Chat.
Read Post