My IT Blog

Fixing Tanzu Kubernetes Pod to External Services Connectivity Issues with NSX-T Last month I got a call from a customer who was pulling their hair out over a networking issue. They had just deployed VMware Tanzu Kubernetes Grid on their vSphere with Tanzu environment, everything looked good in the dashboards, all pods were running, but their applications inside the pods could not reach external databases running on traditional VMs in the same datacenter. The frustrating part was that some pods could reach external services perfectly fine, while others would just timeout. There was no clear pattern. Let me tell you how we figured this out and fixed it. The Initial Problem Here is what the customer setup looked like: vSphere 8.0 with Tanzu enabled NSX-T 4.1.2 for networking Three Tanzu Kubernetes clusters running different microservices applications External PostgreSQL database running on traditional VMs (non-Kubernetes) External API services running on another se...

The evolution of VMware under Broadcom represents not disruption, but clarification—a focused vision toward unified private cloud excellence. As organizations navigate this transformation, the opportunity has never been greater to build truly modern, efficient, and powerful infrastructure with VMware Cloud Foundation. After architecting VMware solutions across diverse enterprise environments, I've observed a pattern: organizations that embrace VMware Cloud Foundation (VCF) strategically—rather than viewing the transition as a burden—emerge with significantly more capable, cost-effective, and future-ready infrastructure. This post shares a practical framework for successfully modernizing your VMware environment, maximizing your investment, and positioning your organization for the AI-driven, cloud-native future. Understanding the VMware Cloud Foundation Vision Let's start with clarity about what Broadcom and VMware are building: VMware Cloud Foundati...

A Practical Architect's View on Integrating AI Capabilities into VMware Cloud Foundation VMware Cloud Foundation AI Integration Intelligent Operations Enterprise Architecture The biggest challenge enterprises face today is not just managing infrastructure at scale, but making intelligent decisions about it. Every day, our VMware environments generate millions of data points about performance, capacity, security, and health. The question is no longer whether we have enough data. The real question is whether we have the intelligence to act on it before problems impact our business. Having worked with VMware infrastructure for several years now, I have seen this pattern repeat itself across organizations. We build sophisticated monitoring systems. We create detailed dashboards. We write comprehensive runbooks. But when an incident happens at 2 AM, we still depend on a tired engineer to connect the dots between disparate signals and make the right call under ...

How Policy as Code, Agentic AI, and Private LLMs Enable Compliant Innovation at Enterprise Scale For CTOs and enterprise architects facing the dual mandate of accelerating innovation while maintaining security posture, the question is no longer whether to adopt AI, but how to do it without compromising data sovereignty, regulatory compliance, or operational stability. The answer lies in combining three powerful patterns: Infrastructure as Code with GitOps, policy driven guardrails, and private AI deployments on VMware Cloud Foundation. Having architected infrastructure for regulated environments where compliance is non negotiable, I have learned that the key to safe innovation is not restricting what teams can do, but controlling how they do it. GitOps provides the control plane. VCF provides the secure substrate. And private AI capabilities enable intelligence without data exfiltration. The GitOps Foundation for Enterprise Infrastructure GitOps is not just about u...

In enterprise VMware environments, maintaining architectural standards at scale is a constant challenge. After years of working with large-scale virtualisation infrastructures, I've learned that the gap between what architects design and what exists in production grows exponentially with team size and deployment velocity. This post shares my hands-on experience building automated guardrails and conformity bots that enforce standards, detect drift, and maintain architectural hygiene across VMware estates. The Real Problem: Configuration Entropy Every VMware environment I've worked with faces the same pattern. It starts clean—well-tagged VMs, proper resource allocation, consistent network segmentation. Six months later, chaos. VMs get deployed without mandatory tags, making cost tracking nearly impossible Resource limits get bypassed during urgent deployments and never corrected Network placement becomes inconsistent as different teams interpret po...