In-depth guides

Migration guides

Hand-written walkthroughs that go beyond the calculator — the economics, the gotchas, the tooling, and how to cut over safely.

AI & LLM migration guide

Moving high-volume workloads off OpenAI, Anthropic, or Gemini to self-hosted open-weight models (Llama, Mistral, DeepSeek) behind a gateway.

Read the guide →

Backup & DR migration guide

Re-platforming off Veeam, Commvault, or NetBackup: re-protecting workloads, parallel runs, and proving restores before you switch.

Read the guide →

CI/CD & DevOps migration guide

Moving off GitLab, Azure DevOps, or Bamboo to Gitea/Forgejo, Drone, Woodpecker, or Argo: repo mirroring and pipeline translation.

Read the guide →

Cloud adoption & repatriation guide

On-prem → cloud (adoption) and cloud → on-prem (repatriation): when each makes sense, native tooling, and the steady-state cost reality.

Read the guide →

Cloud migration guide (cross-cloud)

Moving workloads between AWS, Azure, GCP, and OCI: native migration services, IaC re-platforming, egress, and DNS cutover.

Read the guide →

Containers & PaaS migration guide

Leaving OpenShift, Tanzu, or Docker EE for upstream Kubernetes, Rancher/RKE2, or K3s: Velero-based moves and OpenShift-ism conversion.

Read the guide →

Cybersecurity (endpoint/EDR) migration guide

Swapping CrowdStrike, SentinelOne, or Symantec for Wazuh, CrowdSec, or osquery: ringed agent rollout, detections, and dual-run.

Read the guide →

Data warehouse migration guide

Moving off Snowflake, Teradata, or BigQuery to ClickHouse, Trino, or DuckDB: open formats, SQL conversion, and reconciliation.

Read the guide →

Database migration guide

Moving off Oracle, SQL Server, or other commercial databases: licensing economics, schema/SQL conversion, and low-downtime cutover.

Read the guide →

Firewall migration guide

Replacing Palo Alto, Fortinet, Check Point, Cisco, or SonicWall with OPNsense or pfSense: rulebase export, VPN/IPS, and per-site cutover.

Read the guide →

IaC & secrets migration guide

After HashiCorp's BSL change: moving Terraform→OpenTofu and Vault→OpenBao with compatible state/secret backends and no-op plans.

Read the guide →

Identity & access (IAM) migration guide

Replacing Okta, Entra ID, or Ping with Keycloak, Authentik, or Zitadel: directory sync, app re-federation, MFA, and per-app cutover.

Read the guide →

Load balancer / ADC migration guide

Replacing F5, Citrix NetScaler, Kemp, or A10 with HAProxy, NGINX, or Traefik: translating rules, TLS, and swinging traffic safely.

Read the guide →

Message & streaming migration guide

Moving off Confluent, IBM MQ, or TIBCO to Apache Kafka, RabbitMQ, NATS, or Pulsar: bridging, repointing clients, and draining safely.

Read the guide →

Monitoring & observability migration guide

Replacing Datadog, Splunk, New Relic, or SolarWinds with open stacks (Prometheus/Grafana/Loki) — what maps, what doesn't, and how to dual-run.

Read the guide →

Operating system migration guide

Moving off RHEL, Windows Server, or SUSE to Rocky, AlmaLinux, Ubuntu, or Debian: in-place conversion vs reprovision, and validation.

Read the guide →

Storage & SAN migration guide

Moving off Dell, NetApp, or Pure to software-defined/open storage (TrueNAS, Ceph, MinIO): data migration, performance, and cutover.

Read the guide →

Switches & routers migration guide

Moving off Cisco, Juniper, or Arista to open network OSes (SONiC, VyOS, FRRouting): HCL validation, config conversion, and pod-by-pod cutover.

Read the guide →

Virtualization migration guide

Leaving VMware (or any hypervisor): how to choose a target, map vSphere concepts, and migrate VMs without surprises.

Read the guide →