Design structured diagrams, built to increase your team's trust in your docs.

Hey,

We’re looking for feedback on a new tool we’re building for cloud teams.

IcePanel allows you to design, maintain and explore structured diagrams, built to increase your team's trust in your docs.

It would be a great help for us if you could try it out and let us know your initial thoughts.

Please check it out below.

https://icepanel.io

Thanks!

https://redd.it/ncy6yi
@r_devops

Wie man mit Gitlab CI/CD und NSIS eine .Net WPF Anwendung erstellt und veröffentlicht

Hab gerade einen Blogbeitrag darüber geschrieben mit man mit Gitlab CI/CD eine .Net Framework WPF Applikation builden, mit NSIS zum Setup packt und über ssh auf einen Server deployed. Vielleicht hilft es jemanden :)

https://www.protoncode.eu/post/gitlab-cicd-fuer-dotnet-und-nsis-anwendungen/

Man könnte das jetzt noch ausbauen indem man einen Unit Testing mit einbaut

https://redd.it/nd3fdv
@r_devops

What tools or strategies do you use to measure your team's performance?

I just recently came across Google's Four Keys Project as a nifty tool to measure how a team performs according to DORA's metrics. Our DevOps team was formally created only recently so we're still adopting best practices. I'd be interested in learning some of the other ways your teams measure how well they're doing.

https://redd.it/nd1rmm
@r_devops

Git branching strategy

How to implement Git branching strategy in DevOps for multi tenant application

https://redd.it/nd25fm
@r_devops

Fewest Manual Steps to setup Terraform IAC plus CI/CD in new AWS account?

Hi all

Recently, I've kicked off a personal side project built on AWS, and I aim to do everything "right" from the start. That means everything defined fully in infrastructure-as-code, and built/tested/deployed automatically with Continuous Integration and Continuous Deployment. This is ridiculous overkill for a toy project obviously, but I'm interested in how feasible it is.

Starting from scratch, I'm dismayed by how many manual steps are necessary to get to the stage where merging to main on my Git repo kicks off the automated steps to releasing a change to production. At my current count it is:

* create the AWS account
* enable MFA on the root user
* create an IAM user for day-to-day access with Administrator access
* create a CMK KMS key to encrypt my S3 bucket
* create an S3 bucket to store terraform state
* create another IAM user dedicated to applying terraform state with a policy allowing access to the KMS & S3
* attach resource policies to the KMS & S3 allowing the terraform user to access them
* export the terraform IAM user's access key ID & secret access key to my local workstation
* create a new project on github, with appropriate branch protection rules & webhook configuration
* write my terraform to create basic CI/CD infrastructure (in my case using CodePipeline/CodeBuild, but not super relevant to this question)
* run terraform plan/apply

Obviously, all of this is just a once-off per project, and in the context of a larger company AWS Organizations would help with a lot of the grunt work. But just for fun, is there any way to cut down on the number of manual interventions in creating a new project without sacrificing security? Would other IAC tools such as CloudFormation or Pulumi be less cumbersome?

https://redd.it/ncuwn8
@r_devops

Progressively Build an Optimized Docker Image for Golang Projects

Hi, I'm working on building a series of blog posts about cloud native, containers, CI/CD, devops and microservices.

I'm starting by describing how to build images, and more specifically Golang with [this\](https://www.codingholygrail.com/build-docker-image-for-golang-projects) post.

If this is something you're interested in please let me know in comments below!

https://redd.it/ncyhe0
@r_devops

How to configure hashicorp nomad service to service network?

I want to use nomad to replace docker-compose. In docker compose you can specify the dependent containers and you will be able to reach the container with the name.

Things doesn't seem that easy with nomad somehow. I have this test job that creates mysql container and another application container.

        job "hippo_services_db" {
          datacenters = ["dc1"]
        
          group "services" {
        
            volume "mysql_data" {
              type      = "host"
              read_only = false
              source    = "mysql_data"
            }
        
            network {
              port "mysql_srv" {
                static = 3306
              }
              port "toad_srv" {
                static = 8080
              }
            }
        
            task "mysql" {
              driver = "docker"
        
              volume_mount {
                volume      = "mysql_data"
                destination = "/var/lib/mysql"
                read_only   = false
              }
        
              config {
                image = "mysql:8.0"
        
                ports = ["mysql_srv"]
              }
        
              env {
                  MYSQL_ROOT_PASSWORD = "root"
                  MYSQL_DATABASE = "hippo"
                  MYSQL_USER = "hippo"
                  MYSQL_PASSWORD = "m06rs011e9h9ihuboi7s"
                  MYSQL_ALLOW_EMPTY_PASSWORD = "no"
              }
        
              resources {
                cpu    = 100
                memory = 900
              }
            }
        
            task "toad" {
              driver = "docker"
        
              config {
                image = "clivern/toad:release-0.2.4"
        
                ports = ["toad_srv"]
        
                command = "./toad"
        
                args = [
                  "--port",
                  "${NOMAD_PORT_toad_srv}",
                ]
              }
        
              env = {
                IS_STATEFUL    = "false",
              }
        
              resources {
                network {
                  mbits = 10
                }
              }
            }
          }
        }

from the application container toad i want to access the mysql container. You can install mysql client inside toad container as explained below:

    $ docker ps
    # Get the toad app container id
    $ docker exec -it $ID bash
    $ apt-get update && apt-get install -y git curl libmcrypt-dev default-mysql-client
    $ mysql -h $IP -P3306 -u root -proot

I am struggling with this for a day so any help would be much appreciated!

https://redd.it/ndaqfb
@r_devops

Getting started

Hey there smart people. Well I just finished college in cybersecurity and now I am enrolled in VET TEC. It's a program that the VA has added to the pathway program. Which give Vets like me the opportunity to gain a career in IT.
So I will be working on getting my security +, then CEH, and lastly Splunk certification. This will take most of the summer and well I feel like am ready. So wish me like because it's a new career path since I was a chef for 20 yrs.

https://redd.it/ndbtbu
@r_devops

Three Monsters: The path to Self Growth

If you ever take a journey down your daily journal, you would find certain traits that set you back and harm your trajectory to success. Now, if you are busy and don’t have time to write a journal (aka no time for self-discovery) but want to discover these traits (I like to call them monsters), you

https://www.p3r.one/three-monsters-the-path-to-self-growth/

https://redd.it/ncwdul
@r_devops

From a REST Api to a Time serie

Hi all,

I'm trying to find a solution that will cover this case: I have a REST api that allows me to ask for instant reading of some IoT sensors.

What I would need to do is to frequently poll this API and store such metrics in a TSDB so that I can visualize data with Grafana and such.

Do you have any suggestion?
I read something about Apache Kafka but I couldn't find any free REST connector.

Thanks a lot

https://redd.it/ndj37o
@r_devops

How does a “day in a life of a DevOps engineer” looks like?

Trying to become one myself, wanted to know what is going on in your day of work?

https://redd.it/ndn7sn
@r_devops

spotinfo - cli for exploring AWS spot instances

The spotinfo is a command-line tool you can use for exploring AWS Spot instances across multiple AWS regions.

Under the hood, the tool uses the same data feeds as AWS Spot Advisor and AWS Spot Pricing.

Compared with the AWS Spot Advisor, the spotinfo supports advanced filtering and sorting (also with regex), in-place spot prices, cross-region comparison, and multiple output formats (plain text, JSON, table, csv).

A short overview blog post is available here

https://redd.it/ndq6bg
@r_devops

What will be the future of DevOps?

Hello,
As things are getting automated and there are many easy to use tools for automation.
Will DevOps be merged with development?
Single guy doing Full Stack + Deployment and Maintenance?
Will DevOps Engineers who don't have knowledge of Development will lose their jobs in future?

https://redd.it/ndv7bp
@r_devops

CI\CD or something else

Hello guys,

I have github repository whenever their is change or addition or commit occur on that repository, we need to clone repository to our 300 windows machine and 250 reel machine.
For now we are manually copying the files to server by ansible.
I'm thinking to automate the job and wants to learn ci\cd as well so this may be case of Jenkins?
In that case I learn Jenkins and job also get automated.
Please suggest your view that this is right and if you have any good link for learning jenkins. Because each time I tried learn, I fail as unable to correlate the example.

Thanks

https://redd.it/ndnmoe
@r_devops

How to Select My Path of Work

Hi

Please I am lost now and I need help from who better than me..

I am a Newly graduated student, I graduate from Electrical Engineering College ( I was looking to study something in Networks or Cyber Security but it's not available at that time).

Now after graduation, I want to study and work in something that I like, (( Especially in DevOps or Cyber Security ))

So, please what can I do now? from where can I start?

Study MSc in Cyber Security or Network Engineering ?? can you nominate a Good Online University?

or is there some Certificates and Courses online it can help me to work in this field?

​

Thank You

https://redd.it/ndm9qz
@r_devops

How to write docker-compose file for vue js and setup environment variable

I want to create a Docker-Compose file in which Vue-js app and Postgres sql must be gross and also add environment variable.

https://redd.it/ndlz12
@r_devops

Next step for DevOps

Hey everyone,

I was given the wonderful opportunity to work as a Jr. Devops for some time but unfortunately due to the financial circumstances of the company, I was laid off a few days ago. I'm currently on the lookout for my next gig and in the middle of self study and job searching. I want to bolster and add to my skill set and was wondering what type of tech stacks are being utilized nowadays. For context, here are the tech stacks that I've used to date (I won't go into depth on what I've done but this should be enough for some context)

OS: RHEL 7/8
Languages: Perl, Bash, Python
Containers: Docker, Docker Swarm
Logs and alerting: NagiOS (I know...), Zabbix, ELK
Networks: LAG/LACP, BGP
Infra-as-code: Terraform, Ansible
CI/CD: Jenkins, Gitlab
Virtualization: QEMU


From projects/past experience:
K8's
Setting up Kubeflow

Happy to answer any questions that anyone might have. Thanks!

https://redd.it/ne0kqk
@r_devops

Help setting up teleport

Hi,


I am trying to setup teleport in my environment. I have a few questions :


1. Is there any way teleport gives user access to a specific server rather than all the servers at one's. Suppose a user has access to two servers in a cluster, can teleport only give access to one server at a time.
2. Should I use nginx to redirect requests coming into 443 for the proxy server to port 3080.
3. In their youtube page, they are configuring using Let's Encrypt. I have certbot installed in my machine. Should I just pass the acme url and it will automatically fetch from let's encrypt.
4. Is there any detailed guide as to how to setup teleport for production use. Their website is not upto the mark for me, like they don't specify how the authentication pin is set.


I am fed up with this product and trying to set this up because I don't have the necessary experience regarding this.


A sidenote, can someone please point out a video series where https, how certificates and CA, CA chain works. I really would like to improve my knowledge regarding this.


Any help will be appreciated.

https://redd.it/ndixko
@r_devops

How to get started with DevOps?

I'll be graduating in the month of June with a Bachelor's in Computer application. I heard about DevOps and it has started to interest me a lot. So I'm thinking of getting started with it. But I don't know from where should I start. I also want to know how much preparation time I need to put in so that I could get a job. Thank you in advance.

https://redd.it/ndwrf0
@r_devops

Who knows DevOps?

Howdy DevOps Community.
This is my first time posting here.
Ive been so interested in getting myself qualified to be called a devops engineer. I currently mess around with gitlab's CI/CD platform but their cert is waay expensive. Does anyone know of any other certifications or course that a beginner on the devops journey could look into, possibly free or at least not $600+

https://redd.it/ndfz0l
@r_devops

Cloud provider for medical device produced data in Europe.

Hi all.

We started a startup that manufactures a small diagnostic device that is operated through an application. All the data produced from the device are then stored on a cloud infrastructure (API + DB).

So far it is under testing environment and thus no problem. But If the time comes to get out in the market I'm wondering which European cloud provider to choose.

I read that AWS and US-based companies, in general, are better to be avoided due to data exposure to third countries.

Does anyone here have a similar experience? Which is the way to go?

Any suggestions are very welcome.

https://redd.it/nect0f
@r_devops