2 years of DevOps experience with no education or certificates. How do I take my career to the next level?

No degree. 1 internship doing CSS work, 2 years contracting doing test automation (selenium) and 2 years doing DevOps (Jenkins/docker/K8s/AWS/Python).

I quit my job to take some time off and whatnot. I’d like to now spend 1-2 months sharpening my skills and increasing my chance of landing a killer job.

Should I get my AWS certificate?

Should I get my Kubernetes certificate?

Should I take Linux academy courses to learn more about networking?

Should I build and launch a side project to show my abilities?

Should I do leet code?

Should I take some basic CS courses?

Should I try my hand at freelance work to diversify my experience?

Should I try to launch a DevOps consulting agency?

https://redd.it/nk6sw1
@r_devops

The role of a modern QE

Spending almost two years in software testing industry, I have found that people specially fresh graduates have no clue of the great responsibility & career opportunities they have in this amazing field. They think testing is about manual effort, and still many organizations lack to understand the importance and advancement in the field of testing. With advancements in automation tools, devOps; testing tools has become very mature to decrease the manual effort to minimum.

The following learning series is my effort to acquaint people of the role that a QE plays in an agile organization and how organizations can adopt to best QE practices. Let me know what you think.

​

1. Introduction to testing - https://shivamgohel.medium.com/the-role-of-a-modern-qe-1-4-9a3e75075728
2. Introduction to agile - https://shivamgohel.medium.com/the-role-of-a-modern-qe-2-4-d52e8fe84c6e
3. Quality Engineer Roles & Responsibilities - https://shivamgohel.medium.com/the-role-of-a-modern-qe-3-4-dfaadc9fb849
4. Modern QE Learning Path - https://shivamgohel.medium.com/the-role-of-a-modern-qe-4-4-d81b6f1712d8

Let me know what you think.

https://redd.it/nk11pn
@r_devops

Certification for a DevOps engineer

Hi,

AWS Certified SysOps Administrator – Associate or AWS Certified Solutions Architect – Associate

for a role of DevOps engineer,

thanks

https://redd.it/nk212q
@r_devops

Troubleshooting istio health checks

So just to keep this short and simple, I've tried following the documentation on setting up istio for my Kubernetes cluster. The weird portion is, I was able to get istio installed with no issue for the very first time. The second time I try to re-install it, I keep getting these 15021 connection refused health checks which is driving me nuts. I've spent at least a few days or so trying to troubleshoot it by running curl against the endpoint, installing it in various different ways, etc. I have a feeling that this may or may not be a red herring and that I can continue to go through some exercises. It's been driving me nuts for a while and was wondering if anyone else was encountering and/or had a similar issue with mine from before. Open to discussion and possible solutions. Maybe there's something that I'm currently missing atm. Thanks!

CNI: Calico

Readiness probe failed: Get "https://192.168.185.2:15021/healthz/ready": dial tcp 192.168.185.2:15021: connect: connection refused

2021-05-24T00:59:56.636865Z warning envoy config StreamAggregatedResources gRPC config stream closed: 14, connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"

2021-05-24T00:59:57.058123Z warn sds failed to warm certificate: failed to generate workload certificate: create certificate: rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"

2021-05-24T01:00:21.989645Z warning envoy config StreamAggregatedResources gRPC config stream closed: 14, connection error: desc = "transport: Error while dialing dial tcp: lookup istiod.istio-system.svc on 10.96.0.10:53: read udp 192.168.215.193:45025->10.96.0.10:53: i/o timeout"

2021-05-24T01:00:39.772320Z warn ca ca request failed, starting attempt 1 in 91.485819ms

2021-05-24T01:00:39.864828Z warn ca ca request failed, starting attempt 2 in 188.891576ms

2021-05-24T01:00:40.054452Z warn ca ca request failed, starting attempt 3 in 414.486264ms

2021-05-24T01:00:40.469240Z warn ca ca request failed, starting attempt 4 in 758.642414ms

2021-05-24T01:00:41.228216Z warn sds failed to warm certificate: failed to generate workload certificate: create certificate: rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: lookup istiod.istio-system.svc on 10.96.0.10:53: read udp 192.168.215.193:45025->10.96.0.10:53: i/o timeout"

2021-05-24T01:00:42.581702Z info Status server has successfully terminated

2021-05-24T01:00:42.581800Z error accept tcp [::\]:15020: use of closed network connection

2021-05-24T01:00:42.581820Z info Agent draining Proxy

2021-05-24T01:00:42.582855Z info Graceful termination period is 5s, starting...

2021-05-24T01:00:47.583724Z info Graceful termination period complete, terminating remaining proxies.

2021-05-24T01:00:47.583768Z warn Aborted all epochs

2021-05-24T01:00:47.583774Z info Agent has successfully terminated

https://redd.it/njmtmp
@r_devops

How to health check 2 services on a single EC2 instance for ASG health checks

I have an application that I plan to run on a single EC2 instance for now that I want to be able to recover from failure if something were to happen. I don't want to go to multiple instances for now due to cost. I was thinking of doing an EC2 instance in an ASG that is set up via a user-data script where I install Docker and pull images then start a Docker Compose file. Not sure about secret management yet. Open to suggestions for simple, and cheap options.

My question comes, how can I have it so the ASG will replace the instance if either of the two different services stops responding or maybe both stop for some reason.

I know this is a horrid design and needs to be changed out ASAP and it will be soon as EKS makes sense cost wise.

https://redd.it/nkd139
@r_devops

Are self hosted GitHub runners safe in production?

I asked something similar in another question on GitHub but used the term external which seemed to confuse people.

Basically security: self hosted vs GitHub hosted into AWS. Are Aws creds in secrets easier and safer?

https://redd.it/nkc2nf
@r_devops

Effects of unrealistic goals and metrics on DevOps

How unrealistic goals and bad metrics can negatively affect DevOps?

https://redd.it/nkbj4f
@r_devops

How to replace a string with a variable in a file using sed?



I have a file having some text like:

ipaddress="127.0.0.1"

I have to replace the 127.0.0.1 with a variable say $ip_add, where $ip_add=127.0.0.2 the following sed command is not working

sed -i 's/127.0.0.1/$ip_add/' conf.py

when i run this command the text is file like this

ipaddress="$ip_address"

Please help. thanks in advance

https://redd.it/nks2xk
@r_devops

Searching for a suitable hosting service (Express.js, VueJS and MongoDB)

I need to deploy a Website that have HTML, CSS and JavaScript with a Node.JS and Express.JS so what's the best place to host it on? adding that I'll integrate VueJS and MongoDB to the website to add a Dashboard and Blogs. So I need the hosting services to be reliable to do soSo basically, it's a static site with Node.js backend and it'll also have Vue.js and MongoDB after very short time (maybe two weeks or four)

So which hosting services you guys recommend?

...

https://redd.it/nkr1lg
@r_devops

Career switch in DevOps from Automation Tester

Is there anyone who has switched their career from Test Automation Analyst to a DevOps role ?
Please share your journey if someone has done it .

https://redd.it/nkslbi
@r_devops

GitLab vs ADO vs GitHub

As the title suggests I’m looking for opinions on these toolsets. I use GitHub daily, but have used GitLab in my past role and I think a lot has changed. I have a customer I’m working with to build a new cloud practice and I’d like to weigh all of these out.

https://redd.it/nkpfot
@r_devops

Kubernetes Chaos Engineering Meetup

Hello people! 📷

The 4th Saturday of the month is just around the corner and the LitmusChaos community is glad to invite you to the Kubernetes Chaos Engineering meeting where our community members discuss everything about Kubernetes, LitmusChaos as a project & Chaos Engineering. The updates, the use-cases, suggestions & queries! Mark your calendars for:

📷: 29th May 2021
📷:  11 AM IST

To get your calendar invite, please fill in the Google form: https://forms.gle/zTZNCuHFUCdRAasp6
RSVP here to join the meetup: https://www.meetup.com/Kubernetes-Chaos-Engineering-Meetup-Group/events/277895650/
To join our Slack community: https://slack.litmuschaos.io/

https://redd.it/nkrxoe
@r_devops

Coming up to 2 years as a devops engineer, feel like I don't know enough

I've been at my job for almost 2 years, my first 6 months was in a learning team. However, I still feel like I don't know enough and find myself getting stuck all the time and asking a senior for help. Before getting into this industry I was quite motivated to learn but ever since landing the job I've become complacent.

Recently I've been trying to learn fundamentals like networking, config management, Linux to get up to speed but I would have thought I'd know a lot more by this point. Some of the work I've done so far include CI/CD, python, terraform, powershell, a bunch of azure related work.

How much is a devops engineer expected to know at the 2 year mark? I'm feeling a bit hopeless and worried if I was to interview for a job it may seem like I don't know enough.

https://redd.it/nklz20
@r_devops

Hey I am looking for DevOps current trending technologies

I hope you guys are doing good. Actually I am looking for someone who can provide me the proper guideline/systematic approach to learn and crack DevOps interview.

According to my pathway and Searches, After linux currently studing AWS. Topics covered AWS storage, IAM role and VPC.

https://redd.it/nkpa3t
@r_devops

SASE – THE VALUE OF EDGE SECURITY

Secure Access Service Edge (SASE), a cloud-based security architecture that prioritizes data protection over hardware or even enterprise networks, is fast gaining traction in our business. SASE is a networking and security as a service platform. Secure Access Service Edge is a term that was ordinally coined by analyst firm Gartner. It simplifies wide-area networking and security by delivering both as a cloud service directly to the source of connection rather than the enterprise data center.

Existing network approaches and technology just aren't capable of providing the amounts of security and access control that digital businesses demand. These companies expect that their users have quick, uninterrupted access, no matter where they are. With more distant users and software-as-a-service (SaaS) applications, data moving from the data center to cloud services, and more traffic moving to public cloud services and branch offices than returning to the data center, a new network security approach is needed.

The SASE security paradigm can benefit an enterprise in a variety of ways.

Flexibility:

Threat prevention, web filtering, sandboxing, DNS security, credential theft prevention, data loss prevention, and next-generation firewall policies can all be implemented and delivered using a cloud-based architecture.

Cost-saving:

Using a single platform instead of buying and managing several point products will drastically cut your expenses and IT resources.

Reduced Complexity:

By unifying your security stack into a cloud-based network security service model, you can simplify your IT infrastructure by reducing the number of security products your IT team has to manage, update, and maintain.

Meaningful Risks

• Internal network traffic cannot be automatically trusted as legitimate, nor can we trust employees and partners to always be well-meaning and careful with systems and data.

• Cloud-first approach or Cloud-only policy will create critical risks if the implemented cloud services or solutions aren’t totally secure.

• SASE vendor's limitations to integrate with existing Services and third-party tools.

Best Practices

• A SASE solution must have simple policies and management. A single extensive Policy Engine is mandatory for the SASE solution

• Should be able to apply universal Security controls across cloud, Web, and IaaS

• Designing and delivering Policy-based Security services are mandatory, not just managing “security boxes”

• Network Security Architects should be engaged to plan for SASE

• SASE systems should be designed so that inspection engines follow the user session rather than the other way around.

• SASE solution should integrate with existing SIEM solution strategy

Read More : https://www.taliun.com/Security-Risk-Compliance

https://redd.it/nkkz53
@r_devops

kubeconfig on Gitlab

Hello all,

Can anyone help me guide me on how to generate kubeconfig file from the GitLab ci token? I am deploying applications on to Kubernetes via GitLab pipelines for which I require kubeconfig for authentication with the cluster? Is there an option on Gitlab to generate this file dynamically?

Thanks,

Abd

https://redd.it/nkijp7
@r_devops

Not sure what I want to do or they want

**Background**: I have couple of Certifications in my portfolio such as AWS, GCP and have experience of \~5 years in DevOps and it's related tools (terraform/ansible/aws/gcp/ci/cd/etc) with extensive knowledge of cloud and best practices.

**Foreground:**

* Looking forward to know about how you have incorporated DevSecOps in your organization, or what's the security model implemented in your organization?
* Is your organization security centric or busy printing money?
* Is there a dedicated security team in your org and what are their roles and responsibilities?
* How many of you are waiting for a data breach in your organization ?

**Question:**

* Will the organization only implement security best practices when a breach occurs? **Cause and Effect** scenario.
* Is your organization even considering security implementation or are they just turning a blind eye to it.
* Why doesn't organization understand that they are 1 breach away from ruining their reputation. some insights would be helpful.

**Note:**

* These are not survey questions. I want to know where do I need to focus on my career if the organization is not willing to take the high road of DevSecOps and/or Security.
* These questions' answers will differ from person to person in the hierarchy of org structure and will help looking from their point of view.

https://redd.it/nkk7l9
@r_devops

Certifications for cloud consulting

I'm currently pursuing my MBA at one of the top bschools in my country. I was a devops guy earlier and think that a cloud consultant is something that I would enjoy after getting a business degree.

Now to get into such a role, what kind of cloud certifications would be relevant and helpful? Certainly, a cloud devops certification won't be beneficial to my post MBA career anymore though it would prove my track record.

Are there certifications that cater to this role? Ref job opening: https://jobs2.deloitte.com/ui/en/job/E21BCCONRR-Strt

https://redd.it/nkhvdk
@r_devops

Chef

How to launch EC2 using chef?

https://redd.it/nkkel3
@r_devops

How to reassign a secondary NIC to become the primary and vice versa in azure?

is there a way to swap a primary network interface and a secondary network interface, so that the original primary NIC necomes the secondary, and the secondary becomes the primary?

https://redd.it/nl8y8w
@r_devops

Possible solutions for quickly spinning up servers based on new domains

Just a heads up, this question is more for me to know what to learn and study rather than a active problem I am trying to fix. So I have been applying to jobs recently and encountered a question that I didn't really have a automated solution to.

Lets say my client currently has a server running angular, react, etc. for the frontend and it is hosted on this domain: cali.xyz.com. They want to expand to other states but it requires a lot of time since a user has to manually create a brand new server, install all the dependencies, upload the code, hook up the new domain, etc., so they want to automate or simplify the process as much as they can since they will be creating one for each state within the US. This would be hosted on AWS if that helps.

How would you go about this? I was thinking of using Jenkins/CodePipeline to trigger a Docker container to automate the dependency installation part but I am lost as to how to automate or simplify the rest

Unrelated question but how did you guys get experience with devops? Was it through a course or just using the softwares themselves and playing around with them?

https://redd.it/nlpsn1
@r_devops