Effects of unrealistic goals and metrics on DevOps

How unrealistic goals and bad metrics can negatively affect DevOps?

https://redd.it/nkbj4f
@r_devops

How to replace a string with a variable in a file using sed?



I have a file having some text like:

ipaddress="127.0.0.1"

I have to replace the 127.0.0.1 with a variable say $ip_add, where $ip_add=127.0.0.2 the following sed command is not working

sed -i 's/127.0.0.1/$ip_add/' conf.py

when i run this command the text is file like this

ipaddress="$ip_address"

Please help. thanks in advance

https://redd.it/nks2xk
@r_devops

Searching for a suitable hosting service (Express.js, VueJS and MongoDB)

I need to deploy a Website that have HTML, CSS and JavaScript with a Node.JS and Express.JS so what's the best place to host it on? adding that I'll integrate VueJS and MongoDB to the website to add a Dashboard and Blogs. So I need the hosting services to be reliable to do soSo basically, it's a static site with Node.js backend and it'll also have Vue.js and MongoDB after very short time (maybe two weeks or four)

So which hosting services you guys recommend?

...

https://redd.it/nkr1lg
@r_devops

Career switch in DevOps from Automation Tester

Is there anyone who has switched their career from Test Automation Analyst to a DevOps role ?
Please share your journey if someone has done it .

https://redd.it/nkslbi
@r_devops

GitLab vs ADO vs GitHub

As the title suggests I’m looking for opinions on these toolsets. I use GitHub daily, but have used GitLab in my past role and I think a lot has changed. I have a customer I’m working with to build a new cloud practice and I’d like to weigh all of these out.

https://redd.it/nkpfot
@r_devops

Kubernetes Chaos Engineering Meetup

Hello people! 📷

The 4th Saturday of the month is just around the corner and the LitmusChaos community is glad to invite you to the Kubernetes Chaos Engineering meeting where our community members discuss everything about Kubernetes, LitmusChaos as a project & Chaos Engineering. The updates, the use-cases, suggestions & queries! Mark your calendars for:

📷: 29th May 2021
📷:  11 AM IST

To get your calendar invite, please fill in the Google form: https://forms.gle/zTZNCuHFUCdRAasp6
RSVP here to join the meetup: https://www.meetup.com/Kubernetes-Chaos-Engineering-Meetup-Group/events/277895650/
To join our Slack community: https://slack.litmuschaos.io/

https://redd.it/nkrxoe
@r_devops

Coming up to 2 years as a devops engineer, feel like I don't know enough

I've been at my job for almost 2 years, my first 6 months was in a learning team. However, I still feel like I don't know enough and find myself getting stuck all the time and asking a senior for help. Before getting into this industry I was quite motivated to learn but ever since landing the job I've become complacent.

Recently I've been trying to learn fundamentals like networking, config management, Linux to get up to speed but I would have thought I'd know a lot more by this point. Some of the work I've done so far include CI/CD, python, terraform, powershell, a bunch of azure related work.

How much is a devops engineer expected to know at the 2 year mark? I'm feeling a bit hopeless and worried if I was to interview for a job it may seem like I don't know enough.

https://redd.it/nklz20
@r_devops

Hey I am looking for DevOps current trending technologies

I hope you guys are doing good. Actually I am looking for someone who can provide me the proper guideline/systematic approach to learn and crack DevOps interview.

According to my pathway and Searches, After linux currently studing AWS. Topics covered AWS storage, IAM role and VPC.

https://redd.it/nkpa3t
@r_devops

SASE – THE VALUE OF EDGE SECURITY

Secure Access Service Edge (SASE), a cloud-based security architecture that prioritizes data protection over hardware or even enterprise networks, is fast gaining traction in our business. SASE is a networking and security as a service platform. Secure Access Service Edge is a term that was ordinally coined by analyst firm Gartner. It simplifies wide-area networking and security by delivering both as a cloud service directly to the source of connection rather than the enterprise data center.

Existing network approaches and technology just aren't capable of providing the amounts of security and access control that digital businesses demand. These companies expect that their users have quick, uninterrupted access, no matter where they are. With more distant users and software-as-a-service (SaaS) applications, data moving from the data center to cloud services, and more traffic moving to public cloud services and branch offices than returning to the data center, a new network security approach is needed.

The SASE security paradigm can benefit an enterprise in a variety of ways.

Flexibility:

Threat prevention, web filtering, sandboxing, DNS security, credential theft prevention, data loss prevention, and next-generation firewall policies can all be implemented and delivered using a cloud-based architecture.

Cost-saving:

Using a single platform instead of buying and managing several point products will drastically cut your expenses and IT resources.

Reduced Complexity:

By unifying your security stack into a cloud-based network security service model, you can simplify your IT infrastructure by reducing the number of security products your IT team has to manage, update, and maintain.

Meaningful Risks

• Internal network traffic cannot be automatically trusted as legitimate, nor can we trust employees and partners to always be well-meaning and careful with systems and data.

• Cloud-first approach or Cloud-only policy will create critical risks if the implemented cloud services or solutions aren’t totally secure.

• SASE vendor's limitations to integrate with existing Services and third-party tools.

Best Practices

• A SASE solution must have simple policies and management. A single extensive Policy Engine is mandatory for the SASE solution

• Should be able to apply universal Security controls across cloud, Web, and IaaS

• Designing and delivering Policy-based Security services are mandatory, not just managing “security boxes”

• Network Security Architects should be engaged to plan for SASE

• SASE systems should be designed so that inspection engines follow the user session rather than the other way around.

• SASE solution should integrate with existing SIEM solution strategy

Read More : https://www.taliun.com/Security-Risk-Compliance

https://redd.it/nkkz53
@r_devops

kubeconfig on Gitlab

Hello all,

Can anyone help me guide me on how to generate kubeconfig file from the GitLab ci token? I am deploying applications on to Kubernetes via GitLab pipelines for which I require kubeconfig for authentication with the cluster? Is there an option on Gitlab to generate this file dynamically?

Thanks,

Abd

https://redd.it/nkijp7
@r_devops

Not sure what I want to do or they want

**Background**: I have couple of Certifications in my portfolio such as AWS, GCP and have experience of \~5 years in DevOps and it's related tools (terraform/ansible/aws/gcp/ci/cd/etc) with extensive knowledge of cloud and best practices.

**Foreground:**

* Looking forward to know about how you have incorporated DevSecOps in your organization, or what's the security model implemented in your organization?
* Is your organization security centric or busy printing money?
* Is there a dedicated security team in your org and what are their roles and responsibilities?
* How many of you are waiting for a data breach in your organization ?

**Question:**

* Will the organization only implement security best practices when a breach occurs? **Cause and Effect** scenario.
* Is your organization even considering security implementation or are they just turning a blind eye to it.
* Why doesn't organization understand that they are 1 breach away from ruining their reputation. some insights would be helpful.

**Note:**

* These are not survey questions. I want to know where do I need to focus on my career if the organization is not willing to take the high road of DevSecOps and/or Security.
* These questions' answers will differ from person to person in the hierarchy of org structure and will help looking from their point of view.

https://redd.it/nkk7l9
@r_devops

Certifications for cloud consulting

I'm currently pursuing my MBA at one of the top bschools in my country. I was a devops guy earlier and think that a cloud consultant is something that I would enjoy after getting a business degree.

Now to get into such a role, what kind of cloud certifications would be relevant and helpful? Certainly, a cloud devops certification won't be beneficial to my post MBA career anymore though it would prove my track record.

Are there certifications that cater to this role? Ref job opening: https://jobs2.deloitte.com/ui/en/job/E21BCCONRR-Strt

https://redd.it/nkhvdk
@r_devops

Chef

How to launch EC2 using chef?

https://redd.it/nkkel3
@r_devops

How to reassign a secondary NIC to become the primary and vice versa in azure?

is there a way to swap a primary network interface and a secondary network interface, so that the original primary NIC necomes the secondary, and the secondary becomes the primary?

https://redd.it/nl8y8w
@r_devops

Possible solutions for quickly spinning up servers based on new domains

Just a heads up, this question is more for me to know what to learn and study rather than a active problem I am trying to fix. So I have been applying to jobs recently and encountered a question that I didn't really have a automated solution to.

Lets say my client currently has a server running angular, react, etc. for the frontend and it is hosted on this domain: cali.xyz.com. They want to expand to other states but it requires a lot of time since a user has to manually create a brand new server, install all the dependencies, upload the code, hook up the new domain, etc., so they want to automate or simplify the process as much as they can since they will be creating one for each state within the US. This would be hosted on AWS if that helps.

How would you go about this? I was thinking of using Jenkins/CodePipeline to trigger a Docker container to automate the dependency installation part but I am lost as to how to automate or simplify the rest

Unrelated question but how did you guys get experience with devops? Was it through a course or just using the softwares themselves and playing around with them?

https://redd.it/nlpsn1
@r_devops

Making SQL Queries Faster on DoltHub

Just published a blog on improving the performance of SQL web queries on DoltHub. Web queries are a feature that enable users to execute SQL statements against public DoltHub databases. The database format, Dolt, is a versioned SQL database with Git semantics. You can think of DoltHub as the data equivalent to GitHub, and Dolt, basically a hybrid of Git and MySQL.

Anyway, we discuss how we've adjusted the storage layer of Dolt, to boost reads from S3, which helps more of the queries complete before timing out. Enjoy!
https://www.dolthub.com/blog/2021-05-26-improving-web-query-performance-dolthub

https://redd.it/nluf1n
@r_devops

JJ's Star Wars and the Importance of Creative Frameworks

Recently, I was reading this article where JJ Abrams talked about his regret of not having a plan in the storyline of the new Star Wars trilogy. https://collider.com/jj-abrams-star-wars-sequel-trilogy-plan-comments/


And it just recently occurred to me that the new Star Wars trilogy holds a perfect example of the pitfalls of collaborative creation without proper leadership and frameworks.


Yes, what they built was cool. Yes, it made lots of money. Yes, there were lots of great ideas. But because there was no framework, it ultimately lead to a product that is unstable and a bit of a letdown to the customer.


In many organizations, I see similar pitfalls. Can an enterprise create a viable product? Yes. Can it make lots of money? Yes. Will it stand the test of time and lead the industry? Probably for a little while. Until a competitor that does it better comes on to the scene.


Devops is often adopted by enterprises as a "silver bullet" for the problems that ail their hobbling S&T divisions, but it's often implemented without restructuring the organization as well. They believe if they can just put the most brilliant people in the right places, their product will flourish. However, this is often NOT the case. Rather, the product may come together after hours and hours of midnight work and extended deadlines, but the cycle of issues never dies. Instability will plague the product until they understand these concepts. Resources will also be depleted faster. Turnover will be more rapid and execs will see everything as a huge success but with little longevity to show for it.


In conclusion, Disney had every ingredient right there! But they squandered their opportunity because of a lack of a proper framework. Brilliance only gets you so far. Structure makes things last.

https://redd.it/nlosgd
@r_devops

Can you connect to AWS from CircleCI without AWS creds set as secrets in env variables?

Github provides AWS integration which means you don't have to rotate keys and can deploy though codepipelines, at least this is how I understand it.

Github also allows you to deploy self hosted runners into the AWS account for FREE. Another way of by passing AWS keys and their management.

Does the CircleCI AWS integration do the same? I read the docs but don't get it. Also the fact that CircleCI charges for self hosted runners is a joke.

Am I misunderstanding something? I asked support and they just suggested that I write a lambda to rotate keys and then change the env variables. Surely there is a better way!

https://redd.it/nluz51
@r_devops

DevOPS and change management

Just curious what everyone’s opinion is regarding DevOPS and change management.

I’m from an infrastructure background and used to seeing changes submitted, deployment plans/testing and approvals.

Today I had a conversation with a peer after an individual from another Team almost caused a large service outage - we were able to intervene before things went south. The conversation went basically like…

Me - …dude almost broke x-y-z. He didn’t tell anyone he was making these changes, review them or put in a change request.

Other guy - If DevOPS had to start doing change requests then it would defeat the purpose of DevOPS and being agile.

I didn’t really know what to say in the moment. Curious to hear what everyone else thinks about DevOPS and change management?

https://redd.it/nlyeme
@r_devops

How to run docker in GitHub self hosted runners?

So I can get docker running and I can get the image downloaded but then the workflow fails. Something about no HOME and dockercfg...

Is it even possible to set up a workflow with:

Container: some-image:latest

Like you would do for a GitHub hosted runner?

https://redd.it/nlm5yv
@r_devops

How Culture Impacts Technology Choice: A Review of Netflix’s Use of Microservices

Over the last year or so (ever since founding Komodor), I have read many books about culture, trying to make sure we build a great atmosphere in the company from the foundation. One of the books I liked most is no rules rules. Not only is this a GREAT book (and not techy at all), but It also made me think about the rise of microservices, devops, why I (think) it worked for Netflix, and why most companies need to be more careful: https://thenewstack.io/how-culture-impacts-technology-choice-a-review-of-netflixs-use-of-microservices/


The book itself is super recommended for anyone more interested in devops as a movement to empower other people in the organization, and I think it can also help when making tech decision :)

https://redd.it/nlzzqz
@r_devops