DevOps courses

Hi guys, I want to enter the DevOps (SRE) field but I don't have any money (I can't afford the prices). someone here knows some free courses or discount coupons?

https://redd.it/oftfpi
@r_devops

apache in puppet

I have to create a .pp file in manifest folder in master node and make configuration in such a way that Apache server gets installed directly in agent node. like push config changes to agent.

​

I have joined a company as a trainee and i was assigned this puppet thing. I have been looking at google and youtube for the sources and process.

Would be helpful if someone suggest me with sources regarding learning puppet.

https://redd.it/og2a97
@r_devops

DevSecOps maturity assessment

Hi. My management has requested me to perform a devsecops maturity assessment. THis is to help them prioritise investments for next year. Is there some sort of framework i should look at to do this? I have looked at SAMM and it seems a bit high level. Is there anything else i should consider or look at to perform this assessment of our current environment?

https://redd.it/og1t2i
@r_devops

What's your dream stack? Use your imagination.

Don't limit your response to what's already out there.


You could say stuff like:

A mix of terraform + ansible with Typescript instead of yaml
Terraform for provisioning
Ansible for config
<fav language> because ...
Jenkins but with a much more streamlined workflow
Painpoint 1
Painpoint 2
Something that you wish existed

https://redd.it/ofsk0d
@r_devops

How do you manage your legacy assets?

At my org, we are currently going through our 'digital transformation'. We are at a crossroads with new applications being creating in a microservices architecture, containerised, observable etc.

We still have an older workflow, that consists of .NET Framework web apps in IIS across servers. We also have some really old Native Windows apps.

Over the years there has been no governance on the creation of applications, so we find ourselves in a difficult spot where apps may not be used anymore, multiple versions floating around.

To make it more difficult, the language that people use to describe these applications are different dependent on who you ask. Ask the end user and they will call it one thing, ask a developer and they will refer to it differently.

We want to get to a point where we have complete observability of our legacy applications and a universal language that everyone in the organisation uses when communicating about our old apps.

Some ideas we already have:

\- Define what we mean by an application or service/api.

\- Adopt standard names for each application or service we have.

\- We probably want some asset management tools that track our infrastructure and what is installed on them, but don't want the overhead of manually maintaining this over time (cake and eat it?)

\- Maintenance of our source control (currently spread across SVN for older stuff and GitLab for newer), start restricting changes to the older stuff so we can gain a better understanding of what gets changed and how etc.

\- Restrict access to older servers so that we can understand why people are logging onto them.

\- Monitor traffic to old servers to establish whether older apps can be removed if they are no longer used.

\- Establish ownership of older applications so that we have someone responsible for its maintenance.

Would be really good to hear your thoughts and ideas, and what your orgs do for this!

https://redd.it/og40su
@r_devops

SREs/Infra engineers -- any advice on prepping for troubleshooting interview rounds?

Usually the candidate will be presented with a scenario, e.g. 'application server is responding w/ 5xx status code', and the candidate is expected to walk interviewer through their troubleshooting process.

&#x200B;

It seems like these rounds test, at a high-level, one's networking and OS knowledge. Any tips on prepping/acing these rounds? Much thanks in advance.

https://redd.it/og4kcm
@r_devops

What are your DevOps lessons learned during COVID times?

For me, the biggest lesson was around serverless, multi-cloud, observability, and security.

Found that,

Multi-cloud has many advantages than disadvantages.
Serverless is actually more than just using lambda
Observability is what we usually miss and has to be given more importance
Security can never be neglected, if you do this then you are dead.

What are your learnings?

https://redd.it/og55r6
@r_devops

What board column combination have you found most useful. Here's a selection from Microsoft Samples

1 |ToDo |develop |peer-review |Test&QA|deploy|done

2 |Approved|Committed| Development | QA | Done
Doing | Done | Doing | Done |

3 | new | Design | Develop & Test | Done
| Doing | Done | Doing | Done |

4 | New | In Progress | Done |

5 | New | Approved | Build & Test | Deploy
| Doing | Done |

Also a question. Can someone tell the the difference between New and Approved and what does Committed mean

https://redd.it/og55uk
@r_devops

Using Chef test kitchen with k8s

Hi everyone. I'm planning to test Chef cookbooks on Jenkins that runs inside k8s and I wonder, if it's possible to run Chef test kitchen inside k8s. I've found a project that looks abandoned, so it feels like it might be a dead end. Could anyone share their experience with that? Thanks in advance.

Abandoned project for running Chef cookbook tests in k8s: https://github.com/coderanger/kitchen-kubernetes

https://redd.it/og7wtx
@r_devops

GoCD Agent Authentication??

Hi all, having some weird behaviour and need some advice. I have a GoCD server with Google OAuth user authentication. I'm trying to set up agents, but I'm getting 403 errors in the agent logs, unless I have an active OAuth session for my user on the server? This does not seem normal..

https://redd.it/og9feu
@r_devops

I am aware of sites like weworkremotely or Upwork, but what would be the best place to find remote part-time contract gigs specifically (preferably in north america, but open to others) ?

I currently work for a large firm doing devops consulting/engineering - AWS and Azure and everything in between. Loving it, but looking to get some side hustle going for some extra income, if anyone can recommend me to a site or anything.

Thank you!

https://redd.it/og90hi
@r_devops

How much devops do your feature developers know

I thought that this might be a interesting question. Yes, DevOps is a culture, not a team. But in reality, how much of devops does your feature developers know. Do they know how to modify pipelines, configure infrastructure/configuration as code. Do they know how to write a dockerfile and configure/deploy to a kubernetes cluster? Do they know how to maintain a cluster and keep it running. Do they know how to configure/view your logging and monitoring?

https://redd.it/ogbw7i
@r_devops

Kibana - segregating logs based on a specific field

I am wondering if it is possible to filter/segregate data inside Kibana based on specific field.

For example, we have a multi-tenancy production environment and sometimes we have to work with external partners. Sometimes they request access to logs which we cannot give, since they would see a logs/sensitive data which does not belong to their project.

Obviously, one solution would have one kibana instance per tenant/client but at the moment this is not so easy for us to achieve since our entire backend running on EKS is tenant agnostic; meaning all services process events/data for all tenants.

I wonder if there is a way of segregating data inside kibana based on a specific field; so show only the logs of tenant A and give it to external developer. Our kibana is running on managed elasticsearch provided by AWS.

https://redd.it/ogct81
@r_devops

devops from interview to hired. What are your guys story when it came to getting your first devops gig?

Currently practicing devops by studying for certs, creating projects, and studying LeetCode. Got my first devops gig last year which was supposed to be a regular position but got thrown into more of a senior role even though the title itself didn't reflect it. Learned a lot though there wasn't much coding (at least for me). I did get to do a whole lot of sysadmin which was nice and I helped in shaving down time for OS install automation, IaC, etc. Now, here I am, laid off because of COVID (for a while now actually). How did you guys get your first and/or second gigs? Curious to know what all of your experiences are like. Open to any questions that you may have as well!

https://redd.it/ogdchl
@r_devops

External retrieved data integrity?

Hello /r/devops

Not sure if this is the right place to ask, but since DevOps might involve with some cryptography I decided to ask my question here.

For a new system we're building, we are systematically retrieving data from an external system (Basically via a cron job pulling new information from a REST API). One of the technical requirements is that we should be able to proof that the data we locally store, is indeed coming from the external data source after X amount of time. My first thought was to store some kind of reference to the SSL certificate used in the request and/or the certificate chain and do something cryptographically with the data to verify it's integrity (Not sure how yet, it's my first gut feeling on how to approach this since the SSL certificate is identifying the server the data came from).

Anyone has experience with this kind of subject? Or is able to point me in the right direction?

Cheers!

https://redd.it/oge39q
@r_devops

Live now Tim Kadlec testing WebPerf Optimizations with Cloudflare Workers & WebPageTest

Join the stream >> https://twitch.tv/webpagetest

https://redd.it/ogc46g
@r_devops

Service Connections on Azure Dev Ops

Hey Guys, someone know if its possible to create a Sonarqube service connection on Azure DevOps, calling a internal webserver or its mandatory that the webserver must have a public ip?


https://imgur.com/XTUjDSm

https://redd.it/ogf2ab
@r_devops

Canonical Survey highlights skills shortage in Kubernetes, with 54.5% pointing to a lack of in-house skills/limited manpower as their biggest challenge when migrating to/using Kubernetes and containers.

Canonical recently ran an interesting survey where they gathered data from 1200 respondents on hybrid and multi-cloud operations, Kubernetes, VMs, bare metal, goals, benefits, challenges, operators, advanced usage, edge, and more. This blog post digs into 5 of the data points we found most interesting.

https://redd.it/ogi31q
@r_devops

GITLAB CI/CD pipeline for embedded systems

Hello,

I am currently trying to develop a CI/CD pipeline in Gitlab that performs build, Static code analysis, unit testing, flashing an Stm32 using Raspberry pi, and smoke tests of the code on the stm where it communicates the results to the Raspberry pi.

I am currently trying to make the flashing stage of the pipeline where I have a Gitlab Runner on the Raspberry pi. As I understand it, I have to specify the port before running the docker image (when performing "docker run" ). However, I am uncertain as to how I will be able to the access the USB port on the Raspberry pi to flash the device when I am not performing the "docker run" command. Do I have to specify the port in the Entry point of the dockerfile, or is there a better way of doing it? Also, is there a way to make the runner notice which USB port is connected to the stm32 so that I do not have to hard code in the port?

Thank you

https://redd.it/ofk8hb
@r_devops

Measuring 40x and 50x errors on a K8s service endpoint with Prometheus?

Hi community,

Any idea how to go about this, can't find much clear info on google, to measure the Errors (40x, and 50x) on my service endpoints. My services are up and when I delete pods just for a test, I can see in the blackbox metrics that the prometheus gets and error, but not specified like 40x type or 50x.

https://redd.it/ogitx4
@r_devops

DevOps w/emphasis on Dev

I've been around on this sub for a while; mostly lurking. I created a new account today so as not to eventually dox myself.

My impression is that a lot of folks here are in what seems to be a more Ops focused role. My team is "Engineering Operations" and our job is to develop tools that help dev teams implement devops or just generally deliver their code more quickly. Aside from using DevOps within our own team, we don't manage any infrastructure, that's done by an entirely separate team that we work closely with.

Is this fairly common? How many of you basically focus entirely on development of tools? Is that just your role, or the role of your team?

https://redd.it/oggqzy
@r_devops