Cloud Engineer - Azure Salary?

Hey all want to ask y'all a serious question(relevant to this thread I hope). I keep seeing numbers from $150-$300k for these positions. I'm a cloud engineer(working title) for a Azure/Windows based Saas company. I'm hitting $115k this year and wondering if this is the norm. I know that I'm kinda an outlier given that we primarily use MS products vs AWS and GCP. FYI, I am fully remote and based out of SoCal. No RSUs, Bonus ect. This is total comp.

https://redd.it/rgjied
@r_devops

DevOps real time experience

Hello, I do not have real time experience working as a Devops or SRE. I'm from infrastructure background (Unix systems engineer),I have done kubernetes certifications(CKA, CKAD).
As I do not have experience in DevOps, I'm unable to perform well in interviews.
Please Let me know if anyone has an idea where I can learn practically. Any project through which I can learn.
Please help me.

https://redd.it/rhmkev
@r_devops

Using CloudFront Signed URLs with Built-In S3 Authenticated Access

Just finished up my blog post and would love your feedback! Understanding how to merge several AWS services into a single cohesive, secure implementation can be a challenge. While online resources are great, they can sometimes contain conflicting information. Read this extremely detailed example of how to set up CloudFront with S3 to serve up files via signed URLs. Hoping this can be a goto resource for building your own secure cloud-native content delivery system and unshackle you from getting buried in hundreds of pages of AWS documentation.

https://doordash.engineering/2021/12/14/building-authenticated-access-to-s3/

https://redd.it/rggi3q
@r_devops

Feeling disappointed with new job, and looking for advice

I am a mid-senior and a few months ago, I managed to land a new remote job in a consultancy. but now I'm wondering whether I should leave before my probation ends in two months (6 months probation)

Here are some of the issues that I have:

* The company follows the "developer bad" mentality, and collaboration with development is at an absolute minimal since everything is ticketed and priced (infra only work, this also means that services integration is almost minimal too)
* I don't get to participate in building the solution architecture, basically the consultancy is done, I just get handed a diagram to build up and deploy, so I feel like I have very little agency in projects.
* quite a bit of the projects aren't technically beneficial or interesting for me, (e.g. some maintenance contracts are on a hosting-style webserver), with most of what I have worked on so far being wordpress.
* I was promised 60% billable (work for clients) to 40% non-billable (pet projects and learning). however, my stats are more like 80%-20% (with the 20% including things like standups, and updating existing code)
* There are two people in the team, however, since I joined I'm doing more than 90% of support tickets. (This has been discussed and line manager would attempt every once and a while to assign a ticket, but it usually ends up landing on me regardless).
* the company still doesn't have the basics set pushing for allot of things but there is allot lacking and half the time I suggest an improvement I get "yes we will think about that", and the improvement may or may not be tackled later. we are talking about the basics here (things like jira, peer review process.... etc)
* line manager is prone to micro management. it doesn't happen with things they don't know how to do, but does with things that they have experience in.
* what took me over the edge is, when trying to start the peer review process, coworker took quite poorly to code being reviewed (was extremely polite during the review, and usually only check what is required), a couple of days later they requested that we no longer collaborated, when I disagreed (but clarified that I would not block if that is what they want), they behaved really inappropriately. nothing was done or spoken about that from a management point of view.

It's not entirely negative there are a few positives:

* pretty good salary for where I live (low by european standards)
* high number of vacation days and flextime
* for the first time, I am not the most senior devops within the team (line manager is)
* line manager does listen to opinion (managed to push for a ticketing system and peer review (even though it was removed until next project) and decision docs), they are also open to changes in technical opinion (when you disagree with them on how something should be done, they usually listen)
* they do provide learning and pet project time (in theory)

My head has been in a fog for a couple of weeks and I'm not sure what to do. Leaving the job before probation means that I get to skip a few nasty lines in the contract like "I'm not allowed to work for any company that can be considered a competitor for two years" or a few others. But also it means that I'm leaving after a an awkward time that I cannot patch with other jobs. also, I am prone to dramatizing issues (I have GAD) and I am worried that I maybe making an issue out of things that are completely normal. And the current company is trying to improve processes

I do have a few other options that I can contact but contacting them means that I have to commit to leaving. And my head is in a bit of a fog and I can't make up my mind. what are your thoughts on this ? and what would you do if you were in my shoes? any help with this would be very appreciated.

https://redd.it/rgas96
@r_devops

How do cloud service providers control the open ports of a linux server without enabling ufw.

In azure, you can go to the networking tab in the setting for the virtual machine, and set which ports do you want to open, but the settings are external and are not implemented within the linux machine itself. I don't understand

https://redd.it/rhpk11
@r_devops

What I do to keep my environment clean and manage lots of tools

Hi everyone!

I recently started to work on a DevOps project with a lot of tools. Not that it was painless to onboard because there was a lot of documentation, but with all the tools I had to set up, I wondered how I could keep my environment clean. It was really interesting for me to think about it, and after talking with some of my coworkers, I decided to write a blog post, thinking that it could help others, so enjoy!

And if you have any comments about it, feel free to tell me!

https://redd.it/rhqlhq
@r_devops

We analyzed 29 job postings for DevOps Engineer from companies like Apple, TikTok and Slack.

Hi everyone, this is Pru from Spike.sh.

We found something surprising when we started doing research about DevOps Engineer role. After analyzing 29 job postings for the role from companies like Apple, Slack and Dropbox, we saw repeated mentions of DevOps as “a consultant/guide for engineering teams”.

Is this a big part for those of you in DevOps? What other surprising things have you found in your DevOps job?

Another finding was the sheer breadth of areas DevOps had reach into. You can read more and do let is know your thoughts.

https://spike.sh/blog/devops-engineer-responsibilities-analyzed-29-job-postings-to-find-out/

https://redd.it/rhqi6a
@r_devops

What pay should I expect

Hey guys and gals,

A position recently opened up for my company in the DevOps position, and I am lucky enough to be getting considered for the role. I am currently a systems engineer, but comfortable with code and scripting. I have worked as part of the deployment team for the last 2 years, but would now be moving to the DevOps engineer role. My question is what kind of salary I should expect. I work in the Northeastern US, and I expect to be payed slightly less than average as my background is mostly with Infrastructure and not software development, but I don't want to accept a salary that's too low. I love my company, and my current job so I would hate to accept something too low and end up having to move to another company to get a proper salary.

​

Thanks in advance for your advice.

https://redd.it/rhqo1t
@r_devops

Resources/courses to learn more about security in GCP

Hi! We use GCP (currently migrating from App Engine to GKE, Cloud SQL, Memory Store, and various other services) and just did a workshop with a security consultant which resulted in several recommendations including using custom service accounts for compute instances, custom managed encryption keys, custom VPC and other things instead of GCP defaults. Well there's more.

Anyway I was wondering whether you could recommend some course or something to learn more about setting up these things? Thanks!

https://redd.it/rhu6jd
@r_devops

Managing SSH sessions on Ubuntu

I have a lot of different servers that I have to SSH into, as I'm sure a lot of you do, and while I can usually remember the username+domain name, I often have to look up the IP address of servers that I need to access.

I am currently using the standard openSSH client via the terminal on Ubuntu, but I feel like there must be a better way to manage all of these servers. I know there are some tools out there, but I was wondering what you all use.

Thanks!

https://redd.it/rht6os
@r_devops

How to mask ip with Amazon CloudFront?

I want to mask IPs of my dns records on Amazon CloudFront as we do with CloudFlare orange cloud to proxify (don't know the exact term) our addresses to routing traffic through Cloudflare’s network. How to do that? If CloudFront is not right option, how to do that within AWS? I have some credit left so I am using it practice multiple options.

https://redd.it/rhmuxt
@r_devops

Is everyone deploying via kubernetes and containers?

Reading this subreddit gives me the impression that everyone uses kubernetes or similar solutions. I've setup some lab environments with kubernetes multiple times and I like it, but for many use cases it seems a bit overkill. For example smaller hosting setups like a CMS or a small shop. But maybe I'm wrong with that thought.

At my workplace we run multiple hundred rails applications and elixir applications and all developers deploy via capistrano (or similar tooling) to puppet managed servers. Most parts are automated via puppet (monitoring, storage, databases) and can be scaled by just firing up more VMs and I thought this setup is quite capable. But reading this subreddit gives me the impression that it's a shitty setup and everything needs to move into containers. Should I question the whole hosting setup or is it just a matter of scale?

https://redd.it/rhuum9
@r_devops

List of DevOps skills/tech by job popularity

Hey y’all, I’m working on upskilling right now, hoping to make the move from cloud ops to DevOps in 2022. Does anyone know of a list of DevOps skills and technologies, sortable by its popularity in job listing or job use right now?

Just looking to learn some of the more popular skills this next year.
Thanks!

https://redd.it/rhyblk
@r_devops

Anyone build diagrams with Gliffy?

I've found it pretty useful and simplistic- which I think is nice. Curious if I should continue or use a different tool. Thoughts?

https://redd.it/ri0hj9
@r_devops

What are the top 3 problems you face technically when working as a DevOps engineer? 🤔

List some problems that you run into or things that can be done better to make your job easier.

https://redd.it/ri13en
@r_devops

Looking for cloud-native solution to provide multiple sandbox environments to developers

Hey there,

My boss asked me to provide a better solution for creating environments for devs, something that can replace your groovy scripts and Jenkins. We use it with aws cli to create environments and deploy the app. I've been thinking about this for a few hours now. I don't see anything to help me with this except scripts in lambda and Cloudformation templates. It cannot be terraform (because we have almost 100 or more envs, some created to be destroyed immediately after that). Do you know how I could improve this process? Is there a tool that would allow me to manage it better?

https://redd.it/ri2qd6
@r_devops

Deploying and managing software running in containers at the edge of the network comes with a set of unique problems. If you're interested in solving them, read on.

The prevalence of smart devices at the Edge is projected to quadruple by 2025. Deploying and managing software running in containers at the edge of the network comes with a set of unique problems. Catch this live webinar to learn how Portainer has solved them.
https://www.portainer.io/discover-how-to-manage-the-software-running-on-my-edge-devices

https://redd.it/ri28qg
@r_devops

docker: not found in Jenkins pipeline

Hi /r/devops

I'm doing end-to-end CI/CD pipeline practice but I am running into some issues while trying to build docker images in Jenkins.

1. I set up a docker container with jenkins/jenkins
2. Set up and install plugins in the Jenkins instance, including Docker and Docker Pipeline
3. Set up Jenkinsfile copy and pasted from the Jenkins docs :
https://www.jenkins.io/doc/book/pipeline/docker/
4. It gives me docker: not found

I've been stuck on this issue for a good 2 days, I am not sure why I cannot get docker to install automatically from the plugin selection list. I think going into the container to install docker with curl is kind of counter intuitive in the CI/CD / automating resource provisioning sense.

Does anyone know what I can do to get past this road block?

Thanks a bunch

https://redd.it/ri1utn
@r_devops

A Programming Language Preference Survey

Hello everyone. I am part of a dev project that would like some input on programming language popularity. Below you will find a link to a 12 question survey. Any and all input would be greatly appreciated. The survey is annonymous and the results will only be shared amongst our small dev team and no where else. We hope your input will help us build and deliver software tailored to the most popular programming languages so that collective development efforts can be made to make computing better for all of us now and into the future. Your input is very valuable to us and much appreciated. Thank you and keep on developing the future.

Survey Link - https://forms.gle/6wHCVFju526umv1t5

https://redd.it/ri6luq
@r_devops

Nested map in Terraform for azurermstoragedatalakegen2filesystem and looping?

Hello,

I can make multiple containers, and I can assign the same ACLs to those containers.

I can't seem to wrap my head around creating a container and assigning specific ACE/ACLs to the specific container... if that makes sense? I am using the provider below.

[azurerm\storage_data_lake_gen2_filesystem | Resources | hashicorp/azurerm | Terraform Registry](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/storagedatalakegen2filesystem)

If you look at the second section below, I have datalakes and ace in locals. Basically, I create two folders, and then assign ace permissions to both. But how can I construct something like this?

I have a block where I have two folders, and each folder gets specific ACE configs....

\---------------------------------------------------

datalakes = {
001 = {
name = "test1"
ace = {
"perm1" = {
scope       = "default"
type        = "user"
id          = "373d54d3-9011-490e-91be-2a70fddd9617"
permissions = "rwx"
        },
"perm2" = {
scope       = "default"
type        = "user"
id          = "3a0d091a-250c-43bf-a286-b704fa443c2d"
permissions = "rwx"
        }
    }
  }
002 = {
name = "test2"
ace = {
"perm3" = {
scope       = "default"
type        = "user"
id          = "yyyy-----"
permissions = "rwx"
        },
"perm4" = {
scope       = "default"
type        = "user"
id          = "xxxx-...."
permissions = "rwx"
        }
    }
  }
}

\------------------------------------------------------------------------

terraform {
required_providers {
azurerm = {
source  = "hashicorp/azurerm"
version = "=2.88.0"
    }
  }
}
# Configure the Microsoft Azure Provider
provider "azurerm" {
# The "feature" block is required for AzureRM provider 2.x.
# If you're using version 1.x, the "features" block is not allowed.
features {}
}
locals {
resource_group_name = "RG-SA2"
resource_location = "Central US"
# Blob Storage
storage_account_name = "sa123xyzjjjkkkk"
account_tier = "Standard"
account_replication_type = "LRS"
account_kind = "StorageV2"
is_hns_enabled = "true"
#Datalake
datalake = "datalaketest"
datalakes = {
001 = {
name = "test1"
  }
002 = {
name = "test2"
  }
}
ace = {
"perm1" = {
scope       = "default"
type        = "user"
id          = "373d54d3-9011-490e-91be-2a70fddd9617"
permissions = "rwx"
        },
"perm2" = {
scope       = "default"
type        = "user"
id          = "3a0d091a-250c-43bf-a286-b704fa443c2d"
permissions = "rwx"
        }
      }
}
module "resource_group" {
source = "../../../modules/resource-group"
name = local.resource_group_name
location = local.resource_location
}
module "storage_account" {
source = "../../../modules/storage-account"
name = local.storage_account_name
resource_group_name = module.resource_group.name
location = module.resource_group.location
account_tier = local.account_tier
account_replication_type = local.account_replication_type
account_kind = local.account_kind
is_hns_enabled = true
}
module "storage_account_datalake" {
for_each = local.datalakes
source = "../../../modules/storage-account-datalake"
name = each.value.name
storage_account_id = module.storage_account.id
ace = local.ace
}

https://redd.it/ri75a0
@r_devops

How To Scale Your Web Applications With Heroku - Guide

This article will show you how to scale your web apps with Heroku: How To Scale Your Web Applications With Heroku

The two ways to scale with Heroku manually is compared. You can either use the Heroku Dashboard or Heroku Command Line Interface (CLI) to allocate additional resources to your app.

Generally, you’ll need to scale the app’s resources before hitting the maximum limit. With that said, it is helpful to learn the exact condition before you need to start scaling.

The article also shows how you have access to auto-scaling capability when you are using the performance tiers of Heroku or have dynos running on private spaces. If you run apps on tiers that doesn’t support autoscaling, you can turn to the Heroku marketplace for alternatives implemented via add-ons.

https://redd.it/rhzy9u
@r_devops