I just wanted to say thank you. Thanks for being kind and supportive. Wishing you all Merry Christmas and Happy New Year.

As a programmer & DevOps engineer, I was committed to share my knowledge with community on DevOps, Docker, Kubernetes, Ansible, Cloud, Terraform, GitLab CI, Jenkins,Splunk, Prometheus and More!. Where I (We together) have reached now, I couldn't have done it with out your support.

When I started my YouTube journey didn't received much support, but it was my friends and you are in forefront of those who motivated me to kept going. I wanted to develop a set of free DevOps courses that will allow people with minimal coding experience, and take them step by step with clear plan to reach their goals. Whatever your background, as long as you are willing to put in the work you can find an entry into this field.This is completely free, there's no stealth upsell (really, there's nothing to sell, there's literally no way to pay me).

You gave me a safe place to be and encouraged my interests. Everyone went above and beyond to make sure I didn't fall through the cracks. And I wanted to let you know: I remember and you all will be in my heart. The work I did is not in vain.

You are loved, and appreciated, and make a literal lifetime of difference to a YouTuber like me. As I'm not a professional YouTuber, I'd love to hear your feedback and support

Thank you.

Admin: I just want to say thanks to all of the DevOps community.

https://redd.it/rmngsw
@r_devops

Building an Edge API Gateway with Fauna and Securing It with Auth0

In this tutorial, we’ll explore architecting REST APIs in a fully serverless manner by leveraging Fastly’s Compute@Edge, Fauna, and Auth0.

Read more…

https://redd.it/rmd7eh
@r_devops

CI for services that send email?

I have a service that must leverage SMTP (AWS SES or Office 365 APIs) to send invite codes to new members. So far it seems like this singular integration breaks any hope of E2E testing. Has anyone circumvented this, such as to implement CI?

https://redd.it/rmc0d0
@r_devops

CentOS 8 is dead :( Any recommendations for a free/Azure friendly alternative?

Just realized our CentOS 8 VM's are about to loose support. My small company doesn't use them for much, so we haven't kept a close eye on them.
Any recommendations? CentOS stream? I really love using Azure Update Management for our Windows VM's; so it it plays well with Azure that's a huge bonus.

https://redd.it/rmg11o
@r_devops

Looking for a notifications tool for internal tools

Hello, I'm looking for a tool with specific purpose.

I'll try to explain the need first. My company is really big and consists of many groups so there are a lot of different tools that were developed. One group could be the customer of another group, by using their tool. This means that this group is interested in the release process of that tool (like release notes, urgent notes, etc).

I'm looking for a self-hosted and open-source tool that is a website where users can register their tools and other users can "subscribe" to notifications of the tools. For example, if the tool have a new version, the owners can send the release notes to all the users that are subscribed to the tool.

Also, if for example the system of the tool is down (or planned to be down), the owners can notify the subscribed users using the notifications. In addition, users can check the history of previous notifications. The users are intenal and we could configure them using the internal mailling list.

The tool should be self-hosted so we could run in a container on our cloud. Actually, I didn't came up with this idea, I already came across with such tool, but I could not find it online. Can someone suggest it?

https://redd.it/rm6g2c
@r_devops

Learn and Improve Open Source Tools Designed To Migrate Workloads To Kubernetes - HackFest

The Konveyor community has developed multiple use cases for you to learn time- and cost-efficient ways to migrate to Kubernetes. During this HackFest, if something is missing, not working as expected, or you simply get stuck -- you can open a GitHub issue or get support from the community engineers.

By joining, you’ll help improve the effectiveness and usability of the open source tools in the Konveyor Community. All tools you can continue to leverage for free after the event is over to migrate to Kubernetes.

You’ll walk away knowing how to:

Rehost apps between Kubernetes clusters and automating with GitOps using the tool Crane
Replatform apps to Kubernetes from other container orchestration platforms with tool Move2Kube
Rehost virtual machines to KubeVirt with tool Forklift
Assess, analyze, and refactor applications to Kubernetes with tool Tackle.

Each day will be dedicated to 1 or 2 use cases addressed by our tools. You can participate each day or the day we focus on the use case most relevant to you.

Register on this form to get the calendar invite and full agenda once it is finalized.

Details on scenario and instructions can be found here.

This event will be January 31 - February 4th, 2022. From 9:00 AM to 5:00 PM EST each day.

https://redd.it/rm69u1
@r_devops

Vulnerability Scanner/Detector Log4Shell Remote Code Execution Log4j (CVE-2021–44228) — Ansible log4j-cve-2021–44228 How to automate the Vulnerability Scanner/Detector provided by Red Hat RHSB-2021–009 Log4Shell — Remote Code Execution — log4j (CVE-2021–44228) with Ansible Playbook.



https://youtu.be/YXKXQy66MAA

https://redd.it/rmfjog
@r_devops

Vulnerability Scanner/Detector Log4Shell Remote Code Execution Log4j (CVE-2021–44228) — Ansible log4j-cve-2021–44228 How to automate the Vulnerability Scanner/Detector provided by Red Hat RHSB-2021–009 Log4Shell — Remote Code Execution — log4j (CVE-2021–44228) with Ansible Playbook. Installation of



https://youtu.be/YXKXQy66MAA

https://redd.it/rmffwf
@r_devops

How to create a hosting company using docker + kubernetes?

The hosting model for old sites and systems was with cpanel. And the best solution on the market for servers was CloudLinux. I'm looking for something for the private cloud model, a dashboard that I can offer hosting plans, vps and the like, using docker and kubernetes for high scalability.

​

Is there any panel that allows you to sell VPS or website hosting with kubernetes integration?

https://redd.it/rm43om
@r_devops

DevOps as tier 1 developer support

I've been with my current team for a few months now, and it's struck me as odd that DevOps is the first point of contact for developer requests, which is anything from restarting services, checking user permissions (merges/PRs/Pipelines) troubleshooting application stacks, project/process tweaking in Jira/ADO... you get the idea.

While these requests are generally DevOps related, I'd say a good 40% of them are more suited to IAM, senior developers, POs/PMs etc.

My question is - is this the expectation for a DevOps team? Experience tells me no, but maybe I've just been lucky up to this point.

P.S. I should add that while I don't mind supporting my colleagues, I know that our engineers are capable of doing so much more than responding to support requests

https://redd.it/rn182h
@r_devops

Is it bad to start your career directly into DevOps after college?

What's your opinion on someone who is directly starting his career in DevOps after college?

Edit: Junior DevOps in development team along with developers

https://redd.it/rn25n4
@r_devops

setting up a chef server

hello! I'd like to set up a chef just to test syntax on recipies and cookbooks. do i need a full chef server to do this? will chefdk cover my needs? will chef workstation?

https://redd.it/rn2lnl
@r_devops

Which CS subjects should a DevOps engineer study?

Referring to this table of CS subjects, which of these subjects would be worth relearning and would provide the most benefits in a DevOps role?

https://redd.it/rn3u06
@r_devops

How to populate secrets on first deployment of an application?

We have a pretty standard set of Java applications which are deployed onto Kubernetes using Helm charts. Our cluster has Vault for secret storage. Everything works great.

The problem is that we are having to pre-populate Vault with secrets using a script before the application is first deployed.

Later, if a Developer adds a new secret to the application, someone has to manually add a new secret to Vault before the newer version of the application is deployed.

I'm wondering if anyone has found a way a reliable, scalable way for an application to "bootstrap" new Vault secrets on first deployment?

i.e. if an application is deployed for the first time in a cluster and finds none of the secrets it needs are populated, then it can automatically create new secrets with randomized values and populate them in Vault.

Have spent a few hours Googling but couldn't find any solutions to this.

https://redd.it/rn6jr3
@r_devops

Jenkins Server unable to connect to SonarQube



Hi all im running Jenkins and Sonarqube on AWS.

Jenkins is unable to connect to my SonarQube server. I have checked the security groups and the Sonarqube SG has an inbound ruleto allow the jenkins server to connect to my sonarqube server but im still getting the below errors,

I have copied the token provided from the sonarqube server and put that into the sonarqube server environment variable.

Also the SonarQube server is up and running and accessible via public IP. (please note i have x'd out the actual private IP address from the console output below)

Any help would be appreciated.

1. INFO: SonarScanner 4.4.0.2170
2. INFO: Java 1.8.0_312 Private Build (64-bit)
3. INFO: Linux 5.4.0-1060-aws amd64
4. INFO: User cache: /var/lib/jenkins/.sonar/cache
5. ERROR: SonarQube server [http|://xxx.xx.xx.xx\] can not be reached
6. INFO: ------------------------------------------------------------------------
7. INFO: EXECUTION FAILURE
8. INFO: ------------------------------------------------------------------------
9. INFO: Total time: 0.570s
10. INFO: Final Memory: 3M/31M
11. INFO: ------------------------------------------------------------------------
12. ERROR: Error during SonarScanner execution
13. org.sonarsource.scanner.api.internal.ScannerException: Unable to execute SonarScanner analysis
14. at org.sonarsource.scanner.api.internal.IsolatedLauncherFactory.lambda$createLauncher$0(IsolatedLauncherFactory.java:85)
15. at java.security.AccessController.doPrivileged(Native Method)
16. at org.sonarsource.scanner.api.internal.IsolatedLauncherFactory.createLauncher(IsolatedLauncherFactory.java:74)
17. at org.sonarsource.scanner.api.internal.IsolatedLauncherFactory.createLauncher(IsolatedLauncherFactory.java:70)
18. at org.sonarsource.scanner.api.EmbeddedScanner.doStart(EmbeddedScanner.java:185)
19. at org.sonarsource.scanner.api.EmbeddedScanner.start(EmbeddedScanner.java:123)
20. at org.sonarsource.scanner.cli.Main.execute(Main.java:73)
21. at org.sonarsource.scanner.cli.Main.main(Main.java:61)
22. Caused by: java.lang.IllegalStateException: Fail to get bootstrap index from server
23. at org.sonarsource.scanner.api.internal.BootstrapIndexDownloader.getIndex(BootstrapIndexDownloader.java:42)
24. at org.sonarsource.scanner.api.internal.JarDownloader.getScannerEngineFiles(JarDownloader.java:58)
25. at org.sonarsource.scanner.api.internal.JarDownloader.download(JarDownloader.java:53)
26. at org.sonarsource.scanner.api.internal.IsolatedLauncherFactory.lambda$createLauncher$0(IsolatedLauncherFactory.java:76)
27. ... 7 more
28. Caused by: java.lang.IllegalArgumentException: Expected URL scheme 'http' or 'https' but no colon was found
29. at org.sonarsource.scanner.api.internal.shaded.okhttp.HttpUrl$Builder.parse(HttpUrl.java:1332)
30. at org.sonarsource.scanner.api.internal.shaded.okhttp.HttpUrl.get(HttpUrl.java:917)
31. at org.sonarsource.scanner.api.internal.shaded.okhttp.Request$Builder.url(Request.java:165)
32. at org.sonarsource.scanner.api.internal.ServerConnection.callUrl(ServerConnection.java:110)
33. at org.sonarsource.scanner.api.internal.ServerConnection.downloadString(ServerConnection.java:99)
34. at org.sonarsource.scanner.api.internal.BootstrapIndexDownloader.getIndex(BootstrapIndexDownloader.java:39)
35. ... 10 more
36. ERROR:
37. ERROR: Re-run SonarScanner using the -X switch to enable full debug logging.
38. WARN: Unable to locate 'report-task.txt' in the workspace. Did the SonarScanner succeed?
39. ERROR: SonarQube scanner exited with non-zero code: 1
40. [Slack Notifications\] found #5 as previous completed, non-aborted build
41. [Slack Notifications\] will send OnEveryFailureNotification because build matches and user preferences allow it
42. Finished: FAILURE

https://redd.it/rn2s4k
@r_devops

Retrospect on the AWS Outage and Resilient Cloud-Based Architecture

If an AWS outage on a single availability zone (AZ) is able to take down so many services like Slack and Hulu, perhaps it’s a good time to revisit common practices for business continuity & disaster recovery:

Retrospect on the AWS Outage and Resilient Cloud-Based Architecture

https://redd.it/rmry9c
@r_devops

How to apply gitops workflow with Vault and Kubernetes?

I deployed vault helm chart via ArgoCD in a Kubernetes cluster and I manually created hcl policies, users and approles with the vault cli by connecting to the container. I’d like to commit the hcl files to git and have a gitops workflow instead so when the deployment gets destroyed, I can easily reapply things that were created. How can I do this with vault helm?

https://redd.it/rnbxc6
@r_devops

Holiday plans voided by the log4j CVEs

Not much here. Just an empathy post for all those whose holidays that have been impacted by the recent log4j CVEs reported. You're not alone!

https://redd.it/rne1cq
@r_devops

Automatic two-way mirroring of Github repositories

I currently have access to a github repo that belongs to old school administrators that will not enable modern github features (such as deploy keys, actions, etc), which unfortunately inhibits my team's ability to implement basic ci/cd functionality.

I was wondering if there is a solution that allows for automatic two way mirroring of git repositories such that I can spin up my own private repo and implement integrations off the repo my team controls instead.

I was thinking a solution using webhooks to recognize when a change occurred in one repo and automatically mirror it to the other, that way users can work from either one.

Does something like this exist? Any advice on how to solve this particular predicament?

Thanks and Happy Holidays!

https://redd.it/rnf557
@r_devops

Top DevOps Automation Tools In 2022 And Beyond

Automation has become pivotal in today’s technologically advanced world. One can see a number of processes in which automation has played an important role. It has created a new sense of emergency in which either a person is busy automating processes or getting automated.  Because with the help of automation, the efficiency has increased manifold. As well as, the productivity and quality of the work have also improved.

As per the stats, circa 51% of companies are using marketing automation tools and around 58% have a plan to use automation tools.

Read this blog to learn which DevOps automation tools are popular and why.

https://redd.it/rngejd
@r_devops

Finessed my way into SWE role without containers

The role is a software engineering role rather heavy on cloud and DevOps / containerization. I think I got the job more because I had a positive attitude and was a referral from an acquaintance on the team, plus have a couple years of development experience, but that might be besides the point.

Where should I get started learning containers, Docker and maybe even cloud (with how it’s relevant or fits in)? I’m currently going through a crash course video on YouTube by academind since I used his videos to learn front-end / JavaScript. I can reference official documentation but it tends to get really dry really quick.

https://redd.it/rnhhuj
@r_devops