How can I practice scripting in Python and Bash for DevOps-related projects? I am proficient in PowerShell, but I haven't seen a use case for Python yet.

Hi,
I am proficient in Azure, Terraform, and PowerShell. I have seen Python & Bash are popular for scripting DevOps-related tasks, what type of tasks would these be and how can I simulate an environment I can practice this with?


Thank you!

https://redd.it/yqilwi
@r_devops

Need opinion: why running container within systemd unit is not generally used/not popular?

Hi, I need to do a zero downtime deployment, where server packed into docker image.
Currently I came to a simplest solution to start container as part of systemd service unit.

Like this:
```
[Service\]
ExecStart=docker run --net=host --rm --name=blue registry.gitlab.com/mysuper/server:0.0.1
ExecStartPost=/bin/bash -c "check container status, healthcheck until server ready + timeout handling"
```
Pros:
\- `systemctl start myservice` will end with success when server is fully ready and can accept connections, or with error. So no need to do other checks. (easy to use with ansible)
\- my container depends (requires, after) on network and docker units, that give some guarantees about environment.
\- `systemctl enable myservice` gives me container start after reboot out of the box.
\- Service unit as a single point of truth.
\- start, stop and status works as expected for any other service

Cons:
\- one orchestration system uses another one. and that is bad. (not sure why)
\- ExecStartPost looks ugly, and takes about 20 lines of concatenated bash code
\- ???

I have checked tons of articles about blue/green deployment with docker and didn't find such approach anywhere.

What drawbacks do you see in it?

Thanks!

https://redd.it/yqj70x
@r_devops

How to find a job where I'm not the smartest one in the room

I am not trying to toot my own horn, but I feel exhausted by my colleagues and the amount of assistance they require. I wish it was just specific to my current team, but my former team at the same company and my former company had similar issues.

When I'm new to the tech stack, I love it. I have to learn all new things and it excites and motivates me. However, after about 6 months I feel a bit bored and all of my colleagues start coming to me for help. I'm a people pleaser, so that doesn't bother me, but after explaining things 1000x and writing documentation that people don't read... I stop giving a fuck. I do not care to help my colleagues limp along and provide half-assed solutions to their tickets because they cannot think outside of the box or even follow my thinking when I present dynamic options.

I feel fulfilled by my job when I'm learning new things and thinking creatively, but those things seem to have a short lifespan.

I am looking around for other career options, but it seems impossible to know what I'm walking into. How do I vet job opportunities? Do I need to go to the interview and ask them questions? What questions would I ask and how should I consider their (biased) answers?

Is Sr DevOps not the right thing to look at? Maybe I should be focusing on architecture or management? Any advice welcome!

https://redd.it/yqks6z
@r_devops

Building The Right Product & Building The Product Right - Lessons from a Product Leader at OutSystems

Hey guys!

I'm back again with a DevOps content marketing piece that I believe can actually be useful so I'll risk getting torn to pieces on here (just kidding, I've had mostly positive reviews <3)

Anyway, if you're looking for the key to better collaboration between Product and Engineering teams, read this thang! It has a couple of really nice product/engineering process frameworks and touches on goal setting, Product Development Lifecycles, Engineering Metrics etc.

Feedback on this is highly appreciated :)

We decided to collab on this blog post because we had previously written about Measuring Engineering Productivity, and this was the perfect way to get the POV of a Product Leader.

https://redd.it/yqnp7i
@r_devops

Devops Salary Comparison to SWE?

What does the salary level and growth look like for devops engineers, and how does it compare to that of SWE? I've heard from a senior SWE friend that Devops engineers make about as much as SWE at entry/early levels in their paths, but in order to keep up in pay down the line, devops engineers usually have to move up to management (and away from a hands-on technical role) while swe can stay in a technical role with increasing pay levels. Is this accurate?

For context, I'm pretty fresh in the workforce. I graduated relatively recently (2021, majored in computer engineering, mainly focused on the software development area of things), and got an entry level job at a consulting company straight out of college. There, after a 3 month rotational training program, they gave us a choice between the app dev and infrastructure horizontals and I wasn't sure so I let them decide. I now have about a year of experience in a devops role working primarily in GCP and while the work is interesting, I'm just not sure if I'm making the right choice money wise. As I'm about equally as interested in devops as I am in software development, I want to get a better understanding of possible paths I can take.

&#x200B;

Any insight is much appreciated :)

https://redd.it/yqpwnm
@r_devops

Is the Google SRE handbook outdated? It says it was published in 2017, which is an eternity ago in DevOps time.

Google is of course the golden cow of SRE, which means it should have a good book for SRE... But its textbook is from 2017 according the footer. Is it still a worthy resource or should it be ignored in favour of something more current?

https://redd.it/yqroux
@r_devops

Self hosting web-server for nodejs app with postgres and redis

So, I'm not sure this is the right place but i will take my shot.

I'm a web backend developer trying to setup a web server for my remote development purposes.

I need a node.js (nest.js to be specific) app to be running and it will be connected to postgres and redis docker containers in the same machine and i want to access my api from my router's static IP. I tried couple things but failed miserably. Since it falls into devops area, i dont want to dive deep into researching and experimenting.

At this point what steps I need to follow to be honest.

Is there a guide or app preferably with gui serves to this purpose?

https://redd.it/yqt459
@r_devops

How many of you are currently using ArgoCD for GitOps?

I’m doing a bit of market research and would like to know how many of you are using ArgoCD.

Also, either your company name or an estimate of the size of your company in the comments would also be very helpful and may be useful in helping folks with their decision to adopt Argo.

If you have been using Argo, what are some of the things you enjoy, and what are some of your pain points?

NOTE: I am not affiliated with the Argo project; this is for market research only.

View Poll

https://redd.it/yqohld
@r_devops

QA in devops

hello everyone we are a team running a few k8s clusters hosted on aws we do the infra through terraform and applications are deployed via argocd , we have clusters for dev test and production what other steps can we do to ensure qa cycle

https://redd.it/yqmt94
@r_devops

SSL Termination for SQL

Hi,

I have a use case where we have a database in PaaS offering and we are able to connect to the database over an SSH Tunnel.

We have an EC2 node in AWS which will open up an SSH tunnel to the database and allow incoming TCP traffic from a specific set of IPs.

The SQL Clients are another PaaS offering so they can't establish direct SSH connections to the database therefore we're routing them through our jump host EC2.

So right now our architecture looks something like

SQL Client -> EC2 -> (SSH Tunnel) Database

Unfortunately, the database provider have told us they will not be enabling SSL connections so we cannot setup TLS/SSL connections from start to finish (their argument is that it's inside a VPC and we already can open connections using SSH so additional layer is pointless)

But we'd still like to use SSL to our EC2 machine so it looks something like

SQL Client (TLS) -> EC2 -> (SSH Tunnel) Database

What are the recommendations here? I took a look into ProxySQL and it looks like since v2, it can do frontend and backend SSL connections. I have it locally working on a docker setup.

I'd like to know if this is the only option or if there are better alternatives anywhere?

https://redd.it/yqzlxy
@r_devops

Calling all contractors & founders, need a hand!

Me and a colleague/friend want to start our own shop.

We want to provide to our (future) customers a reference architecture for Kubernetes and cloud native applications.

We want to give our customers the best implementation and architectures, help them to solve “unknowns-unknowns”, plan and of course implement the required and right solutions.

We both have worked for big tech companies, startups and hedge funds in the last 12 years and managed/automated large scale systems (our current datacenter have over 40k instances - around 3MLN CPUs 160kTB of memory across all machines), we both are skilled system and software engineers!

We want to start our own shop, BUT…

We are engineers/architects, we have never done sales/marketing/social media (he’ll this is the only “social” I have) and we have no idea how to reach our customers, understanding what’s the right market, WHERE is the right market, etc etc!

How do you guys find new customers?

Any suggestion for someone who’s starting now?

All feedback are appreciated!! (be harsh too I don’t mind. In fact, I appreciate radical honesty)

Cheers

https://redd.it/yr0nod
@r_devops

Getting Started with Helm

Helm can be used to package & deploy applications in Kubernetes.
In this video you will learn:
\- Why Helm?
\- How to create Helm Charts?
\- Rolling back releases


https://youtu.be/lcYvH36x7fc

https://redd.it/yr0fj2
@r_devops

Database for app in GKE

What is the best practice for database in devops where the apps are in GKE cluster?

For example, if the database is mongo with 100 TB of data based on VM, can it connect to the GKE cluster? Is this the best practice?

https://redd.it/yr0ea8
@r_devops

Off Topic How did you transition to DevOp?

I figured everyone has a story, and most probably don't have the opportunity to share. So I'm curious - how did you transition into DevOps?

https://redd.it/yqxqeb
@r_devops

Topic and subscriber

How does a subscriber receive a message if it is turned off when the message arrives at the Topic? Is the message lost ?

https://redd.it/yr74v6
@r_devops

Is Microsoft Azure Administration Associate certification suitable for me?

Hi. Currently I am working as a server admin cum devops engineer at one of the IT giants. I want to learn cloud technology. Is Microsoft Azure Administration Associate certification (Az-104) suitable for me? Whar are the pros and cons. Your valuable inputs are much appreciated.

https://redd.it/yqijw7
@r_devops

What do IaC tools currently lack?

I've been using Terraform for a long time, and I feel like some features are just missing. For example, fighting drift changes with imports can take hours. I've looked into Crossplane and Pulumi as well, but I have a hard time understanding how they really compare, because it seems they all have some limitation. I would like then to ask what do you think would constitute as the perfect IaC tool, and what is missing from today's tools. With that knowledge in mind I might be able to contribute to the right open-source project.

https://redd.it/yr90ih
@r_devops

Continous Deployment: ArgoCD vs. GitHub Actions

Hi DevOps’ers!

In our organization we are now deciding on a tool to be used for the CD process (Kubernetes env). For some reason I feel that GitHub Actions is not a good choice, but the only thing that I can think off is that it is a push model, which means we will not be able to block the outside initialized connections to the cluster. We can do that easily with ArgoCD pull model (in Flux as well). I feel that GitHub Actions are a bit more rigid as well…

What are thoughts on that? Have you been using GH Actions for CD?

https://redd.it/yqc446
@r_devops

Bypassing reviews in Gerrit

I have a repo x. Group y already has push access to the repo. As usual in gerrit, it goes through reviews and then triggers a Jenkins job. I want to configure an user that should be able to push to this repo and trigger a Jenkins job without going through the usual reviews.

Has anyone faced this use case before? If yes, kindly share how you solved this.

https://redd.it/yq6uoo
@r_devops

RabbitMQ or Apache Pulsar

In the lookout for a new message broker/queue. Something that supports multi-tenancy, and can be deployed onto Kubernetes (cloud-agnostic).

I see a lot of comparisons between RabbitMQ and Kafka (whereas Kafka doesn't fit our bill).
But what about RabbitMQ vs Pulsar?

I do see a couple of articles around, but they all seem to be very biased towards Pulsar and trying to sell some product related to it. Has someone here perhaps had experience with both of them?

I will run PoCs for both but would like to hear some real-world anecdotes in regards to maintenance and running cost, performance, ease of use etc.

https://redd.it/ypru0o
@r_devops

Do you think that a self-service DevOps-as-a-service platform is something that makes sense?

Hey y'all,

I'm working in a small company and we're developing a DevOps-as-a-service platform and I'm doing some market research or more specifically, would like to know if this is something that developers, cloud architects or infrastructure teams or people on this sub would use.

The idea/vision is that we're automating processes like creating AWS organization accounts, running a docker container on AWS, generating an EKS cluster, requesting an AMI rotated EC2 instance and so on.

Basically, when you're a developer and you need infrastructure resources for your project, you shouldn't have to worry about asking your management if you can get an AWS account, set it up to be security compliant etc. You just click on whatever you need in a self-service interface (currently a custom jira service management) and e.g. the AWS account will be automatically created for you, you'll get all the infos and so on.

Do you think that this could help e.g. developers who work in companies or with senior management that don't really have an understanding of DevOps get into the subject matter?

From our experience, a lot of companies hear the buzzword DevOps and are like "yeah, let's do that!" but are overwhelmed by all the tools & technologies, how to integrate them in practice etc. and this is where we want to create a centralized plattform, integrating different tools.

https://redd.it/yrconp
@r_devops