What're some example Junior DevOps interview questions?

I've browsed some online, but I just wanted to hear your professional opinions regarding typical interview questions for a junior DevOps position. What are/were you looking for in interviewing individuals for a junior position. How can someone differentiate themselves from other applicants?


Those of you that have interviewed for a junior position what were some examples of the types of questions you received. Did you have an example project, and if so what did it entail?

https://redd.it/zmm2xc
@r_devops

CI/CD visibility

I am researching if CI/CD visibility solutions are a thing.

I mostly used Jenkins and Teamcity, and they provide their own reporting on builds, but when it comes to things like GitHub Actions, is it common to have some third-party solution to summarize build status/times across the repositories, or provide build monitor capabilities? I came across such solutions, but never saw them in real use cases.

Is it something that you normally use? Why yes or no?

https://redd.it/zmq7sp
@r_devops

Optimization of applications for kubernetes

Our company uses kubernetes. We are allocated virtual machines with a cube, where the application will be deployed. There is a problem that few people understand how much resources need to be allocated to the application, as a result, too few resources are allocated or too many, which leads to waste. There was an idea to write a tool similar to StormForge, capable of analyzing and tuning the application, chart and parameters. A tool capable of calculating the approximate amount of resources needed, and which could tell us that with some requests, say 5,000 thousand, this will not be enough for us. As I understand it, it needs to be combined with load testing. It is clear that it will not be possible to create a cool tool, but at least something minimal for java. What do you think about this? What ideas do you have?

https://redd.it/zmjwyg
@r_devops

Any one have experience with Part time devops jobs?

Hello! Does anyone have experience doing devops as a part time job?

Been thinking about helping small companies configure their cloud and optimize costs. Devops might not fit a “part time” job, but I don’t see why setting up an application through a managed or serverless resource can’t be done as something part time.

Seems like a nice side gig, would love to learn more about your experience doing something part time.

https://redd.it/zmuxby
@r_devops

Commandline tool vs UI based Operations?

Would you prefer command line tool or UI ?

I've seen many SaaS products, which i feel could've been just command line.
I personally prefer the power of terminal with better logs than clunky UI.

Curious on your thoughts (If you pick UI what was the need?)

Say in context of deployments / migration / CI/CD / Infrastructure management etc.

View Poll

https://redd.it/zmvh7o
@r_devops

Things I want from Devs as DevOps/SRE

https://oschvr.com/posts/what-id-like-as-sre/

https://redd.it/zmxvcg
@r_devops

Hey can anyone tell me the day to day tasks of an DevOps engineer?

I am trying to learn devops but I don’t see any detailed videos. I would like to know the daily tasks, what to learn? Thanks please feel free to reach out directly as well! Thanks 🙏

https://redd.it/zn2d1q
@r_devops

Help with bots

I’d like to set up some bot to make is Reddit work for me and my friends and Set challenges. /NumberFiles

https://redd.it/zn8hgm
@r_devops

Separate git repository just for devops?

We decided to have a microservice architecture and multiple microservices split (by functionality) into their own git and GitHub repositories.

The project just started and currently only one microservice (which needs to be split as well) with one repository exists. The repository contains everything related to GitHub CI/CD pipelines, helm charts, IaC templates and much more stuff, which is not necessarily related to this microservice, but more on the general side of things regarding devops (certificate management, certificate requests etc.). Copying this into every repository doesn't sound manageable to many in the long run (changing something in one repo regarding CI/CD, will most likely require the same change in all the other repos etc.).

I'm currently thinking to create a separate devops repository, move the GitHub actions, IaC templates (which are not related to a specific microservice) etc. into this repository. Each microservice repository would only provide values.yaml (anything related to the microservice itself) and minimal code to call the GitHub actions from the devops repository. The devops repository would provide helm charts, which can be parametrized by the values.yaml each microservice repository provides.

There are also other reasons why I tend to make use of a separate devops repository, which I unfortunately can't go into details about. To sum it up, I would like to put everything in there, which is not microservice related.

Does anyone have experience regarding this? Is it a bad idea?

https://redd.it/zna1ni
@r_devops

Question: What tools or technologies are you looking into lately ?

I have been heads down in AWS specific stuff but I’d figured I check in what’s popular these days.

The winter break is around the corner, and I jus want to add a few more to my list :D

I am curious what technologies or tools are ya’ll are looking into these days ( (or plan on looking into soon) ?


**What’s on my list (to look into):**


* SOPS / Sealed Secrets
* Terraform CDK
* SST (serverless framework)
* Kubernetes (definitely late to the party)
* Some AWS Data related services (ie Kinesis)

https://redd.it/zn96y9
@r_devops

Life after Nx

I don't have much experience with monorepos, but recently worked on a project that used this paradigm and used Nx to manage it. I actually found it quite productive, and was impressed with the way Nx effectively handled multiple projects. In particular I found the caching and the "affected" mechanism very effective, and the ability to create custom generators was quite helpful.

I'm thinking about adopting a monorepo paradigm for an upcoming side project, but trying to feel out if there's a better option. I don't have any specific complaints about Nx, but it is very JS/TS-centric and my project will involve a lot of Rust and Python sub projects. I understand that Nx can still handle these, but is there something more suitable? Some searching leads me to believe the main competitors might be Bazel and Lerna, but I lack experience with either. Looking for opinions on the best language-agnostic tool for managing monorepos.

https://redd.it/zncba6
@r_devops

alert for self sign certs

hi folks

I created a python script that runs on concourse(pipeline) to alert us if any of the self signing ssl certs is going to expire soon. My program manager was not satisfied this and felt I'm using pipeline for the wrong reason


I choose python on concourse as the other solutions I explored required paid solutions or some new tech like NAGIOS I'm not experienced it. So I have two questions


1. was I wrong to run python script as a cron job in concourse pipeline
2. is there any solution other than NAGIOS worth exploring?

https://redd.it/zndh8r
@r_devops

DevOps and Feature Flags

I would like to understand the role of Feature Flags in DevOps function

i. Do you "create & toggle" feature flags or "only toggle" feature flags?

ii. What all use cases does feature flag help you with?

https://redd.it/zncvl9
@r_devops

What security controls to prevent someone from pushing arbitrary code into production?

What is the typical process before something is pushed into live? Just as if you were to push code into a repo, it will be reviewed by individuals before being approved, does this happen in DevOps automation tools?

1. Does this happen with the likes of Octopus DevOps or Jenkins or Azure DevOps or any tools if you could share that you use in enterprise environments?
2. What steps are taken to ensure someone cannot accidentally or even maliciously push something bad into live?
3. We have a policy that at least high-severity vulnerabilities are not allowed to go live? Broadly, what kind of processes can you set up to track/audit this? I appreciate things like false positive findings and risk acceptance can be done here to shoot it into live because often times a lot of vulnerabilities are nonsense and noisy. But how is this done, is this flagged somewhere on before you press live: "Are you sure you want to go live" sort of thing? I have no idea.

https://redd.it/zngalh
@r_devops

Beginner's guide on how to set up a new project with proper CI/CD pipeline and containers

Good CI/CD practices and proper containerization are at the core of the best DevOps teams. Mounting them later in the lifecycle of a project is time-consuming and expensive.

In order to give people an idea about the possibilities and how little the initial investment in terms of time is, we wrote an article containing a step-by-step guide to get started with a simple React application, containerized, and set up with docker-compose for local development. How to insert basic checks into the CI/CD pipeline is also covered.

https://www.coguard.io/post/ci-cd-pipeline

Enjoy the read. And yes, one could've made different design choices, but we tried to keep it simple ;-)

https://redd.it/znirfs
@r_devops

Would you consider a job with on-prem rather than public?

Had an interview today and the company is 100% on prem. I'm not too keen on this as I've got AWS and Azure experience and would feel it would be a waste to not use it and potentially hinder future job opportunities. As they say 'use it or your lose it'.

Would you make you reconsider if the company was on prem over public cloud? Why, why not?

https://redd.it/zniddk
@r_devops

React/Flask Minikube k8s pods are working, but not finding each other. How to fix?

I've got 2 pods for the front and back end, react and flask respectively that reside in the same namespace. Both are running individually functional pods, but the frontend is not finding its API. The way the project is configured currently is that react expects the API at pod's localhost:3000 I am unsure how the best way to route it to the API service is.

Since React has a proxy field in the package.json I dont know what the best way to fill that would be, as well as making the fetch requests in my files. Perhaps an env variable but how would I populate it with the proper address?

I have messed around with ingresses but was wondering if there is a more straight forward way to do it as an ingress seems like more overhead than is necessary, and I'm not all that familiar with how they work, to be honest.

https://redd.it/zni8hz
@r_devops

Moving from sysadmin to sre/devops. any certs or none at all?

I've been working as a SysAdmin for 2+ years since I graduated. My current company is pretty small, most of the things were on bare metal although now we've virtualised most of the things using vSphere, the infrastructure is solid but doesn't use most of the things I see job postings asking for nowadays (no K8s, no CI/CD, little things with Ansible set up before I got there, no Terraform and the only cloud services used are AWS S3/Glacier).

I started looking for SRE roles after I learned about the role from Google, since I love how they define it even if I know that not everywhere does it that way, but after seeing I lack most of the most demanded technologies, I enrolled to KodeKloud and plan to do the IaC path and the K8s one (which I started).

But I want to know how I can improve my chances in job interviews and how to make myself more attractive (maybe even avoiding starting from a completely bottom position too).

Right now I'm doing the course for CKAD on KodeKloud so I was interested in certs, but looking around and talking to people they mentioned mostly CKA and AWS SAA ones. Should I go for these if I'm looking to get a job similar to the SRE role that Google mentions? Should I just learn the technologies and forget about certs?

I feel like I have a good foundation with networking, scripting, databases and even programming as I've done that as a freelancer (mostly Java for mobile apps, though), all I'm missing in my CV is what I mentioned before imo. How do I increase my chances?

I'm from Europe if that matters.

https://redd.it/znkfz0
@r_devops

Need help

What exactly is DevOps? I am looking to grow my career and I am a union organizer.

I get that coding is basically looking for “bugs” and using some type of logic to solve the problem.

https://redd.it/znpl2z
@r_devops

Web UI for Managing Files in a Kubernetes Volume

I have a need to give access to users to manage files in a volume. For authentication I would prefer to use Duo SSO. Is anyone aware of anyone projects I may be able to use to make this happen?

https://redd.it/zniz1q
@r_devops

Anyone have luck whitelisting Terraform Registry?

I have a box that runs terraform commands and is locked down pretty securely. Since this box will only do a few tasks, we want to whitelist the specific IPs/CIDRs that are required. Now, however, I am running into an issue during terraform init where I get the below error:

Could not retrieve the list of available versions for provider hashicorp/aws: could not connect to `registry.terraform.io`: Failed to request discovery document: Get │ "`https://registry.terraform.io/.well-known/terraform.json`": net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)

With that, if I open up 0.0.0.0/0, it works just fine. So, it seems like a routing issue.

I am able to dig to `registry.terraform.io` to get the IP but whitelisting this IP `146.75.38.49` does not work. I have tried to search for an IP or CIDR range supplied by Hashicorp for this but with no luck.

Any ideas on how to proceed or troubleshoot? Or,

https://redd.it/znsbjz
@r_devops