Should I .gitignore everything by default?

I have started working with a team recently and the default behaviour is to git ignore everything and then add a not ignore to the .gitignore file for my content to be committed.

I have never worked like this and I am really struggling as no one can tell me why this is the pattern.

Is this common practice? Help? Please 🥲

https://redd.it/1dk6of3
@r_devops

What are your strategies when feeling overwhelmed?

I've been an SRE for a few years, thought I would shake it after a few years experience, but it still happens where I feel overwhelmed with things.

Not so much with the amount of work, which seems endless and I'm always playing catchup, but much more so with learning more and more of the technologies and it feels like I'm always behind.

https://redd.it/1dkuj2w
@r_devops

What Do Good IaC Practices Look Like?

I’m a startup founder looking to learn from experienced DevOps professionals about the best practices you follow when managing infrastructure through IaC (particularly Terraform).

I've been exploring various methods and tools myself, but I’m also particularly interested in understanding:

* How you structure your Terraform modules for scalability and maintainability
* Any tips for managing infrastructure drift
* Best practices for integrating IaC with CI/CD pipelines
* Strategies for ensuring security and compliance in IaC
* Tools and techniques you use for automated testing of IaC
* Any other tips and best practices you use on a daily basis

As a startup founder, I wish to learn and then improve our platform that eases or solves one or a couple of the problems that I’ll observe as a common pattern among all the workflows I might learn about.

My background is not in DevOps; it's in ML and Deep Learning. My startup, therefore, has been playing around with the idea to build an AI-driven Agent that enhances DevOps workflows. This Agent's capabilities would include:

* **Module Search and Documentation**: Searching for Terraform modules, pulling the right ones, populating them with the appropriate parameters for your cloud infrastructure, and presenting detailed documentation all in a clean well summarized format.
* **Configuration Parameter Retrieval**: Automatically checking & fetching configuration parameters from your cloud providers (such as AMI IDs) and populating your IaC automatically.
* **Searching through your existing IaC codebase** through natural language.
* **Drift Detection Tools and Real-time warnings.**
* **Natural Language Interaction**: Allowing users to interact with the Agent through natural language queries and plain English commands.

The speed improvement we expect to see is in having these various tasks that you as a DevOps engineer do daily but instead of diving into different pages, CLIs and windows yourself, we setup your most common pipelines which you can call easily through natural language

I recently learned how ubiquitous the use of Terraform modules for provisioning workflows is, and staying up to date with the vast number of modules and the services they render reusable that exist is unequivocally large. Code generation is the hot topic that everyone feels LLMs do well, but in reality, it's understanding and consuming large contexts (such as a product's complex cloud infrastructure).

I was wondering if such an Agent, with these capabilities, would be a tool that saves you time and energy. We’re not dead set on this being the idea. We're simply trying out things to see what clicks and what doesn't, and your feedback, criticism, & suggestions are crucial in helping us decide how to move forward!

Looking forward to your responses!

https://redd.it/1dk8uem
@r_devops

SSL cert for self hosted SAAS (Dockerised)


I set up a self-hosted version of a SAAS on a server. The software is completely dockerized including the Nginx server. I don't want to mess with the original Docker compose file because I want to be able to update it with the newer releases of the SAAS without much hassle.

The problem is since the port 80 is already being used, I cannot just install a Nginx server and set it up with a SSL. So what should I do in this case? How do I get a SSL certificate?

https://redd.it/1dkxqzx
@r_devops

Operations-as-a-service

I‘m currently in a fucky situation where we are supposed to govern, create and maintain standardized CI/CD jobs for ~700 devs, infra automation engineers, devops engineers etc. in an oldschool-ish org in the financial sector.
The scope is on-prem and in the cloud, so multiple tenants as well.

Most engineers can‘t be arsed to do shit themselves:
- they buy software which needs to run on the container platform but they have nobody to take care of the release management, they come ask us
- they ramp-up product teams with deadlines but don‘t have the staff with the necessary knowledge, they come ask us
- they don‘t have the justification for hiring a full time devops engineer because the product is relatively small, they come to us
- they don‘t care, they come to us
- we racked up massive tech debt, so shit breaks all the time
because we were trying to „enable“ engineers resistant to learning, they of course come ask us


The idea to prevent us from drowning and do our actual job would be to ramp-up a team which just takes care of these operative tasks for other teams and offer it as-a-service.


Thank you for listening to my rant


https://redd.it/1dkcjv7
@r_devops

Free vendor events

Last December my team was invited to the Datadog Holiday party. How do I get on the list for more events like this? More than willing to have vendors bug me if they pay for my dinner.

https://redd.it/1dklyj2
@r_devops

User friendly Kanban solution as a frontend for Azure DevOps?

Hello DevOps community,

I am seeking feedback regarding a concept which our team is developing - a far simpler/intuitive Kanban board to organize work around Azure DevOps system. Since we observe a problem where business or non-IT people are quite reluctant to go directly into Azure DevOps, Github or similar dev focused solutions to create work requests.

So we have decided to offer a scriptable two way sync between Teamhood and Azure DevOps. And now we are thinking for doing other integrations next. Does this solution make sense to you and are there any additional problems to solve so that IT people also get significant benefits?

Link to a solution presentation: https://teamhood.com/product/kanban-board/

https://redd.it/1dl08as
@r_devops

Best way for OnPrem postgres

Hello,

So we are shifting to OnPrem for some reason. For this we want to deploy PostgreSQL database on premise. What should be the best way to deploy this? Should we consider deploying in Kubernetes or as docker containers or direct installation using virtualization software's which you know will be present.

I am thinking of a stack for kubernetes:

Rancher

KubeDB

Cloudflare

Prometheus

Stash

Thing is replication is also important and Cloudflare for tunneling.
Any recommendations
P.S Might migrate other postgres databases to onprem also

https://redd.it/1dl1v6y
@r_devops

Transitioning from Technical Support to DevOps

Hi everyone,

I've been working as a L1 Technical Support Engineer for the past 18 months with no growth in my role. I'm looking to switch my career into DevOps. Is it a good time to start preparing for DevOps? What is the demand in the market for this role in the present and future compared to other domains? How can I make this transition?

Thanks in advance!

https://redd.it/1dl534m
@r_devops

Looking for DevOps Study Partners - Let's Learn and Grow Together!

I’m a 4th year engineering student with a keen interest in DevOps. I have a basic understanding of DevOps concepts like Git, Linux, shell scripting, Python, Docker, and some cloud fundamentals. Currently, I'm preparing for Azure certification exams and I'm looking for study partners to join me on this journey.

If you're also studying DevOps or interested in learning more, let's connect! We can teach each other the concepts we know, study together, and support each other’s growth. We can set up regular study sessions on Discord and Telegram to follow up and keep each other motivated.

If you’re interested, drop a comment or DM me.

https://redd.it/1dl63bd
@r_devops

Favorite cross-cloud provider backup solution

I’m working for a mid-sized company of about 100 employees with an AWS spend of ~$20k/month. Most of our cost is in RDS, Redshift, ECS, EC2 and S3. We have been using AWS Backup with cross region replication. We are looking to replicate our backups to another cloud provider such as Google or Azure. If there are third party vendors with their own cloud storage, we are open to that as well. I was hoping to get feedback from the community on everyones favorite tooling to perform cross-cloud provider backups

https://redd.it/1dl5tb8
@r_devops

Using AI

I mainly use it as enhanced Google for references. I know there is a deeper level but not sure if that means ML is going to be another crucial skill to add. Curious how others use AI to workflow.

https://redd.it/1dl89vy
@r_devops

CICD tool indepent workflows?

Hello!

My management thinking about to create a company wide centralized CICD workflows (like build, deploy, testing, releases ect.). That sounds fair, and I support that, but we use different tools for some projects like most of the projects using Gitlab for everything and some of the projects uses Jenkins (and ArgoCD) and the last group is a Github Actions based only.

So we are asked to create the workflows to run every possible CICD platform.

It is possible? My first thought was that to use docker images with built-in shell scripts (maybe some environment variable checking or setup is needed but), after these everything can be used from anywhere.

Have you any other idea?

https://redd.it/1dldl4x
@r_devops

Azure devops pipelines issue

Okay somewhat of a newbie question:
I have 4 yml files for 4 pipelines (build, dev-release, stg-release, prod-release).

build.yml

trigger:
  branches:
    include:
      - development

pr: 
  branches:
    include:
      - staging
      - master

#rest omitted for brevity

dev-release.yml

trigger:
  branches:
    exclude:
      - '*'
pr: none

resources:
 pipelines:
     - pipeline: 'build'
       project: 'project'
       source: 'build'
       branch: 'development'
       trigger: true

#rest omitted for brevity

stg-release.yml

trigger:
  branches:
    exclude:
      - '*'
pr: none

resources:
 pipelines:
     - pipeline: 'build'
       project: 'project'
       source: 'build'
       branch: 'staging'
       trigger: true

#rest omitted for brevity

prod-release.yml

trigger:
  branches:
    exclude:
      - '*'
pr: none

resources:
 pipelines:
     - pipeline: 'build'
       project: 'project'
       source: 'build'
       branch: 'master'
       trigger: true

#rest omitted for brevity

so what I want is, build should trigger on commit on dev branch and on merges to stg and master.

The problem occurs while releasing. When I merge dev into staging both dev and stg release pipelines are triggered. Probably it would trigger all 3 release pipelines if I merge stg into master but haven't tested that yet.

Am I doing something wrong with the yml files or is there more configuration needed ?


https://redd.it/1dleqj1
@r_devops

What does a devops project look like?

I'm a pipeline/infrastructure engineer who has been in the VFX industry for almost 20 years. But I'm trying to transition into the devops field to expand my job opportunities. I'd like to put together a project that will allow me to learn the skills needed for devops. I was hoping for some advice on what to do for a project.

My initial thought was to create a simple weather app and distribute that onto a cloud infrastructure. Any advice would be welcome.

https://redd.it/1dld29z
@r_devops

Traefik load balancing

Hey guys,

I’m new to this so if it doesn’t make sense, sorry.

I’m running into this issue where I’ve set up traefik as part of a docker swarm. I’m running 3 nodes and have the service portainer in which the dns is configured in a round robin. My issue is a browser will pick one of the 3 ip address to connect to when trying to access portainer and if it picks the wrong one I get a gateway timeout error. The loadbalacing is configured in the compose file for portainer as a traefik label. And traefik is running on all three nodes on the same network as portainer. (From the research I’ve done it’s a common problem where docker will need to pick from two networks, but that isn’t the case for my setup).

Any ideas?

Ps: portainer needs to run only as one replica because of how it access its DB.

Thanks!

https://redd.it/1dlh16c
@r_devops

What are the first things you do when joining a startup?

TLDR; this startup I just joined asked me to step up to take lead the whole infra and techy decisions for about 20 people. How should I approach it?

Some context here, I've just joined a really competitive startup in France.
They are about 3yo, 60ppl, had a really talented DevOps for about 2y. The guy did an amazing job, the infra is super clean, reliable, secure and scalable. Honestly I couldn't have done that.

So now I've just joined the company as the new DevOps (another guy is coming in the next weeks as well), and they basically tell me they want someone who can completely own the infrastructure for all the teams (data, and 3 or 4 squads of Devs).
Upper management expect me to guide all infra and techy decisions for the company. They basically don't want to decide for those topics, and want me to completely handle the process from thought to implem. I've never done that, and not sure how to proceed.

I've started to plan a few calls with each team to understand their pain, more precisely the business, and from that draw out a direction on where to go.
But idk what I'm doing. How do you guys deal with that? How do you prioritise topics when you first feel like the infra is already in an amazing state (obviously there are always improvements but you know, no obvious stuff popping for now).

Cheers! Any feedback on your first day at a challenging startup company. I'm basically looking for some advise or just experience on what you guys did ou wish you did early on to take that kinda role

https://redd.it/1dlglz4
@r_devops

Newbie looking for guidance and mentorship

Hi good day amazing DevOps community, I'm an android developer looking to transition into the cloud and DevOps space and seeking guidance, mentorship and community. I would greatly appreciate if anyone would be willing to help mentor me, I'm willing to put in the work and also would like if I could get some links to common DevOps communities like this one.

https://redd.it/1dldf4b
@r_devops

School Project

Hello, I need ideas for a school project, I am looking for something innovative, simple but that is a challenge to program. I will compete against my peers in an expo and the project can be with Arduino or an application/program created by me, for the moment I have thought of a data encryption system or some project with STEM or Arduino education. I have knowledge in web development (html, css, js) and connections with DB, and some basic C#, C++ and Java, I am not looking to do the typical arm with Arduino, but I want to do something at the height of the previous expo, the winning projects were a social network and a student safety net. any suggestions?

https://redd.it/1dllv6t
@r_devops

Practical Tips for Fixing java.lang.OutOfMemoryError: Metaspace

https://blog.heaphero.io/fixing-java-outofmemoryerror-metaspace/

https://redd.it/1dlnfbx
@r_devops

How to Build an ECS + EC2 Auto-Scaling Infrastructure on AWS

I wrote a blog based on Infra I built at work to serve backend for a B2B usecase.

This blog has detailed description of all the components required to build ECS + EC2 Auto Scaling Infra & how to build it in AWS console.

Funny thing - because I used Rick roll container as example, it was picked up by AWS employee & he wrote a linkedin article building on top of this too.

Hope it helps, looking forward to your feedback.

https://medium.com/@ayushunleashed/how-to-build-ecs-ec2-auto-scaling-infrastructure-on-aws-ba730aa076a9

https://redd.it/1dlqwgj
@r_devops