How to Setup Preview Environments with FluxCD in Kubernetes

Hey guys!

I just wrote a detailed guide on setting up GitOps-driven preview environments for your PRs using FluxCD in Kubernetes.

If you're tired of PaaS limitations or want to leverage your existing K8s infrastructure for preview deployments, this might be useful.

What you'll learn:

- Creating PR-based preview environments that deploy automatically when PRs are created

- Setting up unique internet-accessible URLs for each preview environment

- Automatically commenting those URLs on your GitHub pull requests

- Using FluxCD's ResourceSet and ResourceSetInputProvider to orchestrate everything

The implementation uses a simple Go app as an example, but the same approach works for any containerized application.

https://developer-friendly.blog/blog/2025/03/10/how-to-setup-preview-environments-with-fluxcd-in-kubernetes/

Let me know if you have any questions or if you've implemented something similar with different tools. Always curious to hear about alternative approaches!

https://redd.it/1j83kt3
@r_devops

OpenTelemetry Collector vs Grafana Alloy

Hi, does anybody have any experience with both these collectors so you may share your experience?

What should be chosen for the fresh env, vendor agnostic OpenTelemetry Collector or vendor specific Grafana Alloy?

Is there any significant difference to choose one over another?

Thanks in advance.

https://redd.it/1j84p18
@r_devops

UPDATE: Hired as a "Junior DevOps Engineer", now a "Business Operations Manager"—is this good or bad?

About a month ago, I posted about how I was hired (7 months ago) for a DevOps/software engineering role at a Fortune 500 company, only to be moved to a different team doing mostly Power Automate, SharePoint, and Power Apps—far from the AWS, Terraform, and Docker work I was expecting.

Since then, things have taken an even weirder turn. I recently checked my job title in our internal system and saw that my manager had changed it from Junior DevOps Engineer to Business Operations Manager—despite the fact that I’m not actually doing anything related to business operations. I’m still just writing scripts and building cloud-based tools, yet my title now makes it sound like I’m in a finance or admin role.

When I finally asked my manager about it, they said that due to an organizational restructure, my title was changed to better align with their team. This way, when N+2 managers interact with them and me, my job title eliminates any confusion and indicates that I work under them rather than the original manager who hired me. They also said this title was going to benefit me a lot moving forward.

What annoyed me is I never got any heads-up about this, and my work hasn’t changed. I’m still doing the same mix of automation and scripting. But now I’m wondering:

Is this a good thing (maybe it makes me look more versatile/above my pay grade)?
Or a bad thing (is my resume getting tanked, and should I jump ship ASAP)?

I was already considering leaving because this role isn’t fully aligned with my career goals, but this title change makes me confused.

Would love to hear if anyone’s been in a similar situation.

https://redd.it/1j866id
@r_devops

New to devOps: Tracing, observability, a bit lost.

Hi !

I'm in charge of develop the observability part of my company software.

I'm pretty inexperienced as a DevOps so I wanted to stay simple. At first, I went for OpenTelemetry and Jaeger (in a docker Paas). Then I realised I have no persistency/storage and no auth security with Jaeger alone.

So I searched a bit and solutions with trace storage and auth security seemed a bit cumbersome:
- Adding Keycloak on top of Jaeger for security and compiling some jaeger plugin to get some storage connection
- Going for a Grafana stack and deploying an Otel collector between my app and grafana

I feel like PaaS are not suited for observability solutions and I should go for some VPS or something. The primary reason I wanted to stay on my Paas provider (Clerver Cloud) is because I'm taking back an old project that has parts deployed on a lot of different providers and I wanted to just stick to one to avoid chaos.

So I'm a bit lost for now, do you have some advices ?

https://redd.it/1j83pj3
@r_devops

Need help and ideas to continue

Hi, about a year ago jumped in to Linux world and loved it and slowly become interested in DevOps, I followed this road map https://roadmap.sh/devops, but now Im almost halfway and I know I have to do something ( like a small project or sth) to gather all of my knowledge until here to one place and polish them, fill the holes in the way. But I'm totally lost, i have no idea what to do, what project or any thing and need help.

I can continue the path but I know it will do more harm

I just need a project or work idea with it telling me the steps like " first using this tool do this and then ... "

where can i find something like this? a mentor maybe ? someone who helps me ?

https://redd.it/1j88k05
@r_devops

How do you remember so many things?

I want to know how do you do it. When I get into something I learn it but after a few weeks I forget it partially or totally. When doing some interviews they ask things I knew but I forgot and it's kinda frustrating. How do you do to keep all this existing and new information always available?

https://redd.it/1j8a43i
@r_devops

Security Tips for Docker Compose with Nginx as a Reverse Proxy

Hey everyone!

I have an application deployed via Docker Compose, distributed across multiple VPS, and my setup is as follows:

* I use containers for **Next.js (a variable number of clients), Bun (server), Gluetun (to isolate the server within a VPN, which is necessary for my application), and Certbot**, but none of them have exposed ports.
* The only container with open ports is **Nginx**, which listens on ports **80 and 443** and acts as a reverse proxy.
* SSH access is available on port **22** on some of the VPS.

I want to ensure my setup is as secure as possible. Some security practices I already follow:

* I use **Certbot** to manage SSL.
* No internal services are accessible externally.
* SSH access is **key-based only**, and root login is **disabled**.
* I install **CrowdSec** on all VPS.

My main concern is **Nginx**, as it is the only exposed service. In the logs, I see many **path traversal attempts and random access attempts**. I believe my `nginx.conf` is properly configured, but is there anything else I should check to further enhance security?

I would love to hear your insights:

* What additional security measures would you recommend for this setup?
* What would professionals do or avoid in this kind of environment?
* Are there any specific configurations to harden **Nginx** or **Docker Compose**?
* Do I need Kubernetes if everything is already running? I generate the yml files dynamically (for the Next.js containers) using a bash script, and sometimes it can get to 15-20 containers.

I am the front-end and back-end developer and infrastructure manager of my SaaS. All of this has been a huge opportunity for me to learn and grow in my career and any advice to make my setup more secure and with higher professional standards is appreciated. Thanks!

https://redd.it/1j8bq6m
@r_devops

what are the better alternatives to sonarqube that you use currently?

Hey r/DevOps,



Most of our codebase is in JavaScript, TypeScript, and React, and we're currently looking for alternatives to SonarQube. 



Does anyone have experience with AI tools that can help with static code analysis, code quality checks, and security vulnerability scanning for these languages?  



Would love to hear what’s worked for you and if any new + reliable AI tools can take up the task!

https://redd.it/1j8kpab
@r_devops

Can I Run MongoDB and PostgreSQL on Hetzner Cloud Volumes?

I was checking out Hetzner's documentation and noticed that their Cloud Volumes offer sustained IOPS (read/write) of up to 5000 and burst up to 7500 (Hetzner Cloud Volumes Overview). Given these specs, I'm curious if it's feasible to run MongoDB and PostgreSQL on these volumes for a medium-size web app focused on data processing.

Has anyone had success running MongoDB or PostgreSQL on Hetzner Cloud Volumes?
Have you encountered any performance or latency issues under moderate loads with these IOPS numbers?

https://redd.it/1j8le9s
@r_devops

Could anyone please assist me with this project title and provide guidance on how to begin, as I'm a beginner leading a group of three members ?

Title - Deterministic log test replay framework for devops

Abstract - Imagine trying to fix a bug in a complex software system where every step matters—but the logs that record these steps are jumbled, making it
hard to recreate the exact conditions that led to the error. Our project, DLTRF (Deterministic Log Test Replay Framework), tackles this problem
by capturing every log entry produced during testing along with its precise timestamp, then storing them in a structured way so that they can be
replayed in exactly the same order every time. Drawing inspiration from an IEEE study on FPGA-based deterministic replay in which achieves
bit-accurate visibility of hardware behavior—DLTRF applies similar principles to software logs in DevOps environments. In simple terms,
DLTRF guarantees that when you re-run a test, you experience the same sequence of events, allowing developers to consistently recreate the test
scenario, accurately trace bugs, and clearly determine if issues stem from configuration differences or genuine software defects. This reliable,
repeatable replay process not only improves debugging precision but also boosts developer productivity by reducing the time spent
isolating and fixing errors.

https://redd.it/1j8kmnb
@r_devops

what are the better alternatives to sonarqube that you use currently?

Hey r/DevOps,



Most of our codebase is in JavaScript, TypeScript, and React, and we're currently looking for alternatives to SonarQube. 



Does anyone have experience with AI tools that can help with static code analysis, code quality checks, and security vulnerability scanning for these languages?  



Would love to hear what’s worked for you and if any new + reliable AI tools can take up the task!

https://redd.it/1j8kol8
@r_devops

ai or engineering jobs in med field ..tell me if you know

# Do you guys happen to know anyone in your experience who as software engineer got a job in med field(ai in med ) if you know any thing about it ..tell me what kinda skill set they had

https://redd.it/1j8p57m
@r_devops

Best cloud provider for AI workloads?

Been exploring different cloud providers for AI workloads, and I keep running into the same problem and AWS and Azure are overpriced as hell. Spot instances help, but they’re unreliable for longer jobs, and I’ve had training runs get killed halfway through because my instance got reclaimed. I’m using Compute with hivenet rn which is much better imo. Even if it doesn’t have templates yet it does the job in terms of just runnin some GPU instances on demand and costs way less than Amazon.

https://redd.it/1j8pmir
@r_devops

Lenovo ThinkPad X1 Carbon G12 Touch (21KC000MUS) or Apple MacBook Pro 14.2” with M4 (24GB, 1TB SSD)

Hello, everyone.

Since I plan to learn Devops, I’m trying to find out which one is the best for DevOps? Can you advise?

Thank you, in advance.

https://redd.it/1j8qqar
@r_devops

Staying at a job too long?

The general advice I've heard throughout my life is that you should stick with a company 2 years and then job hop to increase your salary, but I think it's more than this. I think if you stay at a company too long, you run the risk of becoming complacent with the technology, your skills, and exposure in general.

I've worked at multiple companies in my life, and have noticed completely different ways of working. Different ways of setting up technology and architecture for solutions.

I am currently working at a company where there is an engineer who has been doing this type of work for 20 years - Been with our company for 10 of those years. I would have thought that he would have a wealth of knowledge on things, but he doesn't. He knows how to resolve very specific issues which occur with our infrastructure. But whenever we have been asked to setup new services, he's completely lost, and often recommends solutions which aren't great - such as hosting databases on EC2 instances (sole reason being that he knows how that works over RDS).
But this isn't the first I've noticed something like this. There have been a few cases from companies where I've been at where I've noticed people who are very complacent with their specific set of technology.

My post here isn't actually to attack individuals who are like this. But instead an advocacy where I think it is actually advantageous to move companies frequently, and if you're new to DevOps, and you're in the early period of your career, I'd maybe even suggest earlier than every 2 years.
My current company has horrible practices with things. There is chaos and disorder with our workflows. However, it is only through being with prior companies and seeing different approaches to work, that I feel confident about there being better alternatives.
If you are new to DevOps, and this is the environment you are first exposed to, then it's a terrible foundation to learn.





https://redd.it/1j8sp80
@r_devops

If you're new to devops, heres a guide on docker and kubernetes

https://youtu.be/9BGnYHQv-dY

https://redd.it/1j8q49r
@r_devops

What is platform engineering?

Hey guys,

So I've been in DevOps sine last 3 years and I've been reading this word "Platform Engineering" many times throughout various articles.

Can someone shed some light on the same? And how can someone from DevOps background switch to it?

https://redd.it/1j8utzg
@r_devops

Email Spam Project

We are a SAAS company and a lot of our customers use our cloud infrastructure to send emails to their customers (around 3-4 million a day).

A lot of those customers have been misusing our services and sending a lot of spam which is damaging our IP reputation.

We are currently trying to figure out either to build our own custom solution or use a 3rd party tool.

Is there a 3rd party tool in the market that can help us out?

https://redd.it/1j8xaaf
@r_devops

Data Science related Ops

Im interested in courses that are worth a demn and can prepare you for data processing platforms.

Best if HIPAA applicable data processing course. How to maintain such platform, which tools are most commonly used, links with self-study and/or homeworks.

I would like to pivot from DevOps into MLOps or Data Processing Operations.

There seems to be a ton of content on the web, but most likely majority of it is SEO garbage and not worth my time. Someone experienced probably can distinguish.

Maybe someone in the field could point me to something worth checking that will really teach me something or certs that you did look into and were worth the time ?

(Im just short on time and have to correctly pick what to learn).

https://redd.it/1j8ywf3
@r_devops

Best course for GPC Professional Cloud Architect Exam?

Hello, i am preparing for the GCP professional exam directly, please suggest me some good paid courses and exam practices .

https://redd.it/1j8xpen
@r_devops

Use-Case Hands-On Project: Docker Container Best Practices

A new use-case hands-on project has been added to the FREE Dynamic DevOps Roadmap.

!Docker Container Best Practices

Docker Container Best Practices.

It's part of a bigger end-to-end hands-on project that touchs many aspects of the real-world DevOps task.

Happy DevOpsing ♾️

https://redd.it/1j90rlj
@r_devops