What are the limitations of using AKS in prod?

Hi,

I'm in a battle with a PM who has not much idea about AKS. He'd like to use AKS for full-blown prod environment for biz-critical applications without much of POC or anything.

One issue that I can think of off top of my head is the client requires compliance-related software installed on nodes, which aks won't officially allow.

Does anyone have argued for the same issue? If so, could you please share some of the pain points you raised to avoid the disaster?

​

Thanks

https://redd.it/feni2f
@r_devops

How to Catalog many of webapps

Hi,

I work at an agency and we have dozens of web apps under active development and and low hundreds in maintenance or deprecated.

At the moment we catalog them all via a combination of bitbucket projects and confluence spaces describing things like
* client details
* prod server details
* links to monitoring (some times new relic, some data dog etc..)
* some times infrastructure as code
* etc..


I feel the wiki structure is to ad hoc and hard to audit. If some one new starts on an app or needs to maintain something every 6 months or more we can't quickly get up to speed

I don't know what it would be called or what keywords to use so my googling has fallen flat.

I want a service to catalog all our ad hoc apps, so i can find stakeholder details, run books, links to (or graphs) of monitoring.

If it could do audits for me that would be great, eg: show me all apps that don't have monitoring.


I am posting this here because it feels like knowing all the details of all the apps we manage in one easy to read place is a good place to start to move our company towards a devops type culture

https://redd.it/fenaez
@r_devops

What have you guys automated in your DevOps role ?



https://redd.it/felafv
@r_devops

Deploy headless PDF/PNG renderer on AWS Lambda at scale with a single command

Hey, guys!
There are many articles about how to get Chrome running on AWS lambda, but most of them are overcomplicated and require a lot of time to get them running, so I tried to create a really simple example of how to get headless chrome running with a single command with serverless.

[https://github.com/deepsyx/simple-headless-browser-serverless](https://github.com/deepsyx/simple-headless-browser-serverless)

Let me know what do you think :)

https://redd.it/fefwyv
@r_devops

advice needed for a ci/cd pipe line

So, i will need to provision 25 Wordpress sites in aws, i am trying to follow the ci/cd framework in deploying the project; what do you think the best way to approach this or the tools needed. I am new to the ci/cd pipeline.

who has done something similar?

https://redd.it/feqw82
@r_devops

CI and CD tool experiences for edge-optimized use cases

If you wanted every code review to have a dedicated environment (or multiple, parallel ones) spun up ephemerally for integration testing, what CI would you use?

If you wanted edge-usable CD tooling, what considerations would come into play? What tools would be interesting? "Edge-optomized" meaning: latency tolerant, disconnect resilient, network-agnostic deployments.

How do these two questions interact? E.g. are there distinct tools you'd use for one or the other, but aren't very compatible together?

[k3s](https://rancher.com/docs/k3s/latest/en/) is interesting as a potential edge-optimized orchestrator, especially since it uses a phone-home approach for node registration that helps for a lot of the edge use cases. It could also overlap with the desire for ephemeral environments for PR purposes, maybe in conjunction with something like [k3d](https://github.com/rancher/k3d).

[Spinnaker](https://www.spinnaker.io/concepts/) seems like a fantastic CD tool, but it delegates it's CI to other services and is very cloud-centric; I'm not sure how an edge/IoT use case would work with it. Lots of overlapping concepts and terms between it and k8s in general.

[Jenkins-X](https://jenkins-x.io/docs/overview/) is an opinionated CI and CD toolset that seems like it would be annoying to integrate with any of the above; seems like more of a standalone option.


What have I missed? What have your experiences been like with any of these tools? What non-k8s tools come to mind?

https://redd.it/feoosa
@r_devops

Netpalm - Open Source ReST API broker for your dusty old network devices

**Netpalm - Open Source ReST broker for your dusty old network devices**

Hey guys,

I 'm working on a small project which is a ReST broker for your CLI based network devices,

Check it out here

[https://github.com/tbotnz/netpalm](https://github.com/tbotnz/netpalm)

Netpalm Features:

* Asynchronous parallel processing
* Task oriented
* Per device configuration queuing (Ensure orderly configuration changes & dont overload your ssh sessions)
* Standard ReST interface
* Leverages tried and true Netmiko and Napalm libraries for multivendor/os Device support
* TextFSM support for data modelling
* Included postman collection of examples

I've also developed an online interactive TextFSM parser ([https://textfsm.nornir.tech/](https://textfsm.nornir.tech/)) this will be integrated into netpalm shortly allowing automated template ingestion into netpalm from the website

All ideas are welcome

Cheers

https://redd.it/fes4w1
@r_devops

Sys admin to Devops role possible?

I work for a company of 100 employees and I am the only IT. We have windows and linux environment and I’m trying to get experience in the cloud. After getting my AWS SAA im now studying for CDA and RHCSA. Seems like i hit the salary cap within the company with my years of XP in windows severs and networking. Hence the search for a new role in the cloud. Seems like my salary is the base for devops mid tier so im convinced to make the jump. I’ve been looking at job descriptions for devops and im seeing a lot of CI/CD, IAC, and containerization. My question is, should I focus and keep practicing these topics and services to great depth? Seems like the certs are wide and broad but to get hired, i’ll need depth. Please provide your input.

https://redd.it/fewo9b
@r_devops

Everything you need to know about Jenkinsfile

This [**complete Jenkins Pipeline Tutorial**](https://youtu.be/7KCS70sCoK0) will help you configure build pipeline for your own project using Jenkinsfile.

It demonstrates the below topics with examples:

* What is Jenkinsfile?
* From Scripted to Declarative Pipeline Syntax
* Basic Structure of Jenkinsfile
* Post Build Actions in Jenkinsfile
* Define Conditionals / When expression
* Using Environmental Variables in Jenkinsfile
* Using Tools attribute for making build tools available
* Using Parameters for a Parameterized Build
* Using external Groovy scripts

​

Hope it is helpful 🙂

https://redd.it/fey6i0
@r_devops

I want to spend $100-150 for somebody to improve my CV

I can expense it through my own company. But how do you hire a competent person with these skills? Some people are great copywriters, some people know recruitment/HR/managers, some people are great techs/DevOps. I think the latest part is the most important as it would hard for a copywriter to write a good text without any understanding of the technologies.

https://redd.it/fez1kc
@r_devops

What are the best practises for storing audit logs for databases?

I want to capture the trail of data of my tables in postgres (9.6). I spoke to my manager about doing it through triggers only to be told that triggers are considered a bad practice. He suggested me to create a history table for each table and then populate the history table in my application code as and when I get the request for create / update / delete. My point is, isnt this just reinventing the wheel?

1. Can some of you pls tell how do you maintain the audit trail and is using triggers *really* a bad practice?
2. Initially I was considering to move away from postgres to no sql databases like mongo, just for storing the audit logs. Do you think this will be better?

https://redd.it/fes5h4
@r_devops

What is the programming language that should i use for a ci/cd pipeline deployed on docker ( for final year project purpose)



https://redd.it/feva7o
@r_devops

Advice needed - excel file share

Hey guys,

My team have just been introduced into DevOps and will be learning all about it over the coming weeks but I need a quick solution for this if possible?

Can I put an excel file for all my team to edit without us all downloading and uploading all the time etc..?

If so what's the best/easiest way to do this?

Many Thanks

https://redd.it/fevose
@r_devops

Beginners help

Hey guys,

My team have just been introduced into DevOps and will be learning all about it over the coming weeks but I need a quick solution for this if possible?

Can I put an excel file for all my team to edit without us all downloading and uploading all the time etc..?

If so what's the best/easiest way to do this?

Many Thanks

https://redd.it/fesutl
@r_devops

Bridge the gap - Manual deployment vs CI/CD

How do people deal with the scenario -

Your desired plan is to deploy EC2 as code (terraform) and automate the configuration of the instance through tools such as Ansible. This is a good scenario - however sometimes the customer wants to treat their servers as pets and backup and restore as you would a traditional server on-prem.

How do you deal with this clash of these worlds, what happens to your tfstate when you terminate and restore an instance, how do you deal with this now being outside the known state

I’m sure other people have had the same issues and have overcome them

*presume you have no control over how the customer operates their apps installed on said compute

Any comments appreciated :)

https://redd.it/ff4yb7
@r_devops

Dev to Devops

For developers who switched to devops, why did you switch and do you regret this decision? If not, what do you enjoy the most about switching?

https://redd.it/ff4mgj
@r_devops

Idempotent infrastructure as code? Now you can with Ansible Clusterverse

Shameless plug to what my team has been building for the past year or so.

https://github.com/sky-uk/clusterverse

You don't need to track Terraform tfstate files anymore, if your Infra is getting built by Ansible too. The role will make sure the DNS/VMs/SGs/LBs that are running, are the ones you're asking it to get running.

Full lifecycle with redeploys and canary.

Give it a go, and feel free to raise PRs or ask any questions.

https://redd.it/ff0m85
@r_devops

Hello People!!!

Guys, how are you? I am writing for the first time and I would like your opinion. In the company I have several jenkins in the company and it always gives a problem and several errors happen with the development team and I am trying to unify the environment. I wanted an opinion from the group. If I put an Azure Devops to centralize DevOps and I put Jenkins as a slave. Or some solution to let programmers continue to do their CI / CD. And I thank you all.

https://redd.it/ff63jx
@r_devops

Restrict AWS Bill to $5K based on tagged resources.

Hi DevOps,

Is there any way to restrict the aws billing to $5k based on different tagged(Diffrent project tag) resource in a shared AWS account.

​

Thanks.

https://redd.it/fezzz1
@r_devops

Microservices – Combinatorial Explosion of Versions

As we transition to microservices with modern CI/CD pipelines, the new question arises - how we keep track of versioning our product as a whole.

I believe there is currently a missing piece between CI and CD. That new layer would say what exact component versions from CI should go into CD and when. Full article here:

https://worklifenotes.com/2020/03/04/microservices-combinatorial-explosion-of-versions/

https://redd.it/ffav6b
@r_devops

Elements of Modern Cloud-Native Solution Design


A few years ago, while working as an Infrastructure Engineer for a startup team, I wanted to be able to do something really simple, but powerful. To share a browser bookmarks folder of all our service endpoints with my team, preferably with two-way synchronization. I googled for existing solutions in the Firefox/Google Chrome Extension stores but found squat. So I took it upon myself to design and implement a solution, and this is what I came up with!

[blog post](https://zemanel.eu/posts/2020/03/elements-of-modern-cloud-infrastructure/)

https://redd.it/ffbha0
@r_devops