Impact of Covid-19 and remote work on DevOps??

Have people started to see a big infrastructure impact following the Coronavirus outbreak? I am in Paris, the entire country of France is locked down and everyone has been told they must work from home. This was announced Friday night so most companies have had no time to think about DevOps for remote work.I know yesterday Google Teams crashed due to high demand of people working from home.I also wonder what the security impact will be, for instance secrets being shared via email if people can't access secure networks.


What have people experienced? what do you predict will happen? How can we be prepared?

https://redd.it/fk82uv
@r_devops

Debating job offer that would change a lot of things in my life.

​

Sorry for yet another post about my personal career but I have a new decision to make.

​

I currently live in a LCOL city with my wife and 15mo daughter. We bought a nice house for $300k and my parents live a couple blocks away and babysit for us whenever. I work remotely for a startup that is HQ in a major city. I earn 145k per year and some bonus.

​

I've been concerned about company performance and how much runway we have so have done a lot of interviews over several months without any offers. In the last few weeks I received two offers and need to get back to them ASAP. The first is a mostly remote job that is based in a town about 1.5 hours from my house. The job would be mostly remote with me driving out there for meetings a few times a month. They pay under-market and it would be about a 10% pay cut from where I'm at currently, but the company is on good ground otherwise. I tried to negotiate higher but it wasn't happening.

​

The second, more recent offer, is from Microsoft in Redmond (Seattle suburb if you didn't know). Its an SRE position on a special team and the earnings taking into account stock award, etc would be in the realm of 210-220k per year. They offered relocation assistance etc. So that is a significant increase in pay.

​

We lived in Seattle for many years and know it well and love many things about it, and miss some of our friends there. But traffic is atrocious, I would be required to work on-site 95% percent of the time probably, and commute to the office etc. We would have no grandma to watch our baby around the corner.

​

I'm really having trouble deciding if a 45% pay raise is worth the traffic and time away from probably the only kid I'm going to have. Seattle is a much more exciting place to be but as a working parent I'm not sure if that even matters that much.

​

I do want to further my career and save more money. And getting a great job offer in this crazy time of covid-19 feels very strange indeed with so many of my friends struggling to make ends meet.

​

Thoughts?

https://redd.it/fk80p1
@r_devops

Automated VM Deployment Tools

Hi, Windows OS, vSphere hypervisor and ansible. What would you recommend for simple os deployment from an image? I'd like to have a simple interface like Ansible Surveys so some lower sysadmins can make selections to deploy VMS based on secure templates. packer and terraform? Ansible playbooks? Any other options I'm missing?

https://redd.it/flcnzg
@r_devops

Create AWS ECS task definition and service in terraform but deploy updates (changing the docker tag that it deploys) outside terraform from CI sequence?

Does anyone have a nice way to do this? We have it working but it's annoying because making changes to the task definition or service causes weird diffs, you can kinda ignore_changes on certain fields but that has to be like commented out to make changes...

I started looking into AWS CodeDeploy as a different way to deploy... would that help with this at all?

https://redd.it/fleac9
@r_devops

Are devops positions remote friendly(er)?

I'm a jr full stack JS developer and have thought of adding Kubernetes to my study/project list as I hear devops is in demand. Probably Ansible, Terraform and related after that. My goal is full time remote work.

Do you guys think devops pairs well with remote work?

Or would you advise I learn back end cloud computing? I'm already ok at back end so I imagine porting that skillset to AWS should be straightfoward.

https://redd.it/fl9b8h
@r_devops

Building Private Clouds

A friend of mine did a really great [podcast](https://packetpushers.net/podcast/day-two-cloud-040-building-and-operating-a-private-cloud/) interview (click the link) that I thought all y'all would enjoy. I think the self-service features of "cloud" are one of the core principals that DevOps is all about, so I hope this lands on this crowd right.

https://redd.it/flgkxz
@r_devops

Looking for HA storage solution for Minio

Hi there!

​

Sorry if this is not the best place to post this, but it kinda seemed fitting. We're running Minio and do a lot of read/writes on it. It is currently not HA, and distributed minio works very slow once a node goes down, so I started looking for HA solutions for the file system. I tried using GlusterFS but it couldn't handle the load, and caused a 200 CPU ready. NFS is my next bet, but I saw that the only good way to make NFS highly available is with Pacemaker and only with 2 servers, which is kinda wired and not where I want to go.

Has anyone faced this issue before? It runs on Kubernetes but is currently bound to a single node with local storage. We don't currently have a supported NFS or anything like that in the environment so I cant bound the persistent volume to anything aside the local storage.

https://redd.it/flhomd
@r_devops

values.yaml: unable to parse YAML: error converting YAML to JSON

Quick question. Trying to map multiple ports to a container in a helm chart but getting

>\[ERROR\] values.yaml: unable to parse YAML: error converting YAML to JSON: yaml: line 37: mapping values are not allowed in this context
\[ERROR\] templates/: cannot load values.yaml: error converting YAML to JSON: yaml: line 37: mapping values are not allowed in this context


values.yaml

`service:`
`ports:`
`name: udp-graphite`
`port: 2003`
`target_port: 2003`
`protocol: udp`

`name: tcp-graphite`
`port: 2003`
`target_port: 2003`
`protocol: tcp`

`name: pickle-graphite`
`port: 2004`
`target_port: 2004`
`protocol: tcp`

`service.yaml`

`{{- if .Values.service.ports }}`
`apiVersion: v1`
`kind: Service`
`metadata:`
`name: {{ include "carbon-relay-ng.fullname" . }}`
`labels:`
`{{- include "carbon-relay-ng.labels" . | nindent 4 }}`
`spec:`
`type: {{ .Values.port_type }}`
`ports:`
`{{ toYaml .Values.service.ports | indent 4}}`
`selector:`
`{{- include "carbon-relay-ng.selectorLabels" . | nindent 4 }}`
`{{- end }}`

​

Not sure what the deal is there. From all the other examples i've seen on the web says that should be possible. using helm version

`version.BuildInfo{Version:"v3.1.2", GitCommit:"d878d4d45863e42fd5cff6743294a11d28a9abce", GitTreeState:"clean", GoVersion:"go1.13.8"}`

https://redd.it/flfeh2
@r_devops

Can i get an AWS job with a certification and no experience?

I'm going to take the AWS Cloud Practitioner exam soon. A week from now or so. Will I be able to get a job?

https://redd.it/fl9br2
@r_devops

Octopus Deploy - Darkmode & Better Linux Support

We're proud to ship Octopus 2020.1, our first release of the year, with some great updates and benefits.


* [Dark Mode ](https://octopus.com/blog/octopus-release-2020-1#dark-mode)📷 is cool and it's easier on your eyes.
* [Octopus and Octopus CLI are more at home on Linux and macOS](https://octopus.com/blog/octopus-release-2020-1#octopus-and-octopus-cli-are-now-more-at-home-on-linux-and-macos): AWS and Azure built-in steps are cross-platform, and you can now install and use the Octopus CLI via Homebrew, Yum, and APT.
* [Environment and tenant specific worker pools](https://octopus.com/blog/octopus-release-2020-1#environment-and-tenant-specific-worker-pools): New worker pool variables unlock the ability to have dedicated worker pools for different environments or tenant tags.
* [AWS and Azure deployment steps on Linux](https://octopus.com/blog/octopus-release-2020-1#aws-and-azure-deployments-work-on-windows-and-linux-machines): Deployment steps for AWS and Azure can now be executed seamlessly on Windows and Linux targets/workers

https://redd.it/flkoth
@r_devops

Elastic IP with NLB for k8s Service

Hey all,

I've got a service I'm trying to expose in my k8s cluster via NLB with an Elastic IP. Since (as far as I know) K8s still doesn't support EIP natively on NLB, what solutions have you all come up with? My initial thought is to stand up an NLB with EIP that just aims at an ASG of traefik machines that then proxy the traffic to an internal NLB defined as usual in a k8s service. That seems really crude to get to the goal but I really don't see a lot of better options. Any good reference designs I can borrow from?

https://redd.it/flf07a
@r_devops

Incident Response in a Remote World of Social Distancing

At RigD we have always believed that working collaboratively is crucial to business success and that driving this work through collaboration platforms, like Slack, would be transformative. While many companies have embraced this philosophy already, the current world events have forced most others to adapt their processes to account for remote work.

Here are a few pieces of advice that we’ve picked up from our existing users that might help when responding to incidents and using Slack.

* **Is it really an incident that needs swarming?** Establishing criteria to decide if something really qualifies as an incident is important to ensure your on-call team doesn't get overloaded and miss the big ones. It's easy to lose this disciple when the person who can help is only a quick message away.
* **Mitigate first!** Getting things back up and running should always be the top and most urgent priority during an outage incident. Understanding root cause and prevention measure comes later. When it's easy for others to engage on an incident, innocent discussion can distract from the mission.
* **Sharing is caring.** Making good regular updates is crucial to keeping things calm and establishing confidence in your team's ability to resolve the issue. This is easy to overlook as you are chatting away in Slack.

Care to share your own advice for incident response in Slack?

If you are thinking about adjusting to a Slack driven incident response process, we are here to [help.](https://rigd.io)

https://redd.it/flb5ba
@r_devops

Seperate devlopment and production containers?

Should I separate the development environment container from the production container (ei. into a Dockerfile and Dockerfile.dev)?

Otherwise I think I would have to either:

\- Parameterize the Dockerfile

\- Make a multistage file, and use targets when building containers

I think separating these would make the gap between between development and production greater, but make the setup simpler.

I'm quite new to deploying larger applications, so the pros and cons of the various approaches aren't quite obvious to me.

https://redd.it/fl7vdp
@r_devops

GCP Fundamentals Series: Three online half-day programs and take your skills to new heights

Cloud OnBoard is a free online instructor-led training program that enables developers and IT professionals to expand their skill set into the cloud. **Google Cloud Platform (GCP) Fundamentals Series** brings the Google Cloud Community together for three consecutive days of interactive learning and hands-on labs.


Choose one, two, or all three online half-day programs and take your skills to new heights:

* Core Infrastructure
* Big Data & Machine Learning
* Application Development with GCP

**March 24** **-** **26, 2020**

[https://cloudonair.withgoogle.com/events/apac-gcp-fundamentals-series](https://cloudonair.withgoogle.com/events/apac-gcp-fundamentals-series)

[https://imgur.com/a/0F4Yh6F](https://imgur.com/a/0F4Yh6F)

https://redd.it/flnzmh
@r_devops

I just took a job in DevOps (software sales) What Book would you recommend for me to get a basic understanding of DevOps etc?

Thanks in advance

https://redd.it/fl9xou
@r_devops

Career Advice: how to restart

How to restart the career and learn things.

Myself:

Worked as a Devops engineer from starting of my career.

Tech Stack: Aws, Docker, Kubernetes, Linux, Python(very little).

I am not perfect in any stack right now as the requirement and stack changed at very fast pace. I want to learn the technologies in depth of docker kubernetes and cloud computing. But right now not getting exposer in the company.

Working on nginx lua openrestry. Not getting it to work. Plus there are not source/ tutorial available on the same.

If someone has faced the similar issue in the career and they could changed the path and drift the career to where they want to work. Please pour some guidance in comments.

Regards

https://redd.it/fl8z40
@r_devops

How has your work flow changed with extended remote work?

I am sure folks here have worked from home for few days in between - but with an extended period of remote/ work from home, has your workflow changed? Do you communicate more across functions now? are all communications shifted to slack/email now?

Just curious, what folks are experiencing - or any new flows which are making them more productive?

https://redd.it/fl49fj
@r_devops

gaming on containers?

Hey everyone!
Is it possible to run games on Windows container?

I have this question because running VMs use tons of resources. I would have no problems with VMs but it has to run its own kernel besides containers which uses the hosts kernel so it uses more RAM and CPU resources to do so (poor mans life). Is it possible to run games inside Windows containers and also be able to interact with it like you would do on your host OS screen (Windows)? Running the game on host uses about only 5-8% of CPU, but when I try to run it on VM together it adds to be about 30% (Game inside VM) of CPU usage for one game instance... I want to run as many game instances as possible, only 1 game instance is allowed on one OS. I know that there is such a thing as Windows sandbox which doesn't really fit me because only 1 sandbox allowed to run per OS.

i7-6700HQ
GTX 950M
16GB of DDR4

Is there any lightweight solutions to VM?
If Windows container is able to support video output how to setup everything?

P.S. I don't care about security and isolation. Stability and workload is my problem.

https://redd.it/fkzfax
@r_devops

Enabling HTTPS via letsencrypt on AWS EC2 with nginx/docker

It's my first experience, so bear with me :)

We don't have devops in a team so I as a developer gotta do this. I'm working on enabling https for my domain via nginx & certbot on docker & AWS EC2. I follow this instruction [https://stackoverflow.com/questions/57239213/how-to-enable-https-on-aws-ec2-running-an-nginx-docker-container](https://stackoverflow.com/questions/57239213/how-to-enable-https-on-aws-ec2-running-an-nginx-docker-container) & I stuck on generating dummy certificate via letsencrypt. Http-01 challenge fails every time. I've got A, SOA, NS & CAA records set in Route53. Below I changed my real domain name, not sure if i should do this. My nginx.conf is :

"worker\_processes 1;
user nobody nogroup;
\# 'user nobody nobody;' for systems with 'nobody' as a group instead
error\_log /var/log/nginx/error.log warn;
pid /var/run/nginx.pid;
events {
worker\_connections 1024; # increase if you have lots of clients
accept\_mutex off; # set to 'on' if nginx worker\_processes > 1
}


http {

include mime.types;
\# fallback in case we can't determine a type
default\_type application/octet-stream;
access\_log /var/log/nginx/access.log combined;
sendfile on;
server {
listen 80;
server\_name mydomain.pl www.mydomain.pl;
server\_tokens off;
location / {
return 301 https://$server\_name$request\_uri;
}


location /.well-known/acme-challenge/ {
root /var/www/certbot;
}
}


server {
listen 443 ssl;
server\_name mydomain.pl www.mydomain.pl;
server\_tokens off;
ssl\_certificate /etc/letsencrypt/live/example.com/fullchain.pem;
ssl\_certificate\_key /etc/letsencrypt/live/example.com/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
ssl\_dhparam /etc/letsencrypt/ssl-dhparams.pem;
location /static/ {
alias /nginx/static/;
autoindex off;
}


\# location for files downloads.
location /media/ {
add\_header Content-disposition "attachment; filename=$1";
alias /nginx/media/;
try\_files $uri $uri/ =404;
}


location /static\_django/ {
alias /nginx/static\_django/;
autoindex off;
}


location \~ \^/(crm|api) {
proxy\_set\_header Host $host;
proxy\_set\_header X-Forwarded-For $proxy\_add\_x\_forwarded\_for;
proxy\_set\_header X-Real-IP $remote\_addr;
proxy\_set\_header X-Forwarded-Proto $scheme;
proxy\_pass https://api:8000;
proxy\_set\_header X-Server-Ver $nginx\_version;
}


location / {
root /usr/share/nginx/html;
index index.html index.htm;
alias /nginx/build/frontend/;
try\_files $uri$args $uri$args/ $uri /index.html;
proxy\_set\_header Host $http\_host;
proxy\_set\_header X-Real-IP $remote\_addr;
proxy\_set\_header X-Forwarded-For $proxy\_add\_x\_forwarded\_for;
}
}
}
"

Error from letsencrypt tells:

"Domain: mydomain.pl

Type: connection

Detail: Fetching

[https://mydomain.pl/.well-known/acme-challenge/F8S1jFeD64QKWsDWu9lN1Dcv1-FatLHjEcchR53-ago:](https://ehom.pl/.well-known/acme-challenge/F8S1jFeD64QKWsDWu9lN1Dcv1-FatLHjEcchR53-ago:)

Timeout during connect (likely firewall problem)
Domain: [www.mydomain.pl](https://www.ehom.pl)

Type: unauthorized

Detail: Invalid response from

[https://www.mydoman.pl/.well-known/acme-challenge/2iDeX95XKRo6m-MgPtI25K0j-IiG79xR07O8DwLSTCk](https://www.ehom.pl/.well-known/acme-challenge/2iDeX95XKRo6m-MgPtI25K0j-IiG79xR07O8DwLSTCk)

"

What else should I check to overcome this issue?

https://redd.it/fkz6cq
@r_devops

Our CTO talks about the trials and tribulations of implementing AI and ML in DevOps

[https://medium.com/@CrossingMinds/how-can-i-implement-ai-in-devops-c192754cf87d](https://medium.com/@CrossingMinds/how-can-i-implement-ai-in-devops-c192754cf87d)

https://redd.it/fkyjj5
@r_devops

DevOps Industry knowledge



Hi,

I wanted to get a little knowledge of the DevOps industry. What sort of companies generally use DevOps as a service and what are some best companies that provide DevOps as a service?

***PS- I am trying to write a paper on the DevOps industry and answers to these questions would be of great help to me.***

https://redd.it/fkt4pm
@r_devops