Service Meshes: An Introduction for Infrastructure/DevOps Teams

[https://www.singlestoneconsulting.com/blog/what-are-service-meshes/](https://www.singlestoneconsulting.com/blog/what-are-service-meshes/)

This is a blog post I recently wrote about Service Meshes (Envoy based in particular) that is slanted towards DevOps/Infrastucture engineers. I hope it's useful.

In future posts I plan on focusing on AWS App Mesh first in detail.

https://redd.it/fyu1uy
@r_devops

Survey on Oncall and COVID-19

I've been curious to find out more about how COVID-19 is impacting teams that are oncall. So, I put together a short, anonymous survey with some questions about it. It takes about 5-10 minutes to complete, and I would love to hear about your experiences. The link to the Google form is:

[https://docs.google.com/forms/d/e/1FAIpQLSd4J7WELnkDs398eDpymepoTSYUWTrX75UjpJnuAMnJ7RpU3A/viewform?usp=sf\_link](https://docs.google.com/forms/d/e/1FAIpQLSd4J7WELnkDs398eDpymepoTSYUWTrX75UjpJnuAMnJ7RpU3A/viewform?usp=sf_link)

We're accepting submissions through 4/27. I'll be sharing what we find after that on the FireHydrant blog ([https://www.firehydrant.io/blog/](https://www.firehydrant.io/blog/)).

Thank you to anyone who participates.

https://redd.it/fyopnw
@r_devops

18 GitLab features are moving to open source

> We're open sourcing rich functionality across Plan, Create, Verify, Package, Release, Configure, and Defend.

https://about.gitlab.com/blog/2020/03/30/new-features-to-core/

https://redd.it/fyk34w
@r_devops

Programming language for Devops?

Hey,

What language do you guys use when it comes to automating processes and why?

https://redd.it/fyoycy
@r_devops

How do you guys manage the stress of the craziness that can be working in Devops

To some degree, on my best days I love the chaos which is Devops. Which at my company wears lots of hats into our Infrastructure Teams, and Cloud Engineering. On other days I feel like I'm one teams message away from telling my manager I'm going to start looking for a new Job. To be completely fair I love my Job I get to get my hands in so may different things, its never boring or dreadfully monotonous.

A-lot of this is exponentially compounded by the work from from home culture of the pandemic..

Some people are gods at the art of ignoring side distractions (chat messages, phone calls, emails). Can be difficult for me. I like to treat people like I like to be treated.

Surely I can't be alone in some of these experiences. Does anyone want to share their experiences and any tips or ideas?

https://redd.it/fyv3im
@r_devops

Help with mapping multiple war files to different domain names on Tomcat running on EC2 - Spent 6 hours no luck - I am completely new to this

I have tried numerous things and after over (10 hours now) 6 hours of trying to figure it out myself I have come to realize there are no resources to help complete beginners with this. I am running Tomcat8 on an EC2 instance. Right now I can type in [mysite.com](https://mysite.com/) and get to my manager. and if I type [mysite.com:8080/mywebapp](https://mysite.com:8080/mywebapp) I can get to my deployed war file and run my web app.

I can also do this with [mysite.com:8080/mywebapp2](https://mysite.com:8080/mywebapp2) and so on.

But I would like to map them to [mywebapp.com](https://mywebapp.com/) and [mywebapp2.com](https://mywebapp2.com/) respectively and when I deploy more webapps I would like to have them mapped to a domain name. I have tried virtual hosts and all so I must be doing something wrong.

When I change my port to :80 I can create a virtual host and get my base site working with just [mysite.com](https://mysite.com/). But then I lose access to my webapps.

I am begging for help after spending hours and hours trying to figure it out before turning here.

https://redd.it/fyo7nk
@r_devops

New Technology advice



Hi, I'm writing a research paper on new/upcoming Web Service Technologies.

Just wondering if anyone here has any tips or heard about some new web service technology that's not yet being used as much as likes of XML or SOAP.

Any answer would be helpful

Thanks

https://redd.it/fynr2h
@r_devops

Minikube vs kind vs k3s

Wrote a little comparison between Minikube, kind and k3s. Let me know about your experiences or other tools that you use to setup a local Kubernetes cluster.

https://brennerm.github.io/posts/minikube-vs-kind-vs-k3s.html

https://redd.it/fydjup
@r_devops

Degraded network end user side vs server side

​

Hey guys, i've been tasked with evaluating how our application performs in a degraded network environment for the end user/client. By degraded network I'm talking about restricted bandwidth, packet loss, and latency. My infrastructure team is pushing that we just throttle traffic coming from the web server (test enviornment) and that "its the same" as if the network was throttled end user side .

Doing this would take work off their plate as we have an end user vm range and they would have to spin up a vm/virtual router to route that traffic through.

I'm not a networking expert but this feels wrong. Issues with packets going out != issues with packets coming down. Thoughts ?

https://redd.it/fygqhr
@r_devops

Looking for a persistent distributed delayed task queue/scheduler

Hello!

I'm currently designing a backend architecture which will have to deal with the following problem: some servers will frequently need to schedule relatively precise (~1 second leaway) tasks to be executed, potentially in a long time (probably up to 72 hours) but sometimes promptly (down to 5 seconds later).

I've seen multiple ways to handle it, some relying on polling some SQL databases regularly, but what comes out to me is that I just really need a strongly persistent, delayed message queue. The task producers would send messages along with their expected execution time in the queue, and consumers would be notified by the queue at the right time to process them. The only missing part in this design is what queue to use, as I really am not confident enough nor have the dedication to build one myself.

I've looked through a few things. The most interesting candidate was RabbitMQ with its delayed message plugin, unfortunately the plugin starts to misbehave after roughly a hundred thousand events stored (and in fact [the maintainers even discourage using it for long term messages](https://github.com/rabbitmq/rabbitmq-delayed-message-exchange/issues/72#issuecomment-258926670) like I would). I've also read about [Celery](https://www.celeryproject.org/), but it being built in Python might not be suitable for the sort of load I need.

Do you know of another queue that would satisfy the kind of work this server would face? Or should I try to come up with a different solution?

Thank you very much in advance.

https://redd.it/fyfa60
@r_devops

Docker image vulnerability scan

Hi! Could You please share solutions You are using for rocker image vulnerability scanning? I am wondering about most popular approach, on one hand there is core of clair available and other we have commercial products like one qualys has in portfolio.

I am talking about architecture where repo is on organisation promise - for example satisfactory, nexus or harbour.

Could You please share Your experience in using image vulnerability scanner?

https://redd.it/fyf7cl
@r_devops

GitLab vs Github? Which one is better?

Hey guys, just released my new article on the topic - GitLab vs Github: [https://blog.codegiant.io/gitlab-vs-github-which-one-is-better-2020-d8ec7fb9542c](https://blog.codegiant.io/gitlab-vs-github-which-one-is-better-2020-d8ec7fb9542c)


Feel free to check it out and let me know what you think. I'm open to further optimization.


Also, let me know in the comments which one do you prefer.

https://redd.it/fyknv5
@r_devops

Working Helpdesk now... Focus on what?

Currently working an IT Support Specialist job. It's a fully Microsoft shop with a hybrid environment. I use Powershell pretty regularly to manage AD and Exchange, mostly. They also use AWS for some things. It's a cool job but my next goal is to have something DevOps/Cloud related. I have an AWS certified solutions architect associate.

I've noticed that my networking knowledge is a bit weak so I've started studying for the Network+ cert. I'm not sure if I'll sit for it but I want to prepare like I will. I also want to get the AWS SysOps cert within the next few months.

My main question is, do you think getting a CCNA would be beneficial to getting into a cloud / DevOps position next? I want to spend my time as wisely as possible and I feel the CCNA could potentially be beneficial, but it sounds like a large undertaking and could potentially not help me as much as I would think. Besides the next AWS cert, what other certs or tools to learn would you recommend to someone who is currently working Helpdesk but wants to break into Cloud next?

I have a PC with Ubuntu on it at home, but haven't played with it much since I started this job (Jan). I also have an active LinuxAcademy sub I haven't used much in the last couple months either. Any advice would be appreciated.

https://redd.it/fz5n58
@r_devops

Jenkins Kubernetes Use Params

I am using jenkins on Kubernetes using the kubernetes plugin. Can someone point me to the syntax on how one can use Jenkins Params inside Pod Templates?

https://redd.it/fycdaa
@r_devops

Sysadmin Learning - What are the first steps to become Devops?

Currently I'm a new Sysadmin working mainly on Windows, and am wanting to advance my career as build a roadmap. I like creating a clear path and I would like some direction on what I should focus FIRST to become a Devops. For example, if I were to tell myself 2-3 years ago how to become a Sysadmin I would have given myself this rough roadmap to figure things out:

1. Active Directory (helps me understand the basics of a domain)
2. Windows Server and their roles
3. Visualizing those Servers using any Hypervisors (using 1 helped me learn the other)
4. Scripting on PowerShell for anything you do
5. Learning those above while getting certified in MCSA/MCSE etc.

I was hoping someone can give me just a list of bare minimum or most popular things I need to know to get started specifically from a non-developer and a Sysadmin to become a Devops. I get a bit overwhelmed searching when people start listing 10 different technologies I have never heard of, I can't figure out what they are or how to dive into it. What's the metaphorical "Active Directory" if you will of Devops...

My own guess that I've found is:

1. Learning containers like Docker? (Is Docker a good starting tool to learn about containers?) Should I learn Chef/Puppet first?
2. Ansible - To automate deployment? (I thought Python did that too, or should I learn Python?)
3. Linux in general
4. Should I skip all that above and learn Azure/AWS?

Do I sound like too much of a non-developer to become a Devops? I need to be more of a Cloud Admin or something?

As you can see I'm quite lost.

Much appreciated!

https://redd.it/fyavs3
@r_devops

Blog Post: How to Parse ARM Output Variables in Azure DevOps Pipelines

Hey guys, I just wrote a shiny new blog post you may enjoy.

Summary: Learn, step-by-step how to take the easy route to convert ARM deployment outputs to pipeline variables.

https://adamtheautomator.com/arm-output-variables-in-azure-pipelines-powershell/

https://redd.it/fz8usl
@r_devops

Any free certification in DevOps (to utilise the lockdown period) ?



https://redd.it/fzcdcb
@r_devops

People with Devops/SRE title, What are your day to day activities at high level?

I know everyone won't be doing the same thing. and each day is different.

https://redd.it/fz7phg
@r_devops

Another free eBook, this time from Google: Building Secure and Reliable Systems

Enjoy! https://landing.google.com/sre/books/

https://redd.it/fz1e97
@r_devops

HashiCorp Vault alternatives

Hi all,

I was wandering can anyone suggest me an alternative to HashiCosp Vault? I wanted to use it, but lack of auto-unsealing and loads of posts I read about it gave me cold feet. I need something running in docker isolated network and be used by services on the same isolated network to keep SSH keys and service username/passwords during image builds and maybe rotating passwords for DBs. Maybe I did not quite understand its logic/purpose, but why would I want to have AWS or GCP instances just to be able to unseal something running locally? If this happens once, that is something I can live with; but on each reset?!

Thank you kindly

https://redd.it/fz2ftl
@r_devops

DevOPs workflow ?

Guys, let me see if I am tripping balls or this is something somewhat achievable. total devops noob here, just know what it means =)

I haven't developed for a couple of years until i got involved in our CTI initiative at my company. Basically maintaning a couple of scripts that grab and parse data from our sandboxes and create stix packages and misp submissions.

It is all done in python and i am using pycharm and our internal gitlab to do most of the work.

Doing this over a couple of times I thought that it would be good to:

1) Have pycharm browse the gitlab (or other?) repository of projects

2) Once I find the repository i want to work on it it would lock the repository (or the file, i have done some research and it looks like there is no repository lock but only file lock on gitlab enterprise)

3) Have the GitLab repository somehow 'tell' Pycharm to setup a remote debugging session where the code on that repository is running.

4) Finally present all the files from the repository as pycharm tabs.

5) As it finishes, push the code to gitlab which will do CI/CD

​

Am I alone ?

https://redd.it/fzmq2n
@r_devops