The AWS VPC Cheat Sheet for Beginners

What is a virtual private cloud? Why should you care? How can you use AWS to host a VPC?

[https://www.stackchief.com/tutorials/AWS%20VPC%20Tutorial](https://www.stackchief.com/tutorials/AWS%20VPC%20Tutorial)

https://redd.it/jyo1w0
@r_devops

Is this a good server for a kubernetes / okd / ocp 4 home lab? I'm thinking maybe I should get 2, unless you think one is good enough.

https://www.amazon.com/PowerEdge-Server-2-20GHz-Cores-Renewed/dp/B07RJT19GS/ref=sr_1_6?dchild=1&keywords=server&qid=1606053853&sr=8-6

At work, we currently have 3 master, 3 infra, 4 cns, and 3 compute nodes. I'd like something to practice spinning up OCP4 on, or even just regular kubernetes so I can practice for the CKA.

https://redd.it/jyw76c
@r_devops

Is there a CI/CD that doesn't require me to have a server?

As per title, is there any CI/CD that can be run without having a server?

https://redd.it/jywhb9
@r_devops

How to sync values between redis and PostgreSQL table rows? (very high frequency writes)

I'm building an API product, where users can use multiple APIs (I give them an API key).

I want to monitor the api calls the user makes to be able to know how many calls they've made (and by extension, how much to charge them).

Here's my table: `user_apis`


| API Name | User ID | Total API calls | Successful API calls | Failed API Calls |
|----------|---------|-----------------|----------------------|------------------|
| cat_data | 1 | 15 | 10 | 5 |
| dog_data | 1 | 3 | 3 | 0 |
| cat_data | 2 | 1 | 0 | 0 |


A user can use different types of APIs, say `User 1` uses 2 APIs `cat_data` and `dog_data`.

1. Now, when I'm handling the routes that correspond to `cat_data` and `dog_data` APIs, I need to quickly monitor the API call in some kind of middleware.

2. If User 1's API Key hits the endpoint for `cat_data` => Right now I'm counting that hit in redis in a very crude format `key=[user_api_key_total_calls], value=[number_of_calls+1]`, I've built a sort of API gateway middleware through which every request passes through and gets tracked in redis.

I need to use redis (or some in memory store) because these APIs might see very high usage (>100 req/sec), so I cannot make a read + write call to a database on every API endpoint hit.

That brings us to the question: How do I make sure I maintain the integrity of this data in the database?

If I don't write to database every time (say, I choose to write after every 1000 calls) and if the redis instance goes down, then all the data is lost! How do I avoid this?

https://redd.it/jyyfjz
@r_devops

Does anyone here have experience building a browser-based 3D MMORPG using three.js or babylon.js? This startup is recruiting.

I'm actively recruiting a devOps professional to design the architecture and implement the back-end. Looking for someone who knows how to make multiplayer systems with no lag. Must be a self-starter and eager to push the boundaries of how may players can connect/be together in one setting.

If you know how to extract the "principles" of making something like [decentraland.org](https://decentraland.org) into an MVP, let's talk!

https://redd.it/jz2hfp
@r_devops

Career advice for devops - started a degree in computer science

Hi everyone,

I will just give a brief about my past experiences: I'm 23 years old, I started my career at age 18 as a network engineer. So currently I have 4 years of experience as a network engineer and now I'm in a devops student position (intern position during my college). I have the following knowledge and certificates: CCNA , CCNA Security, CCNP R&S, AWS cloud practitioner, VMware cert and LPI Linux essentials cert.

Here is my knowledge up until now:

\- Networking (CCNP level).

\- Linux system administration (dealing with a lot of servers).

\- VMware

\- Docker

\- Ansible

\- Python

\- AWS (mainly just knowledge, not a lot of hands-on experience)

\- Network security (Check point firewalls)

I have started a degree in computer science and I don't really like it... a lot of math and I wanted to consult here if it is worth to continue with this. I thought about continue with my job as full time and learn for COMPTIA Linux+ (want to validate more my Linux skills). What you folks think ? should I quit the degree ? or continue with it ? what should I focus in order to make a devops career?

Just to give a big picture, my job right now includes a lot of Linux system administration while administrating docker containers and also produce automation with python and ansible to the entire infrastructure.

I'm not sure if my job has enough knowledge (I guess not enough) , or it isn't and I need to focus on a degree. My focus is becoming devops and not a software developer

Hope you can give me some tips and thanks to everyone on this forum

https://redd.it/jyxmxx
@r_devops

26 male. 2 years of DevOps experience. 1 additional year of SWE experience. Chicago with $96k salary + 10% 401k match. Are there better opportunities out there?

I have switched jobs only once since I graduated from Noname State U in Wisconsin. I get great 10/10 feedback at mid/end year evaluations, but I'm constantly looking for new challenges and to improve. I feel like most of my teammates, who skew older and toward having kids/wife/house, are cool with just coasting until retirement, which is totally 100% fine! It's just not my cup of tea in this stage of my life, having no house and "just" a girlfriend and not being from the immediate Chicago metro anyway. I feel as though I'm going to stagnate and potentially atrophy if I stay where I'm at now more than another 6 months. I'm currently a level 4/7 at my company because of two promotions the past 2 years.

Could someone with my relatively small experience be beating $96k in Chicago by working a remote job or switching companies? Or do I need more YOE first?

https://redd.it/jyw702
@r_devops

Deploying my first project on the cloud, I need direction with DDoS protection and security.

Hey reddit, just looking for a constructive discussion about DDoS protection and security. I'm creating a small subscription service using Google and Firebase services to deploy my project. It's built using mostly cloud functions, but I'm worried that under a serious attack my Google bill can skyrocket. I've read disaster stories about Google not being very flexible with racked up bills from these type of attacks. Another concern is that attackers will attempt to knock down my service and render it unusable to my users.

My endpoints are protected with Bearer tokens but that's not enough to stop these attackers and I will still be charged for every failed attempt. If you spam the endpoint enough, it will get knocked down and no one can use it.

I've scoured countless articles, discussions on Stackoverflow, and slack chats. I've switched back and forth from Google Cloud Armor to Cloudflare just to test out my app. I've been going in circles to who I should use to help provide the most affordable protection against DDoS attacks. I'm actually considering just disbanding the idea of using Firebase/Cloud Functions entirely because I don't want to get slapped with a large bill after an attack.

My ideal approach, allow only whitelisted IPs into my network. For example, whitelist a user's IP address and allow them in after a successful login. Cloudflare offers over 1000+ IP whitelist, which is great. I considered cloud armor but it's insanely expensive, the service starts at $3000. I understand that as the IP list increasingly grows, the speed of my firewall also decreases.

How would some of you approach these concerns? I'm really leaning towards Cloudflare because they offer rate limiting, and a large IP whitelist with an API.

If you guys can share some of your stories I would be truly be grateful.

https://redd.it/jymhty
@r_devops

Internship

Hello all,
I'm a currently preparing to take my RHCSA ex200,and i have been around Linux operating system for awhile now,am hoping to get a job as a junior sys admin or any related offers..
I was wondering if there's anyone out there who could help me with an internship just so i get familiarize with the real world's projects,i don't mind working for free my goal is to get some experience tp better journey...
Any Ideas will be greatly appreciated
Stay blessed 🙏🏻.

https://redd.it/jymzmg
@r_devops

Deploying a Redis Cluster in Google Kubernetes Engine using Helm Chart

Blogged on Deploying a Redis Cluster in Google Kubernetes Engine using Helm Chart

https://blog.sharetechlinks.com/deploying-a-redis-cluster-in-google-kubernetes-engine-using-helm-chart/

https://redd.it/jyi9l6
@r_devops

What options I have after passing SAA-CO2 to become a DevOps or a SRE

I just passed by SAA-CO2 exam and wanted to get suggestions to become a DevOps or a SRE engineer. I work as a operations engineer and work with AWS everyday. Thanks

https://redd.it/jyejpg
@r_devops

Can you show me some good DevOps related CV?

Hi guys!

I'm a "junior" DevOps now, i work this position more than 1.5 year, with 3-3.5 year linux experience.

I learned a lot of new stuff and i want to put these in my CV, just i don't know how can i do this.

(eg. Conf. management with ansible, little terraform, AWS, CI/CD- gitlab, jenkins, mysql HA galera, etc.)

Just make a list with these in my CV?

https://redd.it/jy8ftx
@r_devops

Autoscaling in VM vs Container

I’m a beginner and would like to clarify some answers .

autoscaling in Vm and Container based autoscaling , is it the same or different?

How do you auto scale in VM and how do you auto scale in Container?

If I’m doing a research based on providing an autoscaler for kubernetes ?
Can I include vm related autoscalers in my literature?

https://redd.it/jybpq4
@r_devops

What's a typical tech stack for launching an API product?

I want to create a developer API product, however as I got started, I quickly realized there's a lot of plumbing that would have to be built:

1. Generating/refreshing API keys
2. Monitoring API calls
3. Monitoring success/failure responses
4. Managing API credits

So, none of this is actually relevant to what I'm building - but it's a necessity for any kind of API product.

So, **how do I not re-invent the wheel**? What are some common libraries that are hugely helpful in creating an API product? Is there some open source library/self hosted product that manages all of the above?

https://redd.it/jyad93
@r_devops

Massive virus every file is encrypted any help?

Every file was encrypted beside the windows folder after visiting a site. No backup what can I do any direction I should go in and look up?

https://redd.it/jyl0jt
@r_devops

OneDev4 - All-in-One DevOps platform

OneDev is an all-in-one devops platform with git management, issue tracking, and docker/kubernetes based CI engine. Project is open source at [https://github.com/theonedev/onedev](https://github.com/theonedev/onedev)

The 4.0 release gets a completely redesigned UI, to be professional and beautiful. Online demo available at [https://code.onedev.io](https://code.onedev.io/)

https://redd.it/jzd6iu
@r_devops

Getting traffic to EKS: Using ALB with Ingress controller

Once your application is running on #AWS EKS, you need to get traffic to it. In this video, Pablo Inigo Sanchez will show how to use ALB Ingress Controller to do exactly that: https://youtu.be/cRODPz9GXb0

https://redd.it/jzdyki
@r_devops

Linux arm vm on M1 macbook

https://github.com/JacopoMangiavacchi/M1-Linux-SSH

https://redd.it/jzhdzl
@r_devops

advice wanted: going from legacy manual releases to devops without scaring the managers

Let me start by stating my work has zero intentions to start using docker or k8s - aka management are too scared to move onto modern tech... maybe in five years

At the moment everything is configured manually account profiles are controlled centrally (one profile for all environments..) upgrading web server updates old builds and new (including development accounts)

So I’m looking to achieve some level of infrastructure as code.. in terms of building up a “runtime location”.. unzipping predefined versions of tools and preparing environment profile using code defined profile rather than system wide defined profile

We have four components that require different types of deployment and “runtime environments”. Originally I would’ve liked to use a tool built and used by the community for iac solutions but I can’t find anything as granular... Since application has to be deployed to a non-root unix account.. My first thought was to create a script (maybe using ruby or python) that reads a manifest for each component type and installs the required features (Java, app server, etc) and then something that will setup all environment variables required for runtime

Does anyone have any similar experiences with this type of deployment? Or Recommendations for tools?

https://redd.it/jzk56r
@r_devops

Looking back on 2020 - what's been the biggest thing to happen to Devops?

With 2020 winding down, I was reflecting on the year and wanted to know what everyone else thought. Good or bad, what in your opinion has been the most significant thing or things to happen with Devops?

https://redd.it/jzjbdu
@r_devops

Continuous Deployment with Github Actions: An Example

Wrote a blog that takes a deeper dive into setting up CD with Github Actions [https://www.dolthub.com/blog/2020-11-23-continous-deployment-with-github-actions/](https://www.dolthub.com/blog/2020-11-23-continous-deployment-with-github-actions/)

https://redd.it/jzo5ev
@r_devops