Seeking input to help determine if devops would be the right path for me

I hope this won't be too long-winded, but I am seeking some honest input on whether devops might be a good career path to transition to. I graduated from college 8 years ago with a CS degree. At the time I graduated, I was interning as a developer, however, a full-time opportunity came up for a sysadmin position, and I ended up going for that since I really needed the full-time work. I have been a sysadmin for about 8 years now.

At the time of my graduation, I had every intention of doing software development, the sysadmin stuff was more of a side interest. I liked of the "fun" stuff like learning linux, scripting, etc. What I didn't realize, however, was all the other things that sysadmin work entailed such as outages, constant firefighting, frequent after-hours maintenance, 24/7 on-call, etc. After 8 years of dealing with that type of stuff, I am suffering from burnout. Although it would be fair to say that some of those issues are specific to my job/company, I know other sysadmins who have found themselves in similar situations or ended up just changing careers all together due to the exact same issues.

As I started becoming more aware of the burnout that I am suffering from, I started to think about getting back into software development, since presumably those types of jobs tend to be more project-based. As I started doing research into what companies are doing or what type of skill-sets they are looking for these days, I started to come across a lot of talk about devops cultures or the intersection between the dev and ops teams.

In concept, it seems like it might be a natural career move for someone with a sysadmin background. In my experience as a sysadmin, however, a lot of the tasks like automation or infrastructure improvement tend to take a back seat to the constant operational issues that occur on a day-to-day basis.

Thus my concern with moving to devops is knowing there would be higher level of responsibility when it comes to interacting with the code base, infrastructure automation, etc., and it might not necessarily be the case that a company who claims to have a devops culture isn't still suffering from things like outages or issues that may take away from the time needed to work on improving things. I really don't want to find myself in a situation where I'm suffering from an even higher level of burnout. I really would like to have a better understanding of how these things play out in most devops roles.

https://redd.it/l7chrq
@r_devops

Decent Alternative for Sonarcube for Bitbucket Cloud?

As above, small to medium company. Sonarcube is very expensive, any workable alternative's anyone can recommend?

https://redd.it/l7bzg5
@r_devops

node.js/react/ruby on rails for busy devops

I am devops engineer with really strong developer experience (.NET mostly, but I am fine with PHP and Golang). But, I really didn't like anything that looks like JS, so I didn't learn node.js, react...

I think I should know more about application architecture and tools like yarn, nmp, nvm, webpack also about configuration etc

Can someone suggest courses for React, Node and Ruby on Rails, but for devops?

Thanks

https://redd.it/l7baav
@r_devops

Survey about Kubernetes security

Hello all,

I am currently studying towards a Master in Computer Science with the Open University located in the United Kingdom.

In the context of my master thesis, I am creating and executing a questionnaire in the topic context “Security mechanisms in Container Orchestration Platforms: Evaluating Kubernetes-based security solutions”. I have figured that most of the members in this subreddit have some experience in this field :-)

A short introduction to the research topic:

Many organizations and teams are utilizing container technology in their application landscape. For running and managing this container technology, Kubernetes is the de-facto standard. It helps to kickstart a journey into cloud-native applications and to increase productivity. But what about security?

The purpose of the research is to establish a common understanding of what is deemed “essential” and “state-of-the-art” by expert groups that are active in a container orchestration context.

The results of the questionnaire will help in defining, weighting and prioritizing use cases to further explore next generation security solutions in container orchestration platforms.

With the following link you can access the questionnaire: https://onlinesurvey.t-systems.com/survey/kubernetes-security-survey

The questionnaire is voluntary and absolutely anonymous for all interested participants. Participating in the questionnaire is comprised of a maximum of 20 questions and will take approximately 10-15 minutes of your time.

Please consider distributing this link in your team or organization or other colleagues that are active in the field.

I would be delighted if you choose to support my master thesis by taking part in this questionnaire.

Best wishes
akagiz89

https://redd.it/l768g1
@r_devops

DEV OPS IP Range

Good Morning,

I am trying to restrict ranges of IP's accessing Azure App Service so that I am able to have a staging site that only a select few can view and DEVOPS builds can run. I have added the correct range from this URL: Add IP addresses and URLs to allow list - Azure DevOps | Microsoft Docs for Inbound connections in the access restrictions option in the App Service for the particular staging deployment slot and have copied it to the scm as well, but when we run a build it is forbidden. We have run a powershell script on the build to see the IP and it is completely different to the one that has been provided in the link.

What am I missing?

https://redd.it/l7q15f
@r_devops

Retrospectives traps & solutions

Hey,

You can easily improve your retrospectives by awareness of antipatterns. Retrospectives are indispensable for continuous learning and improvement in DevOps, Lean, Agile etc.

In this talk, you'll learn more about challenges that undermine their effectiveness, and shows exactly how to overcome each of them.

Check it out here.

Regards,
MeetupFeed

https://redd.it/l7qm9b
@r_devops

DevOps full time job opportunity and stop my studies for CS degree

Hi everyone,

I will just give a brief about my past experiences: I'm 24 years old, I started my career at age 18 as a network engineer. So currently I have 4 years of experience as a network engineer and now I'm in a devops/system student position in a FANG company (I can't mention the name). I have the following knowledge and certificates: CCNA , CCNA Security, CCNP R&S, AWS cloud practitioner, VMware cert and LPI Linux essentials cert (Working towards the AWS SAA cert).

Here is my knowledge up until now:

\- Networking (CCNP level).

\- Linux system administration (dealing with a lot of servers).

\- VMware

\- Docker

\- Ansible

\- Python

\- AWS (mainly just knowledge, not a lot of hands-on experience)

\- Network security (Check point firewalls)

​

I'm still in my first year studying plus working in this student position, it was first mentioned as devops but now it is more of a Linux system admin role (job is kind of dynamic). I got an offer for a full time devops position (not FANG tier). I'm a bit worried about what to decide, if I go for this position I'll might not finish my degree (there are options but seems impossible), and if I stay I might not get another chance because a lot of companies rejected me because lack of experience in cloud and CI/CD. The company that gave me the offer, told me that they'll fund any AWS cert that I want. Their stack is very nice because they give professional services to other companies (this company is kind of mid level company, not enterprise nor startup).

What do you think is the best decision?

I feel like that not doing the degree might cost me later down the road, and I don't know what is the longevity of devops in general (Just a reminder I don't wanna be a software engineer). I really like infrastructure and finding ways to automate it, and devops is what I wanna pursue.

Thank you very much for everyone and for the help,

Gour

https://redd.it/l7s3yz
@r_devops

So, im making a videogame.

Need a type of software to drawing and easy to learn. If you guys can helpme id apreciate it.

https://redd.it/l7trsb
@r_devops

Idea Troubleshooting CLI - What do you think?

I thought of creating an open-source project which includes a Troubleshooting CLI application that supports macOS, Linux, and WSL2 (Linux VM on Windows).

This CLI will assist DevOps engineers to perform an analysis on common issues (challenges), without the hassle of repeating common tasks.

I call it tbs (troubleshooting)

As always, it's easier to explain with an example -

$ tbs --help

Usage:
tbs vendor service-name action [-arg, --argument]

# Example:

$ tbs aws efs mount --id my.efs.id --efs-mount /data --local-mount-path /home/ubuntu/data
[DOCS] https://docs.aws.amazon.com/efs/latest/ug/troubleshooting-efs-mounting.html
[LOGS] Describe EFS
[LOGS] Describe VPC
[LOGS] Check if EFS is available (provisioned)
[LOGS] Check if DNS support is enabled in VPC
[LOGS] Check if EFS is reachable from local machine - ping
[LOGS] Check if EFS DNS can be resolved from local machine
[LOGS] Attempt to mount EFS on local machine
[RSLT] DNS support needs to be enabled in the VPC - my-vpc-id

What do you think? Is this something that you'll use? I'd love to hear your opinion

https://redd.it/l7uqxx
@r_devops

If you don’t use a secret management tool, you’re doing it wrong

I worked with Hashicorp Vault for few weeks, and I find it very useful. I wrote an opinionated blog post about it. If you consider using Vault, check it out.

https://devopsian.net/posts/secrets-management/

This was my latest blog post since a long time. Let me know what you think.

https://redd.it/l7xzao
@r_devops

Which configuration management tool do You prefer? (its not about infrastructure as a code)

Im curious about which CM tool is most popular in our community. Write few words about why this and not that. If You choose 'Other' option, please write comment about this tool.

View Poll

https://redd.it/l860pq
@r_devops

How do you organise your repos for your different environments, platform and the applications that run on it?

I’ve recently joined a company that
has done this by horizontal slices - there’s a repo for cloud accounts for all teams, a repo for all the kubernetes clusters that run in each account, a repo for all the applications, etc. This is causing some friction as there’s multiple touch points for solving a problem like “can I have some infrastructure to run my code?”

A related but separate problem is that much of the code in these repos is created by copy-pasting from similar directories. There’s a lot of drift.

Other places I’ve worked have had varying other, usually slightly more granular, occasionally more monorepo style approaches.

How do you do it? What do you like and dislike about the approach you’re using?

https://redd.it/l86bi9
@r_devops

Automated Fuzzing, yay or nay?

A quick google showed those:

​

* American Fuzzy LOP
* Radamsa
* Honggfuzz
* Libfuzzer
* OSS-Fuzz
* Sulley Fuzzing Framework
* boofuzz
* BFuzz
* PeachTech Peach Fuzzer

What do you think? Worth the work? Put it into pipelines?

https://redd.it/l8047o
@r_devops

Blog Tracing System as an Application Operations Log

Hello everyone,

I wanted to share with you one particularly valuable use-case I found while using our tracing system. Basically, we were annoyed with existing solutions and the need to share our data with different SaaS vendors. We built our own system and made it open-source. Since then I used it on a bunch of personal and professional projects.

In my blog post I describe this use-case. Basically, it serves as a log of operations your system does.

It saved me a couple of hours (well, I got paid for them) when a customer claimed that their valuable data was deleted due to a system bug (we couldn't do soft delete there due to privacy and legal reasons). We were able to confirm seeing the exact request the customer sent that it was indeed a user input error rather than a bug. I had to restore it from a snapshot of course but they had to pay for a special support case since it wasn't our fault.

https://redd.it/l7x080
@r_devops

Transitioning to Senior DevOps Engineer

So been in IT (started in ops) for 8 years now. Started DevOps 2 years ago (cloud architect prior) but now my manager is pushing for me to take a Senior role. Basically doing the same job I’m doing now, just with the recognition.

I’ve been getting bombarded by recruiters lately and have been entertaining 2 opportunities. Very nice pay bump. I would be going straight into a Senior DevOps role with a team that’s been together for a while. Question is, should I stick with my current company and get leadership experience there or take the jump? I do learn fast and love a challenge.

Any recommendations or similar experience in these situations would be much appreciated.

https://redd.it/l8bwxj
@r_devops

Some Demo Lab Sites to practice Devops?

Any Demo/Lab sites I can practice for devops like CI/CD, Ansible, Kubernetes, etc ?

https://redd.it/l8dns4
@r_devops

Advice/Opinions Wanted Artifact Registry options in 2021

Hey!

Hope y'all are doing well.

I'm looking for peoples advice, opinions, experiences or anecdotes on how they do artifact registries. I work in a company running Sonatype Nexus. It's deployed on top of Openshift Container platform (4.5) which runs in AWS. It runs in a pod with persistent storage in a shared cluster running a flat pod network (every pod can see this registry). It would be a big deal if it were to break. A majority of the jenkins jobs depend on this: all builds, deployments, promotions etc.

It could fail for many reasons: if the pod goes down, runs out of storage or inodes, the cluster gets upgraded, an AZ fails, the node the pod runs on gets restarted (and many more) then the house is on fire. Personally I like the idea of not having to manage any of that. I used to work with artifactory online, which was a dream.

We use Nexus for:

hosting helm, node and maven artifacts
hosting docker images
as a proxy to external registries like [https://registry.npmjs.org](https://registry.npmjs.org)

Keen for opinions on:

SaaS vs self deployed
HA setups
If anyone's using Openshift 4: How do you do registries?

Thanks!

https://redd.it/l8akwm
@r_devops

Help with a student project

Hi , so i'm currently a cloud network engineering student.

for a graded assignement my professor proposed this project to work on this semester : "network configuration of microservices with docker".

Now this doesn't seem like a project i want to spend the next 4 months working on . So , i would like to improve it a bit so it's more challenging and worth spending that much time on . I can't ask my professor for a new project but i can ask for small changes .

any ideas on improving it?

PS: i'm mostly interested in cloud engineering. I've worked on previous cloud network and devOps projects.

thanks!

https://redd.it/l7wwc9
@r_devops

Finding your way into chaos engineering

Hey everyone,

We recently spoke with Ana Margarita Medina from Gremlin to hear about her unique path into this field. Ana is a bada** that has been bucking the system since she was a kid. From no ivy league to college dropout to Silicon Valley, Ana has always been the underdog. She battled through discrimination, burnout, and still came out on the other side in a better position than before.

We hope her story may serve as inspiration for someone looking for the resilience they need to push through the hard times and create the life they want, in the field they want. (Mods can delete if this isn't applicable but we thought it could help someone out there that is looking to find their way!)

Link: https://youtu.be/tSZuGTxOz2o

https://redd.it/l7vo3z
@r_devops

All devops I met are against using Microsoft products (Windows, .NET Core, C#, etc). I am curious if the devops here in reddit are also against Microsoft software products and what is your rationale?

I only met a couple of devops in my career and they are all against Microsoft (Windows, .NET Core - cross platform, C#, etc) and will always prefer non-Microsoft solutions . I am curious if that is the same with the devops here in reddit and what is your rationale?

https://redd.it/l8hbq0
@r_devops

Creating Kubernetes Resources via UI and creating testing/staging environments

I'm currently planing a devops project for university and I would really appreciate any tips and recommendations.

Our Institut is involved in a system/application where you can model an architecture, meaning you can create components and interfaces that resemble Microservices and their connections between each other.

For my project, there are basically two goals/features:

1. Make it possible to create a the Kubernetes Resources (pods and services) for the created architecture modelled with the given system. The system lacks input for values that are needed for the Kubernetes Resources, such as Docker Images and Ports, so I would need the create inputs for these values.

2. Once we have created the Kubernetes cluster, we want to be able to create different testing/staging environemnts

Here are my initials ideas on how I would implement this:

1. Feature: For each component we have, we create some input fields where we can fill in information needed to create the kubernetes pods/services, such as docker images and ports. Then we create the kubernetes resources with this information via the kubernetes API.

Here is my first question: Do I really have to create these UIs from scratch, that basically just serve as slightly simplified yaml file substitution or are there any ready made solutions to this?

2. Feature: To create testing environments, I just create a namespace, for example `beta` and then take the already created kubernetes resources for the component, allow changing the values for example use an updated docker image and just apply these resources in the new namespace.

Is there anything wrong with creating testing environments by creating new namespaces. Are there better solutions to this? I heard about Terraform, which apparently can automate creating staging environment, could this be useful for my project?

How would you implement these ideas? Any recommendation and related works are appreciated!

https://redd.it/l7vhdx
@r_devops