Flant сделали открытый addon-operator для Kubernetes, который как раз занимается менеджментом зависимостей, как ингресы, мониторинг, скейлеры и прочее

#kubernetes

Разбираемся в сети Kubernetes вместе с ITNEXT

#kubernetes #networking

​​Framework for an Observability Maturity Model

Observability is on the minds of just about every modern dev team running a production service, and it’s time everyone spoke the same language, so we can build something greater on the top of our shared understanding. Access to observable systems is the path toward less frustration and more happiness—both for those responsible for production, and the customers they serve.

For this propose, Honeycomb was created white paper, where they sharing own vision of observability based on goals instead of tools.

P.S. Monitoring is only little part of this Framework.
P.P.S. If you earlier skiped Achieving Observability guide, it's time to read it.

#books #observability

​​Бесплатный онлайн практикум DevOps by REBRAIN: Helm

Количество мест ограничено.

Что: Практикум DevOps by REBRAIN: Kubernetes. Gitlab CI

Где: Онлайн / Live трансляция
Регистрация https://bit.ly/2Ge8Ia3

Когда: 9 Июля (Вторник) в 19:00 по Киеву/МСК

О чём:
- Зачем нужен Helm?
- Используем готовый helm chart
- Пишем chart для golang приложения

Цена вопроса: Free

#event

Consul OSS with Mesh Gateway and Level 7 features

Wiil be released later today

More from HashiConfEU will be in https://twitter.com/MaxymVlasov

#consul #HashiConfEU

​​Hashi UI - awesome UI for Consul & Nomad

It combines all best features from old and new view and add much more really needed stuff.

For more information and tools such as:
- hashi-helper
- nomad-helper
- ReSec
- Libra

see SeatGeek and the HashiStack: A Tooling and Automation Love Story by @burdandrei

(when it will be on Hashicorp youtube channel)

#nomad #consul #hashicorp

​​Self-Host Your Static Assets

This, at first glance, a counter-intuitive proposition has a strong argumentation and affects a large number of aspects from the basic problems of the security component and the downtime of 3'rd parties (for example, the recent drop of 15% of the Internet) to fine-tuning optimization, which is often neglected even by good engineers.

At the same time, process optimization is the basic requirement of any business, and for the business that wants to grow in the modern world, the speed of its Internet services is one of the key metrics that directly affects the number of different benefits that business can give you. And if you are interested in this topic as me - I recommend to visit @notieinIT, where the clipper CTO talks about various technical and cultural aspects of optimization, explains in simple terms unexplained and reminisce things forgotten long time ago.

#culture

​​HashiConf EU 2019 summary

A fine recap of the conference talks by @cazorla19 including:
- Keynote
- Multi-Cloud Networking
- Terraform 0.12 Introduction
- Collaborative Development in Infrastructure
- Paddy Power Deployments
- Growing Vault at Hootsuite
- Distributed Configuration via Nomad/Vault

- Keynote #2: Scale
- Consul: Everybody Talks
- Vault + Fastly Design and Integration
- Hashistack and Real-time Radiology
- GDPR Compliant Event Sourcing with Hashicorp Vault
- Service Mesh with Consul Connect and Nomad
- Research as Code

#hashicorp #event

Визуальная IDE для Kubernetes k8s Studio вышла в бете

В треде на Реддит ссылка, чтобы попроситься в бету и ссылка на Слак разработчиков.

Проект не open source, что там по ценам - не ясно.

Если никогда не слышали об этой поделке, можно глянуть информацию на из сайте

#kubernetes

Cloudflare выкатили детальный разбор инцидента с регуляркой в своём блоге.

Обсуждаем пост-мортем в CatOps чатике

#postmortem

Запись доклада с AWS re:Invent об архитектуре под капотом Lambda

Бонусом, неск тематических скетчей от Cindy Sridharan

#aws

Амазон представили AWS EventBridge - шину сообщений между SaaS приложениями и, собственно AWS. IFTTT для AWS, если очень утрировано.

О юзкейсах этого дела можно почитать тут и ещё вот здесь

#aws #serverless

Приседания с Terraform: рассказы бывалых.

#terraform #hashicorp

Ну и в продолжение Terraform темы: покрыл на днях тестами свой модуль для VPC пиринга.
Интересный опыт, должен признаться :)

Прямой фидбэк можно оставить в чате CatOps

#terraform #hashicorp

How Google got rid of VPN and other old(?) security methods

They called it BeyondCorp and it main goal sound as:
Every Google employee work successfully from untrusted networks without the use of a VPN. It needed for improving productivity and keep company secure.

Implementation started in 2011 and successfully ended in 2014, proccess was described in this article. Now Google starts sharing the lessons that they have learned over the 5 years of exploitation.

P.S. On Google SSO page you can find random pictures (: desktop version required)

#security

​​ec2-metadatafs: 'cat' your AWS EC2 metadata

This tool exposes AWS EC2 metadata as a filesystem for easy ls, cat, and grep'ing.

Advantages over curl http://169.254.169.254:
- Support for tags
- Use filesystem permissions to control access
- Use traditional unix tools to walk and interrogate the tree
- Tab completion of paths
- No need to remember the special IP address of the service

Advantages over the ec2-metadata tool:
- Support for tags
- No need to cut the output of commands to get just the field
- Can use filesystem permissions to control access
- Access to all metadata fields, not just the limited subset the tool returns

Well and browsing the metadata endpoint as a filesystem from an EC2 instance is really cool idea.

#aws #toolz