#general (2020-01)

General conversations related to DevOps/Automation

General Discussions

2020-01-31

SweetOps avatar
SweetOps
08:00:21 PM

Hey everyone, give a warm welcome to our newest members!

  • @Sri
  • @Raymond Liu
  • @Alex Tamoykin
  • @Julian Gindi
  • @JJ Ferman
  • @Sebastian Stadil

Good to have you here =)

3

2020-01-30

SweetOps avatar
SweetOps
08:00:28 PM

Hey everyone, give a warm welcome to our newest members!

  • @Ryan Bonner
  • @dhondapatinaveenreddy
  • @leo.hu
  • @Jeff Levin
  • @bradym
  • @Lennart Wilke
  • @chase4131
  • @Chris OBrien

Good to have you here =)

Chris OBrien avatar
Chris OBrien

Happy to be here!

1
Garrett (PlanoCloudDude) avatar
Garrett (PlanoCloudDude)

Looking for simple condition to set in EC2 instance template with ALB, that will hold the 2nd (HA instance being deployed) so I can get the first up with some manual config running then remove condition to lauch the instanceB

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

why not use beanstalk for that?

Garrett (PlanoCloudDude) avatar
Garrett (PlanoCloudDude)

manual CF provision in AWS china, batch file we normally use not working something with the handshake from global to china

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

aha, that sound like no fun

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Garrett (PlanoCloudDude) avatar
Garrett (PlanoCloudDude)

not a cluster, just 1 instance in HA config in template, I’m in hurry and too green to fig it out, lol and it’s late so It dawned on me to throw it out on sweetops

Garrett (PlanoCloudDude) avatar
Garrett (PlanoCloudDude)

Yeah, no fun when you have to input 50 parameters manually before the fed saml login times out in 30min and have to log back in

Garrett (PlanoCloudDude) avatar
Garrett (PlanoCloudDude)

Just want to hold on the 2nd instance being created while I do the manual config on the first instance for this new ec2 stack created

joshmyers avatar
joshmyers

distributed lock to stop the 2nd instance coming up (cloud init) until lock released/timeout ?

2020-01-29

SweetOps avatar
SweetOps
08:00:17 PM

Hey everyone, give a warm welcome to our newest members!

  • @Igor Bronovskyi
  • @Graeme Gillies
  • @Miracle Max
  • @gui
  • @creature
  • @leonyi

Good to have you here =)

Igor Bronovskyi avatar
Igor Bronovskyi

Hi guys and girls

2
gui avatar

Hey

leonyi avatar
leonyi

Thanks for the warm welcome! Super happy to hang out with like minded individuals.

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Glad you stopped by!

2020-01-28

Zachary Loeber avatar
Zachary Loeber

It was a lot of effort to avoid having to use powerpoint ‘eh?

Yonatan Koren avatar
Yonatan Koren

Still waiting on a Powerpoint provider for Terraform

2
1
Yonatan Koren avatar
Yonatan Koren

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
Mastercard/terraform-provider-restapi

A terraform provider to manage objects in a RESTful API - Mastercard/terraform-provider-restapi

Yonatan Koren avatar
Yonatan Koren
ndmckinley/terraform-provider-dominos

The Terraform plugin for the Dominos Pizza provider. - ndmckinley/terraform-provider-dominos

Yonatan Koren avatar
Yonatan Koren

@Erik Osterman (Cloud Posse) actually didn’t know that the link you posted was a serious foundation for some cool projects until i clicked it (i should have seen the mastercard logo)

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

I know a company on this slack team using that rest provider.

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

it’s the ultimate escape hatch

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

if something provides a REST API, you can terraform it!

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

SweetOps avatar
SweetOps
08:00:21 PM

Hey everyone, give a warm welcome to our newest members!

  • @Jim Park
  • @Jillian Rowe
  • @Pradeep Kumar Ashokan
  • @Pú
  • @Yunier
  • @Yonatan Koren

Good to have you here =)

2

2020-01-27

Alexandre avatar
Alexandre

Hello, does anyone knows how to do this kind of slide deck : https://hashicorp.github.io/field-workshops-terraform/slides/aws/terraform-oss/index.html#1 ?

loren avatar
loren

here’s the backing repo, probably some clues there, https://github.com/hashicorp/field-workshops-terraform

hashicorp/field-workshops-terraform

Slide decks and Instruqt code for Terraform Workshops - hashicorp/field-workshops-terraform

:--1:1
Adam Crews avatar
Adam Crews

It’s made with remark.js https://github.com/gnab/remark

gnab/remark

A simple, in-browser, markdown-driven slideshow tool. - gnab/remark

:--1:1
SweetOps avatar
SweetOps
08:00:07 PM

Hey everyone, give a warm welcome to our newest members!

  • @Lenucksi

Good to have you here =)

Zachary Loeber avatar
Zachary Loeber

@Alexandre Yes, well something similar at least. Here is a hugo based reveal.js themed slide deck I did for a generic devops 101 thing I did for work a bit ago: https://github.com/zloeber/deck.loeber.live

zloeber/deck.loeber.live

Zachary Loeber’s Presentations. Contribute to zloeber/deck.loeber.live development by creating an account on GitHub.

:--1:1
Zachary Loeber avatar
Zachary Loeber

The rendered site helps I suppose: https://deck.loeber.live/#/home

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

fancy!

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

2020-01-26

SweetOps avatar
SweetOps
08:00:14 PM

Hey everyone, give a warm welcome to our newest members!

  • @oliver
  • @Omri Siri
  • @Nitzan Yemal

Good to have you here =)

1

2020-01-25

SweetOps avatar
SweetOps
08:00:10 PM

Hey everyone, give a warm welcome to our newest members!

  • @Mohammad

Good to have you here =)

2020-01-24

SweetOps avatar
SweetOps
08:00:08 PM

Hey everyone, give a warm welcome to our newest members!

  • @Bradford Toney
  • @Bananahands
  • @sathish krishnan

Good to have you here =)

2020-01-23

Eamon Keane avatar
Eamon Keane

airflow 2.0 (due in around 1 or 2 quarters) and airflow kNative executor should allow much greater scale workflows than currently. Airflow k8s executor and pod operator gets awkward over around 1,000 tasks/dag and 1,000 tasks/hour in my experience.

Zachary Loeber avatar
Zachary Loeber

@Eamon Keane, Are you running airflow deployments in a pipeline to deploy DAG updates to kubernetes or are you cheating and just letting devs skip version control and work right out of shared storage for their DAGs?

Zachary Loeber avatar
Zachary Loeber

(just curious)

Zachary Loeber avatar
Zachary Loeber

And I wonder if spark 3 will ever be released (along the lines of long awaited releases…)

Eamon Keane avatar
Eamon Keane

@Zachary Loeber we only use k8s pod operator and bake dags in image so every dag change produces dockerfile and helm chart. Dev can fully test locally independent of airflow…keeps things sane but obviously misses out on built-in airflow operators.

Zachary Loeber avatar
Zachary Loeber

Happen to be running any spark jobs via airflow as well? I do a helm based deployment that re-kicks off their DAG creation (my immature favorite airflow insider term is fillin’ up the dagbag!) using pre-created shared storage and other pipeline witchcraft. They are using the kubernetes scheduler to kick off spark operator jobs (which are just a fancy bash-operator using spark-submit from all I can tell) that use some pre-deployed secrets to allow for backend storage connections to the spark-history server. It seems bonkers to me considering I do the same kind of deployments for another team without airflow at all using native kubernetes cronjobs and some python….

1
Eamon Keane avatar
Eamon Keane

don’t use spark, no. We’re using airflow as a fancy k8s cronjob orchestrator. It is quite useful to have the UI for visibility and the execution variables like next_ds available for input to the dags and easy retries/backfills and dependency management. Everyone starts off thinking they can do it themselves and regrets it… that’s how airflow was started in the first place!

Zachary Loeber avatar
Zachary Loeber

do you run it in its own cluster and deploy to other clusters then?

Eamon Keane avatar
Eamon Keane

we deploy it in the same cluster as it launches pods (one airflow deployment per cluster and per environment)… it’s used for ETL with data regs, so one cluster would be awkward.

I suspect a better k8s workflow engine could be built with tekton, but that’s probably a year or two away.

SweetOps avatar
SweetOps
08:00:06 PM

Hey everyone, give a warm welcome to our newest members!

  • @Chase Ward
  • @Hussein Khazaal
  • @ballew
  • @Robert

Good to have you here =)

2020-01-22

SweetOps avatar
SweetOps
08:00:24 PM

Hey everyone, give a warm welcome to our newest members!

  • @Oliver Slater
  • @Blake

Good to have you here =)

:--1:1
rms1000watt avatar
rms1000watt

@Erik Osterman (Cloud Posse) I’m pulling them in. I got @Chase Ward here from Calm

He’s a developer.. devops dude.. but recently he’s been hot in data, data pipelines, data engineering. Would Looooooooooove to see some discussions popup around devops + data engineering… Airflow at scale? (shit, I dunno all the hot tools nowadays)

Chase Ward avatar
Chase Ward

Greetings homies!! Excited to be in a community of like-minded people!

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

welcome @Chase Ward!

1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

We have some experience with Airflow on Kubenetes, but don’t think we can say “at scale” yet. Would definitely like to hear from others doing more with that.

party_parrot1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

maybe we should have a #bigdata channel

Chris Fowles avatar
Chris Fowles

small is still a scale

2

2020-01-21

David avatar
David

How do contributors work for the cloudposse repos? If I’ve had a few PRs merged into a repo, would it be okay to ask to be a contributor, or is that meant only for cloudposse employees?

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

@David feel free to add yourself as a contributor if that’s the case

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

remember to update the README.yaml and rebuild

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

(and thanks for your contributions!)

grv avatar

Thanks guys, good to be part of this slack channel. Not an expert in terraform, here to learn from y’all since I am moving most of our aws stuff to newest tf and exploring new stuff like workspaces etc. Ofcourse, using cloudposse modules :–1:

aknysh avatar
aknysh

welcome @grv and thanks!

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

@grv you came to the right place!

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

make sure to join us for office hours then too: https://cloudposse.com/office-hours (free)

:100:1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

and checkout our past sessions: https://podcast.cloudposse.com

Cloud Posse DevOps "Office Hours" Podcast

Cloud Posse holds public DevOps “Office Hours” every Wednesday at 11:30am PST to answer questions on all things DevOps/Terraform/Kubernetes/CICD related. These “lunch & learn” style sessions are totally free and really just an opportunity to talk shop, ask questions and get answers.Register h…

grv avatar

Sweet thanks

SweetOps avatar
SweetOps
08:00:15 PM

Hey everyone, give a warm welcome to our newest members!

  • @marcinw
  • @Mike

Good to have you here =)

2020-01-20

SweetOps avatar
SweetOps
08:00:20 PM

Hey everyone, give a warm welcome to our newest members!

  • @ITO Wataru
  • @oliver
  • @grv

Good to have you here =)

2020-01-19

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

@roth.andy does something like we do too

roth.andy avatar
roth.andy

I haven’t packaged terraform code in a docker container before. Terraform code goes in a git repo. The container has the tools that executes the code. You pass in creds to pull down the code and execute it

2020-01-18

SweetOps avatar
SweetOps
08:00:31 PM

Hey everyone, give a warm welcome to our newest members!

  • @Bill D
  • @caretak3r

Good to have you here =)

caretak3r avatar
caretak3r

looking for reference materials or guides around packaging up terraform code (used to release something) into a docker container, like cloudposse does with geodesic. we don’t need the exact geodesic image, so im playing around with a custom docker image i made

2020-01-17

jujugrrr avatar
jujugrrr

thank you @Bot

SweetOps avatar
SweetOps
08:00:29 PM

Hey everyone, give a warm welcome to our newest members!

  • @James Rawlings
  • @Sean Johnson
  • @kemario.lindo
  • @Joseph Omojowo
  • @carthewd

Good to have you here =)

1

2020-01-16

SweetOps avatar
SweetOps
08:00:26 PM

Hey everyone, give a warm welcome to our newest members!

  • @claudemir de Almeida Rosa
  • @Ben Mathews
  • @jujugrrr
  • @SoboL
  • @Uzair
  • @jvaibhav123
  • @Alexandr Katulskiy

Good to have you here =)

1
SoboL avatar
SoboL

Hey everyone, it’s nice to be around :)

:--1:1

2020-01-15

Adedayo Akinpelu avatar
Adedayo Akinpelu

Hi Guys!

Please I’m having a serious problem that is driving me crazy, I will appreciate everyone’s help

My Laptop is connected to an OPENVPN hosted on AWS, also I need to connect to a client’s company VPN to work from, the problem I’m facing is, Once I connect to the Client’s Office VPN, I loose Internet access…Please can anybody help with this?

maarten avatar
maarten
OpenVPN make redirect-gateway optional

I’m currently running an OpenVPN server for multiple clients. All traffic is directed through the VPN (it’s set up as gateway; push “redirect-gateway def1”). So far, all is working fine. However,…

:--1:1
Zachary Loeber avatar
Zachary Loeber

Sounds like you need a VM for your client

:--1:1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Ya, basically what @maarten suggests… sounds like their VPN is jacking the default route. If you can control that on the client side, that would be the way to go. If have trouble with that, then @Zachary Loeber suggestion will be the the quick win.

SweetOps avatar
SweetOps
08:00:20 PM

Hey everyone, give a warm welcome to our newest members!

  • @vgdub
  • @Michael Coffey
  • @Paul Nicholson
  • @Ravi Bhure

Good to have you here =)

3
1
Szymon avatar
Szymon

Hi! I plan to start a blog, but I’d like to make it open source and store everything in git repo. The most important for me are posts written in markdown. Anyone has experience with this? What would you recommend, any specific tool for generating static pages?

tamsky avatar
tamsky

I’d recommend trying Org-Mode. imho, Github’s flavor of Markdown is pretty meh.

Even github’s ReStructuredText would be a step up from markdown.

Here’s a list of some tools that do the blog publishing steps for org-mode…

https://orgmode.org/worg/org-blog-wiki.html

:--1:1
loren avatar
loren

Here’s a post on one option that turned up in my feed recently… https://matthewsetter.com/why-antora-is-the-leading-technical-writing-platform/

Why Antora Is The Leading Technical Writing Platform attachment image

If you need to create and maintain technical writing, there are a large number of solutions that will give you a lot of what you want. However, which one is the best? Today, I’ll show you which one I believe is the best choice.

:--1:2
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

fwiw, we use hugo

:--1:1
Szymon avatar
Szymon

Thanks!

Zachary Loeber avatar
Zachary Loeber

I use hugo with render.com for my test site and github pages for my live site (behind cloudflare) and azure devops for the pipeline just for the heck of it

:--1:1

2020-01-14

Alexandre avatar
Alexandre

Hi guys, i’m was invited here by @sype we are currently working on a AWS foundation projet for a French customer. Hope I’ll find great discussion here.

1
aknysh avatar
aknysh

welcome @Alexandre

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Great you stopped by!

:--1:1
SweetOps avatar
SweetOps
08:00:31 PM

Hey everyone, give a warm welcome to our newest members!

  • @Flo Sloot
  • @James Huffman
  • @Andrea Benfatto
  • @Nghia Nguyen
  • @Alexandre
  • @muhaha

Good to have you here =)

:--1:1
1
1
Zachary Loeber avatar
Zachary Loeber

Anyone here using consul for devops pipelines?

Corey Gale avatar
Corey Gale

Can you elaborate? I do use Consul for my ECS services

Zachary Loeber avatar
Zachary Loeber

well the kv store at least

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

@Corey Gale might be

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

maybe @tamsky

2020-01-13

SweetOps avatar
SweetOps
08:00:22 PM

Hey everyone, give a warm welcome to our newest members!

  • @Daniel Kempthorne
  • @Francisco Rodriguez
  • @Wen Lim

Good to have you here =)

2

2020-01-11

Zachary Loeber avatar
Zachary Loeber

@dustinvb

dustinvb avatar
dustinvb

Are they chewable? I only do chewable?

Zachary Loeber avatar
Zachary Loeber

haha

SweetOps avatar
SweetOps
08:00:04 PM

Hey everyone, give a warm welcome to our newest members!

  • @Philip L Bankier
  • @David Hubbell
  • @Shawn Petersen

Good to have you here =)

2020-01-10

SweetOps avatar
SweetOps
08:00:08 PM

Hey everyone, give a warm welcome to our newest members!

  • @Bernhard Lenz
  • @David
  • @Nedumaran Rajagopal
  • @Rob Rose

Good to have you here =)

David Hubbell avatar
David Hubbell

@dustinvb I finally joined this slack channel!

:--1:2
1

2020-01-09

SweetOps avatar
SweetOps
08:00:17 PM

Hey everyone, give a warm welcome to our newest members!

  • @Charlie Le
  • @Jubel Han
  • @Matt McLane
  • @Tom Taubkin
  • @Sankara Reddy

Good to have you here =)

David avatar
David

Howdy all. What is the relationship between Cloudposse the company and this slack workspace? I saw an invite to join this workspace through a cloudposse github repo

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
Welcome @David! SweetOps is a community run by Cloud Posse ([cloudposse.com>). It was started as a place for our users to collaborate and ask questions related to our large collection of open source projects on GitHub (<http://github.com/cloudposse github.com/cloudposse](http://cloudposse.com)), but also talk shop and get feedback on anything DevOps related.
1
David avatar
David

Beautiful, thanks for the clarification!

I discovered not too long ago that almost every terraform module I’ve written has a better, open source version from you all (or terraform-aws-modules, which maybe is cloudposse a bit as well?).

I’ve just gotten started with a few PRs to get my feet wet with contributing on https://github.com/cloudposse/terraform-aws-cloudfront-s3-cdn/pulls. Thanks for all the awesome modules!

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

great! @aknysh will review as soon as he has a chance. we’re a bit swamped with PRs right now!

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

thanks for pinging us though - we’ll definitely get to it. and do nudge us if we drop the ball!

David avatar
David

oh no problem! I love that with terraform modules its super easy to point my module source at a forked repo if I need specific functionality, and then back to the main repo if/when that PR gets merged.

:100:1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

it’s a great contribution model they’ve developed

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

we’re not directly affiliated with #terraform-aws-modules (a project co-opted in part by @antonbabenko, another prolific contributor). Many users of those modules also use ours.

1
hiding1

2020-01-08

SweetOps avatar
SweetOps
08:00:17 PM

Hey everyone, give a warm welcome to our newest members!

  • @sype
  • @Josh Lynn

Good to have you here =)

:--1:1
Kashif Rahman avatar
Kashif Rahman

:–1:

2020-01-07

Zachary Loeber avatar
Zachary Loeber

Is anyone else here stuck in the hell that is Azure AKS?

Zachary Loeber avatar
Zachary Loeber

Sorry, I mean the ‘heck’ that is Azure AKS

2
Zachary Loeber avatar
Zachary Loeber

I’ve found that the faster and more streamlined I automate workloads in this platform the more I’m punished

maarten avatar
maarten

@Zachary Loeber Is there anything of Azure what is good ? I’d like to understand.

Eamon Keane avatar
Eamon Keane

I’m not sure there is anything good about Azure. If you’re a large organization which uses Windows and .Net and dread the thought of training your workforce to use AWS or GCP then you default to Azure despite its limitations

Zachary Loeber avatar
Zachary Loeber

Perhaps it is just a massive case of the grass being greener on the other side for me as I’m working with it all day long but I just constantly hit the barriers of Azure’s services. Don’t get me wrong, I’d go o365 any day for a business email migration and AD hybrid or full online migration though.

Zachary Loeber avatar
Zachary Loeber

Nothing is more frustrating than having services that suddenly don’t act the same way they did a week ago either (AKS I’m talking about you!)….

Zachary Loeber avatar
Zachary Loeber

I’m doing 100% linux workloads on Azure Kubernetes Services (with some other IaaS services speckled in) so I’m possibly an aberration though..

Eamon Keane avatar
Eamon Keane

no I left AKS in the dust 18 months ago thank god. From the kubernetes release notes I see they’re the only cloud provider still patching their storage tire fire in each release.

SweetOps avatar
SweetOps
08:00:12 PM

Hey everyone, give a warm welcome to our newest members!

  • @Aleksey Silak
  • @Aaron Chu
  • @Chris Maxoutis
  • @Matheus Hunsche

Good to have you here =)

1
1

2020-01-06

SweetOps avatar
SweetOps
08:00:18 PM

Hey everyone, give a warm welcome to our newest members!

  • @scottcressi

Good to have you here =)

scottcressi avatar
scottcressi

:) great to be here

OGProgrammer avatar
OGProgrammer

I’m gonna probably be developing an 8 hour training session on setting up an app on AWS ECS with some of yalls repos. Be happy to share my experience along the way and presentation/blog/training material

:--1:2
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

@OGProgrammer that sounds awesome!

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

would love to share what ever materials you provide

:--1:1

2020-01-05

Tony avatar

hey guys, i know this is random ask, but has anyone ever had an appgateway fail and not allow you to save anything to it on Azure? Sorry at my last wits with this thing and just trying to figure it out anyway possible

Figo Huang avatar
Figo Huang

nop but it seems a Azure Support issue

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Ya, not much to go on.. but maybe try #azure

maarten avatar
maarten

@geertn ?

geertn avatar
geertn

I’ve had some weird issues with Application Gateways but not this.

2020-01-04

SweetOps avatar
SweetOps
08:00:08 PM

Hey everyone, give a warm welcome to our newest members!

  • @Phuc
  • @Adedayo Akinpelu
  • @Figo Huang

Good to have you here =)

1
1
cool-doge1

2020-01-03

SweetOps avatar
SweetOps
08:00:06 PM

Hey everyone, give a warm welcome to our newest members!

  • @carlos catari

Good to have you here =)

:100:1
1

2020-01-02

Joe Hosteny avatar
Joe Hosteny

Hi @Erik Osterman (Cloud Posse) - not sure if this is the right channel for this, but I was wondering if you take community contributions for new modules? I have an NLB module based off of https://github.com/cloudposse/terraform-aws-alb, if you would be interested in taking it over

cloudposse/terraform-aws-alb

Terraform module to provision a standard ALB for HTTP/HTTP traffic - cloudposse/terraform-aws-alb

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Sure, I think we can do that.

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Can you work with @aknysh to import it?

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

(#terraform is probably the better channel for this..)

Joe Hosteny avatar
Joe Hosteny

Thanks! Will do. It’s not quite done, but I can let you know when it is.

aknysh avatar
aknysh

thanks @Joe Hosteny, we’ll work with you on that

2020-01-01

Jon Chase avatar
Jon Chase

also, for the reference arch. link above (https://github.com/cloudposse/reference-architectures) - assuming i’m starting from a blank slate, what version of terraform should i go with? 11 or 12?

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

We have not yet updated it to 0.11

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

:(

Jon Chase avatar
Jon Chase

Got it… So I’m guessing that means 0.10 is the way to go?

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

oh, i misspoke

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

we have not updated it yet to 0.12

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

you can use 0.11!

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

(was on my phone)

Jon Chase avatar
Jon Chase

Perfect thx!

Jon Chase avatar
Jon Chase

what’s easiest for registering the “apex” domain? will the provisioning process do it, should i do it in the root account’s rt 53, or get it from my regular registrar?

marc.byfield avatar
marc.byfield

Use route53. It’s magic

marc.byfield avatar
marc.byfield

From I made the switch I’ve had no reason to use anyone else. It’s even better than cloudflare

marc.byfield avatar
marc.byfield

And it integrates with everything AWS

Jon Chase avatar
Jon Chase

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Yea, we register all domains in the “root” (aka master) AWS account

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

then delegate zones from there to sub accounts

Eamon Keane avatar
Eamon Keane

cloudposse looks great, looking forward to giving it a try! Been thinking it should exist but didn’t come across it until now (currently using bitnami’s kube-prod-runtime but that only gets maintenance releases recently).

I have one question regarding codefresh (non-enterprise) version, does it give a whitelist ip/range for deploying to kubernetes or do you have to leave the master world-readable (0.0.0.0/0)?

nvm… I see it now on the GKE pro $300/mo plan it mentions static ip, so I guess it’s only either that or enterprise.

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Hrm… I feel like someone else has whitelisted codefresh IPs. I thought they offer distinct set of IPs. @dustinvb in #codefresh might know.

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

but running the enterprise mode with venona is the most secure route

Eamon Keane avatar
Eamon Keane

thanks, it’s a nice feature to prod people to higher paid versions I guess… would be nice if they offered similar on AWS (e.g. spend more than $300/mo on developer plan, get static ip) but doesn’t appear to be the case.

I had one other thought on the helm functionality in codefresh, is the source of truth for what’s deployed only in the codefresh ui when using kanban boards, or is it committed to git like in gitops (as in jenkins-x and flux)?

Eamon Keane avatar
Eamon Keane

gcp plan with static ip just fyi

:--1:1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Cool - I hadn’t seen that

dustinvb avatar
dustinvb

Sorry was out on break for holidays.

We have 2 distinct options available SaaS and Hybrid. With our SaaS offering we execute your pipeline on Codefresh resources and you can whitelist our NAT gateways in your firewall to interact with your Kubernetes API endpoints. With our Hybrid offering we execution your pipeline on your Kubernetes cluster behind-the-firewall. Meaning the cluster does not need to have any externally facing IPs. We launch a pod into your cluster which can interact with internal IPs to orchestrate Kubernetes deployments. The agent is a polling agent so will require egress out to g.codefresh.io> and <http://docker.io|docker.io to pick up jobs and pull docker images used by the agent.

https://codefresh.io/docs/docs/enterprise/behind-the-firewall/

Let me know if you need those IPs for the NATs and I’ll DM them to you.

Codefresh behind the firewall

How to run Codefresh pipelines in your own secure infrastructure

Eamon Keane avatar
Eamon Keane

the NAT IPs would be great, thanks!

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

thanks @dustinvb!

SweetOps avatar
SweetOps
08:00:03 PM

Hey everyone, give a warm welcome to our newest members!

  • @Eamon Keane

Good to have you here =)

    keyboard_arrow_up