#govcloud (2022-02)

2022-02-02

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
10:07:33 PM

@Erik Osterman (Cloud Posse) has joined the channel

roth.andy avatar
roth.andy
10:07:53 PM

@roth.andy has joined the channel

Jeremy (UnderGrid Network Services) avatar
Jeremy (UnderGrid Network Services)
10:07:53 PM

@Jeremy (UnderGrid Network Services) has joined the channel

Andriy Knysh (Cloud Posse) avatar
Andriy Knysh (Cloud Posse)
10:12:41 PM

@Andriy Knysh (Cloud Posse) has joined the channel

roth.andy avatar
roth.andy
10:17:30 PM

oh yeah

3
roth.andy avatar
roth.andy

Let’s start pinning useful gov resources for DevOps

1
roth.andy avatar
roth.andy

Important Links

DoD DevSecOps Reference Design

Frequently Asked Questions doc about Open Source Software published by DoD CIO

Platform One - USAF program that has a collection of cloud native, hardened, CNCF-compliant K8s distros, IaC, hardened containers, etc

Repo1 - Open source GitLab hosted by Platform One

Iron Bank - Public hardened container registry - DoD-wide reciprocity (controversial, but gaining acceptance rapidly)

Registry1 - Public Docker registry for Iron Bank

DoD Cloud IaC baselines - Not public, need to be government person with .mil email address

roth.andy avatar
roth.andy

Big Bang - Declarative Kubernetes-based cyber-compliance platform. Includes a compliant cyber stack with a Service Mesh, centralized logging and monitoring, validating webhooks, network policies, continuous container security scan/monitoring

Repo for Big Bang

Big Bang Quick Start

Big Bang example using the Zarf delivery tool (disclaimer: I’m a maintainer of Zarf)

Lucky avatar
Lucky
10:39:57 PM

@Lucky has joined the channel

Jim Conner avatar
Jim Conner
10:41:14 PM

@Jim Conner has joined the channel

Lucky avatar

Route53 has some interesting differences compared to commercial.

You can create private hosted zones in the AWS GovCloud (US). In general, the functionality is the same as for private hosted zones in the global version of Route 53. However, you can create alias records only when the alias target is another record in the same hosted zone. To route traffic to another AWS resource, such as an ELB load balancer or an S3 bucket, you can use a CNAME record instead of an alias record unless you're creating a record at the zone apex.
Amazon Route 53 - AWS GovCloud (US)

Lists the differences for using Amazon Route 53 in the AWS GovCloud (US-West) Region compared to other AWS regions.

Megamind avatar
Megamind
10:48:13 PM

@Megamind has joined the channel

Jonathan Perry avatar
Jonathan Perry
10:49:04 PM

@Jonathan Perry has joined the channel

Jim Conner avatar
Jim Conner

lol…the channel where we can all lament troll

2
2
Brandon Metcalf avatar
Brandon Metcalf
11:43:04 PM

@Brandon Metcalf has joined the channel

joshmyers avatar
joshmyers
11:43:04 PM

@joshmyers has joined the channel

loren avatar
loren
11:44:08 PM

@loren has joined the channel

1
Jeff Wozniak avatar
Jeff Wozniak
11:44:08 PM

@Jeff Wozniak has joined the channel

Jon avatar
Jon
11:44:08 PM

@Jon has joined the channel

stobiewankenobi avatar
stobiewankenobi
11:45:09 PM

@stobiewankenobi has joined the channel

David Lundgren avatar
David Lundgren
11:46:07 PM

@David Lundgren has joined the channel

Shannon Dunn avatar
Shannon Dunn
11:47:14 PM

@Shannon Dunn has joined the channel

2022-02-04

stewart.henderson avatar
stewart.henderson
01:42:49 AM

@stewart.henderson has joined the channel

2022-02-06

Andy Miguel (Cloud Posse) avatar
Andy Miguel (Cloud Posse)
01:19:21 AM

@Andy Miguel (Cloud Posse) has joined the channel

2022-02-08

Stewart Henderson avatar
Stewart Henderson
03:27:02 PM

@Stewart Henderson has joined the channel

2022-02-09

Jim Park avatar
Jim Park
07:46:33 PM

@Jim Park has joined the channel

    keyboard_arrow_up