#office-hours (2022-06)
“Office Hours” are every Wednesday at 11:30 PST via Zoom. It’s open to everyone. Ask questions related to DevOps & Cloud and get answers! https://cloudposse.com/office-hours
Public “Office Hours” are held every Wednesday at 11:30 PST via Zoom. It’s open to everyone. Ask questions related to DevOps & Cloud and get answers!
https://cpco.io/slack-office-hours
Meeting password: sweetops
2022-06-01
@here office hours is starting in 30 minutes! Remember to post your questions here.
Erik Osterman (Cloud Posse) has joined Public “Office Hours”
Oscar Blanco has joined Public “Office Hours”
Brian Pauley has joined Public “Office Hours”
New blog post (a lot of Terraform, AWS, and logging aggregation to be discussed): https://mazinahmed.net/blog/indepth-analysis-twitch-security-tools/
Yusuf has joined Public “Office Hours”
Vlad Ionescu has joined Public “Office Hours”
Andy Miguel (Cloud Posse) has joined Public “Office Hours”
Mazin Ahmed has joined Public “Office Hours”
Kris Musard has joined Public “Office Hours”
Alexandr Vorona has joined Public “Office Hours”
dag viggo lokoeen has joined Public “Office Hours”
Eric Berg has joined Public “Office Hours”
Andrew Vitko has joined Public “Office Hours”
Ryan Housand has joined Public “Office Hours”
Ben Azoulay has joined Public “Office Hours”
Ralf Pieper has joined Public “Office Hours”
Diego Carrillo has joined Public “Office Hours”
David Hawthorne has joined Public “Office Hours”
Allan Mohr has joined Public “Office Hours”
Arthur Dent has joined Public “Office Hours”
venkata mutyala has joined Public “Office Hours”
Marc Tamsky has joined Public “Office Hours”
Steven Hopkins (Cloud Posse) has joined Public “Office Hours”
Tim Gourley has joined Public “Office Hours”
Matt Calhoun has joined Public “Office Hours”
Tim Gourley has joined Public “Office Hours”
Andrew Hall has joined Public “Office Hours”
Tim Gourley has joined Public “Office Hours”
Steven Miller has joined Public “Office Hours”
Allen Lyons has joined Public “Office Hours”
Tim Gourley has joined Public “Office Hours”
Isaac M has joined Public “Office Hours”
stelios L has joined Public “Office Hours”
Tim Gourley has joined Public “Office Hours”
Madhusudan Satapathy has joined Public “Office Hours”
Ben Smith (Cloud Posse) has joined Public “Office Hours”
Michael Jenkins has joined Public “Office Hours”
Jim Park has joined Public “Office Hours”
Jailson Silva has joined Public “Office Hours”
Amer Zec has joined Public “Office Hours”
stelios L has joined Public “Office Hours”
links from today’s session
• https://github.com/dragonflydb/dragonfly
• https://github.com/aws-ia/terraform-aws-eks-blueprints
• https://github.com/MatthewJohn/terrareg
• https://github.com/shuaibiyy/awesome-terraform#private-module-registries
• https://cloud.google.com/blog/products/devops-sre/take-the-2022-state-of-devops-survey
• https://mazinahmed.net/blog/indepth-analysis-twitch-security-tools/
2022-06-08
Wondering if we can discuss during the office hours about what kind of tools are available or are people using to get an overview of their existing clusters and all the apps deployed in them a well as their versions.
For many chart developers this was an unexpected breaking change: https://github.com/bitnami/charts/issues/10539 Probably worth mentioning here
What are folks doing when they have a spacelift stack that assumes roles in multiple accounts. Do you cascade down the external id from spacelift_stack and reuse it as the external id for all assumable roles for that stack?
I do not know if this was mentioned in lasts office hours : https://github.com/hashicorp/terraform/issues/31134 we need more votes
and my question for today: (I might not be in the call) = what is the greatest latest to deploy apigateway lambda pairs? lambda aliases? lambda versions? multiple stages? done outside terraform? done on the pipeline ? ( working on ADO pipeline at the moment using AWS infra) codedeploy for blue/green/canary? I want to avoid at all cost to have to do a TF deploy to do a deploy, I do not believe TF is good deployment tool and I’m have the AWS tools for the ADO pipeline
@here office hours is starting in 30 minutes! Remember to post your questions here.
Andy Miguel (Cloud Posse) has joined Public “Office Hours”
Vlad Ionescu has joined Public “Office Hours”
Oscar Blanco has joined Public “Office Hours”
Eric Berg has joined Public “Office Hours”
Allan Mohr has joined Public “Office Hours”
Ralf Pieper has joined Public “Office Hours”
Erik Osterman (Cloud Posse) has joined Public “Office Hours”
dag viggo lokoeen has joined Public “Office Hours”
Ben Smith (Cloud Posse) has joined Public “Office Hours”
Josh has joined Public “Office Hours”
Yusuf has joined Public “Office Hours”
Patrick McDonald has joined Public “Office Hours”
Luis Masaya has joined Public “Office Hours”
Question: AWS SSO for subaccount access vs. tf mod approach?
Matt Calhoun has joined Public “Office Hours”
Ronnie Coleman has joined Public “Office Hours”
Andrew Vitko has joined Public “Office Hours”
Madhusudan Satapathy has joined Public “Office Hours”
Tim Gourley has joined Public “Office Hours”
PePe Amengual has joined Public “Office Hours”
Madhusudan Satapathy has joined Public “Office Hours”
Antarr Byrd has joined Public “Office Hours”
ivan pedro has joined Public “Office Hours”
Oliver Schoenborn has joined Public “Office Hours”
Paul Bullock has joined Public “Office Hours”
Matt Gowie has joined Public “Office Hours”
Isaac M has joined Public “Office Hours”
Can we get the link to this thread?
emem emem has joined Public “Office Hours”
Isaac M has joined Public “Office Hours”
Diego Carrillo has joined Public “Office Hours”
links from today’s session
• https://shkspr.mobi/blog/2022/06/ive-locked-myself-out-of-my-digital-life/
• https://support.apple.com/en-us/HT213305
• https://github.com/devops-infra
• https://retool.com/reports/state-of-engineering-time-2022/
• https://github.com/bitnami/charts/issues/10539
• https://twitter.com/iamvlaaaaaaad/status/1534489530002071553?s=20&t=scqHB8AiDluRMh-65w5RLg
2022-06-14
FYI: I’ll miss tomorrow’s call
thanks for the heads up @Vlad Ionescu (he/him)!
Hello. I want to ask if there is any tool you guys use for templating for any file format
- Needs to understand shell env variables
- Must work on any file type My aim is to use a cli tool that will replace keys on a file
I looked at jinja2 but i need something that directly utilises shell env variables
It must be a shell cli so i can easily use it on any ci/cd tool
And no i dont want to use good all sed command ;)
envsubst might get you close to what you’re looking for (should be available on most Linux distros). Projects associated might have solved what your’re looking for too https://github.com/search?q=envsubst
Thank you Patrick
Thank you Jeff
It seems gomplate is becoming a star…
Also envsubst is like everywhere as it comes with all
2022-06-15
I just saw someone on Reddit said:
I just used gomplate (https://github.com/hairyhenderson/gomplate) to generate my resources based on a YAML input and a template. Because my use case was a bit different (wanted to give the developers a way to create ec2 instances in an “IaC” way by just providing a YAML file), I later combined atlantis from runatlantis and gomplate so it will generate my terraform resource and will create after an approval.
Anyone done something like this? Office-Hour Question
So the interesting thing here is terraform code converted from yaml via gotemplate?
populated
do you have a link to the original reddit?
@Mohammed Yahya I have not created resources using template but integrated terraform with atlantis workflow
@here office hours is starting in 30 minutes! Remember to post your questions here.
Erik Osterman (Cloud Posse) has joined Public “Office Hours”
Q: How does everybody handle database refreshes from Prod to Lower environments when everything’s provisioned through terraform? (in this case, AWS RDS, Oracle if that matters)
• A colleague of mine solved it by terraforming only Prod, then using scripts to refresh DBs to lower environments (qa, stg, etc.). I’m not sure how I feel about that direction.
Michael Sew has joined Public “Office Hours”
Andy Miguel (Cloud Posse) has joined Public “Office Hours”
Allan Mohr has joined Public “Office Hours”
Ryan Housand has joined Public “Office Hours”
Andrew Vitko has joined Public “Office Hours”
Ralf Pieper has joined Public “Office Hours”
Ben Smith (Cloud Posse) has joined Public “Office Hours”
seth floyd has joined Public “Office Hours”
Hello There has joined Public “Office Hours”
Kris Musard has joined Public “Office Hours”
Sherif Abdel-Naby has joined Public “Office Hours”
Amer Zec has joined Public “Office Hours”
Huzaifa Sheikh has joined Public “Office Hours”
Oscar Blanco has joined Public “Office Hours”
David Hawthorne has joined Public “Office Hours”
Stevan Arychuk has joined Public “Office Hours”
Maged Abdelmoeti has joined Public “Office Hours”
Patrick McDonald has joined Public “Office Hours”
Michael Bottoms has joined Public “Office Hours”
Tony Scott has joined Public “Office Hours”
links from today’s session
• https://www.infoq.com/news/2022/06/aws-adr-guide/
• https://github.com/mbode/terraform-state-mover
• https://suzuki-shunsuke.github.io/tfcmt/
• https://twitter.com/__steele/status/1528204759320383488
• https://techcrunch.com/2022/06/07/apples-xcode-cloud-ci-cd-service-comes-out-of-beta/
• https://sweetops.slack.com/archives/CB6GHNLG0/p1655316808839519
Olad Oke has joined Public “Office Hours”
Isaac M has joined Public “Office Hours”
Alexandr Vorona has joined Public “Office Hours”
could not make it today, sorry
2022-06-16
Anyone here have any IP Address Management solutions they would recommend?
I’m dealing with a pretty large multi-cloud deployment as well as on-premise and I’m looking for a sane way to keep track of things. I looked at AWS IPAM but it seems like it’s only AWS specific.
Hello,
I have test Racktable but in my case i’m not very fan of that.
Now i test Netbox and it seems cool.
Racktable: https://www.racktables.org/ Netbox: https://docs.netbox.dev/en/stable/
Netbox looks pretty nice. I wish it was managed but definitely the best thing i have seen yet
We’ve just started working with IPAM. It is AWS specific, in terms of integrations, but I don’t see what would preclude using it for the management aspects. I know @matt has worked with others (not AWS specific), but he’s away until july. @RB anything you’d like to add?
Sure. We reuse the aws-ia ipam module and it’s awesome. It allows us to setup best practices within our infrastructure. We haven’t made full use of it yet and it’s currently in beta but we’re rolling it out to our clients soon and it should allow us more flexibility with IP addressing going forward
https://github.com/aws-ia/terraform-aws-ipam
see the image in their readme for a good example of best practices
Just took a look at IPAM and it seems like you can’t update any of the descriptions for the CIDRs after allocating them.
There is also a good chance I am just using this tool wrong.
Quick update: I decided to move forward with netbox and I found this repo to be very help to get up and running quickly using a docker-compose file:
https://github.com/netbox-community/netbox-docker
If you are using the latest version of docker cli (which includes compose) then you will probably need this command to bring it online:
docker compose run -d -p 8080:8080 netbox
Interesting. Never heard of netbox before. For the uninitiated, it’s a self hosted ipam solution originally written by digital ocean and then open sourced
https://docs.netbox.dev/en/stable/
https://github.com/netbox-community/netbox
Looks pretty active. I’m curious about the pros and cons of using it compared to aws ipam. Do let us know venkata
2022-06-17
thought it was just me
Seems like it’s back
Should be fine now. https://status.hashicorp.com/incidents/knqh68m4xn2w
2022-06-18
2022-06-19
2022-06-20
2022-06-22
@here office hours is starting in 30 minutes! Remember to post your questions here.
If there is time, a couple more data points on https://sweetops.slack.com/archives/CB6GHNLG0/p1655844895056119 would be awesome
Oliver - TF cloud is fine when you are small. Unfortunately it does give a ton a security concerns as you would need to put high level access credentials into TF Cloud. Most enterprises do not want this. You are better off running something like spacelift with internal runners.
Cloud Posses’ Atmos provides great integration with Spacelift
Thanks for the input @Carlos Reyna (Infrascension)
Andy Miguel (Cloud Posse) has joined Public “Office Hours”
Oscar Blanco has joined Public “Office Hours”
Vlad Ionescu has joined Public “Office Hours”
dag viggo lokoeen has joined Public “Office Hours”
Mareks Pikalovs has joined Public “Office Hours”
Brian Pauley has joined Public “Office Hours”
Eric Berg has joined Public “Office Hours”
Andrew Vitko has joined Public “Office Hours”
Ralf Pieper has joined Public “Office Hours”
Oliver Schoenborn has joined Public “Office Hours”
Erik Osterman (Cloud Posse) has joined Public “Office Hours”
Charles Smith has joined Public “Office Hours”
Charles Randall has joined Public “Office Hours”
Zachary Loeber has joined Public “Office Hours”
Ayrton Araujo has joined Public “Office Hours”
Ashwin Jacob has joined Public “Office Hours”
Emile Fugulin has joined Public “Office Hours”
Ralf Pieper has joined Public “Office Hours”
Yasin Yaqoobi has joined Public “Office Hours”
Jim Park has joined Public “Office Hours”
Arthur Dent has joined Public “Office Hours”
Connor High has joined Public “Office Hours”
Matt Gowie has joined Public “Office Hours”
Ben Smith (Cloud Posse) has joined Public “Office Hours”
Michael Jenkins has joined Public “Office Hours”
Tony Scott has joined Public “Office Hours”
Mauricio Wyler has joined Public “Office Hours”
@Andy Miguel (Cloud Posse) - Any chance you can post announcement links from today’s session? Got stuck on a call and missed them
links from today’s session
• https://www.infoworld.com/article/3664052/why-mercedes-benz-runs-on-900-kubernetes-clusters.html
• https://www.hashicorp.com/blog/terraform-cloud-adds-drift-detection-for-infrastructure-management
• https://www.hashicorp.com/blog/announcing-the-hcp-waypoint-private-beta-program
• https://github.com/minamijoyo/tfedit#awsv4upgrade
• https://blog.cloudflare.com/cloudflare-outage-on-june-21-2022/
Connor High has joined Public “Office Hours”
Antarr Byrd has joined Public “Office Hours”
2022-06-23
2022-06-24
2022-06-26
2022-06-28
Anyone using lenses.io ? They were acquired by celonis.com last Oct and sales hasn’t been very responsive, which make me a bit nervous. We haven’t ruled them out completely, but keeping an eye out for options. Any recommendations for alternatives other than Confluent?
AWS MSK ?
I supposed that’s an option, but we have our own self managed Kafka running on k8s. We were hoping to use lenses.io to ease management.
I’m not that familiar with Lenses. How big a cluster are you thinking about?
Apologies for slow response. We’re running 3 brokers w/ 1TB ea.
Got a response from lenses.io Hmmmmm
We have currently paused Lenses sales due to some important business changes; there will be an announcement coming soon on our website.
Acquisition, perhaps?
2022-06-29
@here office hours is starting in 30 minutes! Remember to post your questions here.
This message was deleted.
Erik Osterman (Cloud Posse) has joined Public “Office Hours”
Brian Pauley has joined Public “Office Hours”
Sean O’Dell has joined Public “Office Hours”
Vlad Ionescu has joined Public “Office Hours”
venkata mutyala has joined Public “Office Hours”
Andrew Vitko has joined Public “Office Hours”
Ashwin Jacob has joined Public “Office Hours”
Carlos T has joined Public “Office Hours”
Charles Smith has joined Public “Office Hours”
Allan Mohr has joined Public “Office Hours”
David Hawthorne has joined Public “Office Hours”
dag viggo lokoeen has joined Public “Office Hours”
Arthur Dent has joined Public “Office Hours”
Ralf Pieper has joined Public “Office Hours”
Andy Miguel (Cloud Posse) has joined Public “Office Hours”
Charles Randall has joined Public “Office Hours”
Luis Masaya has joined Public “Office Hours”
Jim Park has joined Public “Office Hours”
Amer Zec has joined Public “Office Hours”
Oscar Blanco has joined Public “Office Hours”
Alexandr Vorona has joined Public “Office Hours”
links from today’s session
• https://www.theverge.com/2022/6/29/23187938/1password-sign-in-with-login-sso-password-manager-beta
• https://github.com/spacelift-io/terraform-provider-smtp
• https://www.infoq.com/articles/devops-and-cloud-trends-2022/
• https://github.com/hashicorp/terraform-provider-helm/releases/tag/v2.6.0
• https://github.com/hashicorp/terraform-provider-helm/issues/828
• https://aws.amazon.com/about-aws/whats-new/2022/06/aws-announces-amazon-codewhisperer-preview/
• https://github.blog/changelog/2022-06-27-list-and-delete-caches-in-your-actions-workflows
Michael Jenkins has joined Public “Office Hours”
Iounes Gardon has joined Public “Office Hours”
Isaac M has joined Public “Office Hours”
Connor High has joined Public “Office Hours”
Antarr Byrd has joined Public “Office Hours”
Anere Faithful has joined Public “Office Hours”
Isaac M has joined Public “Office Hours”
13153275398 has joined Public “Office Hours”
Adam Buggia has joined Public “Office Hours”
Patrick Carney has joined Public “Office Hours”
That seems like a bug in our module
Looks like no open issues on it right now
Best is to probably start by opening the issue, but I cannot comment on when we can get to it