DEVOPS WEEKLY ISSUE #498 - 12th July 2020
A collection of networking posts this week, from load balancers to understanding Kubernetes networking to kernel networking. Plus posts on monitoring and continuous delivery.
env0 sponsors Devops Weekly
Using your existing Infrastructure as Code, it’s easy to get rid of your traditional staging environments and start using a dynamic, dedicated environment for each pull request. Avner (one of the devs from the env0 team) put together a blog post on how per-pull request environments will help shorten feedback loops, reduce bottlenecks and conflicts, and increase your team’s velocity. Plus how to get started with them.
https://www.env0.com/devops-pull-requests
News
A good discussion of antipatterns when trying to implement continuous delivery practices, looking at under-investing in build automation.
https://skeltonthatcher.com/2016/11/14/dealing-continuous-delivery-anti-patterns/
A post on Porter, a load balancer for Kubernetes designed for bare metal environments. Good introduction to load balancing in Kubernetes and BGP.
https://itnext.io/porter-an-open-source-load-balancer-designed-for-bare-metal-kubernetes-clusters-870e1313b7f0
I mentioned Vector last week in the tools section. Anyone interested in a new monitoring tool should find this post interesting. Basic installation and usage instructions, and some observations about design choices.
https://www.kartar.net/2020/05/a-bit-of-a-vector/
A detailed walk through of the various options and moving parts related to networking in Kubernetes.
https://speakerdeck.com/thockin/kubernetes-and-networks-why-is-this-so-dang-hard
An argument for the importance of operators and sidecars in the distribution of software.
http://www.ofbizian.com/2020/07/operators-and-sidecars-are-new-model.html
A look at the btrfs file system, specifically at features, reliability and performance and a large scale case study.
https://lwn.net/SubscriberLink/824855/30c689f442d0033c/
An interesting look at the low-level kernel details when it comes to accepting a TCP connection, exploring ways of scaling services before the connection is made.
https://theojulienne.io/2020/07/03/scaling-linux-services-before-accepting-connections.html
A new Choria subproject called Scout, focused on components for building system health monitoring systems.
https://choria.io/blog/post/2020/07/02/choria_scout/
https://choria.io/blog/post/2020/07/03/scout_components/
Tools
Dockle is a Docker image scanning tool that helps enforce best practices when building images.
https://github.com/goodwithtech/dockle
Krane is a simple Kubernetes RBAC static analysis tool. It identifies potential security risks in K8s RBAC design and makes suggestions on how to mitigate them.
https://github.com/appvia/krane