SRE / DevOps / Kubernetes Weekly Reportまとめ#91(2021/10/24~10/29)
- The English Version of this blog is here.
- この記事は2021/10/24~10/29発行の下記3つのWeekly Reportを読み、備忘録兼リンク集として残しているものです。
- なるべく情報を早く届けたい/共有したいので、ブログのリンクを確認次第、先行公開しています。自身のコメントは随時追加しています。
- DEVOPS WEEKLY ISSUE #565 October 24th, 2021
- SRE Weekly Issue #293 October 24th, 2021
- KubeWeekly #281 October 29th, 2021
- DEVOPS WEEKLY ISSUE #565 October 24th, 2021
- News
- KubeCon finished up in LA a week and a bit ago, and we have several posts this week recapping the event, with lots of links, observations and some opinions.
- An insightful post on the sometimes hard-to-define distinction between application and infrastructure. A static/dynamic linking analogy, how the Kubernetes API and Crossplane fit in, and the potential for a new type of marketplace for applications.
- Game servers are a super interesting scaling challenge. This post, about recent outstages for a large game, goes into some great operational, data storage and architecture details.
- A look at how one team is evolving a large NFS file storage setup towards something that is easier to scale horizontally and automatically.
- More deep internet networking insights, this time looking under the hood about what makes a valid hostname. It’s worse than you think.
- A good introduction to the extensibility benefits of Kubernetes, looking at the high-level API, custom resources and the operator pattern.
- A post on introducing a production readiness review process, in particular in smaller teams.
- Tools
- hcltm is a tool for describing a thread model in HCL, and then generating various outputs from it including markdown documents and data flow diagrams.
- Snowcat is a tool that gathers and analyzes the configuration of an Istio cluster and audits it for potential violations of security best practices.
- News
- SRE Weekly Issue #293 October 24th, 2021
- Articles
- The Downside of Hospitals Becoming “Highly Reliable”
- Diablo II: Resurrected Outages: An explanation, how we’ve been working on it, and how we’re moving forward
- An Introduction to Incident Response Roles
- Postmortem Pitfalls
- The danger of hidden functional roles
- What’s in a hostname?
- Crew member yelled ‘cold gun’ as he handed Alec Baldwin prop weapon, court document shows
- Outages
- Articles
- KubeWeekly #281 October 29th, 2021
- The Headlines
- Kubernetes Podcast from Google: Jasmine James, KubeCon + CloudNativeCon co-chair
- ICYMI: CNCF online programs this week
- Securing your workload communications with Open Service Mesh
- Introducing Kubescape - open-source tool to test Kubernetes deployment
- How to design a multi-cloud deployment
- Project Calico network policies
- Understanding GitOps usecases
- The Technical
- What you need to know about Kubernetes Network Policy
- The life of an API gateway request (part 1)
- Optimizing Kubernetes applications with Kubecost and Spinnaker
- Announcing HAProxy Kubernetes Ingress Controller 1.7
- Connecting services to Kubernetes clusters with inlets, VPC Peering and direct uplinks
- Transitioning from Monolith to Microservices
- Securing a Kubernetes pod with Regula and Open Policy Agent
- Structure testing for Docker containers
- Kustomize tutorial: Creating a Kubernetes app out of multiple pieces
- Kube-fledged: Cache container images in Kubernetes
- Kubernetes logging in production
- How to develop a customer provider in Terraform
- Database security best practices on Kubernetes
- How Linkerd retries HTTP requests with bodies
- The Editorial
- Kubernetes co-founder Joe Beda interview
- Kubernetes cost management and analysis guide
- I attended Kubecon 2021 in-person, here are my top six takeaways
- KaaS, KPaaS & CaaS: Explained and compared
- Announcing Vitess 12
- Upcoming CNCF Online Programs
- The Headlines
