Technology Short Take 82

 Published on 5 May 2017 ·  Filed in Information ·  1042 words (estimated 5 minutes to read)

Welcome to Technology Short Take #82! This issue is a bit behind schedule; I’ve been pretty heads-down on some projects. That work will come to fruition in a couple weeks, so I should be able to come up for some air soon. In the meantime, here’s a few links and articles for your reading pleasure.

Networking

• Kristian Larsson shows how to validate data using YANG. Practical examples like this have really helped me better understand YANG and its relationship to structured data you might exchange with a device or service.
• There’s lots of talk about applying test-driven development (TDD) principles in various automation contexts, but I like the fact that Ajay Chenampara provides some practical examples in his blog post on applying TDD in network automation using Ansible.
• Matt Oswalt talks about how the combination of NAPALM and StackStorm enables some interesting results, including the ability to verify configuration consistency. StackStorm isn’t something I’ve had the opportunity to learn/use at all, but it’s on my (ever-growing) list of things to check out.
• Aaron Conole provides an overview of using the ovs-dpctl command to “program” the Open vSwitch (OVS) kernel module. It’s a bit geeky, but does provide some insight into how OVS works.
• Mircea Ulinic shares some experience around Cisco IOS-XR’s buggy XML API and the (unfortunate) terrible customer experience that resulted. Mircea’s right—bugs will happen in all software (VMware NSX has had its share, for example), but the key is in how it’s handled.
• Doug Youd of Cumulus has an excellent 3-part series on the use of LACP in VMware vSphere environments. It’s a really good, in-depth review of the topic, the design considerations around this topic, and some of the design ramifications. Highly recommended! Check out part 1, part 2, and part 3.
• Jason Edelman reminds folks that big changes in an industry—like fully embracing network automation, for example—often occurs as a series of smaller steps. If you’re just starting your network automation journey, start small. Just be sure to start!
• There’s been a fair amount of noise recently over extended BPF (eBPF) as a solution to some server-side networking challenges. This article gives an overview and brief introduction to eBPF. More articles are apparently planned, and I’m looking forward to reading them.

Servers/Hardware

Nothing this time around. I’ll stay alert for items to include next time!

Security

• Apparently, the NIST (National Institute for Standards and Technology, a US government entity for all the non-US readers out there) is formulating a new set of recommendations for passwords. You can read more about the proposed changes in this article.
• It’s nice to see some folks attempting to help tackle potential security concerns with containers. Looks like it’s early days yet for this effort, so it will be interesting to see what comes out of it.

Cloud Computing/Cloud Management

• If you’re trying to wrap your head around AWS IAM policies, I have yet to find a resource I can recommend more strongly than this article on AWS IAM policies in a nutshell. It’s an incredibly well-written and informative article. I strongly recommend using this article to help further your understanding of AWS IAM policies.
• Philipp Garbe describes a better solution to ECS AutoScaling that avoids scaling contention due to “competing” metrics (i.e., memory pressure but not CPU utilization, or vice versa).
• News in the OpenStack space hasn’t been so good recently (Intel pulling out of OSIC, various companies laying off folks, other “pure play” companies shifting focus away from OpenStack), but here’s one architect’s perspective on what you may still want to attend the OpenStack Summit.
• Jon Schulman provides an overview of the Microsoft Azure endpoint included in the vRealize Automation 7.2 release.
• Craig McLuckie shares his perspective on multi-cloud. This is the first in a series of posts, so stay tuned for future installations.

Operating Systems/Applications

• Ryan Kelly shows readers how to configure Harbor (open source container registry project) to use Amazon S3 for storage.
• YACOOS (Yet Another Container-Optimized Operating System) has gone GA; this time it’s Google’s (imaginatively-named) “Container-Optimized OS”. You can get more details via this Google blog post.
• Ajay Chenampara shares his workaround for storing GitHub credentials on Linux. (If you’re using GNOME, you may find this approach easier.)
• There’s a new version of CentOS Atomic Host available. I’ve been playing with this a pretty fair amount recently, and hope to post some thoughts soon.
• Aaron Paxson demonstrates how to use Ansible to work with JSON-formatted structured data. This is pretty cool, and reminds me just how much I still have to learn about using Ansible.
• James Pettigrove shows how to test your PowerShell code in different versions with just one workstation.
• Here’s an example of using Ansible to clone Oracle Grid infrastructure.
• This post illustrates how to use Consul to provide dynamic inventory for Ansible. While this seems like a potentially useful combination, I wonder whether this would be practical. It seems like environments where this may be useful might have more effective ways of getting dynamic inventory (like using one of the dynamic inventory modules for the cloud provider, for example).
• Want to keep your PowerShell Core up to date? Check out this post by Alan Renouf.

Storage

• Ben Armstrong shows how you can use Hyper-V storage resource pools to help ease migration of workloads between data centers.

Virtualization

• Melissa Palmer (aka “vMiss”) has a post where she’s collecting tips and tricks for VMware Fusion.
• William Lam talks about the new ESXi Learnswitch, which helps with nested ESXi environments (among other things).
• Gabrie Van Zanten shares a hard-learned lesson on tracking down how a vCenter Server account keeps getting locked out.

Career/Soft Skills

• I stumbled across this article on lowering the barrier to entry by Annie Hedgpeth. One thing that stuck out in particular was “lending your privilege”; that is, lending someone your expertise, your access to resources, your stamp of approval, your connections (personal network), etc. While this is often used in the context of diversity and inclusion, I think it applies in many more contexts and situations.

OK, that’s it for now. Hopefully I’ve included something you found helpful; if so, please feel free to share a link back to this article using Twitter or your social media platform of choice. Thanks for reading!

Metadata and Navigation

 Networking  Hardware  Security  Storage  Virtualization  Ansible  OVS  Cisco  LACP  Automation  Linux  AWS  OpenStack  Microsoft  Azure  CentOS  JSON  PowerShell  Consul  HyperV  VMware  vSphere  Fusion
Previous Post: Big News About the Full Stack Journey Podcast
Next Post: Using a Makefile with Markdown Documents

Be social and share this post!