Technology Short Take 101

 Published on 8 Jun 2018 ·  Filed in Information ·  737 words (estimated 4 minutes to read)

Welcome to Technology Short Take #101! I have (hopefully) crafted an interesting and varied collection of links for you today, spanning all the major areas of modern data center technology. Now you have some reading material for this weekend!

Networking

• Kirk Byers discusses the direct TextFSM integration he added to the 2.0 release of Netmiko.
• David Gee provides a walkthrough on creating a self-signed root certificate for use with mutual SSL for gRPC on JunOS. (How’s that for a mouthful!) If you’re a networking pro and didn’t understand most of that last sentence, I’d content that you’ve got some learning to do. The networking industry is changing, don’t get left behind!
• Here’s another one from David: running Juniper vQFX10K on ESXi 6.5. (Personally, I’d love to see the KVM option explained.)
• Kamal Kyrala discusses a method for accessing Kubernetes Services without Ingress, NodePort, or load balancers. Why is this in the networking section? Because it involves IP routing and ECMP!
• On the Ansible web site, Sean Cavanaugh provides a deep dive into the command modules for network devices.

Servers/Hardware

• AWS adds local NVMe storage to the M5 instance family; more details here. What I found interesting is that the local NVMe storage is also hardware encrypted. AWS also mentions that these M5d instances are powered by (in their words) “Custom Intel Xeon Platinum” processors, which just goes to confirm the long-known fact that AWS is leveraging custom Intel CPUs in their stuff (as are all the major cloud providers, I’m sure).

Security

• Daniel Steinberg takes a look inside Firefox’s DOH (DNS over HTTPS) engine, slated to be included in the Firefox 62 release.
• Guy Maliar has a detailed post describing dynamic secrets on Kubernetes pods using HashiCorp Vault. Along the way, just for fun, he also throws init containers into the mix as well. Good stuff here.

Cloud Computing/Cloud Management

• Amazon EKS (Elastic Container Service for Kubernetes) was made generally available this past week. I plan to take a closer look at EKS very soon, and will share some feedback when I am able to do so.
• Jason Plum of GitLab shares five things he wishes he’d known about Kubernetes before he started.
• Co-worker Ruben Orduz takes a (potentially controversial) stance and says that you don’t need an HA control plane for Kubernetes. His points are spot-on: making the control plane highly available isn’t going to improve the availability or scalability of your applications.

Operating Systems/Applications

• Speaking of EKS, here’s a new command-line interface for EKS, courtesy of Weaveworks.
• Along with the GA of EKS, HashiCorp has a release of the Terraform AWS provider that has EKS support. More details are available here.
• Google recently announced kustomize, a tool that provides a new approach to customizing Kubernetes object configuration.
• Following after a recent post involving parsing AWS instance data with jq, a Twitter follower pointed out jid (the JSON incremental digger). Handy tool!
• I’m seeing a fair amount of attention on podman, a tool primarily backed by Red Hat that aims to replace Docker as the client-side tool of choice. The latest was this post. Anyone else spent any quality time with this tool and have some feedback?
• Nick Janetakis has a collection of quick “Docker tips” that you may find useful; the latest one shows how to see all your container’s environment variables.

Storage

• This is an interesting announcement from a few weeks ago that I missed—Dell EMC will offer Isilon on Google Cloud Platform. See Chris Evans’ article here. (I’ll leave the analysis and pontificating to Chris, who’s much better at it than I am.)

Virtualization

• Mike Foley shares his experience in updating his vSphere hosts to support the new Secure Boot functionality in vSphere 6.7. I’d stay tuned to Mike’s blog; he’s indicated that some TPM 2.0-related content is due soon.
• Ed Haletky discusses some considerations around upgrading to vSphere 6.7.
• VMware rock star Frank Denneman provides an introduction to Elastic DRS, a feature of VMware Cloud on AWS.

Career/Soft Skills

• I found this two-part series (part 1, part 2) on understanding how to process information to help you get organized to be an interesting (and quick) read. It’s been my experience that improving your skills at being organized often reaps benefits in other areas.

OK, that’s all this time around. I hope you found something useful in this post. As always, your feedback is welcome; feel free to hit me up on Twitter.

Metadata and Navigation

 Networking  Hardware  Security  Storage  Virtualization  Firefox  Kubernetes  AWS  JSON  vSphere  Encryption  Docker  Juniper  Ansible  Automation  Google
Previous Post: Exploring Kubernetes with Kubeadm, Part 1: Introduction
Next Post: A Quadruple-Provider Vagrant Environment

Be social and share this post!