Technology Short Take 141

 Published on 18 Jun 2021 ·  Filed in Information ·  848 words (estimated 4 minutes to read)

Welcome to Technology Short Take #141! This is the first Technology Short Take compiled, written, and published entirely on my M1-based MacBook Pro (see my review here). The collection of links shared below covers a fairly wide range of topics, from old Sun hardware to working with serverless frameworks in the public cloud. I hope that you find something useful here. Enjoy!

Networking

• Via Ivan Pepelnjak, I was pointed to Jon Langemak’s in-depth discussion of working with Linux VRFs.
• I read a couple of Cilium-related blog posts recently that may be useful. The first is a post on Cilium and F5 load balancer integration, while the second discusses implementing Kubernetes network policies with Cilium and Linkerd.
• Sonia Cuff provides a set of links for detailed instructions on setting up VPN access from macOS to Microsoft Azure with Azure Active Directory authentication.
• Patrick Kremer walks through using Postman to implement BGP route filtering with VMware Cloud on AWS. I think this post is interesting/useful for a couple different reasons. One, the content is useful in and of itself. Second, the content reflects—in my opinion—the changing nature of what it means to be a “networking professional.” It’s not just about working with network device CLIs, but using APIs and interacting with both on-premises networking as well as cloud networking.

Servers/Hardware

• Much has been said about the “snappy” feel of Apple’s new M1-based Macs, and this article takes a look at how Quality of Service (QoS) across the efficiency and performance cores may be the reason why these new Macs seem so responsive.
• Here’s an entertaining tale of attempting to resurrect a Sun Ultra 1 Workstation.
• John Gruber’s post on “Secure Intent” on Apple devices was, for me at least, an informative read. I hadn’t delved that much into Apple’s hardware security efforts around Secure Enclave, mostly due to the fact that I was running older Apple hardware (a fact that has since changed).

Security

• Hari Rana has a detailed discussion of security concerns regarding Flatpak (a packaging format for Linux applications).
• Published back in January of this year, Sysdig’s container security and usage report reveals some interesting security trends.
• This is an interesting look at how someone managed to transmit arbitrary data via Apple’s “Find My” network.
• SentinelOne shares a list of “must-have” apps and tools for hackers working on a Mac.
• Ugh—a new Rowhammer exploit/technique. More details are available here.
• Want to learn more about X.509 certificates? Check this out.

Cloud Computing/Cloud Management

• Sandy Cash has a two-part series on working with Kubernetes ConfigMaps (part 1 and part 2).
• Alessandro Perilli has a very lengthy article on NoOps. I love his different “paths” to NoOps (like “No(rmalized)Ops” or “No(tMy)Ops”).
• Rory McCune tackles the topic of permissions and RBAC in Kubernetes.
• Sam Weston takes a look at EKS Managed Node Groups, examining both the good and bad aspects of this functionality, and provides some sample configurations.
• I recently got turned on to Alex Mitelman’s System Design Weekly, which is like a super-cool version of Technology Short Takes but a bit more tightly focused. In any event, there’s a ton of great information available here, so I recommend checking it out.
• How about a tutorial on installing Cilium and Linkerd in a Kubernetes cluster? Here you go.
• For VMware-heavy customers, this post by Cormac Hogan that draws out the connections between the upstream Cluster API project and VMware’s TKG product may be helpful.

Operating Systems/Applications

• Michael Gasch has a nice post on git and using it to collaborate on an open source project. I was happy to see that many of the git practices I’ve adopted align with Michael’s recommendations, and learned a few new tricks along the way.

Programming

• Lee Briggs takes a look at Pulumi’s use of the Output type and the apply() method in writing declarative code using an imperative programming language.
• Ahmet Alp Balkan shows how to serve up gRPC and HTTP from a Go app on Cloud Run. I like reading posts like this, because even though I don’t necessarily understand all the code (yet) I feel like exposing me to the code is still helpful. I could be wrong; time will tell.
• AJ Stuyvenberg demonstrates how to use the serverless framework to enable and simplify the use of multiple stacks for developers and avoid trying to emulate cloud environments on laptops.

Virtualization

• Andrei Warkentin provides an update regarding ESXi-Arm (ESXi on ARM hardware).

Career/Soft Skills

• I enjoyed this article by Cat Swetel on the nature of power.
• Here are some tips for unshackling your education.
• I suspect this list of CRE “life lessons” from Google probably has some wisdom that can be applied in a variety of ways, not just in a CRE-specific context.

That’s all I have for now, but hopefully it’s enough to provide some helpful and useful reading over the weekend. I’m always open to hearing from readers, so feel free to reach out to me on Twitter, find me on Slack (I frequent the Kubernetes Slack instance), or send me an e-mail (my address isn’t hard to find). Thanks for reading!

Metadata and Navigation

 Networking  Hardware  Security  Storage  Virtualization  Linux  Cilium  Kubernetes  macOS  Azure  AWS  Apple  CAPI  Git  Pulumi  Go  VMware
Previous Post: Review: Logitech Ergo K860 Ergonomic Keyboard
Next Post: Kubernetes Port Names and Terminating HTTPS Traffic on AWS

Be social and share this post!