What happens after you go cloud and the reality sinks in For some, the cloud is rainbows, puppies and happy promises. You’ve whiteboarded a vision, forecasted the benefits and made promises to the business. Now the real work begins. Is the design a reality ? How do you handle failure ? Can you…
On today's sponsored Day Two Cloud podcast we talk about zero standing privilege with strongDM. Zero standing privilege goes beyond just-in-time credentials to a model where no credentials pre-exist, but are created in real-time and paired with appropriate permissions built from policy, also created in real-time. Can such a thing be accomplished technically---and without irritating all your end users? StrongDM's Sebastian Mankowski is here to make the case. The post Day Two Cloud 178: Implementing Zero Standing Privilege (Sponsored) appeared first on Packet Pushers.
IT security is broken. Vendors ship insecure products, customers have to bolt on and then operate more and more security products, compliance and regulatory requirements don't necessarily make things safer, and getting business done always takes priority over securing systems and data. On today's Day Two Cloud podcast, guest Mick Douglas shares ideas on how to make security less excruciating and more effective. The post Day Two Cloud 177: IT Security Is Broken; Here’s Ideas On How To Fix It appeared first on Packet Pushers.
Today on Day Two Cloud we examine global network performance of some of the biggest public cloud providers. Sponsor ThousandEyes shares key findings and surprising data points from its 2022 Cloud Performance Report on AWS, Azure, and Google Cloud. The post Day Two Cloud 176: Comparing Cloud Provider Network Performance (Sponsored) appeared first on Packet Pushers.
On today's Day Two Cloud we continue our Kubernetes conversation with guest Michael Levan. Today's show focuses on Kubernetes deployments and managing clusters once they're up and running. We discuss whether Kubernetes is really more complex than traditional application infrastructure; examine management options such as GitOps, manifests, and Kubectl; share useful tools, and talk about why Kubernetes is all about APIs. The post Day Two Cloud 175: Deploying Kubernetes And Managing Clusters appeared first on Packet Pushers.
On today's Day Two Cloud podcast we walk through how to build a Kubernetes cluster to support a container-based application. We cover issues such as what constitutes a minimum viable cluster, rolling your own vs. Kubernetes-as-a-service, managing multiple clusters, pros and cons of bare metal vs. running clusters in VMs, design recommendations and gotchas using a cloud service, and more. The post Day Two Cloud 174: Building Kubernetes Clusters appeared first on Packet Pushers.
If you're headed to AWS re:Invent in Las Vegas, you can catch Ned & me recording a show live. On Wednesday, November 30, 2022, we'll be at TopGolf with sponsor Prosimo from 4 to 7 pm. Join us to have some fun! Links and drinks, meet fellow engineers building clouds for their companies, and then watch us record the show. Space is limited, so register at prosimo.io. We'll see you at TopGolf Las Vegas on Wednesday the 30th! The post Day Two Cloud Invite: Recording At TopGolf Las Vegas Nov. 30, 2022 appeared first on Packet Pushers.
Today on Day Two Cloud we examine Istio Ambient Mesh, a new option for building service meshes in a microservices environment. Istio Ambient Mesh essentially brings the concept of a load balancer to a cluster of containers. Rather than run a sidecar proxy for each pod or container, you can run Ambient Mesh per node. Our guest and guide to this open source project is Christian Posta, Global Field CTO at Solo.io. The post Day Two Cloud 173: Istio Ambient Mesh Minimizes Sidecar Proxies appeared first on Packet Pushers.
On today's Day Two Cloud we talk through the idea of “zero standing privilege”. Zero standing privilege is an evolution of credentials management that goes beyond always-on usernames and passwords and more advanced forms of privileged access management to help lock down access to sensitive systems. Our sponsor is strongDM and our guest is Britt Crawford, Director of Product. The post Day Two Cloud 172: Lock Down Access With Zero Standing Privilege (Sponsored) appeared first on Packet Pushers.
On today's Day Two Cloud we talk about testing. While developers do the testing, operators may be responsible for setting up testing environments, which can be a lot of work. That work increases with microservices because of all the complexities and dependencies that come with connecting and orchestrating microservices-based applications. Today we talk about how to address testing challenges with Arjun Iyer, and explore a solution he's developed for simplifying end-to-end microservices testing in a Kubernetes environment. This is not a sponsored show, but we do talk about Signadot, a startup Arjun founded in the testing space. The post Day Two Cloud 171: The Challenges Of Scaling Microservices Testing appeared first on Packet Pushers.
Welcome to Day Two Cloud! On today's episode---databases. More specifically, controlling your databases. We're discussing the database control plane company Severalnines with CEO Vinay Joosery. Severalnines is sponsoring today's discussion about sovereign Databases as a Service (DBaaS). The post Day Two Cloud 170: Sovereign DBaaS And Severalnines (Sponsored) appeared first on Packet Pushers.
Today on the Day Two Cloud podcast we're going to talk with someone who was part of a DevOps teams deploying Infrastructure as Code (IaC) and applications in the public cloud. This project ran into challenges around scaling, the environments they needed to support, how to store certain artifacts, working with pipeline, and breaking up a monolithic repo into smaller repos and the repercussions of that decision. The post Day Two Cloud 169: Splitting Up Mono-Repositories In Infrastructure As Code appeared first on Packet Pushers.
Today's Day Two Cloud podcast, sponsored by AppDynamics, explores how AppDynamics Cloud brings observability to your Kubernetes deployments by ingesting and visualizing all metrics, events, log and trace data from across your cloud and on-prem landscapes. The post Day Two Cloud 168: Get Kubernetes Observability With AppDynamics Cloud (Sponsored) appeared first on Packet Pushers.
On today's Day Two Cloud we talk about what it's like to interview for a job at a massive tech company. How do you get yourself in line? What can you expect from the interview? How do you prepare? How do you overcome your own imposter syndrome? Our guest is Nathaniel Avery, Outbound Product Manager at Google Cloud. He recently ran the gauntlet of the tech interview, and is here to share tips and insights on the process. The post Day Two Cloud 167: Interviewing At A Huge Tech Company appeared first on Packet Pushers.
Multi-cloud services are an emerging category of software designed to make your Dev and Ops teams' multi-cloud reality easier to cope with. Sponsor VMware stops by the Day Two Cloud podcast to talk about how the operational challenges of running workloads in a mix of public and private clouds and how its multi-cloud services initiative can help. The post Day Two Cloud 166: VMware: How Multi-Cloud Services Address Cloud Complexity (Sponsored) appeared first on Packet Pushers.
On today's Day Two Cloud we dive into Istio with Kevin Davin, a senior back end engineer who works deeply with Istio. We discuss Istio's promises, balancing its complexity with the capabilities it enables, understanding when and when not to use it, and more. The post Day Two Cloud 165: Does Your Infrastructure Need Istio? appeared first on Packet Pushers.
Today on the Day Two Cloud podcast, we talk DevSecOps and how it's more than just a marketing term. We also discuss Infrastructure as Code (IaC) and IT as Code and what that actually means for operations folks. It doesn't mean you have to write code all day, but we make an effort to put some specifics around what an Ops person should know when it comes to code. The post Day Two Cloud 164: DevSecOps Is A Real Thing appeared first on Packet Pushers.
Today on the Day Two Cloud podcast we have a frank discussion about tech marketing. Why? Because engineers are a target of marketing, so it's helpful to know how marketing works, what's trying to be communicated, and how it could be better. We also discuss whether the tech industry has over-committed on chasing developers while ignoring operations and sysadmins, why ops and sysadmins shouldn't be ignored, and more. Our guest is Gina Rosenthal, founder of Digital Sunshine Solutions. The post Day Two Cloud 163: Is The Tech Market Too Focused On Developers? appeared first on Packet Pushers.
In this Day Two Cloud episode, Ned and Ethan discuss the tradeoffs of mental health and professional achievement. Maybe you spend a lot of extra hours at work for your employer. Perhaps you focus on certifications after work and on the weekends. Maybe you say “yes” to more than you should, because you're scared you'll lose it all if you don't. The tradeoffs are in your personal relationships. Your mental health. You suffer from burnout, anxiety, and stress. Is it all worth it? Ned and Ethan don't have all the answers, but they share their experiences and perspectives. The post Day Two Cloud 162: The Mental Health Of The 10x Samurai Ninja Engineer appeared first on Packet Pushers.
Tech marketing is often terrible. The problem is that marketers tend to develop material aimed at "C-level" or executive audiences, which doesn't resonate with developers and engineers who influence buying decisions and actually use products. Today's Day Two Cloud podcast examines how to improve tech marketing, and why communication is a good skill for technologists themselves. The post Day Two Cloud 161: Tech Marketing Sucks; Let’s Make It Better appeared first on Packet Pushers.
Today on the Day Two Cloud podcast we go deep on the Cilium service mesh, including a packet walk that takes us from packet ingestion all the way through a Kubernetes cluster. We also talk about how Cilium eBPF differs from other sidecar proxies and the potential performance and observability gains. Strap on your propeller beanie as we try to keep up with guest is Thomas Graf, a co-creator of Cilium and CTO of Isovalent. The post Day Two Cloud 160: Going Deep Into Cilium Service Mesh With eBPF appeared first on Packet Pushers.
DevOps originated as a cultural movement to try and get developers and infrastructure operators to better work together to support applications in production. According to our guest Lee Briggs, that movement has failed. We discuss this premise on today's Day Two Cloud podcast. The post Day Two Cloud 159: DevOps Is A Failure appeared first on Packet Pushers.
According to Chris Wahl, everyone in an organization can lead--not just those with "chief" or "manager" in their job title. Leadership isn't about telling everyone else what to do. Not at all. Have a listen as Chris explains what it is to lead, and how you can do so yourself while enabling others around you to do the same. The post Day Two Cloud 158: On Leadership With Chris Wahl appeared first on Packet Pushers.
Today's Day Two Cloud podcast brings you highlights from Cloud Field Day 14, where Day Two Cloud's Ned Bellavance was a delegate. The Field Day event brings together cloud vendors and tech bloggers for in-depth presentations. Ned will share highlights and impressions from presentations from companies including Weka, Alkira, and Morpheus Data. The post Day Two Cloud 157: Highlights Of Cloud Field Day 14 appeared first on Packet Pushers.
It's hard to guarantee quality of experience for users accessing cloud applications. The users are connected via networks we don't own, and the apps are hosted on networks we don't own. So what can a network operations team do about quality of experience in a world of cloud-hosted apps and cloud-connected users? Sponsor Broadcom Software is here to help us answer this question. The post Day Two Cloud 156: Multi-Cloud Experience Monitoring With Broadcom Software (Sponsored) appeared first on Packet Pushers.
Today on Day Two Cloud, we talk about why Terraform stinks. OK, maybe it doesn't stink, but just because everyone seems to love a particular tool doesn't make it right for you. We talk with Dan Moore, a developer advocate at FusionAuth, who tried to use Terraform and just couldn't get behind it. This episode is based on a presentation Dan gave at Gluecon in May 2022. The post Day Two Cloud 155: Terraform Stinks appeared first on Packet Pushers.
Today's Day Two Cloud turns the nerd knob to eleven as we delve into kernels, eBPF, sidecar proxies, and service meshes. If you're an old-school engineer used to working with load balancers and proxies, this show looks at new ways to do application delivery in the Kubernetes world. The post Day Two Cloud 154: Can eBPF Replace Sidecar Proxies? appeared first on Packet Pushers.
On Day Two Cloud we've had a lot of conversations about using infrastructure as code. We've looked at solutions like Ansible, Terraform, the AWS CDK, and Pulumi. Which begs the question, which IaC solution should you learn? A Domain Specific Language (DSL)? A General Purpose Programming Language (GPPL)? Something else? We discuss. The post Day Two Cloud 153: IaC With GPPL Or DSL? IDK appeared first on Packet Pushers.
Welcome to Day Two Cloud. In this episode we take on the problem of over-provisioning access to resources. Sponsor strongDM joins the conversation to share how to properly manage roles and access in our IT systems, focusing heavily on the process of discovery. Who has access to what, and why do they have that access? Our guest from strongDM is Britt Crawford, Director of Product. The post Day Two Cloud 152: How To Right-Size Access With strongDM (Sponsored) appeared first on Packet Pushers.
Today's Day Two Cloud podcast gets into Infrastructure as Code (IaC) and how to evaluate it so that IaC practices fit your organization, your processes, the infrastructure you're trying to support, and so on. Our guest lays out some guideposts to help you understand if IaC is working for you. The post Day Two Cloud 151: How To Tell If Infrastructure As Code Is Working For You appeared first on Packet Pushers.
Sponsor and startup Augtera Networks joins Day Two Cloud to discuss Augtera's proactive network analysis and operations product, which is meant to make you aware of problems before they become…problems. Augtera brings together traditional network sources such as flows and SNMP, plus telemetry and metadata to provide actionable information across networks you own and networks you don't. The post Day Two Cloud 150: Proactive Network Operations With Augtera (Sponsored) appeared first on Packet Pushers.
Today's Day Two Cloud sponsor Netris promises to deliver a cloud-like experience for running your physical network. Netris software lets you build a private cloud on premises, and integrates with Terraform and Kubernetes. Our guest is Alex Saroyan, Netris CEO and founder. The post Day Two Cloud 149: On-Prem Cloud Networking With Netris (Sponsored) appeared first on Packet Pushers.
If you're a security or network professional wondering if your skills aren't as applicable or useful when it comes to public cloud, don't worry: they are very, very useful. On today's Day Two Cloud podcast we talk with Brandon Carroll on how to properly map traditional infrastructure and network security to public cloud deployments. The post Day Two Cloud 148: Understanding Cloud Security Roles And Responsibilities appeared first on Packet Pushers.
Today on Day Two Cloud we peel back the curtains on Google Cloud with a GCP insider to find out how Google Cloud differentiates itself, its embrace of a multi-cloud approach, and more. Our guest is Richard Seroter, Director of Outbound Product Management at Google Cloud. This is not a sponsored episode. The post Day Two Cloud 147: Google Cloud Is Not Just For Devs appeared first on Packet Pushers.
Today's Day Two Cloud digs into an Infrastructure as Code (IaC) platform called Pulumi. Pulumi can be used to build, deploy, and manage cloud applications using familiar languages such as .Net and Java, as well as well-known tools and practices. The post Day Two Cloud 146: Deploying And Managing Cloud Infrastructure With Pulumi appeared first on Packet Pushers.
Today's Day Two Cloud explores the Open Policy Agent (OPA), an open-source project that serves as a policy engine for cloud-native environments. According to the OPA Web site, you can use OPA to "enforce policies in microservices, Kubernetes, CI/CD pipelines, API gateways, and more." Guest Anders Eknert walks through how it works, use cases, and more. The post Day Two Cloud 145: Using Open Policy Agent For Cloud-Native Policy Enforcement appeared first on Packet Pushers.
Today's Day Two Cloud explores the vastness of IPv6 and public cloud. IPv6 provides so much address space that you can use an address once for one connection and never use it again, and it isn't wasteful. The abundance of IPv6 may influence how you approach cloud applications and networks. The post Day Two Cloud 144: The State Of IPv6 In Public Cloud appeared first on Packet Pushers.
Today's Day Two Cloud gets into application security and working with developers to make sure code is sanitized and tested. Writing secure code at the outset can dramatically reduce risk and help simplify operations and security. Our guest is Tanya Janca, founder of We Hack Purple. We Hack Purple offers free training courses for people who want to get into security. The post Day Two Cloud 143: Application Security Isn’t Just For Developers appeared first on Packet Pushers.
Today's Day Two Cloud episode bites into OpenZiti, an open-source project that brings zero trust principles to networks and applications. OpenZiti builds an overlay network to enforce zero trust. It has several moving parts including edge routers, a controller, and SDKs. OpenZiti was created by NetFoundry, our sponsor for this episode. Guest Clint Dovholuk takes us through the nitty-gritty of how it works. The post Day Two Cloud 142: OpenZiti Serves Up Zero Trust For Applications (Sponsored) appeared first on Packet Pushers.
Today's Day Two Cloud is a discussion about how to build your multicloud fluency. That is, having knowledge of, and competence in, more than one cloud. The short answer? Learn to code. That's the position of our guest Forrest Brazeal, and he brings his justifications. The post Day Two Cloud 141: Developing Multicloud Fluency appeared first on Packet Pushers.
On today's sponsored Day Two Cloud episode with Cisco ThousandEyes, we discuss how to monitor what's broken in public cloud services. With the right information, you can offer a nuanced, knowledgeable answer when executives want to know when the company's crucial customer-facing app hosted on a bunch of cloud services is coming back online. The post Day Two Cloud 140: Troubleshooting Cloud Outages With End-To-End Visibility (Sponsored) appeared first on Packet Pushers.
Today's Day Two Cloud podcast gets into Azure Bicep, a language that IT teams can use to deploy Azure resources in a consistent manner. While Bicep is Azure-specific, it can be useful as part of an Infrastructure-as-Code initiative. Guests Ben Weissman and Rob Sewell explore how Bicep works, discuss use cases, compare it to Terraform, and more. The post Day Two Cloud 139: Azure Bicep Is (Not) ARM appeared first on Packet Pushers.
VMware is our sponsor today for a Day Two Cloud episode about logging. Specifically, we're talking about vRealize Log Insight Cloud. It's not just about collecting logs and events, and it's not just for VMware products. What do you get out of the data being logged? That's what's interesting. This is much more than a pile of syslogs with a search engine dropped on top. The post Day Two Cloud 138: Rethinking Logs And Analysis With vRealize Log Insight Cloud (Sponsored) appeared first on Packet Pushers.
Today's Day Two Cloud gets into the weeds of a real-world project build around Windows containers. Windows containers? Yes, the goal was to run a particular job and deploy it on Kubernetes using Azure Kubernetes Services (AKS). Our guest is Sai Gunaranjan, Principal Architect for a large healthcare company. The post Day Two Cloud 137: Automating Windows Container Builds appeared first on Packet Pushers.
Today on the Day Two Cloud podcast we examine the role and responsibilities of Kubernetes operators; that is, the humans in charge of running Kubernetes. Kubernetes operators have to support application and security teams, handle capacity planning, keep an eye on versioning, and more. This episode is sponsored by F5's NGINX team. Our guests are Jenn Gile, Sr Manager of Product Marketing; and Brian Ehlert, Sr Product Manager. The post Day Two Cloud 136: The Role And Responsibilities Of A Kubernetes Operator (Sponsored) appeared first on Packet Pushers.
On today's Day Two Cloud we examine why Infrastructure as Code (IaC) is about more than the just the tools that enable it. Guest Rob Hirschfeld puts forth the notion that while the tools are there for a reason, those tools have to serve a purpose: supporting collaboration, re-use, and efficient operations. The post Day Two Cloud 135: Infrastructure As Code Should Foster Infrastructure As Collaboration appeared first on Packet Pushers.
Today's Day Two Cloud is a sponsored episode with StrongDM, which helps engineers and IT professionals get access to databases, servers, Kubernetes clusters, switches, Web apps, and more from a desktop or laptop. We dive into StrongDM's proxy model, integrations with directories and ID stores, audit features, and more. The post Day Two Cloud 134: Simplifying Infrastructure Access With StrongDM (Sponsored) appeared first on Packet Pushers.
Today on the Day Two Cloud podcast we offer tips and advice for those on the job market, from finding new opportunities, building a professional network, prepping for interviews, handling curve-ball interview questions, managing nerves, and more. The post Day Two Cloud 133: Tips For Tech Interview Success appeared first on Packet Pushers.
Web3 is the term for an emerging technology movement that aims to create a more decentralized Internet and put more ownership in the hands of individual users and consumers. At present Web3 is associated with cryptocurrencies and NFTs, but it's worth understanding the technological underpinnings of Web3, particularly blockchain and its broader applications. Our guide to Web3 infrastructure is Josh Neuroth. The post Day Two Cloud 132: What Web3 Means For Infrastructure Engineers appeared first on Packet Pushers.
Today's Day Two Cloud podcast delves into issues about monitoring all the things, including the notion of monitoring the cloud...from the cloud. Ned Bellavance and Ethan Banks discuss the pros and cons of DIY vs. using a service, differences between monitoring infrastructure stacks and applications, what to monitor and why, how to deal with all that data, the necessity of alerting, constructing meaningful dashboards, and more. The post Day Two Cloud 131: Monitoring The Cloud From The Cloud appeared first on Packet Pushers.
On today's Day Two Cloud we have a career conversation with Angela Andrews, a Solution Architect at Red Hat. Angela provides an introduction to OpenShift, a cloud-based offering for running and orchestrating Kubernetes containers in public clouds and on premises from Red Hat. We also discuss how to integrate communication skills with technical knowledge, the role of a Solution Architect, how to stay on top of new and changing technologies, and more. The post Day Two Cloud 130: Getting Started With OpenShift For Kubernetes Orchestration appeared first on Packet Pushers.
Optimizing cloud costs means more than looking at your bill and hunting down unused instances. It's about understanding the full lifecycle of cloud workloads, dealing with management that wants predictable spending even as your actual usage varies, and setting up repeatable processes. Guests Fred Chagnon and Jeremy Roberts, both at Info-Tech Research Group, offer practical advice for optimizing your cloud spending. The post Day Two Cloud 129: Practical Advice On Optimizing Cloud Costs appeared first on Packet Pushers.