Technology Short Take 127
CloudWelcome to Technology Short Take #127! Let’s see what I’ve managed to collect for you this time around…
Networking
- Banzai Cloud’s Toader Sebastian explains how to write WASM (WebAssembly) filters for Envoy and deploy those filters with Istio. Be forewarned—this is a bit of an advanced topic.
- Ivan Pepelnjak provides a 101-level overview of AWS networking.
- This recent post by Eric Sloof shows how to do BGP neighbor adjacency between GNS3 and NSX-T 3.0.
- Andrew Sy Kim tackles explaining a (somewhat) obscure part of Kubernetes networking: the
externalTrafficPolicy
setting. Read his write-up here.
Servers/Hardware
Nothing this time around, but I’ll stay alert for items to include next time!
Security
- Ubuntu 20.04 has backported support for WireGuard in its 5.4-based kernel, but for earlier versions some additional work is needed. Here’s a write-up on setting up WireGuard on Ubuntu 18.04.
- Bruce Schneier weighs in on the security and privacy implications of Zoom. (And while we’re on the topic of Zoom, I’d love to hear your thoughts on their acquisition of Keybase.)
- Some security vulnerabilities with Thunderbolt were recently discovered and disclosed. See this website for more details.
- Looking for some security tools? Look no further.
Cloud Computing/Cloud Management
- Reader Witold Duranek contacted after Technology Short Take 126 to thank me for the useful information the series provides, and to mention that she (he?) has been writing some stuff during the Kubernetes learning process. Check it out—you may find something useful here.
- Jason Price shares a fully fleshed-out example of Kubernetes Pod Security Policies.
- Ravi Jagannathan provides an overview of using Velero to do backups and restores on Kubernetes.
- Michael Kashin takes a stroll through Cluster API using the Cluster API Provider for Docker (CAPD).
- Christian Posta of Solo.io tackles the question of whether an API gateway is needed if a service mesh is present. I haven’t dug deep enough into this space (yet) to have an informed opinion, but from my uninformed perspective it seems that these two technologies are more complementary than competitive.
- Ben Kehoe laments some of CloudFormation’s shortcomings in acting like a proper infrastructure graph management service.
- Kyle Galbraith takes readers through the use of AWS Organizations to simplify billing for multiple accounts.
- Adin Ermie provides a review of Managing Kubernetes, a book by Brendan Burns and my colleague Craig Tracey.
- Here are some resources for learning Kubernetes.
Operating Systems/Applications
- Nicola Apicella has a nice, in-depth write-up discussing Docker images, overlay file systems, and the OCI specification.
- Kirill Shirinkin has a four-part “Dockerless” series going (part 1, part 2, part 3, and part 4) that discusses replacing Docker with…well, something else.
- Mat Jovanovic shares the story of how he moved from Blogger to Hugo on AWS.
- This article provides some information on how Bash startup files are used by the shell.
- Brian Vanderwal writes about Git’s worktree feature, which looks to be really handy.
- I can’t immediately think of a use case for this configuration, but it’s handy to know it’s possible if necessary.
Storage
I don’t have anything to share this time, but maybe check here for something that strikes your interest?
Virtualization
- For those new to Linux virtualization—or even if you’ve been around Linux virtualization for a while—this article explaining how Intel VT-x, QEMU, and KVM work together is full of good information.
- Tomas provides resources for running Fedora Silverblue on Libvirt/KVM.
Career/Soft Skills
- Former manager and colleague Paul Lundin penned this piece about working in a startup versus working in an enterprise back in June 2018. There are some very salient points here for folks trying to decide their career path.
- Matthias Ender has an amusing collection of stories around the origins of various computer terms.
- Here are some templates for Wardley mapping. If you don’t know what Wardley mapping is, see here.
That’s all for now! I hope I have included something that is useful to you. If you have feedback or suggestions for improvement, I’d love to hear from you (reaching me on Twitter is probably easiest). Thanks for reading!
…