cloud2030

DevOps Lunch and Learn was about security practices. Specifically, we built an outline of topics in security that we think are necessary for developers and operators to build secure applications. We basically built a week long course curriculum! As we go through what this course curriculum we walk through who needs to know this information and why. If you want to see all of the detail here, please see: https://docs.google.com/document/d/1x5QLP77mg2Dml_tWsK6IH66GPohF0B_Lvz4lUmZFXZQ/edit#heading=h.c2phqte5q4pl Transcript: https://otter.ai/u/UyMAmiHi-rRAreMa0FjxaVNomhQ Photo by PhotoMIX Company from Pexels [ID 226746]

We talk about Digital Twins and the Edge with Simon Crosby from Swim.AI. They are literally building digital twins in edge locations so he has a lot to share. We work to expand and understand how Simon's experience translates into general cases and what we're seeing in the edge. The systems that we're trying to build are at the intersection of models and "connectedness" of all the components for the edge. These designs don't fit traditional models and it is what makes edge unique. Edge is not a single application, but a connected system that going to have to emerge to make all this work together. Transcript: https://otter.ai/u/-uFSclONwRhhc4QlFywiSJAIF10 Photo by Dmitriy Ganin from Pexels [ID 7538096]

With Distributed Infrastructure and the Edge, we cover the challenges of managing applications that are, by definition spread out throughout heterogeneous infrastructure. Distributed Control is designed to control systems that are are not in cloud data centers with localized compute and storage. But then how do we manage it? We discussed details about how these systems get built, and kept coming back to "do we need to have localized processing?" If we do, how do we manage it? Transcript: https://otter.ai/u/BkxvOrQMmmQiYQpxa-OogrMyNNw Photo by KEHN HERMANO from Pexels [ID 3881034]

This episode is about Terraform orchestration, what some people might call a TACO, in which we actually tried to do cloud provisioning in a orchestrated way. But this is a really challenging thing to do! Orchestration is really hard so our discussion kept coming back to saying that this isn't orchestration at all: it's Infrastructure as Code and management. We need to find a consistent way to to run a workflow or a control plane. We're not even getting to the point where we're coordinating or orchestrating aspects of different systems and using remote or API driven infrastructure. Even if you use Terraform, you will get a lot out of this discussion! Transcript: https://otter.ai/u/Ohbfr0Uprm95WYYI4357IdUodOU Photo by Gabriel Santos Fotografia from Pexels [ID 2102568]

Right to Repair is the idea that when you buy a product, you're able to fix it. We've been building products lately that don't have that inherent part of the contract. In this episode, we really took Right to Repair to another level talking about Intellectual Property (IP) and ownership of that IP in the software components. This topic impacts every single business and every single consumer! Transcript: https://otter.ai/u/7EVT0C9T0KDCcUIWBsGYKHdiT6Y Photo: Photo by Blue Bird from Pexels [ID 7218008]

We talked about 5G, factories and edge infrastructure. They are very interconnected because they live at the network edge and are sensitive to how we need to route traffic. This is important as the basis for using digital twinning as a new user experience (UI/UX) around interacting with systems. This new approach is starting to emerge and it will be very network intensive, visually oriented, and involve overlaying the physical world with the virtual world. How the heck are we going to connect all these things together? Transcript: https://otter.ai/u/7lSSCwLdGiF9JqyunUHo19m6yPk Photo: https://www.pexels.com/photo/two-boys-sitting-on-crescent-moon-1651483/

Cloud provisioning is very difficult when you go beyond simple provisioning and start thinking about how to to stitch together infrastructure in a repeatable way! Specifically, today's episode is a deep dive into Terraform usage patterns. We get very hands on as we talk about how you manage state files and how you connect things together with Terraform. We will spend a significant amount of time discussing in the fall because building infrastructure in a scalable automatable way, is a critical topic for the group. This is an ongoing topic for us - stay tuned for more episodes! Transcript: https://otter.ai/u/A-NgZOfa1xeIPA1uQOh8_bSStck Photo by Artem Beliaikin from Pexels [ID 1079033]

In this episode, we question the IT talent pipeline. We really work through boot camps and how we are building talent and skills for the generation of IT workers. We ask some key questions like: Are degrees necessary? Can you teach these things quickly? How do we actually learn the skills that are necessary to build resilient systems? And what would it look like if we were creating certification programs, real certification programs, like we have in other trades? Transcript: https://otter.ai/u/FTOvatXEYSxNze00HKXVz8OZHxU Photo by Yan Krukov from Pexels [ID 8613305]

Is open source driving innovation? And Is it a necessary component of Right to Repair and ownership? Are there commercial drivers where people want those open capabilities? We transition into a deeper conversation about what's going on with open source. Is it being innovative? Who is leading? How is it working? Transcript: https://otter.ai/u/vto0yPpBuZtqngkc_zqMDp9J39M Photo by Jeffrey Czum from Pexels [ID 4118958]

Good APIs are hard to design! Making them long lasting and scalable is even harder. We discussed two aspects of API design. First, making about Event Bus for system integration and then RackN CTO, Greg Althaus, discusses what his team considers a good API design from Digital Rebar. Transcript: https://otter.ai/u/2Pz3LwG4qPl58s3ewwGFCCFmg8w Photo by Tsunami Green from Pexels [ID 5192790]

Building an edge control plane is challenging! It's not clear even what is currently available. As always, data, data pipelines, data orchestration, and data choreography are all influential for edge infrastructure. Transcript: https://otter.ai/u/yfa6Kzsd6CTjXOJ1MQjHBxp2J4Q Photo by Taryn Elliott from Pexels [ID 3889936]

IPUs, intelligent processing units, are also known as smart NICs, side cars, or supervisory computers. A well known example is Amazon's Nitro. We discuss the impacts of these supervisory processors, and how they can change the industry. This is clearly the trend of the future. Building supervisory systems as additional processing capability into our core servers that then abstract out how the bus is interfaced how the routine peripherals, network activity, GPU or storage is abstracted in these systems. BUT will they create a new way to manage heterogeneity and diversity inside of our hardware and server ecosystems? Can they have a dramatic impact on edge computing? Transcript: https://otter.ai/u/NXx-LgMzI5jEmP2irldOwGpeKlg Photo by RF._.studio from Pexels [ID 3825581]

The "right to repair" is a really thorny and political issue! We talked a lot about John Deere, Apple and Tesla not letting people fix the products they've bought from those companies. We have a lot of questions! Why they do that? What the challenges are with RTR? How we could avoid them? What pressures keep us coming back to companies that are offering goods that we don't have the ability to repair? Transcript: otter.ai/u/mDxnSfDXWqKOFA5Gbw8rG6TkDkE Photo by Kateryna Babaieva from Pexels [ID 2880871]

How can cloud economics of hyperscalar clouds be used to ended or limit their control? We discussed the state of the cloud ecosystem with a focus on where its going to go. After a full, rich, and dynamic conversation, we came back to security security, software (as opposed to SaaS), owning your own infrastructure, and the ROI of that infrastructure. Transcript: https://otter.ai/u/Y7ZO7Y6e0JQr5Wz4hOWyyMRsGb8 Photo by Mikhail Nilov from Pexels [ID 77335782]

To understand CI/CD of infrastructure, you have to actually understand how the systems work together. In this podcast, we talked about low code, no code and how you would do integration testing for that. We also explore the idea of unit tests and code coverage for CI/CD presents challenges. Transcript: https://otter.ai/u/oPGkPe8w-hG2LKXkQJhHAeJebe0 Photo by Karolina Grabowska from Pexels [ID 4021773]

How do we secure service meshes for zero trust? Especially since we don't know how they're going to be used or integrated? We went very deep into what it takes to secure service mesh. That included what type of application frameworks are going to be required to provide multi-service infrastructures that are secure and trusted in a performing way. Transcript: https://otter.ai/u/CUJdKeyT_hHLAZG9XKqzb-Y9N00 Photo by Alexas Fotos from Pexels [ID 2317932]

Can you composing infrastructure tasks: provisioning, configuration, security and monitoring, all together? Basically a Linux Pipe for automation? Maybe! We talked about how hard it is to build robust, resilient infrastructure. The theme was supposed to be what could go wrong and finding the weak links in our infrastructure automation. Fundamentally we think that it's all weak links! We had a good conversation about how we actually build and automate robust applications. But we didn't come to consensus. Transcript: https://otter.ai/u/Qg_KgyXe7X4pl2E60gb6tunFshw Photo by Luis Quintero from Pexels [ID 2339722]

How can GitOps and Infrastructure as Code scale your team's ability to write automation? We answer how to take your DevOps to the next level. We really dig into what the automation challenges are and how you can do better as you build an integrated infrastructure system. And of course, we did talk about Env0 and how Env0 solves the problem. And you will learn a lot about Env0 during this podcast. Tim and I did discuss what it takes to build real infrastructure, automation pipelines, Transcript: https://otter.ai/u/6ccxxk0MDmB67_xhlS3gohqM7gM

We talk about the impacts of Terraform going 1.0, Ansible, and the Fastly outage. We mix all those things together with a little bit of vendor gossip. How might Terraform being "stable" change things? And is that going to help the industry hurt the industry? And what changes might be in stock? Transcript: https://otter.ai/u/mL1fLJUiXO7qOhfcdC1f6E2LGEs Photo by Ba Tik from Pexels [ID 3754294]

Learning DevOps is a challenge! We discuss using the DevOps Roadmap to coach people to get into the field of DevOps and infrastructure automation. DevOps is hard and challenging because the thing we kept coming back to there being so much to learn and understand. It can be really intimidating to get started! We spent some time actually trying to break that down and give some starting points on how that works. Roadmap: https://roadmap.sh/devops Transcript: https://otter.ai/u/jYcQ6eIoJWLGv1JKEBN_Iqh7w1M

Our Service Mesh discussion leaned heavily into the needs around edge infrastructure because there are so many missing parts for the edge deployment systems, When we started talking about service meshes, we really realize is that the actual control plane, communications grid and security for edge are not defined enough for us to layer on what has become sort of a standard in cloud deployments of service mesh into that discussion. How we got there, how we discussed it, and the components of why that's important, is much more interesting than the conclusion itself. Transcript: https://otter.ai/u/RuXigltfMAuE4z-NZETAvNQNbRY Image: Photo by Zachary DeBottis from Pexels [ID 1888883]

Taking Configuration management for deployment pipelines and make it productive and effective. And we really got into a lot of the challenges about scaling, rolling deployments, split tests, schema, migrations, rollbacks, and multi-site infrastructure. We dug in on the challenges that are related to making this actually work in a scale production environment. Ultimately, we looked a system principles. How to deal with one component when you actually have to think through how you're building the software. Architecture makes a difference in how you manage the infrastructure and deployment pipelines. Transcript: https://otter.ai/u/9A0U1YERv9ffOLGffzAd41E6VYc Image: Photo by Aleksejs Bergmanis from Pexels [ID 681335]

1x1 with Emil of Ntirety, which is an MSP that specializes in hybrid security. They're working with both huge and small customers by helping them build a coherent IT strategy. with a focus on holistic security and hybrid cloud. We had a fantastic discussion about those topics and more. And if you're into security, you will find this a fascinating discussion. Transcript: https://otter.ai/u/PvTlUBQC0FOg0rQdTh6GMIhN9wU

We keep coming back to "how do we defend our data advantage" but we don't know how, or why we should share data with people. It's very clear that we should be sharing data and that there's economic benefit to us to do it. But we haven't figured out how to do it. And that's the question that we're sort of struggling with in this whole conversation. Transcript: https://otter.ai/u/nGfmf-7f0EZinGNGbdmHn2b4TL8 Image: Photo by Egor Kunovsky from Pexels [ID 5598634]

We discuss security related to the colonial pipeline, and what we could do to improve against ransomware attacks. What are the different things that are impacts in that type of attack. And it's really a good exercise in thinking about security, especially security of secondary systems, and hard networks. very robust, resilient conversation. transcript: https://otter.ai/u/rKh9TTyqrBeHxzsdClBtQi2admA image: Photo by Polina Tankilevitch from Pexels [id 4110404]

1x1 discussion with Andi Mann, He's a real leader when it comes to infrastructure, automation, DevOps, analysis, just putting everything together. And we had an amazing conversation, ranging the whole gamut of how to make technology better. complexity, hybrid, open source. You name it, we covered it! Transcription: https://otter.ai/u/F7jazWNoRp3LJ8FNkWlJ8zPa4yU

General topics of interest: learning DevOps, and tech roadmaps, and how to build up to skills, infrastructure pipelines, release management, and more. These are topics that we want to dig into over the next several months. Transcript: https://otter.ai/u/WZPhi8R_Uev2Ltc69RC6kl8eepI Image: https://www.pexels.com/photo/photo-of-graffiti-on-building-2600116/

How will we secure infrastructure in the future? Why is so hard to get security taken seriously? Because it's a supply chain problem. a vendor problem, AND a customer problem. We have to solve this because it threatens to undermine very fabrics of what we've been building together. Transcript: https://otter.ai/u/O3DTK6VPhYdSOc7HxbrzFwYElxk Image: https://www.pexels.com/photo/child-sipping-from-pipe-graffiti-2103127/

We go DEEPLY into the practice of image base (aka immutable) deployment. Image based deployment is when we building infrastructure by cloning systems. That means actually writing the system image directly to disk. We typically start a VM, where it's already on the disk, and then clone that to an existing system. Transcription: https://otter.ai/u/rOrf9VJ8lSOXkjLcRpfAd8R26SI Image: Photo by Lidia Riehman from Pexels [ID 5713996]

We started with the idea of what should our infrastructure be if we were going to get the perfect thing, the ideal thing and then work backwards? We focused in on home and industrial uses. That led us into the way we think about building technology. Transciption: https://otter.ai/u/KcUBUZvpOqXYlY-onF48OFZ7gSA Photo by Matheus Natan from Pexels [ID 3689875]

All about security, zero trust data, and shared homomorphic security. If those terms mean something to you, you will find our conversation fascinating. And if they don't, you better be listening, because these are really important concepts that come together for how we will secure data in the future. And we really believe that these are transformative technologies that challenge the current status quo. Transcript https://otter.ai/u/yd3zfHMXZ-eE9QUuTYDIIojhT0s Photo by cottonbro from Pexels [ID 8088682]

We went deep into vendors, specifically Red Hat. So if you like vendor gossip and speculation then you'll love this. We talked about Red Hat, IBM, Oracle, a couple other vendors of note and speculated on their strategy. Transcript https://otter.ai/u/L_uP42EK4AVjVmDxERD3f0V-2Yw Photo by Anna Shvets from Pexels [ID 4587991]

Is there a Jevons Paradox of Complexity? We started by asking key questions like: How much complexity is too much? How do we measure it? What's the business risk? DId we make complexity cheaper or just hide it away? Is there a price to be paid for building incredibly complex systems? We answered these and more in the reference of business concerns and the business value. Transcript: https://otter.ai/u/WfbSCL5GUiXCoSpFqe8DsTqxzw4 Photo by Ekrulila from Pexels [ID 2218344]

How Service Mesh works and why they're important. Towards the end, we start talking about the rationale and whys and hows of the architecture. Transcript: https://otter.ai/u/OPEKGyWT6iDjMLVQlHZeKVWkh_I Photo by Karolina Grabowska from Pexels [ID 5422821]

James Urquhart joins the DevOps lunch for an impromptu discussion about the importance of Flow Architecture. You will learn a lot about how flow architecture work and why they are important to infrastructure and application design. This is a great follow-up to our 1x1 interview with him on an earlier episode.

The RackN team goes behind the scenes describing the many ways that we've worked with customers to automated VMware deployments from the bare metal up.

Short checking w/ Rob about the format and community supporting the Cloud2030 discussions.

How businesses need to be thinking in order to respond to the cloud? Tim Crawford led this round table conversation about the challenges facing us. We also talk about managing complexity and what it takes to build a successful business in today's technology environment Transcript: https://otter.ai/u/4iOmpqQsAhqW7RPwgz0sthpFC2s Photo: Photo by Frans Van Heerden from Pexels [ID 624015]

We were frustrated that we couldn't pull security together as cleanly as we want. So we extended the conversation beyond simple security into integrations and what you need to get done in order to automate security, Transcript: https://otter.ai/u/08NW-tmEEH4E84UunOmfrLuvp4g

Detailed discussion about how to improve platform operations with Artificial Intelligence in general and how CAST AI does this for Kubernetes specifically. Leon Kuperman discusses additional benefits from being able to learn across a range of clouds and customers. Transcript: https://otter.ai/u/OZIQK1DhTWC4G1ocLwVgbQzao8s

How do you bridge ecosystems and marketplaces and open source? Using Amazon and Kubernetes as examples of toolboxes that enables people to do other things leads to a discussion about what makes successful ecosystem. Transcript: https://otter.ai/u/J2fDtW6wdIuAW09PR3fNIy0-Kuc Pexels Photo by Pixabay [ID 219794]

Continued DevSecOps discussion with Julian Vehent. Round table with the Cloud2030 lunch crew covering security, DevOps and automation. Earlier Podcast: https://soundcloud.com/user-410091210/julien-vehent Transcription: https://otter.ai/u/0ewawrT4-OFl6rqsY8yAZCUSCZM Photo by Markus Winkler from Pexels [ID 3828944]

Love or question Open Source? It's important to understand people's concerns about it. This general open source discussion turned into a Kubernetes discussion but was really about building ecosystems and solving business problems. The group was skeptical about whether Kubernetes (or OSS in general) was doing that. Transcript https://otter.ai/u/f4TL5kepcqrqKjTIwDFPH13IasA Photo by Julius Silver from Pexels [ID 753331]

We discuss four factors for using Edge Infrastructure as part of a broader spectrum of infrastructure. Transcript: https://otter.ai/u/HNpz1MwmeogCoBR4RULeFGaSdzY Photo by Mat Brown from Pexels [ID 552600]

This is a 1x1 Cloud2030 discussion Miso.io founder/CIO Chris Psaltis. We cover cloud automation and management topics related to multi-cloud as a platform choice. We go deeply into how multi-cloud management does and doesn't work. This discussion will broaden your definition of multi-cloud and help you design better distributed infrastructure. transcript: https://otter.ai/u/caQSAarXMi_1AeoUu19DRE8Wt0g

We focused on edge, distributed infrastructure, and composable edge designs. Edge is evolving quickly and we discuss what the challenges are and why it's so difficult to pin down a definition. Transcript: https://otter.ai/u/ZoRdmAO0tm052mmqe0dxJ1Gx5TQ Photo by winrood lee from Pexels [ID 2362030]

How much Complexity is too much? And are we building systems that have hidden complexity? We used Kubernetes as an example to think about patterns and how they are evolving. Why do people like systems that are complex and have a lot of open space for people to add things? Transcript https://otter.ai/u/JF8JDQJne-UokSfK60qKgRX3I6o Photo by Chevanon Photography from Pexels [ID 1108101]

Decisions are made fast and furious when you're thinking about enterprise architecture in a cloud world. We talked about how infrastructure is built, where we're building it, why we're building it, and if the cost savings of moving to the cloud are real. Transcript: https://otter.ai/u/spTuPrWO4vEPLlu8lqMdiFK7Bp8 Photo by alleksana from Pexels [ID 6781795]

Deep and thoughtful discussion about what it takes to build edge infrastructure. How will the Edge market be shaped? What the forces are driving the market? What are the architectural constraints? Transcript: https://otter.ai/u/twfHh3yOZPaIPBuD4nCHOHGMA00 Photo by Rodolfo Clix from Pexels [ID 1036936]

Cloud2030 DevOps crew spent time talking unit test a CI pipeline. And then we branched into "Can you unit test automation in general?" If you make a change to your pipelines, how do you know it's right? How do you know you're not breaking something, especially if they run into deployment? That the end of them, you could cause serious harm if you've made a trivial mistake? Transcript: https://otter.ai/u/YCRHpuan9DJEPT2k9hKyovZ7zIs Photo by Pixabay from Pexels [ID 577770]