May 2020 cloud-native news

Hello, from all of us at Sysdig!

Remote work and remote customers are pushing companies to double down on the cloud. This is our “back to the basics” edition, with tips and tricks for getting started as you secure and monitor critical business apps.

Of course, we still cover the usual cloud-native highlights as well.

• Welcome to the cloud
• Industry buzz
• What’s new in the community?
• What’s new with Sysdig?
• Meet us online

---

---

Ping us @sysdig or on our open-source Sysdig Slack group to share your feedback and suggest topics for future issues! Previous editions are in the archive.

Welcome to the cloud

If you have suddenly found yourself on a cloud-native journey, here are a few tips:

Learn Kubernetes basics

• What does kubernetes have to offer? Self-healing for example.
• An explanation of Kubernetes architecture for beginners.
• The cloud runs with container images, this is how they are built.
• A guide to understand Kubernetes networking.
• And once you need a Mesh, check all of these resources to learn Istio.

Hands on with Kubernetes

• It’s easy to create a domestic cluster to practice and experiment.
• A few steps will help you move your linux services to containers.
• And please, follow the GitOps way: FluxCD, ArgoCD or Jenkins X?

Mastering Kubernetes

• It is this easy to scale a deployment within a Kubernetes cluster.
• Protect your secrets: Encrypting and storing Kubernetes secrets in Git.
• Reinforce your skills with the 9 kubectl commands sysadmins need to know.
• Try new tools to save time, like k9s for cluster administration.
• And keep reading, there is a lot of interesting content below!

Industry buzz

15 ways to secure Kubernetes

Running Kubernetes in production requires care, and with so many configurations, chances are that you might miss something. That’s why these tips are so useful.

Observability and the misleading promise of AIOps

Is artificial intelligence the future of Ops? Maybe, after it polishes some edges.

Building a Kubernetes platform for the edge

Implementing a cloud solution is a challenge, and edge computing raises the stakes. To succeed on the edge, you’ll need to follow good practices like these.

In other news…

• The CNCF cloud native survey 2020 is here!
• The US Dep. of Defense is using Kubernetes on planes and battleships!
• Red Hat OpenShift is available on AWS and has better support for VMs.
• VMware Tanzu newest beta makes CF, K8s and Istio setup easier to install.
• When it comes to cloud-native, security is just as important as performance.
• Success story of a diabetes data service migration to Kubernetes.

 

What’s new in the community?

Harbor 2.0, now with OCI support

Harbor has become the first OCI-compliant open source registry capable of storing cloud-native artifacts like container images, Helm charts, OPAs, Singularity and more.

Kubernetes 1.18 broke “kubectl run”

Creating Deployments with it was deprecated in 1.18. Here’s what to do about it.

Tips for building container images

You can make small images that deploy faster, since not every container has an operating system. Also, build them faster with distcc, ccache and kubernetes.

Advanced deployment techniques

Discover how Gloo can help you with two-phased canary rollouts, and you can perform rolling updates and blue-green deployments with HAProxy.

Some extras…

• Do not repeat these GitOps mistakes.
• A few tips to save cloud costs with Kubernetes on AWS.
• These are the new features of Cluster API v1alpha3.
• An investigation on why strace doesn’t work in Docker.
• An interactive explanation on Raft, the distributed protocol that etcd uses.
• For fun, or for learning, drag and drop deployment on Azure.

 

What’s New with Sysdig?

Enterprise-class Prometheus monitoring

Learn how, in this “behind-the-scenes” blog, we prepared our data store for the increase in metrics throughput that will ship alongside full Prometheus compatibility.

Also, discover our contributions to optimize the YACE Prometheus exporter for AWS Cloudwatch.

A twist on OPA

If you’re using OPA in your Kubernetes cluster, don’t miss these two resources:

• Ensure it is working properly: Monitoring OPA with Prometheus metrics.
• Strengthen your security: Scanning images on the admission controller.

Secure DevOps at the Edge with Sysdig and IBM

Edge computing doesn’t only exponentially increase the number of services to monitor, but also the ones to secure; and we are up to the challenge!

 

Stay safe. Meet us online: