This document discusses using Jenkins and Helm to enable continuous delivery to Kubernetes. It recommends running Jenkins on Kubernetes to take advantage of features like containerization, isolation, and dynamic scaling. It provides instructions for deploying Jenkins with Helm and using the Kubernetes plugin for Jenkins to dynamically provision agents as Kubernetes pods. It also covers how to create custom Helm charts to package and deploy applications, customize the Jenkins Helm chart, and considerations for performance and access control when using Jenkins and Helm together.
Helm helps you manage Kubernetes applications — Helm Charts help you define, install, and upgrade even the most complex Kubernetes application.
https://thinkcloudly.com/
Continuous Delivery to Kubernetes with Jenkins and HelmDavid Currie
Presentation given at Oracle Code One 2018 covering deploying Jenkins to Kubernetes with Helm, deploying to Kubernetes from Jenkins with Helm, and Jenkins X.
In this session, we will discuss the architecture of a Kubernetes cluster. we will go through all the master and worker components of a kubernetes cluster. We will also discuss the basic terminology of Kubernetes cluster such as Pods, Deployments, Service etc. We will also cover networking inside Kuberneets. In the end, we will discuss options available for the setup of a Kubernetes cluster.
Related Source Code https://github.com/abdennour/meetup-deployment-k8s
Intro
Why Deployment ?
What’s Deployment ?
How Deployment?
Deployment Strategies ( in general & in k8s )
Deployment Features
Demo ( distributed )
Lessons learned from writing over 300,000 lines of infrastructure codeYevgeniy Brikman
This talk is a concise masterclass on how to write infrastructure code. I share key lessons from the “Infrastructure Cookbook” we developed at Gruntwork while creating and maintaining a library of over 300,000 lines of infrastructure code that’s used in production by hundreds of companies. Come and hear our war stories, laugh about all the mistakes we’ve made along the way, and learn what Terraform, Packer, Docker, and Go look like in the wild.
Helm helps you manage Kubernetes applications — Helm Charts help you define, install, and upgrade even the most complex Kubernetes application.
https://thinkcloudly.com/
Continuous Delivery to Kubernetes with Jenkins and HelmDavid Currie
Presentation given at Oracle Code One 2018 covering deploying Jenkins to Kubernetes with Helm, deploying to Kubernetes from Jenkins with Helm, and Jenkins X.
In this session, we will discuss the architecture of a Kubernetes cluster. we will go through all the master and worker components of a kubernetes cluster. We will also discuss the basic terminology of Kubernetes cluster such as Pods, Deployments, Service etc. We will also cover networking inside Kuberneets. In the end, we will discuss options available for the setup of a Kubernetes cluster.
Related Source Code https://github.com/abdennour/meetup-deployment-k8s
Intro
Why Deployment ?
What’s Deployment ?
How Deployment?
Deployment Strategies ( in general & in k8s )
Deployment Features
Demo ( distributed )
Lessons learned from writing over 300,000 lines of infrastructure codeYevgeniy Brikman
This talk is a concise masterclass on how to write infrastructure code. I share key lessons from the “Infrastructure Cookbook” we developed at Gruntwork while creating and maintaining a library of over 300,000 lines of infrastructure code that’s used in production by hundreds of companies. Come and hear our war stories, laugh about all the mistakes we’ve made along the way, and learn what Terraform, Packer, Docker, and Go look like in the wild.
Kubernetes Application Deployment with Helm - A beginner Guide!Krishna-Kumar
Google DevFest2019 Presentation at Infosys Campus Bangalore. Application deployment in Kubernetes with Helm is demo'ed in Google Kubernetes Engine (GKE). This is an introductory session on Helm. Several references are given in it to further explore helm3 as it is in Beta state now.
Helm version 3 was recently released with new features and a new architecture to support those features. The changes to Helm and charts were based on feedback, changes to Kubernetes, and lessons learned in the past couple years.
- Archeology: before and without Kubernetes
- Deployment: kube-up, DCOS, GKE
- Core Architecture: the apiserver, the kubelet and the scheduler
- Compute Model: the pod, the service and the controller
A comprehensive walkthrough of how to manage infrastructure-as-code using Terraform. This presentation includes an introduction to Terraform, a discussion of how to manage Terraform state, how to use Terraform modules, an overview of best practices (e.g. isolation, versioning, loops, if-statements), and a list of gotchas to look out for.
For a written and more in-depth version of this presentation, check out the "Comprehensive Guide to Terraform" blog post series: https://blog.gruntwork.io/a-comprehensive-guide-to-terraform-b3d32832baca
→ Intro to Gitops & Flux
→ How to bootstrap Flux on a Kubernetes Cluster
→ How to deploy a sample application using Flux, and customised application configuration through Kustomize patches.
→ An overview of new things that you can do with Flux
Since the release of 17.05, Docker has introduced Multi-Stage Build for Docker Images for anyone who has struggled to optimize Dockerfiles while keeping them easy to read and maintain. This builder pattern will help anyone who would just like to have the runtime, configuration & application and doesn’t want to have compilers, debuggers, code, build, test logs etc.
Introduction to Helm, the package manager for Kubernetes: Create and use Kubernetes charts. Deploy releases on a cluster ... and rollback your releases. Get for instance Prometheus up and running with just a single command.
Docker containers have become a key component of modern application design. Increasingly, developers are breaking their applications apart into smaller components and distributing them across a pool of compute resources.
This presentation covers how app deployment model evolved from bare metal servers to Kubernetes World.
In addition to theoretical information, you will find free KATACODA workshops url to perform practices to understand the details of the each topics.
Join us to learn the concepts and terminology of Kubernetes such as Nodes, Labels, Pods, Replication Controllers, Services. After taking a closer look at the Kubernetes master and the nodes, we will walk you through the process of building, deploying, and scaling microservices applications. Each attendee gets $100 credit to start using Google Container Engine. The source code is available at https://github.com/janakiramm/kubernetes-101
A Hands-on Introduction on Terraform Best Concepts and Best Practices Nebulaworks
At our OC DevOps Meetup, we invited Rami Al-Ghami, a Sr. Software engineer at Workday to deliver a presentation on a Hands-On Terraform Best Concepts and Best Practices.
The software lifecycle does not end when the developer packages their code and makes it ready for deployment. The delivery of this code is an integral part of shipping a product. Infrastructure orchestration and resource configuration should follow a similar lifecycle (and process) to that of the software delivered on it. In this talk, Rami will discuss how to use Terraform to automate your infrastructure and software delivery.
While many organizations have started to automate their software development processes, many still engineer their infrastructure largely by hand. Treating your infrastructure just like any other piece of code creates a “programmable infrastructure” that allows you to take full advantage of the scalability and reliability of the AWS cloud. This session will walk through practical examples of how AWS customers have merged infrastructure configuration with application code to create application-specific infrastructure and a truly unified development lifecycle. You will learn how AWS customers have leveraged tools like CloudFormation, orchestration engines, and source control systems to enable their applications to take full advantage of the scalability and reliability of the AWS cloud, create self-reliant applications, and easily recover when things go seriously wrong with their infrastructure.
Extending kubernetes with CustomResourceDefinitionsStefan Schimanski
The Kubernetes API provides a number of proven patterns to build distributed systems. More and more 3rd-party components are built on-top of Kubernetes and these patterns, providing their own resources stored in the cluster. In this presentation we will discuss CustomResourcesDefinitions and how they can extend the Kubernetes API in a quasi-native way. We look at the features, limits and their future.
How to Containerize WebSphere Application Server Traditional, and Why You Mig...David Currie
Presentation from IBM InterConnect 2017.
Abstract: Containers are a great fit for cloud native application architectures, but that's not the only use case. In this session, we'll explore the benefits that containerization can bring to existing applications running on WebSphere Application Server traditional, whether base or Network Deployment, and how to go about doing it.
12-factor applications using WAS Liberty, IBM Bluemix, and DockerErin Schnabel
The 12-factor app is a methodology for building applications that are portable, can be maintained easily in a continuous delivery pipeline, and are great for running on a cloud-based Platform-as-a-Service such as IBM Bluemix or with docker containers. This session provides a factor-by-factor guide to building 12-factor applications on WAS Liberty and IBM Bluemix, giving attendees the chance to see them in real-life context rather than as abstract concepts.
Kubernetes Application Deployment with Helm - A beginner Guide!Krishna-Kumar
Google DevFest2019 Presentation at Infosys Campus Bangalore. Application deployment in Kubernetes with Helm is demo'ed in Google Kubernetes Engine (GKE). This is an introductory session on Helm. Several references are given in it to further explore helm3 as it is in Beta state now.
Helm version 3 was recently released with new features and a new architecture to support those features. The changes to Helm and charts were based on feedback, changes to Kubernetes, and lessons learned in the past couple years.
- Archeology: before and without Kubernetes
- Deployment: kube-up, DCOS, GKE
- Core Architecture: the apiserver, the kubelet and the scheduler
- Compute Model: the pod, the service and the controller
A comprehensive walkthrough of how to manage infrastructure-as-code using Terraform. This presentation includes an introduction to Terraform, a discussion of how to manage Terraform state, how to use Terraform modules, an overview of best practices (e.g. isolation, versioning, loops, if-statements), and a list of gotchas to look out for.
For a written and more in-depth version of this presentation, check out the "Comprehensive Guide to Terraform" blog post series: https://blog.gruntwork.io/a-comprehensive-guide-to-terraform-b3d32832baca
→ Intro to Gitops & Flux
→ How to bootstrap Flux on a Kubernetes Cluster
→ How to deploy a sample application using Flux, and customised application configuration through Kustomize patches.
→ An overview of new things that you can do with Flux
Since the release of 17.05, Docker has introduced Multi-Stage Build for Docker Images for anyone who has struggled to optimize Dockerfiles while keeping them easy to read and maintain. This builder pattern will help anyone who would just like to have the runtime, configuration & application and doesn’t want to have compilers, debuggers, code, build, test logs etc.
Introduction to Helm, the package manager for Kubernetes: Create and use Kubernetes charts. Deploy releases on a cluster ... and rollback your releases. Get for instance Prometheus up and running with just a single command.
Docker containers have become a key component of modern application design. Increasingly, developers are breaking their applications apart into smaller components and distributing them across a pool of compute resources.
This presentation covers how app deployment model evolved from bare metal servers to Kubernetes World.
In addition to theoretical information, you will find free KATACODA workshops url to perform practices to understand the details of the each topics.
Join us to learn the concepts and terminology of Kubernetes such as Nodes, Labels, Pods, Replication Controllers, Services. After taking a closer look at the Kubernetes master and the nodes, we will walk you through the process of building, deploying, and scaling microservices applications. Each attendee gets $100 credit to start using Google Container Engine. The source code is available at https://github.com/janakiramm/kubernetes-101
A Hands-on Introduction on Terraform Best Concepts and Best Practices Nebulaworks
At our OC DevOps Meetup, we invited Rami Al-Ghami, a Sr. Software engineer at Workday to deliver a presentation on a Hands-On Terraform Best Concepts and Best Practices.
The software lifecycle does not end when the developer packages their code and makes it ready for deployment. The delivery of this code is an integral part of shipping a product. Infrastructure orchestration and resource configuration should follow a similar lifecycle (and process) to that of the software delivered on it. In this talk, Rami will discuss how to use Terraform to automate your infrastructure and software delivery.
While many organizations have started to automate their software development processes, many still engineer their infrastructure largely by hand. Treating your infrastructure just like any other piece of code creates a “programmable infrastructure” that allows you to take full advantage of the scalability and reliability of the AWS cloud. This session will walk through practical examples of how AWS customers have merged infrastructure configuration with application code to create application-specific infrastructure and a truly unified development lifecycle. You will learn how AWS customers have leveraged tools like CloudFormation, orchestration engines, and source control systems to enable their applications to take full advantage of the scalability and reliability of the AWS cloud, create self-reliant applications, and easily recover when things go seriously wrong with their infrastructure.
Extending kubernetes with CustomResourceDefinitionsStefan Schimanski
The Kubernetes API provides a number of proven patterns to build distributed systems. More and more 3rd-party components are built on-top of Kubernetes and these patterns, providing their own resources stored in the cluster. In this presentation we will discuss CustomResourcesDefinitions and how they can extend the Kubernetes API in a quasi-native way. We look at the features, limits and their future.
How to Containerize WebSphere Application Server Traditional, and Why You Mig...David Currie
Presentation from IBM InterConnect 2017.
Abstract: Containers are a great fit for cloud native application architectures, but that's not the only use case. In this session, we'll explore the benefits that containerization can bring to existing applications running on WebSphere Application Server traditional, whether base or Network Deployment, and how to go about doing it.
12-factor applications using WAS Liberty, IBM Bluemix, and DockerErin Schnabel
The 12-factor app is a methodology for building applications that are portable, can be maintained easily in a continuous delivery pipeline, and are great for running on a cloud-based Platform-as-a-Service such as IBM Bluemix or with docker containers. This session provides a factor-by-factor guide to building 12-factor applications on WAS Liberty and IBM Bluemix, giving attendees the chance to see them in real-life context rather than as abstract concepts.
Everything you need to know about creating, managing and debugging Java applications on IBM Bluemix. This presentation covers the features the IBM WebSphere Application Server Liberty Buildpack provides to make Java development on the cloud easier. It also covers the Eclipse tooling support including remote debugging, incremental update, etc.
IBM Rational Host Access Transformation Services (HATS) can dynamically transform your terminal-based applications into rich web pages. It is highly customizable and built on Java EE technology. We'll discuss some lessons learned from a very (very) complex HATS engagement. We'll discuss proper development strategies, and how to distribute workload across team members. We'll introduce a novel approach to unit testing advanced customizations using JUnit, and will also talk about how to address functional testing.
WebSphere Liberty and IBM Containers: The Perfect Combination for Java Micros...David Currie
Presentation from IBM InterConnect 2017.
Abstract: This session will demonstrate how WebSphere Application Server Liberty and Docker containers make the perfect combination for development and deployment of Java-based microservices. We'll show an end-to-end workflow, starting with creating a new service with the Liberty App Accelerator, local development with the free WebSphere Developer Tools, and then deployment to IBM Containers with the Bluemix DevOps Services.
Externalized Distributed Configuration Management with Spring Cloud Config-Se...Nikhil Hiremath
A brief 30 minute tutorial on Spring Cloud Config Server - Centralized, distributed configuration management. Helps you quickly get started with Config-Server, config-server registration and discovery, externalizing configuration into secure remote configuration repository. In this guide you'll see all of this made possible with the help of Spring Boot, Spring Cloud Netflix, Spring cloud Eureka and Spring Cloud Config server framework.
Edge 2016 Session 1886 Building your own docker container cloud on ibm power...Yong Feng
The material for IBM Edge 2016 session for a client use case of Spectrum Conductor for Containers
https://www-01.ibm.com/events/global/edge/sessions/.
Please refer to http://ibm.biz/ConductorForContainers for more details about Spectrum Conductor for Containers.
Please refer to https://www.youtube.com/watch?v=7YMjP6EypqA and https://www.youtube.com/watch?v=d9oVPU3rwhE for the demo of Spectrum Conductor for Containers.
Are IBM Domino Plug-ins your friends or enemies? Find out what our developer Teresa Deane have said on that subject at her session “My love-hate relationship with IBM Domino Plug-ins” at the IBM Connect 2016 in Orlando.
DEV-1268: IBM Connections Adminblast – IBM Connect 2017panagenda
Buckle up, join Christoph and Nico and get ready to learn 50 tips and tricks you can implement right away to improve your IBM Connections environment. Your users will thank you as they too benefit from this best practice list gathered from real-World projects while deploying and administering IBM Connections On-premises. Walk away with knowledge covering anything from Cognos integration, docs, CCM and Forms Experience Builder to the backend and DB2, TDI and SSO.
A presentation by Nico Meisenzahl (panagenda Consulting) and Christoph Stoettner (panagenda Consulting)
AD208 - End to End Quality Processes for Top Notch XPages Appsbeglee
When it comes to getting XPages apps ready for production there's a lot to know. Do you have a web test automation suite in place to drive your apps through the browser and guarantee quality? Do you have a JUnit test framework to exercise your XPages components? Is your application accessible to the latest international standards? This session, direct from the XPages engineering team, shows how to automate your app dev processes using the very latest tools and standards so that your products are ahead of the game.
Tip from ConnectED 2015: IBM Sametime - Design and Implementation of a Full H...SocialBiz UserGroup
In this excerpt, presenter Tony Payne IBM, demonstrates that with an enterprise that demands "five nines", IBM Sametime is equal to the test. Join one of IBM's most experienced deployment engineers to learn the specifics of HADR deployment for every member of the Sametime family. You'll learn how to achieve high availability for each particular component, and you'll learn the requirements for various disaster recovery scenarios. This excerpt coverings clustering and planning.
IBM Message Hub is a new Bluemix service based on Apache Kafka for messaging in the cloud. It's ideal for linking together microservices to build a scalable, flexible application in the cloud. It's great for feeding data at speed into other services such as analytics. You can also use it to bridge securely from your enterprise MQ systems into the cloud.
IBM Connections Adminblast - Connect17 (DEV 1268)Nico Meisenzahl
Buckle up, join Christoph and Nico and get ready to learn 50 tips and tricks you can implement right away to improve your IBM Connections environment. Your users will thank you as they too benefit from this best practice list gathered from real-world projects while deploying and administering IBM Connections On-premises. Walk away with knowledge covering anything from Cognos integration, docs, CCM and Forms Experience Builder to the back end and DB2, TDI and SSO.
Creating Production-Ready, Secure and Scalable Applications in IBM Cloud Priv...Michael Elder
What does it really take to make sure your application is production-ready? With new privacy regulations being added, many aspects need to be taken into account when deciding when to deliver your final product to the public. Can your application handle multiple users with different levels of access? Can you extend your application to use existing authentication and authorization platforms? Have you invested in using Mutual TLS authentication for communication between components? How do you manage the certificates and passwords used within your application? Does it connect to the database securely? This talk will cover all aspects from start to finish on how to deliver production-ready code.
DRUPAL CI/CD FROM DEV TO PROD WITH GITLAB, KUBERNETES AND HELMDrupalCamp Kyiv
I will share my experience with deploying multiple Drupal apps to different instances based on Gitlab integration with Kubernetes, used Helm charts for k8s templating, building CI/CD pipeline with GitlabCI, with examples and details on different stages. Also, we'll cover dynamic review envs, multisite installation, SSL and implementing extended configurations.
https://drupalcampkyiv.org/node/40
Microservice Builder: A Microservice DevOps Pipeline for Rapid Delivery and P...David Currie
Presentation from IBM InterConnect 2017.
Abstract: Acceleratate your microservice delivery and promotion with an out-of-box DevOps pipeline! In this session, you'll learn how to use the Project Liber8 DevOps pipeline. We will explore its anatomy, operation, visualization, customization and ecosystem integration. We will further examine its use in deploying to IBM Cloud and on-premise deployments. A live demo will be used to reinforce concepts.
Presentation given to the UK WebSphere User Group on 24 April 2016 giving a recap and update on integration between WebSphere Application Server and Docker. It covers both Liberty and the traditional application server.
WebSphere Application Server Liberty Profile and DockerDavid Currie
Latest incarnation of my Liberty and Docker presentation including coverage of the Java EE7 images and the auto-scaling beta. As presented to the UK WebSphere User Group on 1 October 2015.
Scalable, Available and Reliable Cloud Applications with PaaS and MicroservicesDavid Currie
Presentation given at AtTheFrontend.dk on 27 May 2015 covering an introduction to microservices and how Platform-as-a-Service helps with many of the challenges deploying microservices. Example supporting technologies include Bluemix / Cloud Foundry, Docker and Netflix OSS.
Building out a Microservices Architecture with WebSphere Liberty Profile and ...David Currie
This session will show how the combination of IBM WebSphere Application Server Liberty profile, IBM's application server for the cloud, and Netflix Open Source Software (OSS), can be used to build applications with high availability, auto-recovery, and continuous delivery at web scale. You will get an overview of the Netflix OSS projects and see how Liberty's extensibility makes it easy to integrate these projects with your application. We will share with you open source that IBM has made available to allow you to leverage the power of these projects within the Liberty programming model. Come see the benefits of a microservices architecture leveraging a combination of Netflix OSS and the WebSphere Liberty profile.
Developing Enterprise Applications for the Cloud,from Monolith to MicroservicesDavid Currie
Presented at IBM InterConnect 2105. Is your next enterprise application ready for the cloud? Do you know how to build the kind of low-latency, highly available, highly scalable, omni-channel, micro-service modern-day application that customers expect? This introductory presentation will cover what it takes to build such an application using the multiple language runtimes and composing services offered on IBM Bluemix cloud.
WebSphere Application Server Liberty Profile and DockerDavid Currie
Presentation from IBM InterConnect 2015 covering a brief introduction to Docker, the relationship between IBM and Docker, and then using WebSphere Application Server Liberty Profile under Docker.
Taking the Application Server to Web Scale with Netflix Open Source SoftwareDavid Currie
Presentation from JavaOne providing an introduction to microservices, the Netflix OSS projects Eureka, Ribbon, Hystrix and Archaius, and the open source work that has been done to make them more consumable in WebSphere Application Server Liberty Profile
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
JMeter webinar - integration with InfluxDB and GrafanaRTTS
Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application.
In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics.
Length: 30 minutes
Session Overview
-------------------------------------------
During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana:
- What out-of-the-box solutions are available for real-time monitoring JMeter tests?
- What are the benefits of integrating InfluxDB and Grafana into the load testing stack?
- Which features are provided by Grafana?
- Demonstration of InfluxDB and Grafana using a practice web application
To view the webinar recording, go to:
https://www.rttsweb.com/jmeter-integration-webinar
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
4. Getting started with Helm
• ‘Package manager’ for Kubernetes
• Packages called charts stored in one or more repositories
• Charts contain templatized Kubernetes configuration
• Setup client configuration and install server-side tiller
> helm init
• Check tiller is available
> kubectl rollout status deployment -n kube-system tiller-deploy
/* Discover. Collaborate. Deploy. */ 4
https://helm.sh/
5. Deploying Jenkins with Helm
• Find the Jenkins Helm chart
• Search kubeapps.com or
> helm search jenkins
• Install the chart
> helm install --name cd stable/jenkins
• Creates deployment, services, secret, config maps and persistent
volume claim
• Follow the instructions to retrieve the Jenkins admin password
• Access the Jenkins UI
> minikube service cd-jenkins
/* Discover. Collaborate. Deploy. */ 5
6. Kubernetes plugin for Jenkins
• Developed by Carlos Sanchez @ CloudBees
• Spins up Jenkins slave as Kubernetes pod on demand
• Pod template defines containers that should exist in pod
• JNLP agent is always one of them
• Enables re-use of existing Docker images e.g. maven, golang or docker
• Template can define other configuration for the pod/containers
• Environment variables
• Mount from secret, config map or volume
/* Discover. Collaborate. Deploy. */ 6
7. Kubernetes plugin and Jenkins pipelines
• Pod templates can be defined in Jenkins configuration or
declaratively as part of a Jenkins pipeline either in the job
definition or in version control as a Jenkinsfile
podTemplate(label: 'mypod', inheritFrom: 'default',
containers: [
containerTemplate(name: 'maven', image: 'maven',
ttyEnabled: true, command: 'cat')
]) {
node('mypod') {
stage ('Extract') { checkout scm }
stage ('Build') { container ('maven') { mvn package } }
}
}
/* Discover. Collaborate. Deploy. */ 7
8. Creating your own Helm charts
>helm create test
test/
Chart.yaml
values.yaml
charts/
templates/
NOTES.txt
_helpers.tpl
deployment.yaml
ingress.yaml
service.yaml
/* Discover. Collaborate. Deploy. */ 8
10. Overriding chart values
• Variables can be overridden at install time
• As command line parameters:
> helm install test --set image.tag=1.13
• And/or via a file:
> helm install test --values overrides.yaml
/* Discover. Collaborate. Deploy. */ 10
11. Installing charts in a pipeline
• Charts can be kept in a separate repository or stored alongside
the application source code
• Create a Docker image containing the Helm client
• Deploy tiller independently and use
> helm init --client-only
• Kubernetes configuration automatically available in pod
• To perform an install or upgrade, use:
> helm upgrade --install ...
• Use overrides to define image to deploy
• The --wait option can be used to wait for pods to start
/* Discover. Collaborate. Deploy. */ 11
12. More advanced Helm
• Ensure Helm chart is well formed:
> helm lint --strict ...
• Verify successful deployment
> helm test ...
• Executes and tests exit code for pods annotated with "helm.sh/hook":
test-success or test-failure
• Specify sub-charts in charts directory or requirements.yaml
• E.g. to satisfy a database dependency
• Hooks for lifecycle events e.g. pre/post install
/* Discover. Collaborate. Deploy. */ 12
13. Jenkins Helm chart customization
• Chart values allow customization of almost everything!
• Master.InstallPlugins – list of Jenkins plugins to install
• Master/Agent.image – Docker image for master/slave
• Master.InitScripts – list of Jenkins init scripts
• Master.Jobs – Jenkins XML job configs
• Agent.Cpu/Memory – resource constraints for agent
• Master.CustomConfigMap – allows a parent chart to override
the entire Jenkins config via override_config_map template
• …
/* Discover. Collaborate. Deploy. */ 13
14. Things to watch out for
• Poor Jenkins performance with network storage
• Jenkins slave pods may get re-used if long-lived
• Lack of access control for Helm
• Enable SSL and deploy tiller per namespace with RBAC
• Don’t use latest tag with images
• If the config doesn’t change, Kubernetes won’t see it as an update
• Use AlwaysPullImages admission controller
• helm --wait only requires minimum pod count to be satisfied
• For replicas=1 and maxUnavailable=1 that is zero!
/* Discover. Collaborate. Deploy. */ 14
15. Microservice Builder and Microclimate
• Microservice Builder provides a dev-ops pipeline based on the
community Jenkins chart and adding:
• Opinionated Jenkins library
• Docker images pre-built with plugins and adding Power support
• GitHub org and oauth plugins
• Microclimate provides a containerized development
environment capable of running locally or on Kubernetes
• Generates starter templates for Java (Spring or MicroProfile), Node.js
and Swift containing application source, Dockerfile, Helm chart, …
• Rapid iterative build/run/test in a containerized environment
• Option to use a web based or local IDE
/* Discover. Collaborate. Deploy. */ 15
https://microclimate-dev2ops.github.io
16. Other IBM Helm Charts
https://raw.githubusercontent.com/IBM/charts/master/repo/stable/
/* Discover. Collaborate. Deploy. */ 16
18. Notices and disclaimers continued
• Information concerning non-IBM products was obtained from
the suppliers of those products, their
published announcements or other publicly available
sources. IBM has not tested those products about this
publication and cannot confirm the accuracy of performance,
compatibility or any other claims related to non-IBM
products. Questions on the capabilities of non-IBM products
should be addressed to the suppliers of those products.
IBM does not warrant the quality of any third-party products,
or the ability of any such third-party products to
interoperate with IBM’s products. IBM expressly disclaims all
warranties, expressed or implied, including but not limited
to, the implied warranties of merchantability and fitness for
a purpose.
• The provision of the information contained herein is not
intended to, and does not, grant any right or license under any
IBM patents, copyrights, trademarks or other intellectual
property right.
• IBM, the IBM logo, ibm.com and [names of other referenced
IBM products and services used in the presentation] are
trademarks of International Business Machines Corporation,
registered in many jurisdictions worldwide. Other product and
service names might be trademarks of IBM or other
companies. A current list of IBM trademarks is available on
the Web at "Copyright and trademark information" at:
www.ibm.com/legal/copytrade.shtml.
18/* Discover. Collaborate. Deploy. */