Technology Short Take 152

 Published on 28 Feb 2022 ·  Filed in Information ·  912 words (estimated 5 minutes to read)

Welcome to Technology Short Take #152! Normally I’d publish a Technology Short Take in the morning on a Friday, but I really wanted to get this one out so I’m making it live late in the day on a Monday. Here’s hoping I’ve included some content below that you find useful!

Networking

• I was (and am) familiar with RFC 1918 and the concept of non-routable address spaces. However, I was not familiar with the term “bogons” to refer to such prefixes that should not be publicly routed. Thanks to this article, that oversight is now corrected. Oh, and the article shares a handy Python script to help implement bogon filtering in NSX-T.
• Koyeb describes, at a high level, the global networking stack for their serverless platform. Components involved include the open source Kuma service mesh (in turn leveraging Envoy), anycast BGP, and mutual TLS (mTLS).
• Ivan Pepelnjak does a great job of describing all the things you really shouldn’t do (or don’t really need to do) when trying to deal with migrating container hosts in a data center fabric. In truth, the answer is exactly as Ivan says at the top of the article: when it comes to migrating container hosts, you don’t. (Seriously.)

Servers/Hardware

• The Eclectic Light Company is back with an article on how the M1’s efficiency (E) cores win. I must admit I am a bit surprised at how much improvement there seems to be between the M1 Pro’s E cores and the original M1 E cores.
• William Lam takes a look at some potentially interesting homelab hardware.

Security

• If you aren’t paying attention to the security of your CI/CD pipelines, you probably should. Read this NCC Group article about some ways they’ve compromised CI/CD pipelines.
• Sometimes I read articles like this one on UEFI-based rootkits and I think about getting rid of all my electronics and moving deep into the wilderness to live off the land.
• Rory McCune writes about a CVE in the Linux kernel that could allow for container escape in Kubernetes.
• Teri Radichel draws some connections between recent events in the Ukraine and cybersecurity.

Cloud Computing/Cloud Management

• Anders Eknert shows how to do—or at least provides a framework on getting started with—dynamic policy composition with Open Policy Agent (OPA) in this blog post from April 2021.
• Here’s an article on how to get started with OrgFormation.
• This workshop on using Graviton2 on AWS is pretty neat.
• Xavier Avrillier writes about how to workaround a vSphere CSI controller CrashLoopBackoff when using Cluster API for vSphere (CAPV).
• Jorge de la Cruz shares how to install Kubernetes on Ubuntu 20.04. Most of my readers are probably already familiar with this process, but I wanted to share it here just in case.
• Marc Brooker has a pair of articles on circuit breakers and retries that are, in my opinion, worth reading (part 1 on circuit breakers is here, part 2 on retries is here). And when I say “circuit breakers,” I’m not talking about your electrical panel, either. Read the articles if you’re unfamiliar with the concept of circuit breakers in modern distributed systems.
• For folks who may be just getting started with Terraform, here’s a tutorial on how to deploy EC2 instances in AWS using Terraform.
• I just came across this relatively-new EKS News site. Have a look at the archives for links to all the issues of EKS News. It’s a shame the site doesn’t appear to have an RSS/Atom feed…

Operating Systems/Applications

• Here’s an article on using a GitOps approach for declaratively managing the configuration of a Kong API gateway.
• I don’t have a use case for htmlq (which I learned about via this article), but it’s so cool that I have it installed on my Mac anyway.
• Andrey Babushkin takes readers along on a journey of using mcrouter with memcached on Kubernetes.
• A redesign for Apple’s long-stagnant System Preferences app? Yes, please.
• This was a pretty cool story.
• Read this article if you’re interested in deploying ArgoCD on AWS.

Storage

• Jim Jones has an article on getting started with S3-compatible object storage.
• I have to confess that prior to just a few days ago I was not familiar with the term “kibibyte.” For those who may be in a similar situation, read this.

Programming

• Kamaleshree Nagaraj talks about scaling microservices with gRPC. I’m looking forward to part two of the series, which will discuss Envoy Proxy.

Virtualization

• Normally Ivan Pepelnjak’s articles land in the “Networking” section, but this time Ivan is squarely discussing virtualization when he talks about running an Ubuntu VM on an M1-based Mac. I guess this is just yet another example of how fluid the “boundaries” between technical disciplines has become.

Career/Soft Skills

• I really enjoyed this post on lessons learned by moving the office home. There’s several nuggets in here that I need to apply to my next office move (which will be happening in about a month or so, if I don’t run into any more delays).
• I like this idea of thinking about an intention instead of resolutions.

That’s a wrap! I’ll be back in a couple of weeks with another Technology Short Take; until then, keep exploring, keep learning, and keep sharing! If you want to contact me—perhaps to provide some feedback, suggest a site you’ve found helpful, or just to say hello—feel free to contact me on Twitter or hit me up in any one of a number of Slack communities. I’d love to hear from you.

Metadata and Navigation

 Networking  Hardware  Security  Storage  Virtualization  Envoy  NSX  macOS  AWS  Kubernetes  Terraform  Linux
Previous Post: Using cert-manager with Kuma for mTLS
Next Post: Technology Short Take 153

Be social and share this post!