Public “Office Hours” (2021-12-22)

Erik OstermanOffice Hours

2 min read

Here's the recording from our DevOps “Office Hours” session on 2021-12-22.

We hold public “Office Hours” every Wednesday at 11:30am PST to answer questions on all things DevOps/Terraform/Kubernetes/CICD related.

These “lunch & learn” style sessions are totally free and really just an opportunity to talk shop, ask questions and get answers.

Register here: cloudposse.com/office-hours

Basically, these sessions are an opportunity to get a free weekly consultation with Cloud Posse where you can literally “ask me anything” (AMA). Since we're all engineers, this also helps us better understand the challenges our users have so we can better focus on solving the real problems you have and address the problems/gaps in our tools.


[00:00:00​] Intro
[00:01:25​] [email protected] support for S3 CDN Module (inline Lambdas!)
https://github.com/cloudposse/terraform-aws-cloudfront-s3-cdn/pull/204
[00:04:45​] MWAA Airflow Module Coming Soon
https://github.com/cloudposse/terraform-aws-mwaa/pull/3
[00:06:03​] Atmos Help (and README coming soon)
https://github.com/cloudposse/atmos/pull/94
[00:07:23​] Atlantis adds GH allowlist support (after 3 years!)
https://github.com/cloudposse/atlantis/releases/tag/0.8.0
[00:11:45​] YAAO!!! (Yet Another AWS Outage)
https://status.aws.amazon.com/
https://www.datacenterdynamics.com/en/news/aws-has-another-east-coast-cloud-outage/
[00:12:21​] PSA If you are using Terraform CLI v1.1.0 or v1.1.1, please upgrade to this new version as soon as possible
https://github.com/hashicorp/terraform/releases/tag/v1.1.2
[00:14:21​] We’re looking for a service to check DNS registration expiration and SSL certs, across registrars and CAs, for only about a dozen domains. Any recommendations?
[00:20:19​] Has anyone played with Control Tower Customizations?
[00:21:17​] Start a discussion regarding various Ingress Controllers
[00:36:46​] How are people running spark on kubernetes?
[00:37:25​] I have 3 different resource-usage profiles among the K8s services and jobs that I run. I want to isolate the pods with erratic resource usage from the front-end pods, and also run jobs on spot instances. Should I use node groups to do this? Should resource limits be enough to manage this?
[00:51:23​] Is there any way you can restrict IO for each pod?
[00:55:03​] Outro
About the Author
CEO & Founder / Cloud Posse, LLC

Erik Osterman is a technical evangelist and insanely passionate DevOps guru with over 12 years of hands-on experience architecting systems for AWS. After leading major cloud initiatives at CBS Interactive as the Director of Cloud Architecture, he founded Cloud Posse, a DevOps Accelerator that helps high-growth Startups and Fortune 500 Companies succeed in the cloud by leveraging Terraform and Kubernetes.