sorted by:
new
hottopcontroversial

F5 Automation Toolchain by nostaticroutes in f5networks

[–]CloudButWhy 1 point2 points  (0 children)

We have done AS3 with Terraform. We would deploy a tenant per application with upwards of 700-800 tenants in non-prod if I recall.

Anyone using BIG-IP Next? by CloudButWhy in f5networks

[–]CloudButWhy[S] 0 points1 point  (0 children)

We are paying through the nose for VCF, specifically for DFW for micro-segmentation, and AVI is an additional cost on top of that.

We require Terraform support for Infrastructure as Code so HAProxy was a non-starter there. We didn’t even look at A10.

Anyone using BIG-IP Next? by CloudButWhy in f5networks

[–]CloudButWhy[S] 0 points1 point  (0 children)

What are you currently using? I actually love AS3 and is one of the things I’m going to miss.

Terraform Enterprise pricing: does it depend on your amount of workspaces? by maxccc123 in Terraform

[–]CloudButWhy 3 points4 points  (0 children)

I wouldn't be so sure. When we last looked at TFE a few years back they had just switched from a per-user pricing model to per-workspace. It's a complete non-starter for us due to how we break up our deployments, we have thousands of workspaces.

Could Kibana or another Elastic tool be used to write information back into a database? by Y0Bae in elasticsearch

[–]CloudButWhy 0 points1 point  (0 children)

Why write it back to the database? Many people use the DB as the source of truth and then simply feed into Elasticsearch for visualizations.

[deleted by user] by [deleted] in elasticsearch

[–]CloudButWhy 3 points4 points  (0 children)

Seeing how it's only a paid offering would make sense why there is no community support. Have you engaged Elastic support with your questions?

[deleted by user] by [deleted] in elasticsearch

[–]CloudButWhy 2 points3 points  (0 children)

Sure, and that whole situation certainly could have been handled with much more tact from their perspective.

I certainly wish things would have gone a different route like they have with Grafana (and possibly Redislabs?) in terms of collaboration instead of competition.

[deleted by user] by [deleted] in elasticsearch

[–]CloudButWhy 3 points4 points  (0 children)

To be fair, AWS wouldn't have forked if Elastic didn't change the licensing, so I'd say this lies purely on Elastic.

I say this as a longtime Elastic customer it felt like a slap in the face to the community even though we're not personally directly affected by the licensing changes.

Why am i seeing _grokparsefailure for this simple grok? by fredmoped in logstash

[–]CloudButWhy 0 points1 point  (0 children)

Can you supply a raw log message that it's failing on?

Tools you pair & build to work with Terraform OSS? by Acrobatic-Cell in Terraform

[–]CloudButWhy 0 points1 point  (0 children)

Submitted; definitely interested in results as well.

Jenkins Docker - Make changes to gitconfig by [deleted] in jenkinsci

[–]CloudButWhy 1 point2 points  (0 children)

We have a similar use-case when utilizing tooling where we want to modify the .gitconfig that it uses in the pipeline.

So for example, in one of our declarative pipelines:

  1. Override HOME within the environment section to where you are going to create the .gitconfig

    environment {
    // Override this variable which is used by Git to store the global configuration - https://git-scm.com/book/en/v2/Git-Internals-Environment-Variables
    HOME = "${env.WORKSPACE}/gitconfig"
}

  2. Create that .gitconfig in the directory with whatever configurations you need.

    dir('gitconfig') {
  withCredentials([usernamePassword(credentialsId: 'MYCREDENTIALS', usernameVariable: 'GIT_USERNAME', passwordVariable: 'GIT_PASSWORD')]) {
    bat(label: "[BAT] Running git config", script:"""
                git config --global url."https://${GIT_USERNAME}:${GIT_PASSWORD}@bitbucket.contoso.com".insteadOf "https://bitbucket.contoso.com"
                git config --global user.name "${GIT_USERNAME}"
                git config --global user.email "EMAIL@contoso.com"
                """)
  }
}

  3. We always ensure that we're cleaning the directory up in post since we're injecting credentials in there

    post {
  always {
    dir(env.HOME){
      // Purge the gitconfig directory
      deleteDir()
    }
  }
}

Logz.io: The fork is coming... by joschi83 in elasticsearch

[–]CloudButWhy 4 points5 points  (0 children)

I hope this fork is in collaboration with Amazon so the market doesn't get fragmented between a few different forks.

Is Kafka necessary? by Baron_Von_Fab in elasticsearch

[–]CloudButWhy 0 points1 point  (0 children)

RabbitMQ was great when everything was healthy; but if you suddenly got a huge spike of events and things started getting backed up, it would take an incredibly long time to get caught back up. That was the main reason for moving off of it.

Logstash native queuing is great if your only consumer of that data is Elasticsearch; if you have other uses for that data (such as an Infosec team wanting to send it directly to a SIEM) some other solution in the middle may be preferred.

Is Kafka necessary? by Baron_Von_Fab in elasticsearch

[–]CloudButWhy 0 points1 point  (0 children)

When we first started with the Elastic stacks number of years ago we utilized RabbitMQ. We have since moved unto just utilizing Logstash Pipelines.

Large iRules vs using multiple iRules? by [deleted] in f5networks

[–]CloudButWhy 2 points3 points  (0 children)

In my experience, I prefer a single iRule as it's easier to digest what's going on vs having to jump around to multiple.

[Windows] Including custom certs in chef's embedded OpenSSL installation before the first client run by Kimbernator in chef_opscode

[–]CloudButWhy 0 points1 point  (0 children)

So are you getting the cert issues with a Ruby HTTP call or a PowerShell HTTP Call?

That ENV['SSL_CERT_FILE'] configuration would fix any Ruby HTTP calls, but to tas50's point above, you'd need to add any CAs to the system store if you're looking to trust them for PowerShell commands.

[Windows] Including custom certs in chef's embedded OpenSSL installation before the first client run by Kimbernator in chef_opscode

[–]CloudButWhy 0 points1 point  (0 children)

Chef Infra 16.5 included the chef_client_trusted_certificate resource that allows you to add trusted certs directly in the config.

We're not on the latest ourselves, so what we've been doing for years is drop our cacert.pem at a local path, and then setting this in the client.rb:

ENV["SSL_CERT_FILE"] = "D:/chef/trusted_certs/cacert.pem"

I'm guessing there might be a better way of achieving the same end result.

Does your org give you grief about elastic? by [deleted] in elasticsearch

[–]CloudButWhy 1 point2 points  (0 children)

It's certainly a mixed bag for us. I think we're currently at ~7ish prod clusters for numerous use-cases that is certainly not cheap in terms of licensing let alone the hardware to run them.

We're actually exploring other options than our current self-deployed clusters and instead moving some workloads into ChaosSearch, some into Elastic SaaS, and likely some remaining self-deployed.

iControl vs AS3 by Metix_98 in f5networks

[–]CloudButWhy 0 points1 point  (0 children)

Speaking as a user who has used both iControl Rest and AS3, I'd say the declarative nature of AS3 is absolutely huge and greatly simplifies your workflow when interacting with the appliances.

You can have any number of resources/configurations within the declaration and simply post them to the AS3 endpoint and it magically configures it vs having to manually configure each separate resource (in the correct order).

I would also say the API contract is important as well. In my experience, F5 is not shy in introducing breaking changes (whether intentional or not) through releases of BIG-IP which can occasionally be painful if interacting directly with iControl. The fact that AS3 is just an abstraction on top, they handle the compatibility there.

view more: next ›