Category: cloud

Cloud vs. on-premises is about shaping risk

TL;DR: moving to the public cloud consolidates many small risks into few large ones. A recent GCP cloud outage (https://status.cloud.google.com/incident/cloud-networking/20004) highlights an issue with running more and more parts of the internet on the same infrastructure: as more computing resources consolidate in large cloud providers' data centres, the risk of a significant, global outage of … Continue reading Cloud vs. on-premises is about shaping risk

Azure diaries: can’t access KeyVault

Context: as a tenant administrator you can't inspect KeyVault contents created by other people ("you are unauthorized to view these contents"). Solution: assign yourself appropriate permissions like this: Locate the KeyVault in the Azure portal: go to "Access policies"click "+Add Access Policy"Key permissions: everything under "Key Management Operations" and "Cryptographic Operations"Accordingly for key and certificate … Continue reading Azure diaries: can’t access KeyVault

docker-proxy port in use

Quick one: you're starting a container through docker-compose and it says a port is in use. You "netstat -plutn" it and find out, that port is in use by docker-proxy. Github user rdavaillaud knows what's going on: stop dockerremove all internal docker network: rm /var/lib/docker/network/files/start docker

Cloud-specific software architecture patterns

This post is about software application architecture patterns that simplify application design by leveraging cloud features. New: Download the cloud pattern cheat sheet Packaged configuration Packaged configuration cue card What Configuration is packaged with deployment artefacts Motivation Simplify system, increase resilience by removing runtime dependency on configuration service How Configuration is managed in configuration repository, … Continue reading Cloud-specific software architecture patterns

Rebuilding single services in docker-compose

Note to self: a single service ("container") out of a docker-compose.yaml file is rebuilt and restarted like this: docker-compose create container_name   While this complains about deprecations, there is another way. Let's say we want to re-create a container called "web" belonging to a composition: # stop container docker-compose stop web # optionally destroy container. … Continue reading Rebuilding single services in docker-compose

Monitoring for the private Docker cloud project

A few days ago I blogged about my holiday project (Building a private cloud with Docker [1]) which is just a proof of concept as it lacks important features. One of them is monitoring which is a tough topic in cluster environments. There are a few open source, free to use monitoring solutions for Docker … Continue reading Monitoring for the private Docker cloud project