DevOps and Docker Talk Bret Fisher

Bret and his co-host, Matt, are joined by Jason Dellaluce and Luca Guerra from Sysdig to talk about Falco, a tool I recommend for production clusters and knowing about any bad behavior on your servers.

-------------------------------------★ Enroll now for my next Live course, GitHub Actions + Argo CD, scheduled for July 10-21. Go to bret.courses/autodeploy to sign up. ★------------------------------------
Falco is a security tool I've mentioned multiple times on this show, because I mostly think that a low level security focused logging product is something that every production server needs. The ability to log unexpected events and behaviors on your Linux host is powerful and necessary to be able to audit what's really happening on your infrastructure outside of your app itself.
Falco has been a CNCF incubating project for over four years, and I was immediately drawn to it in its early days, because it was container and Kubernetes aware and it could log and alert with default rules for everything, from someone starting a shell inside a container, to a bash history file being deleted, to a container trying to talk to the Kubernetes API.
This episode will be useful for those of you new to tools like Falco and for those familiar with its basics, but also wanting to learn about newer features and use cases, which I did some learning on myself in this episode.
Live recording of the complete show from April 6, 2023 is on YouTube (Ep. #210).
★Topics★Falco websiteFalco on CNCF

Support this show and get exclusive benefits on Patreon, YouTube, or bretfisher.com!
★Join my Community★New live course on CI automation and gitops deploymentsBest coupons for my Docker and Kubernetes coursesChat with us and fellow students on our Discord Server DevOps FansGrab some merch at Bret's Loot Box
Homepage bretfisher.com
Creators & Guests

Bret Fisher - Host

Cristi Cotovan - Editor

Beth Fisher - Producer

Matt Williams - Host

Jason Dellaluce - Guest

Luca Guerra - Guest


(00:00) - Intro
(04:18) - Introducing the guests
(07:19) - What is Falco? Why do we need it?
(09:54) - What can Falco monitor?
(19:05) - How are events logged?
(32:53) - Does Falco classify alerts by severity?

Bret is joined by Lukas Gentele and Rich Burroughs from Loft Labs to look at a new project called DevPod, that supports dev containers and VMs. It works with local Docker instances and AWS, GCP, Azure, and several other cloud providers. The project is compatible with Microsoft's DevContainer standard, which means it works with the VC Code standalone app and VS Code in the browser.

-------------------------------------★ Enroll now for my next Live course, GitHub Actions + Argo CD, scheduled for July 10-21. Go to bret.courses/autodeploy to sign up. ★------------------------------------
Lukas and Rich were on this show last year, showing off vcluster, which allows you to run a full Kubernetes cluster inside an existing Kubernetes namespace. In this episode, we announce the release of DevPod and also go through some demos. I'm already thinking of how I might use it in my own developer workflow.
Live recording of the complete show from May 16, 2023 is on YouTube (Ep. #216). Includes demos.
★Topics★DevPod websiteDevPod on Twitter

Support this show and get exclusive benefits on Patreon, YouTube, or bretfisher.com!
★Join my Community★New live course on CI automation and gitops deploymentsBest coupons for my Docker and Kubernetes coursesChat with us and fellow students on our Discord Server DevOps FansGrab some merch at Bret's Loot Box
Homepage bretfisher.com
Creators & Guests

Bret Fisher - Host

Beth Fisher - Producer

Lukas Gentele - Guest

Ruch Burroughs - Guest

Cristi Cotovan - Editor


(00:00) - Intro
(04:43) - Introducing the guests
(05:33) - Loft Labs and VCluster
(07:40) - Introducing DevPod
(12:33) - Why CLI plus GUI?
(15:10) - DevPod use case
(17:24) - Options for IDEs and port forwarding
(20:14) - Using the Microsoft VS Code dev containers features
(23:08) - Create dev environments locally or remotely
(29:41) - Turning it on and off without having to go to the infrastructure
(51:07) - How to get DevPod
(51:54) - What's next? Share feedback.
(59:06) - This is not a production deployment tool
(01:03:21) - Wrap-up

Bret and Matt are joined by two engineers in Docker's leadership - Chief Technology Officer Justin Cormack and Senior Manager of Developer Relations Michael Irwin, to talk about recent Docker Hub changes, as well as their latest product releases.

-------------------------------------★ Enroll now for my next Live course, GitHub Actions + Argo CD, scheduled for July 10-21. Go to bret.courses/autodeploy to sign up. ★------------------------------------
We touch on Docker's latest updates and announcements, focusing on the early releases of Docker Scout, Docker plus WebAssembly, and the Telepresence extension for Docker Desktop. We also look at Docker's version 23 release, its first major update in three years, with key changes including BuildKit becoming the default builder, the ability to run alternate containerd shims, and a return to semantic versioning.
Other updates include new Swarm features and deprecation of older features, specifically older storage drivers.
In the show we also cover Docker's recent announcement and subsequent retraction of a plan to require free Docker Hub organizations to move to different plans.
Live recording of the complete show from March 23, 2023 is on YouTube (Ep. #208).
★Topics★Docker v23 releaseDocker Hub org changesDocker ScoutTechnical preview of Docker+WasmTelepresence for Docker announcement

Support this show and get exclusive benefits on Patreon, YouTube, or bretfisher.com!
★Join my Community★New live course on CI automation and gitops deploymentsBest coupons for my Docker and Kubernetes coursesChat with us and fellow students on our Discord Server DevOps FansGrab some merch at Bret's Loot Box
Homepage bretfisher.com
Creators & Guests

Justin Cormack - Guest

Bret Fisher - Host

Cristi Cotovan - Editor

Beth Fisher - Producer

Michael Irwin 🇺🇦 🕊 - Guest

Matt Williams - Host


(00:00) - Intro
(04:50) - Docker version 23 release
(07:31) - Docker's Hub Announcement and Retraction
(09:34) - What does telepresence mean with Docker
(12:12) - Should I switch to Kubernetes for development?
(14:29) - Telepresence elevator pitch
(22:24) - Telepresence connection scenarios
(25:24) - How to connect with Telepresence?
(32:59) - Bret's Jekyll Story
(35:06) - What is available free in Scout?
(37:09) - Scout is not a point-in-time scan
(41:39) - James Buren's Scout Video
(41:57) - Anyone can make an extension
(43:58) - Favorite extensions
(45:13) - Wasm technical preview
(47:27) - Bret's interview with Nigel Poulton
(50:21) - Question
(54:25) - Docker 23 defaults to BuildKit
(55:21) - Happy Birthday Docker
(57:00) - Wrapping up

Bret and Matt are joined by Chad Crowell of KubeSkills to walk through how you can contribute to Kubernetes open source.

-------------------------------------★ Enroll now for my next Live course, GitHub Actions + Argo CD, scheduled for July 10-21. Go to bret.courses/autodeploy to sign up. ★------------------------------------
Chad started the kubeskills.com community and podcast to focus on learning Kubernetes by doing and in this episode, he's taking us through a detailed guide on how to get involved in the Kubernetes community.
Although Kubernetes and other CNCF projects may seem big and complex with tons of activity, Chad helps us understand how the maturity of the projects and the community make it a much more pleasant onboarding experience for first-time contributors. We go through a wide range of resources and steps to help your first issue or pull request go smoothly.
Live recording of this show from March 9, 2023 is on YouTube (Ep. #206).
★Topics★Learning K8s by Open Source PDF slidesFirst Timers Only websiteK8s Contributor Community HomepageList of K8s SIGsK8s SlackOpen Sauced websiteK8s Contributors onboarding courseKube Cuddle podcast with Joe BedaLearning K8s Skills 

Support this show and get exclusive benefits on Patreon, YouTube, or bretfisher.com!
★Join my Community★New live course on CI automation and gitops deploymentsBest coupons for my Docker and Kubernetes coursesChat with us and fellow students on our Discord Server DevOps FansGrab some merch at Bret's Loot Box
Homepage bretfisher.com
Creators & Guests

Bret Fisher - Host

Cristi Cotovan - Editor

Beth Fisher - Producer

Matt Williams - Host

Chad M. Crowell - Guest


(00:00) - Intro
(04:39) - Chad's Book
(07:05) - Learning platforms
(07:31) - Another way to learn
(08:38) - SIGs
(09:41) - Community or Contributor Experience SIG
(12:00) - Volunteers
(13:21) - For those who want to start contributing
(15:44) - The different tags
(16:42) - Good first issues
(17:55) - Bret's first Docker fix
(18:44) - Who determines the first issues?
(20:31) - OpenSauced
(21:10) - Finding the next steps after learning
(21:53) - Dashboard to track contributions
(22:36) - A very friendly community
(24:24) - Who's paying for OpenSauced?
(25:00) - How to build your rep on the internet
(26:51) - Github Flow, Breaking it down
(29:18) - Eddie Hub
(30:04) - Assign yourself to the issue
(30:44) - Compile Kubernetes
(32:08) - Tracking the pull request lifecycle
(33:38) - Changing the k8s reference issue
(37:11) - Kubernetes Slack Channels
(37:53) - SIG mailing lists
(38:38) - Getting feedback before you do the work
(40:12) - How do you give up and issue?
(41:47) - Correlating issues with Slack
(42:22) - Start with an issue first
(43:18) - Random PRs don't go well
(44:54) - Onboarding course
(46:05) - Cheat sheet
(46:20) - What Chad has learned from contributing
(48:03) - Online resources
(50:42) - Certifications and exams
(52:40) - Matt's comment about a podcast
(54:42) - Wrap up

Bret is joined by fellow Docker Captain Nuno do Carmo to talk about desktop container solutions and the best Docker setup for Windows 11.

-------------------------------------★ Enroll now for my next Live course, GitHub Actions + Argo CD, scheduled for July 10-21. Go to bret.courses/autodeploy to sign up. ★------------------------------------
Nuno's a Docker Captain, Civo Ambassador, Microsoft MVP, and a big fan of Windows and Cloud Native. I've had him on the show before, because the more you use the Windows Subsystem for Linux and Docker Desktop, the more you'll want to use WSL.
Nuno helps answer many questions such as where are the Linux files stored, managing the CPU and memory resources, backing up files in WSL, getting the host Windows Explorer into the Linux filesystem, getting back to the Windows file system from the Linux shell and more!
Live recording of this show from February 23, 2023 on YouTube (Ep. #204). Includes demos.
★Topics★Nuno's WSL blogBret's Docker Desktop alternatives listRancher Desktop websitePodman Desktop website

Support this show and get exclusive benefits on Patreon, YouTube, or bretfisher.com!
★Join my Community★New live course on CI automation and gitops deploymentsBest coupons for my Docker and Kubernetes coursesChat with us and fellow students on our Discord Server DevOps FansGrab some merch at Bret's Loot Box
Homepage bretfisher.com
Creators & Guests

Bret Fisher - Host

Beth Fisher - Producer

Cristi Cotovan - Editor

Nuno do Carmo - Guest


(00:00) - Intro
(02:46) - Episode intro
(04:21) - Main show
(04:33) - Reflecting on the Docker birthday
(05:19) - Bret's Maven Course
(05:21) - Introducing Nuno
(06:28) - All starts with WSL
(07:07) - Mac vs Windows
(07:27) - WSL1 and WSL2
(10:22) - Question Linux in VM vs WSL
(14:45) - Filesystems and performance
(16:28) - Setting yourself up for success with WSL
(17:31) - WSL not installed by default with Windows
(19:10) - Demo start
(20:14) - Line endings issue in the past
(20:50) - The tooling is WSL-aware
(21:54) - VHDx
(22:55) - Demo
(26:16) - Bret re-explains it
(28:55) - Question SSH into WSL
(31:06) - Question How do you make a fresh WSL VM?
(33:19) - Question What does mount show in Linux
(34:31) - Question
(35:22) - Taking snapshots with Raft WSL
(36:02) - Question distros and VHDx files
(37:39) - Deleting or losing your distros
(39:11) - Question
(41:39) - Ecosystem and options - the spreadsheet
(44:05) - Demos
(44:12) - Podman desktop
(46:54) - Comment on Red Hat on Windows
(48:07) - Rancher Desktop
(55:13) - Demo
(55:44) - Process isolation on Windows

Bret is joined by Project Calico's Tomas Hruby from Tigera to dig into Calico CNI features for Kubernetes and beyond.

-------------------------------------★ Enroll now for my next Live course, GitHub Actions + Argo CD, scheduled for July 10-21. Go to bret.courses/autodeploy to sign up. ★------------------------------------
Calico can be used in a lot of places, including Linux, Windows, containers, bare metal, eBPF or iptables. Many of us learned about it as a CNI option for Kubernetes network and networking policy.
Streamed live on YouTube on February 9, 2023.
Unedited live recording of this show on YouTube (Ep. #202). Includes demos.
★Topics★Project CalicoTigera WebsiteProject Calico on Tigera's Website
Creators & Guests


Bret Fisher - Host

Beth Fisher - Producer

Cristi Cotovan - Editor

Tomas Hruby - Guest

Support this show and get exclusive benefits on Patreon, YouTube, or bretfisher.com!
★Join my Community★New live course on CI automation and gitops deploymentsBest coupons for my Docker and Kubernetes coursesChat with us and fellow students on our Discord Server DevOps FansGrab some merch at Bret's Loot Box
Homepage bretfisher.com
★Join my Community★New live course on CI automation and gitops deploymentsBest coupons for my Docker and Kubernetes coursesChat with us and fellow students on our Discord Server DevOps FansGrab some merch at Bret's Loot BoxHomepage bretfisher.com


(00:00) - Intro
(00:52) - About this episode
(03:25) - Main show
(03:30) - In today's episode
(04:54) - How did Tomas get started with Calico?
(05:22) - Projects are typically open source and SaaS
(06:01) - Project Calico elevator pitch
(07:20) - What can Calico do?
(08:27) - The origins of Calico
(09:07) - Docker got Kubernetes started
(10:19) - Project Calico on Github
(10:44) - Open source version is command-line driven
(10:58) - Calico and the company behind it
(11:22) - What makes Calico unique?
(12:48) - EBPF
(14:22) - EBPF and Calico
(16:22) - Question
(19:56) - Demo intro
(20:27) - Question
(21:12) - Question
(22:19) - Question
(23:09) - Vulnerabilities and threats
(25:22) - Question
(28:59) - Calico as service mesh
(32:27) - What is Tomas excited about?
(33:47) - EBPF real-time tooling