Chris Love's repositories
build
Build container images
cnmconsulting.net
CNM Consulting Inc Website
docker-yeoman
Base Docker image for yeoman generators in Outrigger
generator-go-lang
:guardsman: A teeny tiny and somewhat opinionated generator for your next golang project
gke-application-security-demo
This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engine. You will deploy multiple instances of the same container image with a variety of security settings to illustrate the use of RBAC, security contexts, and AppArmor policies.
gke-binary-auth-demo
Binary Authorization is a Google Cloud Platform (GCP) managed service that works closely with Google Kubernetes Engine (GKE) to enforce deploy-time security controls to ensure that only trusted container images are deployed. This demo deploys a GKE cluster with the Binary Authorization feature enabled, demonstrates its use.
gke-cloud-sql-postgres-demo
This project shows how easy it is to connect an application in Kubernetes Engine to a Cloud SQL instance, using the Cloud SQL Proxy container as a sidecar container. You will deploy a Kubernetes Engine Cluster and a Cloud SQL Postgres instance, and use the Cloud SQL Proxy container to allow communication between them.
gke-datadog-demo
This project demonstrates how a third party solution, like Datadog, can be used to monitor a Kubernetes Engine cluster and its workloads. Using the provided manifest, you will install Datadog and a simple nginx workload into your cluster. The Datadog agents will be configured to monitor the nginx workload, and ship metrics to your own Datadog account.
gke-istio-gce-demo
In this project, you will leverage Kubernetes Engine and Google Compute Engine to explore how Istio can manage services that reside outside of the Kubernetes Engine environment. You will deploy a typical Istio service mesh in Kubernetes Engine, then configure an externally deployed microservice to join the mesh.
gke-istio-shared
This is the shared project for two Kubernetes Engine demos
gke-istio-telemetry-demo
This project demonstrates how to use an Istio service mesh in a single Kubernetes Engine cluster alongside Prometheus, Jaeger, and Grafana, to monitor cluster and workload performance metrics. You will first deploy the Istio control plane, data plane, and additional visibility tools using the provided scripts, then explore the collected metrics and trace data in Grafana.
gke-istio-vpn-demo
This project demonstrates how Istio's mesh expansion feature can be used to link services accross a VPN. The feature allows for a non-Kubernetes service running outside of the Istio infrastructure on Kubernetes Engine, to be integrated into, and managed by the Istio service mesh.
gke-managed-certificates-demo
GKE ingress with GCP managed certificates
gke-migration-to-containers
This demo provides a basic walkthrough of migrating a stateless application from running on a VM all the way to running it on Kubernetes Engine (GKE).
gke-monitoring-tutorial
This project walks you through setting up monitoring and visualizing metrics from a Kubernetes Engine cluster. The logs from the Kubernetes Engine cluster will be leveraged to walk through the monitoring capabilities of Stackdriver.
gke-networking-demos
This project presents a number of best practices for establishing network links between Kubernetes Engine clusters, and exposing cluster services across Google Cloud projects. You will use a set of Deployment Manager templates to create networks, subnets, vpn connections, and Kubernetes Engine clusters.
gke-rolling-updates-demo
This project demonstrates a different upgrade procedures best suited for clusters containing stateless and stateful workloads. You will perform the upgrades in two stages. First, the control plane is updated, then node pools are upgraded.
gke-security-scenarios-demo
This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engine. You will deploy multiple instances of the same container image with a variety of security settings to illustrate the use of RBAC, security contexts, and AppArmor policies.
gke-stateful-applications-demo
This project installs an Apache Cassandra database into a Kubernetes Engine cluster. Various scripts are contained within this project that provide push button creation, validation, and deletion of the Cassandra(C*) database and Kubernetes Engine cluster.
jekyll-incorporated
Modern Jekyll based blog for companies
k8s-is-not-ha
How to make yours apps HA in Kubernetes
kubernetes-aws-workshop
Kubernetes on AWS Workshop
one-page-wonder-jekyll
Jekyll port of One Page Wonder
rules_terraform
Bazel rules for using Hashicorp's Terraform in your Bazel builds.
terraform-aws-ec2-instance
Terraform module which creates EC2 instance(s) on AWS
terraform-aws-security-group
Terraform module which creates EC2-VPC security groups on AWS