Get up to speed with Prometheus, the metrics-based monitoring system used in production by tens of thousands of organizations. This updated second edition provides site reliability engineers, Kubernetes administrators, and software developers with a hands-on introduction to the most important aspects of Prometheus, including dashboarding and alerting, direct code instrumentation, and metric collection from third-party systems with exporters.

Prometheus server maintainer Julien Pivotto and core developer Brian Brazil demonstrate how you can use Prometheus for application and infrastructure monitoring. This book guides you through Prometheus setup, the Node Exporter, and the Alertmanager, and then shows you how to use these tools for application and infrastructure monitoring. You'll understand why this open source system has continued to gain popularity in recent years.

You will:

• Know where and how much instrumentation to apply to your application code
• Monitor your infrastructure with Node Exporter and use new collectors for network system pressure metrics
• Get an introduction to Grafana, a popular tool for building dashboards
• Use service discovery and the new HTTP SD monitoring system to provide different views of your machines and services
• Use Prometheus with Kubernetes and examine exporters you can use with containers
• Discover Prom's new improvements and features, including trigonometry functions
• Learn how Prometheus supports important security features including TLS and basic authentication

Cloud services and SaaS software permeate every company's IT landscape, requiring a shift from manually provisioned services to a more structured approach, with codification at its core. Terraform provides tools to manage the lifecycle of your IT landscape across thousands of different cloud providers and SaaS platforms.

By defining your infrastructure as code you can safely and predictably make changes, modularize crucial building blocks, and create reusable service components. Each recipe in this cookbook addresses a specific problem and prefaces the solution with detailed insights into the how and why.

If you're just starting with Terraform and codified infrastructure, this book will help you create a solid foundation, on which you can build for years to come. If you're an advanced user, this guide will help you reaffirm your knowledge and take it to the next level, as you challenge yourself with more complex infrastructure, spread across multiple providers.

Recipes include:

• Strategies on how to use Terraform with Version Control Systems
• Validation and testing patterns for Terraform-managed infrastructure
• Methods for importing pre-existing resources
• Transforming infrastructure services into reusable components
• Integrating Terraform with other HashiCorp tools
• Deploying Containerized Workloads

Terraform has become a key player in the DevOps world for defining, launching, and managing infrastructure as code (IaC) across a variety of cloud and virtualization platforms, including AWS, Google Cloud, Azure, and more. This hands-on third edition, expanded and thoroughly updated for version 1.0 and beyond, shows you the fastest way to get up and running with Terraform.

Gruntwork cofounder Yevgeniy (Jim) Brikman takes you through code examples that demonstrate Terraform's simple, declarative programming language for deploying and managing infrastructure with a few commands. Veteran sysadmins, DevOps engineers, and novice developers will quickly go from Terraform basics to running a full stack that can support a massive amount of traffic and a large team of developers.

• Compare Terraform with Chef, Puppet, Ansible, CloudFormation, and Pulumi
• Deploy servers, load balancers, and databases
• Create reusable infrastructure with Terraform modules
• Test your Terraform modules with static analysis, unit tests, and integration tests
• Configure CI/CD pipelines for both your apps and infrastructure code
• Use advanced Terraform syntax for loops, conditionals, and zero-downtime deployment
• Get up to speed on Terraform 0.13 to 1.0 and beyond
• Work with multiple clouds and providers (including Kubernetes!)

Leverage Office 365 to increase your organization's efficiency

Key Features:

- Perform common to advanced-level management and administrative tasks for your organization with Office 365

- Become an Office 365 generalist who can work with the entire stack-not just specific products

- An advanced-level guide that will teach you to implement enterprise-level services into your organization, no matter the size of the business

Book Description:

In today's world, every organization aims to migrate to the cloud in order to become more efficient by making full use of the latest technologies. Office 365 is your one-stop solution to making your organization reliable, scalable, and fast.

This book will start with an overview of Office 365 components, and help you learn how to use the administration portal, and perform basic administration. It then goes on to cover common management tasks, such as managing users, admin roles, groups, securing Office 365, and enforcing compliance. In the next set of chapters, you will learn about topics including managing Skype for Business Online, Yammer, OneDrive for Business, and Microsoft Teams. In the final section of the book, you will learn how to carry out reporting and monitor Office 365 service health.

By the end of this book, you will be able to implement enterprise-level services with Office 365 based on your organization's needs.

What You Will Learn:

- Understand the vast Office 365 feature set

- Understand how workloads and applications interact and integrate with each other

- Connect PowerShell to various Office 365 services and perform tasks

- Manage Skype for Business Online

- Get support and monitor Office 365 service health

- Manage and administer identities and groups efficiently

Who this book is for:

This book targets architects, sys admins, engineers, and administrators who are working with Office 365 and are responsible for configuring, implementing, and managing Office 365 in their organization. A prior knowledge of Office 365 and Exchange servers is mandatory.

In 2016, Googleâ s Site Reliability Engineering book ignited an industry discussion on what it means to run production services todayâ and why reliability considerations are fundamental to service design. Now, Google engineers who worked on that bestseller introduce The Site Reliability Workbook, a hands-on companion that uses concrete examples to show you how to put SRE principles and practices to work in your environment.

This new workbook not only combines practical examples from Googleâ s experiences, but also provides case studies from Googleâ s Cloud Platform customers who underwent this journey. Evernote, The Home Depot, The New York Times, and other companies outline hard-won experiences of what worked for them and what didnâ t.

Dive into this workbook and learn how to flesh out your own SRE practice, no matter what size your company is.

Youâ ll learn:

• How to run reliable services in environments you donâ t completely controlâ like cloud
• Practical applications of how to create, monitor, and run your services via Service Level Objectives
• How to convert existing ops teams to SREâ including how to dig out of operational overload
• Methods for starting SRE from either greenfield or brownfield

To facilitate scalability and resilience, many organizations now run applications in cloud native environments using containers and orchestration. But how do you know if the deployment is secure? This practical book examines key underlying technologies to help developers, operators, and security professionals assess security risks and determine appropriate solutions.

Author Liz Rice, Chief Open Source Officer at Isovalent, looks at how the building blocks commonly used in container-based systems are constructed in Linux. You'll understand what's happening when you deploy containers and learn how to assess potential security risks that could affect your deployments. If you run container applications with kubectl or docker and use Linux command-line tools such as ps and grep, you're ready to get started.

• Explore attack vectors that affect container deployments
• Dive into the Linux constructs that underpin containers
• Examine measures for hardening containers
• Understand how misconfigurations can compromise container isolation
• Learn best practices for building container images
• Identify container images that have known software vulnerabilities
• Leverage secure connections between containers
• Use security tooling to prevent attacks on your deployment

Can a system be considered truly reliable if it isn't fundamentally secure? Or can it be considered secure if it's unreliable? Security is crucial to the design and operation of scalable systems in production, as it plays an important part in product quality, performance, and availability. In this book, experts from Google share best practices to help your organization design scalable and reliable systems that are fundamentally secure.

Two previous O'Reilly books from Google--Site Reliability Engineering and The Site Reliability Workbook--demonstrated how and why a commitment to the entire service lifecycle enables organizations to successfully build, deploy, monitor, and maintain software systems. In this latest guide, the authors offer insights into system design, implementation, and maintenance from practitioners who specialize in security and reliability. They also discuss how building and adopting their recommended best practices requires a culture that's supportive of such change.

You'll learn about secure and reliable systems through:

• Design strategies
• Recommendations for coding, testing, and debugging practices
• Strategies to prepare for, respond to, and recover from incidents
• Cultural best practices that help teams across your organization collaborate effectively

If you hope to outmaneuver threat actors, speed and efficiency need to be key components of your cybersecurity operations. Mastery of the standard command-line interface (CLI) is an invaluable skill in times of crisis because no other software application can match the CLI's availability, flexibility, and agility. This practical guide shows you how to use the CLI with the bash shell to perform tasks such as data collection and analysis, intrusion detection, reverse engineering, and administration.

Authors Paul Troncone, founder of Digadel Corporation, and Carl Albing, coauthor of bash Cookbook (O'Reilly), provide insight into command-line tools and techniques to help defensive operators collect data, analyze logs, and monitor networks. Penetration testers will learn how to leverage the enormous amount of functionality built into nearly every version of Linux to enable offensive operations.

In four parts, security practitioners, administrators, and students will examine:

• Foundations: Principles of defense and offense, command-line and bash basics, and regular expressions
• Defensive security operations: Data collection and analysis, real-time log monitoring, and malware analysis
• Penetration testing: Script obfuscation and tools for command-line fuzzing and remote access
• Security administration: Users, groups, and permissions; device and software inventory

New edition of the bestselling guide to Mastering Windows Server, updated to Windows Server 2022 with improved security, better platform flexibility, new windows admin center, upgraded Hyper-V manager and hybrid cloud support

• Develop necessary skills to design and implement Microsoft Server 2019 in enterprise environment
• Provide support to your medium to large enterprise and leverage your experience in administering Microsoft Server 2019
• Effectively administering Windows server 2019 with the help of practical examples

Mastering Windows Server 2019 - Second Edition covers all of the essential information needed to implement and utilize this latest-and-greatest platform as the core of your data center computing needs. You will begin by installing and managing Windows Server 2019, and by clearing up common points of confusion surrounding the versions and licensing of this new product. Centralized management, monitoring, and configuration of servers is key to an efficient IT department, and you will discover multiple methods for quickly managing all of your servers from a single pane of glass. To this end, you will spend time inside Server Manager, PowerShell, and even the new Windows Admin Center, formerly known as Project Honolulu. Even though this book is focused on Windows Server 2019 LTSC, we will still discuss containers and Nano Server, which are more commonly related to the SAC channel of the server platform, for a well-rounded exposition of all aspects of using Windows Server in your environment. We also discuss the various remote access technologies available in this operating system, as well as guidelines for virtualizing your data center with Hyper-V. By the end of this book, you will have all the ammunition required to start planning for, implementing, and managing Windows.

• Work with the updated Windows Server 2019 interface, including Server Core and Windows Admin Center
• Secure your network and data with new technologies in Windows Server 2019
• Learn about containers and understand the appropriate situations to use Nano Server
• Discover new ways to integrate your data center with Microsoft Azure
• Harden your Windows Servers to help keep the bad guys out
• Virtualize your data center with Hyper-V

If you are a System Administrator or an IT professional interested in designing and deploying Windows Server 2019 then this book is for you. Previous experience of Windows Server operating systems and familiarity with networking concepts is required.

1. Getting Started with Windows Server 2019
2. Installing and Managing Windows Server 2019
3. Core Infrastructure Services
4. Certificates in Windows Server 2019
5. Networking with Windows Server 2019
6. Enabling your Mobile Workforce
7. Hardening and Security
8. Server Core
9. Redundancy in Windows Server 2019
10. PowerShell
11. Containers and Nano Server
12. Virtualizing your Datacenter with Hyper-V

Technical debt is best understood as the work remaining before a job can be considered complete. It is one of the worst bottlenecks when it comes to creating value with software and the ability to deal with it is often the difference between a great business and closing the shop. The Mikado Method is a process which systematically eliminates technical debt. It gets its name from a simple game known as pick-up sticks. Starting with a jumbled pile of sticks, the goal is to remove the Mikado, or Emperor, stick without disturbing the others. Players carefully remove sticks one at a time, leaving the rest of the heap intact, slowly exposing the Mikado. The game is a great metaphor for eliminating technical debt--carefully extracting each intertwined dependency until successfully resolving the central issue.

Written by the creators of the Mikado Method

Step-by-step guide with hands on examples

This book is for software developers with a basic understanding of Java or familiarity with a C-like language. No previous experience with the Mikado Method is necessary.

You did it. You successfully transformed your application into a microservices architecture. But now that you're running services across different environments-public to public, private to public, virtual machine to container-your cloud native software is beginning to encounter reliability issues.

How do you stay on top of this ever-increasing complexity? With the Istio service mesh, you'll be able to manage traffic, control access, monitor, report, get telemetry data, manage quota, trace, and more with resilience across your microservice.

In this book, Lee Calcote and Zack Butcher explain why your services need a service mesh and demonstrate step-by-step how Istio fits into the life cycle of a distributed application. You'll learn about the tools and APIs for enabling and managing many of the features found in Istio.

• Explore the observability challenges Istio addresses
• Use request routing, traffic shifting, fault injection, and other features essential to running a solid service mesh
• Generate and collect telemetry information
• Try different deployment patterns, including A/B, blue/green, and canary
• Get examples of how to develop and deploy real-world applications with Istio support

As more companies move toward microservices and other distributed technologies, the complexity of these systems increases. You can't remove the complexity, but through Chaos Engineering you can discover vulnerabilities and prevent outages before they impact your customers. This practical guide shows engineers how to navigate complex systems while optimizing to meet business goals.

Two of the field's prominent figures, Casey Rosenthal and Nora Jones, pioneered the discipline while working together at Netflix. In this book, they expound on the what, how, and why of Chaos Engineering while facilitating a conversation from practitioners across industries. Many chapters are written by contributing authors to widen the perspective across verticals within (and beyond) the software industry.

• Learn how Chaos Engineering enables your organization to navigate complexity
• Explore a methodology to avoid failures within your application, network, and infrastructure
• Move from theory to practice through real-world stories from industry experts at Google, Microsoft, Slack, and LinkedIn, among others
• Establish a framework for thinking about complexity within software systems
• Design a Chaos Engineering program around game days and move toward highly targeted, automated experiments
• Learn how to design continuous collaborative chaos experiments

If you're preparing to roll out IPv6 on your network, this concise book provides the essentials you need to support this protocol with DNS. You'll learn how DNS was extended to accommodate IPv6 addresses, and how you can configure a BIND name server to run on the network. This book also features methods for troubleshooting problems with IPv6 forward- and reverse-mapping, and techniques for helping islands of IPv6 clients communicate with IPv4 resources.

Topics include:

• DNS and IPv6--Learn the structure and representation of IPv6 addresses, and the syntaxes of AAAA and PTR records in the ip6.arpa IPv6 reverse-mapping zone
• BIND on IPv6--Use IPv6 addresses and networks in ACLs, and register and delegate to IPv6-speaking name servers
• Resolver Configuration--Configure popular stub resolvers (Linux/Unix, MacOS X, and Windows) to query IPv6-speaking name servers
• DNS64--Learn about the transition technology that allows clients with IPv6-only network stacks to communicate with IPv4 servers
• Troubleshooting--Use the nslookup and dig troubleshooting tools to look up the IPv6 addresses of a domain name, or reverse-map an IPv6 address to a domain name

Are you satisfied with the way your company responds to IT incidents? How prepared is your response team to handle critical, time-sensitive events such as service disruptions and security breaches? IT professionals looking for effective response models have successfully adopted the Incident Management System (IMS) used by firefighters throughout the US. This practical book shows you how to apply the same response methodology to your own IT operation.

You'll learn how IMS best practices for leading people and managing time apply directly to IT incidents where the stakes are high and outcomes are uncertain. This book provides use cases of some of the largest (and smallest) IT operations teams in the world. There is a better way to respond. You just found it.

• Assess your IT incident response with the PROCESS programmatic evaluation tool
• Get an overview of the IMS all-hazard, all-risk framework
• Understand the responsibilities of the Incident Commander
• Form a unified command structure for events that affect multiple business units
• Systematically evaluate what broke and how the incident team responded

How can you make multivendor services work smoothly on today's complex networks? This practical book shows you how to deploy a large portfolio of multivendor Multiprotocol Label Switching (MPLS) services on networks, down to the configuration level. You'll learn where Juniper Network's Junos, Cisco's IOS XR, and OpenContrail, interoperate and where they don't.

Two network and cloud professionals from Juniper describe how MPLS technologies and applications have rapidly evolved through services and architectures such as Ethernet VPNs, Network Function Virtualization, Seamless MPLS, Egress Protection, External Path Computation, and more. This book contains no vendor bias or corporate messages, just solid information on how to get a multivendor network to function optimally.

Topics include:

• Introduction to MPLS and Software-Defined Networking (SDN)
• The four MPLS Builders (LDP, RSVP-TE, IGP SPRING, and BGP)
• Layer 3 unicast and multicast MPLS services, Layer 2 VPN, VPLS, and Ethernet VPN
• Inter-domain MPLS Services
• Underlay and overlay architectures: data centers, NVO, and NFV
• Centralized Traffic Engineering and TE bandwidth reservations
• Scaling MPLS transport and services
• Transit fast restoration based on the IGP and RSVP-TE
• FIB optimization and egress service for fast restoration

Do you have a nagging feeling that your monitoring needs improvement, but you just aren't sure where to start or how to do it? Are you plagued by constant, meaningless alerts? Does your monitoring system routinely miss real problems? This is the book for you.

Mike Julian lays out a practical approach to designing and implementing effective monitoring--from your enterprise application down to the hardware in a datacenter, and everything between. Practical Monitoring provides you with straightforward strategies and tactics for designing and implementing a strong monitoring foundation for your company.

This book takes a unique vendor-neutral approach to monitoring. Rather than discuss how to implement specific tools, Mike teaches the principles and underlying mechanics behind monitoring so you can implement the lessons in any tool.

Practical Monitoring covers essential topics including:

• Monitoring antipatterns
• Principles of monitoring design
• How to build an effective on-call rotation
• Getting metrics and logs out of your application