How to configure an SSL reverse proxy with Nginx?

2023-12-152026-01-15 ~ Tom's IT Cafe ~ Leave a comment

A reverse proxy is a server that sits in front of web servers and forwards client requests to those web servers. It acts as an intermediary, intercepting and inspecting incoming client requests before forwarding them to the web server. Reverse proxies can provide additional levels of abstraction, control, security, and performance optimization. They are commonly used for load balancing, web acceleration, and to hide implementation details about the web servers.

Continue reading →

How To Create A Scalable Jenkins CI/CD Environment Using Containers?

2023-12-052026-01-15 ~ Tom's IT Cafe ~ Leave a comment

Jenkins is a platform for creating a Continuous Integration/Continuous Delivery (CI/CD) environment. It is written in Java and provides support for various version control tools such as Git, running Bash scripts and Windows batch files, building Ant and Apache Maven-based projects, and more. Jenkins helps build, test, and continually deploy software. It is an open-source system and one of the leading automation servers. Jenkins requires scripting some automation steps, but it provides a fast and robust way to systematize the software development lifecycle. The program runs web containers and plugins, such as Apache Tomcat, and helps manage lifecycle and access rights requests. Over 1700 plugins for Jenkins enrich the software integration, automation, and delivery processes and provide a customizable environment. Jenkins is used for the whole software delivery pipeline, including deployment.

Continue reading →

Container Orchestration In Podman Pods With Kubernetes Compatibility

2023-12-012026-01-15 ~ Tom's IT Cafe ~ Leave a comment

Containerization has revolutionized the way we deploy and manage applications, offering lightweight and scalable solutions for a variety of workloads. The Podman, a container management tool, provides a flexible and user-friendly alternative to traditional container orchestration systems.

Continue reading →

Writing Your Own Ansible Role: A Comprehensive Guide Using Industry-Standard Tools and Software

2023-11-212026-01-15 ~ Tom's IT Cafe ~ Leave a comment

Automation has become a cornerstone of modern IT operations, and Ansible stands as one of the most popular tools for configuration management, application deployment, and task automation. Ansible simplifies these processes through its role-based approach, making it easier to manage complex infrastructure and streamline workflows. In this blog post, we will explore how to create your own Ansible role using industry-standard tools and software. By the end, you’ll be well-equipped to design and share your own reusable Ansible roles.

Continue reading →

Streamlining IT Operations: Getting Started with Ansible Automation in 2024!

2023-11-132026-01-15 ~ Tom's IT Cafe ~ Leave a comment

In the fast-paced world of technology, efficiency and automation are key to staying competitive and managing resources effectively. Small and medium-sized businesses (SMBs) are no exception, and one powerful tool for automating IT operations is Ansible. We -at Tom’s IT Cafe- start a new series of blog posts where, we will guide you through the process of installing and getting started with Ansible in a small company to kickstart your automation journey.

Continue reading →

Mastering Docker Networking: Exposing Ports Only to Other Containers

2023-10-202026-01-15 ~ Tom's IT Cafe ~ Leave a comment

Docker networks are virtual networks created by Docker to enable communication between Docker containers, allowing them to connect to and communicate with each other or to non-Docker workloads. Containers inside the Docker network can talk to each other by sharing packets of information, and each container sees a network interface with an IP address, a gateway, a routing table, DNS services, and other networking details. By default, the container gets an IP address for every Docker network it attaches to, and when a container starts, it can only attach to a single network, using the –network flag. However, you can connect a running container to multiple networks using the docker network connect command.

Continue reading →

Running Rundeck and Ansible in Podman with a MySQL Backend and Podman-Compose: A Comprehensive Guide

2023-10-112026-01-15 ~ Tom's IT Cafe ~ Leave a comment

In today’s ever-evolving IT landscape, the need for self-service automation and precise scheduling has become significant. Enter Rundeck and Ansible, two formidable tools that empower organizations to speed up their infrastructure management. When combined with the containerization capabilities of Podman and the orchestration provided by Podman-Compose, you can create a robust automation environment that not only simplifies self-service tasks but also enables precise scheduling.

Continue reading →

A Deep Dive into Ansible Vault: Safeguarding Your Sensitive Data

2023-10-022026-01-15 ~ Tom's IT Cafe ~ Leave a comment

Ansible Vault is a feature of Ansible that allows you to encrypt sensitive data such as passwords or keys in encrypted files, rather than as plaintext in playbooks or roles. This provides the ability to secure any sensitive data that is necessary to successfully run Ansible projects. Ansible Vault uses the AES 256 algorithm to provide symmetric encryption, which means that it uses the same password for encrypting and decrypting files. The ansible-vault command is the main interface for managing encrypted content within Ansible, and it is used to initially encrypt files and subsequently used to view, edit, or decrypt the data. Ansible Vault is especially useful if you have confidential data that you want to secure and prevent from being publicly exposed.

Continue reading →

Rundeck Unleashed: Accelerating DevOps Workflows with Self-Service Empowerment

2023-09-252026-01-15 ~ Tom's IT Cafe ~ Leave a comment

As DevOps practitioners, we’re always on the lookout for new tools that can help us streamline our workflows and improve our processes. One such tool that we’ve recently been exploring is Rundeck, an open-source automation platform that can help us manage and execute our jobs and tasks more efficiently.

Continue reading →

Building Podman Debian Images With Systemd Inside The Container

2023-09-222026-01-15 ~ Tom's IT Cafe ~ Leave a comment

Containerization has revolutionized the way software is developed, tested, and deployed. While Docker has been a popular choice for containerization, Podman has emerged as a viable alternative, especially for users who prefer a rootless, daemonless, and more secure container experience. In this blog post, we will explore how to build Debian-based container images using Podman while integrating systemd inside them. This allows you to run services and manage them using systemd, just like you would on a traditional server.

Continue reading →

A Guide For Configuring and Hosting an In-House Docker Registry

2023-09-202026-01-15 ~ Tom's IT Cafe ~ Leave a comment

Docker has revolutionized the way we build, ship, and run applications by containerizing them. One critical component of a well-managed container ecosystem is a Docker registry. While Docker Hub is a popular choice for hosting container images, there are compelling reasons to set up an in-house Docker registry. In this guide, we will walk you through the steps to configure and host your own Docker registry, ensuring control, security, and efficiency in your containerized environment.

Continue reading →

Securing Ansible Automation with Single Entry Points: SSH Jump Hosts

2023-09-182026-01-15 ~ Tom's IT Cafe ~ Leave a comment

Using SSH jump hosts (also known as bastion hosts or SSH gateways) with Ansible allows you to securely access and manage servers in a remote network or behind a firewall. Jump hosts act as intermediaries, forwarding your SSH connection to the target hosts. You can configure Ansible to use jump hosts for managing remote servers. Here’s how to set it up:

Continue reading →

Containerized Confidence: Testing Ansible Roles with Molecule and Podman on Debian Linux

2023-09-112026-01-15 ~ Tom's IT Cafe ~ Leave a comment

Testing Ansible roles is a crucial step in ensuring the reliability and correctness of your infrastructure automation. Among the various tools available for this purpose, Molecule stands out as a versatile framework for testing Ansible roles. When coupled with Podman, a containerization tool similar to Docker, it provides a seamless and efficient environment for testing Ansible roles on Debian Linux. In this blog post, we will explore the process of setting up Molecule with Podman on Debian Linux.

Continue reading →

Installing Terraform On Debian Linux Using the Official Apt Repository

2023-09-082026-01-15 ~ Tom's IT Cafe ~ 2 Comments

Terraform, developed by HashiCorp, is a powerful Infrastructure as Code (IaC) tool that allows you to define and provision infrastructure resources in a declarative and automated manner. It is an essential tool for managing cloud infrastructure efficiently. If you’re using Debian Linux, one of the easiest and recommended ways to install Terraform is by using the official Apt repository provided by HashiCorp. This post will guide you through the step-by-step process of installing Terraform on Debian Linux.

Continue reading →

A Comprehensive Guide to Configure SSH Connections in Ansible

2023-09-042026-01-15 ~ Tom's IT Cafe ~ Leave a comment

Ansible, a powerful open-source automation tool, simplifies the management of infrastructure, applications, and data across your IT environment. At the heart of Ansible’s magic lies SSH (Secure Shell) – the trusted protocol for secure remote access. Configuring SSH connections in Ansible is a fundamental step in reaching its capabilities for server provisioning, configuration management, and application deployment. In this guide, we will walk you through the process of setting up SSH connections in Ansible to help you automate your infrastructure efficiently and securely.

Continue reading →