diff --git a/README.md b/README.md index a88a79543..4107cddf1 100644 --- a/README.md +++ b/README.md @@ -2,7 +2,7 @@ :information_source:  This repo contains questions and exercises on various technical topics, sometimes related to DevOps and SRE -:bar_chart:  There are currently **2538** exercises and questions +:bar_chart:  There are currently **2557** exercises and questions :warning:  You can use these for preparing for an interview but most of the questions and exercises don't represent an actual interview. Please read [FAQ page](faq.md) for more details @@ -23,7 +23,7 @@ Git
Git
ansible
Ansible
Network
Network
- Linux
Linux
+ @@ -32,7 +32,7 @@ go
Go
Bash
Shell Scripting
kubernetes
Kubernetes
- Prometheus
Prometheus
+ Cloud
Cloud
@@ -40,7 +40,6 @@ azure
Azure
Google Cloud Platform
Google Cloud Platform
openstack
OpenStack
- security
Security
Operating System
Operating System
@@ -48,7 +47,6 @@ Elastic
Elastic
Virtualization
Virtualization
DNS
DNS
- Misc
Misc
Testing
Testing
@@ -56,7 +54,6 @@ RegEx
Regex
Design
System Design
Hardware
Hardware
- Big Data
Big Data
Certificates
Certificates
@@ -64,7 +61,6 @@ sql
SQL
OpenShift
OpenShift
Storage
Storage
- HR
Soft Skills
Terraform
Terraform
@@ -72,14 +68,26 @@ puppet
Puppet
Distributed
Distributed
you
Questions you can ask
- perl
Perl
Circle CI
Circle CI
Argo
Argo
- Kafka
Kafka
+ Kafka
Kafka
DataDog
+ perl
Perl
+ + Linux
Linux
+ Prometheus
Prometheus
+ Big Data
Big Data
+ HR
Soft Skills
+ security
Security
+ + + Chaos Engineering
Chaos Engineering
+ Misc
Misc
+ + @@ -89,35 +97,28 @@ ## Network
-What do you need in order to communicate?
+In general, what do you need in order to communicate?
- A common language (for the two ends to understand) - A way to address who do you want to communicate with - A Connection (so the content of the communication can reach the recipients) +
What is TCP/IP?
A set of protocols that define how two or more devices can communicate with each other. -To learn more about TCP/IP, read [here](http://www.penguintutor.com/linux/basic-network-reference) -
-
-What is APIPA?
-APIPA is a set of it addresses that devices are allocated -when the main DHCP server is not reachable -
+To learn more about TCP/IP, read [here](http://www.penguintutor.com/linux/basic-network-reference) -
-What ip range does APIPA use?
-APIPA uses the ip range: 169.254.0.1 - 169.254.255.254.
What is Ethernet?
Ethernet simply refers to the most common type of Local Area Network (LAN) used today. A LAN—in contrast to a WAN (Wide Area Network), which spans a larger geographical area—is a connected network of computers in a small area, like your office, college campus, or even home. +
@@ -416,7 +417,22 @@ For example, your computer's private IP could be 192.168.1.100, but your router Which factors affect network performances
-#### Network - Data and Control planes +
+What is APIPA?
+ +APIPA is a set of it addresses that devices are allocated +when the main DHCP server is not reachable + +
+ +
+What ip range does APIPA use?
+ +APIPA uses the ip range: 169.254.0.1 - 169.254.255.254. + +
+ +#### Control Plane and Data Plane
What "control plane" refers to?
@@ -2887,9 +2903,8 @@ Google Drive Explain MBR
-## Questions you CAN ask - +## Questions you CAN ask A list of questions you as a candidate can ask the interviewer during or after the interview. These are only a suggestion, use them carefully. Not every interviewer will be able to answer these (or happy to) which should be perhaps a red flag warning for your regarding working in such place but that's really up to you. @@ -3679,7 +3694,9 @@ If you are looking for a way to prepare for a certain exam this is the section f * [Certified Kubernetes Administrator (CKA)](topics/kubernetes/CKA.md) (Latest update: 2022) -## Other DevOps Projects +## Additional DevOps and SRE Projects + +

diff --git a/images/logos/chaos_engineering.png b/images/logos/chaos_engineering.png new file mode 100644 index 000000000..1d2ba53e5 Binary files /dev/null and b/images/logos/chaos_engineering.png differ diff --git a/images/sre_checklist.png b/images/sre_checklist.png new file mode 100644 index 000000000..b4fe4e64a Binary files /dev/null and b/images/sre_checklist.png differ diff --git a/scripts/count_questions.sh b/scripts/count_questions.sh index 1db56bc33..112dcca71 100755 --- a/scripts/count_questions.sh +++ b/scripts/count_questions.sh @@ -1,3 +1,9 @@ #!/usr/bin/env bash -echo $(( $(grep -E "\[Exercise\]|" -c README.md topics/*/README.md | awk -F: '{ s+=$2 } END { print s }' ))) +set -eu + +count=$(echo $(( $(grep -E "\[Exercise\]|" -c README.md topics/*/README.md | awk -F: '{ s+=$2 } END { print s }' )))) + +echo "There are $count questions and exercises" + +sed -i "s/currently \*\*[0-9]*\*\*/currently \*\*$count\\**/" README.md diff --git a/topics/chaos_engineering/README.md b/topics/chaos_engineering/README.md new file mode 100644 index 000000000..c442886ef --- /dev/null +++ b/topics/chaos_engineering/README.md @@ -0,0 +1,31 @@ +# Chaos Engineering + +- [Chaos Engineering](#chaos-engineering) + - [Chaos Engineering Questions](#chaos-engineering-questions) + - [Basics](#basics) + +## Chaos Engineering Questions + +### Basics + +
+What is Chaos Engineering?
+ +[Wikipedia](https://en.wikipedia.org/wiki/Chaos_engineering): "Chaos Engineering is the discipline of experimenting on a system in order to build confidence in the system's capability to withstand turbulent conditions in production." + +[TechTarget](https://www.techtarget.com/searchitoperations/definition/chaos-engineering): "Chaos engineering is the process of testing a distributed computing system to ensure that it can withstand unexpected disruptions." + +
+ +
+What's a typical Chaos Engineering workflow?
+ +According to [Gremlin](gremlin.com) there are three steps: + +1. Planning an experiment where you design and choose a scenario in which your system should fail to operate properly +2. You execute the smallest possible experiment to test your theory +3. If nothing goes wrong, you scale your experiment and make the blast radius bigger. If your system breaks, you better understand why and start dealing with it + +The process then repeats itself either with same scenario or a new one. + +
\ No newline at end of file diff --git a/topics/linux/README.md b/topics/linux/README.md index 9054a8bc4..ea1baf446 100644 --- a/topics/linux/README.md +++ b/topics/linux/README.md @@ -2,46 +2,69 @@ ## Linux Master Application -A completely free application for testing your knowledge on Linux - - - -## Linux Self Assessment - -* [Linux 101](#questions-linux-101) -* [Linux I/O Redirection](#questions-linux-redirection) -* [Linux Filesystem Hierarchy Standard](#questions-linux-fhs) -* [Linux Permissions](#questions-linux-permissions) -* [Linux Scenarios](#questions-linux-scenarios) -* [Linux Systemd](#questions-linux-systemd) -* [Linux Troubleshooting and Debugging](#questions-linux-troubleshooting) -* [Linux kernel](#questions-linux-kernel) -* [Linux SSH](#questions-linux-ssh) -* [Linux Globbing and Wildcards](#questions-linux-wildcards) -* [Linux Boot Process](#questions-linux-boot) -* [Linux Disk and Filesystem](#questions-linux-disk-fs) -* [Linux Performance Analysis](#questions-linux-performance-analysis) -* [Linux Processes](#questions-linux-processes) -* [Linux Security](#questions-linux-security) -* [Linux Networking](#questions-linux-networking) -* [Linux DNS](#questions-linux-dns) -* [Linux Packaging](#questions-linux-packaging) -* [Linux DNF](#questions-linux-dnf) -* [Linux Applications and Services](#questions-linux-apps-and-services) -* [Linux Users and Groups](#questions-linux-users-and-groups) -* [Linux Hardware](#questions-linux-hardware) -* [Linux Namepsaces](#questions-linux-namespaces) -* [Linux Virtualization](#questions-linux-virtualization) -* [Linux AWK](#questions-linux-awk) -* [Linux System Calls](#questions-linux-system-calls) -* [Linux Filesystem and Files](#questions-linux-fs-files) -* [Linux Advanced Networking](#questions-linux-advanced-networking) -* [Linux Memory](#questions-linux-memory) -* [Linux Distributions](#questions-linux-distributions) -* [Linux Sed](#questions-linux-sed) -* [Linux Misc](#questions-linux-misc) - - +A completely free application for testing your knowledge on Linux. +Desclaimer: developed by repository owner + + + +- [Linux](#linux) + - [Linux Master Application](#linux-master-application) + - [Linux Exercises](#linux-exercises) + - [Basics](#basics) + - [Misc](#misc) + - [Linux Questions](#linux-questions) + - [Linux 101](#linux-101) + - [I/O Redirection](#io-redirection) + - [Filesystem Hierarchy Standard](#filesystem-hierarchy-standard) + - [Permissions](#permissions) + - [Scenarios](#scenarios) + - [Systemd](#systemd) + - [Troubleshooting and Debugging](#troubleshooting-and-debugging) + - [Scenarios](#scenarios-1) + - [Kernel](#kernel) + - [SSH](#ssh) + - [Globbing & Wildcards](#globbing--wildcards) + - [Boot Process](#boot-process) + - [Disk and Filesystem](#disk-and-filesystem) + - [Performance Analysis](#performance-analysis) + - [Processes](#processes) + - [Security](#security) + - [Networking](#networking) + - [DNS](#dns) + - [Packaging](#packaging) + - [DNF](#dnf) + - [Applications and Services](#applications-and-services) + - [Users and Groups](#users-and-groups) + - [Hardware](#hardware) + - [Namespaces](#namespaces) + - [Virtualization](#virtualization) + - [AWK](#awk) + - [System Calls](#system-calls) + - [Filesystem & Files](#filesystem--files) + - [Advanced Networking](#advanced-networking) + - [Memory](#memory) + - [Distributions](#distributions) + - [Sed](#sed) + - [Misc](#misc-1) + +## Linux Exercises + +### Basics + +|Name|Topic|Objective & Instructions|Solution|Comments| +|--------|--------|------|----|----| +| Navigation | cd, pwd | [Exercise](exercises/navigation/README.md) | [Solution](exercises/navigation/solution.md) +| Create and Destroy | touch, rm, mkdir | [Exercise](exercises/create_remove/README.md) | [Solution](exercises/create_remove/solution.md) +| Copy Time | touch, cp, ls | [Exercise](exercises/copy/README.md) | [Solution](exercises/copy/solution.md) + +### Misc + +|Name|Topic|Objective & Instructions|Solution|Comments| +|--------|--------|------|----|----| +| Unique Count | | [Exercise](exercises/uniqe_count/README.md) | [Solution](exercises/uniqe_count/solution.md) + +## Linux Questions + ### Linux 101
@@ -50,6 +73,7 @@ A completely free application for testing your knowledge on Linux [Wikipedia](https://en.wikipedia.org/wiki/Linux): "Linux is a family of open-source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991, by Linus Torvalds. Linux is typically packaged in a Linux distribution." [Red Hat](https://www.redhat.com/en/topics/linux/what-is-linux): "Linux® is an open source operating system (OS). An operating system is the software that directly manages a system’s hardware and resources, like CPU, memory, and storage. The OS sits between applications and hardware and makes the connections between all of your software and the physical resources that do the work." +
@@ -479,8 +503,7 @@ To stop a service: `systemctl stop ` Describe how to make a certain process/app a service
- -### Troubleshooting & Debugging +### Troubleshooting and Debugging
Where system logs are located?
@@ -551,7 +574,16 @@ tail -f How you measure time execution of a program?
- +#### Scenarios + +
+You have a process writing to a file. You don't know which process exactly, you just know the path of the file. You would like to kill the process as it's no longer needed. How would you achieve it?
+ +1. Run `lsof ` +2. Use the pid (process ID) from the lsof command and run `kill ` + +
+ ### Kernel
diff --git a/topics/linux/exercises/copy/README.md b/topics/linux/exercises/copy/README.md new file mode 100644 index 000000000..5b07d9539 --- /dev/null +++ b/topics/linux/exercises/copy/README.md @@ -0,0 +1,15 @@ +# Copy Time + +## Objectives + +1. Create an empty file called `x` in `/tmp` +2. Copy the `x` file you created to your home directory +3. Create a copy of `x` file called `y` +4. Create a directory called `files` and move `x` and `y` there +5. Copy the directory "files" and name the copy `copy_of_files` +6. Rename `copy_of_files` directory to `files2` +7. Remove `files` and `files2` directories + +## Solution + +Click [here](solution.md) to view the solution. \ No newline at end of file diff --git a/topics/linux/exercises/copy/solution.md b/topics/linux/exercises/copy/solution.md new file mode 100644 index 000000000..c9d2b8c02 --- /dev/null +++ b/topics/linux/exercises/copy/solution.md @@ -0,0 +1,25 @@ +# Copy Time + +## Objectives + +1. Create an empty file called `x` in `/tmp` +2. Copy the `x` file you created to your home directory +3. Create a copy of `x` file called `y` +4. Create a directory called `files` and move `x` and `y` there +5. Copy the directory "files" and name the copy `copy_of_files` +6. Rename `copy_of_files` directory to `files2` +7. Remove `files` and `files2` directories + +## Solution + +``` +touch /tmp/x +cp x ~/ +cp x y +mkdir files +cp x files +cp y files +cp -r files copy_of_files +mv copy_of_files files2 +rm -rf files files2 +``` \ No newline at end of file diff --git a/topics/linux/exercises/create_remove/README.md b/topics/linux/exercises/create_remove/README.md new file mode 100644 index 000000000..ceffd33ec --- /dev/null +++ b/topics/linux/exercises/create_remove/README.md @@ -0,0 +1,14 @@ +# Create & Destroy + +## Objectives + +1. Create a file called `x` +2. Create a directory called `content` +3. Move `x` file to the `content` directory +4. Create a file insidethe `content` directory called `y` +5. Create the following directory structure in `content` directory: `dir1/dir2/dir3` +6. Remove the content directory + +## Solution + +Click [here](solution.md) to view the solution. \ No newline at end of file diff --git a/topics/linux/exercises/create_remove/solution.md b/topics/linux/exercises/create_remove/solution.md new file mode 100644 index 000000000..1cd8a58a5 --- /dev/null +++ b/topics/linux/exercises/create_remove/solution.md @@ -0,0 +1,21 @@ +# Create & Destroy + +## Objectives + +1. Create a file called `x` +2. Create a directory called `content` +3. Move `x` file to the `content` directory +4. Create a file insidethe `content` directory called `y` +5. Create the following directory structure in `content` directory: `dir1/dir2/dir3` +6. Remove the content directory + +## Solution + +``` +touch x +mkdir content +mv x content +touch content/y +mkdir -p content/dir1/dir2/dir3 +rm -rf content +``` \ No newline at end of file diff --git a/topics/linux/exercises/navigation/README.md b/topics/linux/exercises/navigation/README.md new file mode 100644 index 000000000..37d5e464b --- /dev/null +++ b/topics/linux/exercises/navigation/README.md @@ -0,0 +1,19 @@ +# Navigation + +## Requirements + +1. Linux :) + +## Objectives + +1. Change directory to `/tmp` +2. Move to parent directory +3. Change directory to home directory +4. Move to parent directory +5. Move again to parent directory + 1. Where are you at? Verify with a command +6. Change to last visited directory + +## Solution + +Click [here](solution.md) to view the solution \ No newline at end of file diff --git a/topics/linux/exercises/navigation/solution.md b/topics/linux/exercises/navigation/solution.md new file mode 100644 index 000000000..b35855fe7 --- /dev/null +++ b/topics/linux/exercises/navigation/solution.md @@ -0,0 +1,28 @@ +# Navigation + +## Requirements + +1. Linux :) + +## Objectives + +1. Change directory to `/tmp` +2. Move to parent directory +3. Change directory to home directory +4. Move to parent directory +5. Move again to parent directory + 1. Where are you at? Verify with a command +6. Change to last visited directory + +## Solution + +``` +cd /tmp +cd .. +cd ~ +cd .. +cd .. +# root (/) +pwd +cd - +``` \ No newline at end of file diff --git a/topics/linux/exercises/uniqe_count/README.md b/topics/linux/exercises/uniqe_count/README.md new file mode 100644 index 000000000..8c79cc953 --- /dev/null +++ b/topics/linux/exercises/uniqe_count/README.md @@ -0,0 +1,9 @@ +# Unique Count + +## Objectives + +In this directory you have a file with list of IP addresses called `ip_list`. Using the file, determine which IP address is the most recurring (listed the most times). + +# Solution + +Click [here](solution.md) to view the solution \ No newline at end of file diff --git a/topics/linux/exercises/uniqe_count/ip_list b/topics/linux/exercises/uniqe_count/ip_list new file mode 100644 index 000000000..1e0587975 --- /dev/null +++ b/topics/linux/exercises/uniqe_count/ip_list @@ -0,0 +1,115 @@ +88.249.123.246 GET 200 +204.14.121.43 GET 200 +49.11.110.6 GET 200 +137.126.109.160 GET 200 +107.13.168.5 GET 200 +232.136.91.101 GET 404 +43.140.194.174 GET 200 +137.126.109.160 GET 200 +63.219.2.31 GET 200 +17.86.6.109 GET 200 +119.89.134.53 GET 404 +137.126.109.160 GET 200 +204.14.121.43 GET 200 +238.183.3.55 GET 200 +254.62.231.49 GET 200 +250.1.145.213 POST 200 +17.86.6.109 GET 404 +119.89.134.53 POST 200 +88.249.123.246 GET 200 +49.11.110.61 GET 200 +107.13.168.5 GET 504 +232.136.91.101 GET 200 +137.126.109.160 POST 200 +63.219.2.31 GET 200 +17.86.6.109 GET 200 +119.89.134.53 GET 504 +17.86.6.109 GET 200 +197.1.166.141 GET 200 +17.86.6.109 GET 200 +87.21.188.245 GET 504 +235.230.62.243 GET 200 +246.3.48.149 GET 200 +194.131.205.190 GET 504 +222.129.41.212 POST 200 +224.57.91.248 GET 504 +238.183.3.55 GET 200 +137.126.109.160 GET 504 +254.62.231.49 POST 200 +250.1.145.213 GET 504 +185.80.235.15 GET 200 +137.126.109.160 GET 200 +63.219.2.31 GET 504 +17.86.6.109 GET 200 +119.89.134.53 POST 200 +63.219.2.31 GET 504 +17.86.6.109 GET 200 +119.89.134.53 GET 504 +88.249.123.246 GET 200 +238.183.3.55 POST 200 +224.57.91.248 GET 504 +238.183.3.55 POST 200 +254.62.231.49 GET 200 +254.62.231.49 POST 404 +250.1.145.213 GET 200 +221.169.255.179 GET 200 +220.35.213.247 GET 200 +67.89.94.133 GET 200 +77.192.163.242 POST 200 +204.14.121.43 GET 200 +22.244.145.46 GET 200 +89.127.55.7 GET 200 +137.126.109.160 GET 200 +88.249.123.246 POST 200 +238.183.3.55 GET 200 +254.62.231.49 GET 200 +250.1.145.213 GET 200 +137.126.109.160 POST 200 +221.169.255.179 GET 200 +232.136.91.101 GET 200 +197.1.166.141 GET 200 +87.21.188.245 GET 200 +235.230.62.243 GET 200 +246.3.48.149 GET 200 +194.131.205.190 GET 200 +222.129.41.212 GET 200 +137.126.109.160 GET 200 +224.57.91.248 GET 200 +185.80.235.15 GET 200 +137.126.109.160 GET 200 +63.219.2.31 GET 200 +17.86.6.109 GET 200 +119.89.134.53 GET 200 +88.249.123.246 GET 200 +238.183.3.55 GET 200 +254.62.231.49 GET 200 +250.1.145.213 GET 200 +63.219.2.31 GET 200 +17.86.6.109 GET 200 +119.89.134.53 POST 200 +88.249.123.246 GET 200 +137.126.109.160 POST 200 +238.183.3.55 GET 200 +254.62.231.49 POST 200 +250.1.145.213 GET 200 +137.126.109.160 POST 200 +63.219.2.31 GET 200 +17.86.6.109 GET 404 +107.13.168.5 POST 200 +232.136.91.101 GET 200 +137.126.109.160 POST 200 +63.219.2.31 GET 200 +17.86.6.109 GET 200 +197.1.166.141 GET 200 +87.21.188.245 POST 200 +235.230.62.243 POST 200 +246.3.48.149 GET 200 +194.131.205.190 GET 200 +224.57.91.248 GET 200 +238.183.3.55 POST 200 +254.62.231.49 GET 200 +88.249.123.246 GET 200 +49.11.110.61 GET 200 +107.13.168.5 POST 200 +232.136.91.101 GET 200 +204.14.121.43 POST 200 diff --git a/topics/linux/exercises/uniqe_count/solution.md b/topics/linux/exercises/uniqe_count/solution.md new file mode 100644 index 000000000..134ffb429 --- /dev/null +++ b/topics/linux/exercises/uniqe_count/solution.md @@ -0,0 +1,9 @@ +# Unique Count + +## Objectives + +In this directory you have a file with list of IP addresses called `ip_list`. Using the file, determine which IP address is the most recurring (listed the most times). + +# Solution + +`sort ip_list | cut -d' ' -f1 | uniq -c | sort -n | tail -1` \ No newline at end of file diff --git a/topics/terraform/README.md b/topics/terraform/README.md index 2e8aeb0a1..e9bdbe021 100644 --- a/topics/terraform/README.md +++ b/topics/terraform/README.md @@ -26,6 +26,7 @@ - [AWS](#aws-1) - [Validations](#validations) - [Terraform Syntax](#terraform-syntax) + - [Production](#production) ## Exercises @@ -839,6 +840,7 @@ terraform { How terraform apply workflow is different when a remote backend is used?
It starts with acquiring a state lock so others can't modify the state at the same time. +
@@ -846,6 +848,7 @@ It starts with acquiring a state lock so others can't modify the state at the sa 1. You remove the backend code and perform `terraform init` to switch back to `local` backend 2. You remove the resources that are the remote backend itself +
@@ -853,7 +856,16 @@ It starts with acquiring a state lock so others can't modify the state at the sa That's true and quite a limitation as it means you'll have to go to the resources of the remote backend and copy some values to the backend configuration. -One way to deal with it is using partial configurations in a completel separate file from the backend itself and then load them with `terraform init -backend-config=some_backend_partial_conf.hcl` +One way to deal with it is using partial configurations in a completely separate file from the backend itself and then load them with `terraform init -backend-config=some_backend_partial_conf.hcl` + +
+ +
+Is there a way to obtain information from a remote backend/state usign Terraform?
+ +Yes, using the concept of data sources. There is a data source for a remote state called "terraform_remote_state". + +You can use it the following syntax `data.terraform_remote_state..outputs.`
@@ -873,6 +885,12 @@ True +
+Why workspaces might not be the best solution for managing states for different environemnts? like staging and production
+ +One reason is that all the workspaces are stored in one location (as in one backend) and usually you don't want to use the same access control and authentication for both staging and production for obvious reasons. Also working in workspaces is quite prone to human errors as you might accidently think you are in one workspace, while you are working a completely different one. +
+ #### State Hands-On @@ -925,6 +943,8 @@ True [Terraform.io](https://www.terraform.io/language/modules/develop): "A module is a container for multiple resources that are used together. Modules can be used to create lightweight abstractions, so that you can describe your infrastructure in terms of its architecture, rather than directly in terms of physical objects." +In addition, modules are great for creating reuable Terraform code that can be shared and used not only between different repositories but even within the same repo, between different environments (like staging and production). +
@@ -1045,4 +1065,107 @@ variable "some_var" {
Demonstrate using the ternary syntax
+
+ +
+What templatefile function does?
+ +Renders a template file and returns the result as string. +
+ +
+How do you test terraform syntax?
+ +A valid answer could be "I write Terraform configuration and try to execute it" but this makes testing cumbersome and quite complex in general. + +There is `terraform console` command which allows you to easily execute terraform functions and experiment with general syntax. + +
+ +
+True or False? Terraform console should be used carefully as it may modify your resources
+ +False. terraform console is ready-only. +
+ +
+You need to render a template and get it as string. Which function would you use?
+ +`templatefile` function. +
+ + +### Production + +This section is about how Terraform is actually used in real-life scenarios and organizations. + +
+What structure layout do you use for your projects?
+ +There is no right or wrong answer, just what you personally adopted or your team, and being able to explain why. + +One common approach is to have a separate directory for each environment. + +``` +terraform_project/ + staging/ + production/ +``` + +Each environment has its own backend (as you don't want to use the same authentication and access controls for all environments) + +Going further, under each environment you'll separate between comoponents, applications and services + + +``` +terraform_project/ + staging/ + applications/ + some-app-service-1/ + some-app-service-2/ + databases/ + mongo/ + postgres/ + networking/ +``` +
+ +
+What files do you have you have in your Terraform projects?
+ +Again, no right or wrong answer. Just your personal experience. + +main.tf +providers.tf +outputs.tf +variables.tf +dependencies.tf + +Each one of these files can be divided to smaller parts if needed (no reason to maintain VERY long files) +
+ +
+An engineer in your team complains about having to copy-paste quite a lot of code between different folders and files of Terraform. What would you do?
+ +Suggest to use Terraform modules. +
+ +
+When working with nested layout of many directories, it can make it cumbresome to run terraform commands in many different folders. How to deal with it?
+ +There are multiple ways to deal with it: +1. Write scripts that perform some commands recurisvely with different conditions +2. Use tools like Terragrunt where you commands like "run-all" that can run in parallel on multiple different paths +
+ +
+One of the engineers in your team complains the inline shell scripts are quite big and maintaining them in Terraform files seems like a bad idea. What would you do?
+ +A good solution for not including shell scripts inline (as in inside terraform configuration files) is to keep them in a separate file and then use the terraform `templatefile` function to render and get them as a string +
+ +
+You noticed a lot of your Terraform code/configuration is duplicated, between repositories and also within the same repository between different directories. What one way you may adopt that will help handling with that?
+ +Using Terraform modules can help greatly with duplicated code and so different environments for example (staging and production) can reuse the same code by using the same modules.
\ No newline at end of file