May 2022 - Present
.Achievements
1. Establish EKS or GKE, configure the VPC, Subnet, NAT Route for the cluster, as well as the required node pools, vertical scaling of node pools, and node taints settings.
2. Set up Rancher to manage all clusters, use Helm to deploy a Monitoring System, and integrate alerts generated by the Monitoring System into a single Alertmanager to send alerts to internal alert groups within the company.
3. Based on the cluster resource data collected by the Monitoring System, determine the resource range required for individual services and configure the horizontal scaling quantity.
4 .Deploy Traefik using Helm, and add Middleware as needed to allow services within the cluster to be accessible through a single public endpoint, reducing the number of Public IPs generated by load balancers and lowering costs.
5. Create multiple Git Runners using Docker, or deploy a high-availability Git Runner using Helm, to deploy a high-availability pipeline.
6. Use Gitlab to write CI (Continuous Integration) scripts according to different environments and requirements, and upload the packaged Images to an internal Harbor.
7. Write the necessary configuration files for CD (Continuous Deployment), including Deployment, ConfigMap, Service, etc., according to requirements, then use Git Runner or ArgoCD to establish the CD process.
8. Use GCP Monitoring to send alerts to self-hosted Webhooks, and format them into readable content for alert groups after organizing, such as CloudSql resource usage.
9. Implement strict security standards for AWS (ACL, SG) and GCP (Firewall) to prevent security vulnerabilities.
10. Configure AWS IAM with appropriate permissions to allow processes requiring resource operations to execute, such as Terraform, aws cli in Shell Script .
11. Use Terraform to deploy infrastructure on AWS, such as EC2, GCE, VPC, etc.
12. Set up Active Directory as the internal account management system for the company, configure appropriate computer permissions through GPO, and achieve Single Sign-On for all internal services through Active Directory.
13. Develop a chatbot using Python-telegram-bot, allowing customers to perform web operations using Telegram, such as account linking, deposits, and withdrawals.
.Skills
AWS : EKS, VPC, EC2, LightSail, Route53, IAM, S3
GCP : GKE, VPC, GCE, Monitoring
CI/CD : ArgoCD, GitlabCI CD, Git Runner
IAC : Terraform
Account : Active Directory, Authentik, KMS Server
Container : Docker (Compose), Harbor, Dockge
Programming : Python3, Shell Script