MrTrustor's shiny blog

Biography

I am a Solutions Architect at Google. I specifically work for Google Cloud Platform, for the EMEA SA team. You can see the work of the Google Solutions Architects here.

Born in Lyon, France, I have always had a taste for mathematics and physics. This lead me to study computer science at the Lycée du Parc. At the Ecole Centrale de Lyon, this new taste for computer science allowed me to invest myself heavily in the student computer association ECLAIR which serves, among other things, as an ISP for all students of the university. I finished my formal education at the Royal Institute of Technology of Sweden, also known as KTH, where I learned about cryptography, networks, and so many other things. Today, I still try to learn as much as I can on various topics such as Machine Learning or distributed systems.

My professional life began very much in accordance with the DevOps philosophy (even if I did not know it at the time) by designing the software development and CI workflow of the ANSSI, following some extremely strict security rules. My next job, at Oxalide, allowed me to gain a very important insight on the Ops side of the industry. Managing major web infrastructures on a day-to-day basis convinced me of the importance of the quality of the work earlier in the software lifecycle.

Today, my job is to help you make the best software possible at every level:

by choosing the right software architecture (micro-services, here I come!),

by ensuring that this software is production-ready (tests, 12-factor apps, etc.),

by running this software on highly efficient and resilient infrastructures,

by making your life easier and letting you concentrate on what you do well: coding great apps!

Disclaimer: This is my personal blog, the opinions expressed here represent my own and not those of my employer.

Interests

Automation
Software & infra architecture
Artificial Intelligence

Diplomas

LFS258 - Kubernetes Fundamentals, 2017

The Linux Foundation
Certified Cloud Architect, 2017

Google, Cert. ID: 3jgAQY
Certified Cloud Engineer, 2018

Google, Cert. ID: 1MrnTV
Solutions Architect – Professional, 2015

Amazon Web Services, AWS-PSA-1551
Civilingenjör (M Sc./Eng.), 2012

Kungliga Tekniska Högskolan (Stockholm, Sweden)
Ingénieur (M Sc./Eng.), 2011

Ecole Centrale de Lyon (Lyon, France)

2019-06-05 2 min read

Protect your GCP projects against accidental deletion

Google Cloud Platform (GCP) uses a specific resource hierarchy. At the very top, you have an organisation, tied to a domain (for example: mrtrustor.net). Inside that organisation, you can have folders and subfolders. Finally, you have projects, which can be inside folders, or directly under the organisation node. Projects are where your cloud resources (VMs, databases, etc.) actually live. By default, projects are completely isolated from one another, especially at a network level.

2019-04-11 6 min read

Making this blog with Cloud Run

Until now In my first post on this blog, I explained how I created this blog. At the time, I was using: Hugo as a static site generator, that is a tool that turns Markdown into a pretty static website. AWS S3 to host the website itself. Docker to run Hugo and generate the website from my Markdown files. Since then, I joined Google and using Amazon’s services to host my personal blog didn’t seem very “corporate” :-) So, I had updated my setup like this:

2017-05-29 4 min read

How to use Kubernetes to fix GKE

Note: Since writing this post, I joined Google. We have released a feature called IP Aliases that addresses the problem described in this article, and much more. I recently ran into a problem while using Google Container Engine (GKE), the managed Kubernetes by Google. This lead me to an interesting solution that can be used for a large range of issues you could encounter in Kubernetes. The Problem I was unsuccessfully trying to have my pods communicate with an application available through a VPN: everything was working as expected from a VM but the pods in the GKE cluster had no network connectivity with the services on the other side of the VPN.

2017-01-02 10 min read

AWS re:Invent 2016 - A recap (part II)

This is the second and last part of my AWS re:Invent recap. Go check out the first part if you haven’t done so already. In this second post, I will outline the products announced by Werner Wogels during his keynote. You will also find a small opinionated analysis of the impact of each product, based on the current market and ecosystem. I tagged the really important ones with a [Game Changer] in the title.

2016-12-17 8 min read

AWS re:Invent 2016 - A recap (part I)

Two weeks ago, thanks to my company, Oxalide, I had the chance to attend AWS re:Invent, in Las Vegas. This is the first part of a recap of all the announcements (yes, there are so many things to talk about that it doesn’t fit in a single post). You will also find a small opinionated analysis of the impact of each product, based on the current market and ecosystem.

Théo Chamley

Solutions Architect

Google