CDI Software Development Cluster

Meeting Notes

May 23rd, 2019 @ 3:30PM ET / 1:30PM MT

Topic: Docker Basics for Code Development

Join from PC, Mac, Linux, iOS or Android:

Or iPhone one-tap :

US: +1-669-900-6833,,696628840# or +14087403766,,696628840#

Or Telephone:

Dial(for higher quality, dial a number based on your current location):

US: +1 669 900 6833 or +1 408 740 3766 or +1 646 876 9923

Meeting ID: 696 628 840

Note that we have switched from GSTalk to Zoom for the time being, due to a number of usability/compatibility issues with the GSTalk platform.


Meeting Notes in Google Drive: Shared Google Drive Folder:




Email (if you are new)

Michelle Guy


Mason Hauck

Blake Draper


Tom Burley


Jeremy Newson


Colin Talbert


Abu Sayed

Carl Schroedl


David Raj

Robert Djurasaj













Today’s Presentation -




     Welcome and announcements

     Please fill in name and email in the attendees table

     We are still always looking for topics, and your input and participation!

     We have created a form for submitting presentation proposals for future Software Dev Cluster meetings

    CDI bison connect google calendar of all the collaboration area meetings and events - name is “GS CDI” owner is (Also accessible Calendar wiki page or the Google Calendar link . )

    We’re opening up a new opportunity to become a co-lead! Submit your name by June 7th:




     Use Linux distributions that are explicitly called out in Docker's documentation (currently CentOS, Debian, Fedora, Ubuntu)

     Other Linux distros can have problems keeping docker version, kernel version, file system driver versions in sync. File system corruption can result.

     AWS fargate (straight to AWS) working

     Docker Swarm working well for on premise container management

     NGTOC Tried Mesos originally, exploring ECS (AWS) so far blue/green pretty good, testing AWS batch (for triggered/on demand processing on top of ECS)

     NGTOC has asked CHS for large IP pool for containerized processing for all CHS customers

     NEIC has an island VPC in CHS, trying to figure out details (e.g. external routing and high volumes of traffic), maybe later to become model/example for others

     CHS has changes coming this summer - around transit VPC, stay tuned

     NGTOC and Water Windows developers using containers, having troubles with Windows 10 (docker tool box works on Windows 7), docker for windows not working (firewalls preventing volume mounts)





     scripts to watch files on Windows host and rebuild image


     NGTOC exploring lambci (containers that replicate lambda cloud environment locally)


     CHS has gitlab runners that should be able to run things similar to SAM CLI

     Good Kubernetes tutorial series

     NGTOC data processing architecture in AWS via CHS

    AWS CDK - Cloud Development Kit

    CDI Workshop - Cloud Session you can join remotely:

    Open mic



     Lessons learned?

     Fun projects under way?

     Next Month: ?





     Folks do like receiving announcements, informational resources, and questions by email and slack posts. Sorry, we don’t have an email group short name, go to CDI Confluence page and copy/ paste email list.

     Is there a national event that we can adopt and piggie back on? I.e. Python or Java Day?

     Virtual Expo idea could work, record 3 minute lightning talk and make the resources available on youtube, google drive, or confluence

     Dedicate a monthly meeting to CDI RFP Brainstorming, what are the top challenges/ priorities. Follow up with an RFP “hackathon” or lightning talk round table presentation of proposals.

     Dedicate a few monthly meetings to a youtube video series, 15 to 30 min each. Watch during call and discuss.

     Dedicate a monthly meeting to a code challenge

     Lightning talk round table at CDI Workshop

      Desktop Installers/ Certificates

      DOI HTTPS Intercept Solution Notes

      this is s resource where you can get updated USGS SSL Certificates at  

      For clarity, the expiring certificates are not the DOI root certificates (or CA), but rather the wildcard regional certificates you might be using to host your SSL websites.




      Also, maybe you use a site-specific cert or other cert. Bottom line, be aware when your certs expire and be pro-active.

      Common pain points:

     Everyone struggles with Certs, some automated processes but mostly manual

     Server side certs expire every year

     Not clear where to find new cert

     Different for every software package, can take up to a week or two to complete