A comprehensive OpenShift learning and deployment framework designed to take you from beginner to L3-level professional through structured training and hands-on cloud deployments. This repository combines theoretical knowledge with production-ready infrastructure-as-code for deploying OpenShift across multiple cloud providers.
π 7-Day OpenShift Mastery Program
- Structured daily learning plans (Day 1-7)
- Progressive complexity from basics to advanced
- Hands-on labs and real-world scenarios
- Interview preparation and certification guidance
- 340KB+ of curated training materials
βοΈ Production-Ready Cloud Deployments
- Linode (complete Terraform + Ansible automation on Rocky Linux 9)
- AWS, Azure, GCP, Oracle Cloud (frameworks ready)
- GitOps with ArgoCD integration
- Complete GitLab CI/CD pipelines
- Security hardening and best practices
π° Cost-Optimized with Rocky Linux 9
- FREE OS - no Red Hat subscription required
- 1:1 binary compatible with RHEL 9
- Learning cluster: ~$138/month on Linode
- Perfect for OpenShift practice without licensing costs
π§ Enterprise Automation
- Infrastructure as Code (Terraform 1.5+)
- Configuration Management (Ansible 2.14+)
- GitOps workflows (ArgoCD)
- CI/CD pipelines (GitLab)
- Monitoring, logging, and backup strategies
# Clone the repository
git clone https://github.com/devopsgeek1979/terraform-basic.git
cd terraform-basic/openshift-master
# Start with Day 1
open Day-1-OpenShift-Fundamentals.md
# Follow the 7-day program sequentially# Navigate to cloud deployments
cd openshift-cloud-deployments/linode
# Configure your environment
cp terraform/terraform.tfvars.example terraform/terraform.tfvars
# Edit terraform.tfvars with your Linode API token
# Deploy infrastructure
cd terraform
terraform init
terraform plan
terraform apply
# Deploy OpenShift with Ansible
cd ../ansible
./deploy.sh --full
# Access your cluster (credentials in artifacts)
export KUBECONFIG=/opt/openshift/install/auth/kubeconfig
oc get nodes# Configure GitLab CI/CD variables
# - LINODE_API_TOKEN
# - SSH_PRIVATE_KEY
# - OPENSHIFT_PULL_SECRET
# Push to trigger pipeline
git add .
git commit -m "Deploy OpenShift cluster"
git push origin main
# Monitor pipeline in GitLab
# Manually approve 'terraform:apply' jobopenshift-master/
β
βββ README.md (this file) # Main documentation
βββ CONTRIBUTORS.md # Contributors and acknowledgments
β
βββ 7-Day Training Program/ # Theoretical knowledge
β βββ Day-1-OpenShift-Fundamentals.md # Architecture, components, installation
β βββ Day-2-Networking-Storage.md # SDN, CNI, storage classes, PVs/PVCs
β βββ Day-3-Security-RBAC.md # Security, authentication, RBAC
β βββ Day-4-Operators-Management.md # Operators, OLM, cluster management
β βββ Day-5-CI-CD-GitOps.md # CI/CD, Tekton, GitOps, ArgoCD
β βββ Day-6-Monitoring-Logging.md # Prometheus, Grafana, logging
β βββ Day-7-Troubleshooting-Advanced.md # Debugging, performance, DR
β βββ Interview-Questions-L3.md # 100+ interview questions
β βββ Certification-Path.md # EX280, DO280 preparation
β βββ Real-World-Scenarios.md # Production case studies
β
βββ openshift-cloud-deployments/ # Production deployments
β β
β βββ README.md # Cloud deployment overview
β βββ PROJECT-SUMMARY.md # Complete project documentation
β βββ CICD-README.md # CI/CD pipeline documentation
β β
β βββ linode/ # Linode Cloud (Complete β
)
β β βββ README.md # Linode-specific guide (22KB)
β β βββ terraform/ # Infrastructure as Code
β β β βββ main.tf # 608 lines, complete IaC
β β β βββ variables.tf # 60+ configurable variables
β β β βββ outputs.tf # Cluster info, IPs, DNS
β β β βββ terraform.tfvars.example # 4 deployment presets
β β βββ ansible/ # Configuration management
β β βββ ansible.cfg # Ansible configuration
β β βββ inventory/hosts.example # Inventory template
β β βββ group_vars/all.yml # Global variables
β β βββ playbooks/
β β β βββ 01-prepare-nodes.yml # Bastion and node setup
β β β βββ 02-generate-ignition.yml # Ignition configs
β β β βββ 03-install-openshift.yml # Cluster installation
β β β βββ 04-post-install.yml # Post-install config
β β β βββ 05-deploy-gitops.yml # ArgoCD deployment
β β βββ deploy.sh # Master deployment script
β β
β βββ gitops/ # GitOps with ArgoCD
β β βββ README.md # GitOps documentation
β β βββ argocd/
β β β βββ applications/ # Application definitions
β β β β βββ app-of-apps.yaml # Root application
β β β β βββ infrastructure.yaml # Infrastructure apps
β β β β βββ platform.yaml # Platform apps
β β β βββ projects/ # AppProject definitions
β β β βββ infrastructure.yaml # Infrastructure project
β β β βββ platform.yaml # Platform project
β β β βββ applications.yaml # Applications project
β β βββ infrastructure/ # Infrastructure components
β β β βββ namespaces/ # Namespace definitions
β β β βββ storage/ # Storage classes
β β β βββ networking/ # Network policies
β β β βββ rbac/ # RBAC configurations
β β βββ platform/ # Platform services
β β βββ monitoring/ # Prometheus, Grafana
β β βββ logging/ # Logging stack
β β βββ security/ # Security policies
β β
β βββ aws/ # Amazon Web Services (Planned)
β βββ azure/ # Microsoft Azure (Planned)
β βββ gcp/ # Google Cloud Platform (Planned)
β βββ oracle/ # Oracle Cloud (Planned)
β
βββ .gitlab-ci.yml # Complete CI/CD pipeline
βββ .yamllint.yml # YAML linting configuration
Day 1: OpenShift Fundamentals
- Container and Kubernetes basics
- OpenShift architecture and components
- Installation methods (IPI, UPI, managed)
- First cluster deployment walkthrough
Day 2: Networking & Storage
- SDN and CNI (OVNKubernetes)
- Service networking and routes
- Storage classes and persistent volumes
- Volume snapshots and backup
Day 3: Security & RBAC
- Authentication and authorization
- RBAC, SCCs, Network Policies
- Secrets management
- Security scanning and compliance
Day 4: Operators & Management
- Operator Framework and OLM
- Cluster upgrades and updates
- Multi-cluster management (RHACM)
- Node management and auto-scaling
Day 5: CI/CD & GitOps
- OpenShift Pipelines (Tekton)
- GitOps with ArgoCD
- Image registry and builds
- S2I and BuildConfigs
Day 6: Monitoring & Logging
- Prometheus and Grafana
- Custom metrics and alerts
- EFK stack (Elasticsearch, Fluentd, Kibana)
- Log aggregation strategies
Day 7: Troubleshooting & Advanced Topics
- Debugging techniques and tools
- Performance tuning
- Disaster recovery
- Multi-cloud deployments
Cloud Deployment Project
- Choose cloud provider (start with Linode)
- Deploy production-ready cluster
- Implement GitOps workflows
- Configure monitoring and logging
- Practice disaster recovery
- Cost: FREE β
- Time Investment: 7 days (theory) + practice time
- Value: Equivalent to $2,000+ professional training
| Environment | Provider | Monthly Cost | Recommended For |
|---|---|---|---|
| Learning/Dev | Linode | $138 | Learning basics (Rocky Linux 9) |
| Standard Practice | Linode | $200-350 | Full feature testing |
| Production-Like | Linode | $552 | Job preparation |
| Enterprise | Multi-cloud | $1,000+ | Advanced scenarios |
π‘ Rocky Linux 9 Benefits:
- FREE OS: No Red Hat subscription required (saves $350-800/year)
- RHEL Compatible: 1:1 binary compatibility with RHEL 9
- Lower Resources: Reduced overhead for learning and lab deployments
- Perfect for Learning: Full OpenShift compatibility
Cost Savings Tips:
- Use Rocky Linux 9 to avoid paid OS subscriptions (FREE OS)
- Use Linode for initial learning (50% cheaper than AWS)
- Enable auto-shutdown for non-production (save 60%)
- Destroy environments when not in use
- Start with smaller instances (g6-standard-2 for control plane)
- Terraform: 1.5.0+ (Infrastructure as Code)
- Ansible: 2.14+ (Configuration Management)
- OpenShift: 4.14+ (Container Platform)
- Linode: Primary learning environment (complete implementation)
- AWS: Enterprise production (planned)
- Azure: Hybrid cloud scenarios (planned)
- GCP: Kubernetes-native deployments (planned)
- Oracle Cloud: Cost-effective alternatives (planned)
- ArgoCD: GitOps continuous delivery
- GitLab CI/CD: Automated pipelines
- Prometheus: Monitoring and alerting
- Grafana: Metrics visualization
- EFK Stack: Logging and analysis
- RBAC: Role-based access control
- Network Policies: Micro-segmentation
- Sealed Secrets: Encrypted secrets in Git
- Falco: Runtime security
- Trivy: Vulnerability scanning
Each day's module includes:
- Theory: Conceptual understanding
- Hands-On Labs: Step-by-step exercises
- Real-World Scenarios: Production case studies
- Quiz: Knowledge validation
- Additional Resources: Deep-dive materials
Each cloud provider includes:
- Prerequisites: Account setup and requirements
- Architecture: Network design and resource planning
- Deployment: Step-by-step instructions
- Configuration: Post-install hardening
- Troubleshooting: Common issues and solutions
- Cost Optimization: Strategies to reduce expenses
- Terraform Modules: Reusable infrastructure components
- Ansible Playbooks: Automated configuration
- GitOps Applications: Declarative deployments
- CI/CD Pipelines: End-to-end automation
This program prepares you for:
- OpenShift Administrator (L2-L3)
- Kubernetes Platform Engineer
- Cloud Infrastructure Engineer
- DevOps/SRE Engineer
- Container Platform Architect
| Certification | Level | Prerequisites | Exam Cost |
|---|---|---|---|
| EX180 | Associate | None | $400 |
| DO180 | Training | EX180 | $3,400 |
| EX280 | Specialist | EX180 | $400 |
| DO280 | Training | EX280 | $3,400 |
| EX380 | Expert | EX280 | $400 |
This Repository Covers:
- β Complete EX180 exam objectives
- β 90% of EX280 exam objectives
- β 60% of EX380 exam objectives
- 100+ L3-level interview questions
- Architecture design scenarios
- Troubleshooting case studies
- Hands-on practical assessments
This repository implements enterprise security standards:
- β Private cluster configurations
- β Network segmentation and policies
- β Firewall rules and security groups
- β Bastion host for secure access
- β Encrypted storage (at rest and in transit)
- β RBAC with least-privilege access
- β Security Context Constraints (SCCs)
- β Pod Security Policies
- β Image scanning and signing
- β Secrets management (Sealed Secrets)
- β FIPS 140-2 mode support
- β CIS Kubernetes Benchmark
- β Audit logging enabled
- β Regular security scanning
- β Vulnerability patching strategy
The GitLab CI/CD pipeline provides:
- β Terraform format and validation
- β Ansible syntax checking
- β YAML linting
- β Security scanning (tfsec, Checkov)
- β Infrastructure provisioning (Terraform)
- β OpenShift installation (Ansible)
- β GitOps configuration (ArgoCD)
- β Post-install validation
- β Cluster health checks
- β Operator status validation
- β GitOps sync verification
- β Application deployment tests
- β Automated backups
- β Disaster recovery drills
- β Cost reporting
- β Cleanup and destroy
We welcome contributions! See CONTRIBUTORS.md for details.
- π Improve documentation
- π Report bugs or issues
- β¨ Add new cloud provider implementations
- π§ Enhance automation scripts
- π Share real-world scenarios
- π Add training materials
- Fork the repository
- Create a feature branch
- Make your changes
- Test thoroughly
- Submit a pull request
- Total Content: 540KB+ (340KB training + 200KB deployments)
- Lines of Code: 3,300+ (Terraform, Ansible, YAML)
- Documentation: 15+ comprehensive guides
- Automation Scripts: 20+ playbooks and modules
- Cloud Providers: 6 (1 complete, 5 planned)
- Deployment Presets: 4 (Dev to Enterprise)
- Issues: Report bugs or request features via GitHub Issues
- Documentation: Check README files in each directory
- Community: Join OpenShift Commons
- Official Docs: https://docs.openshift.com
This project is licensed under the MIT License - see the LICENSE file for details.
If this repository helped you learn OpenShift or land a job, please consider giving it a star! β
- Repository Owner: devopsgeek1979
- Project: terraform-basic
- Branch: main
From Beginner to OpenShift L3 Professional - Your Complete Journey Starts Here! π
Made with β€οΈ by the OpenShift community