Common Production Issues in DevOps and Fixes
MOJAHID UL HAQUE
DevOps Engineer
Production incidents often feel unique in the moment, but most of them fall into a few repeating families: bad releases, exhausted disks or memory, queue backlogs, expired certificates, DNS mistakes, overloaded databases, and dependencies that fail more subtly than the application knows how to report. The details vary by stack, but the response patterns are remarkably similar.
Strong DevOps teams recover faster not because they avoid every incident. They recover faster because they recognize the pattern quickly, know the safest first move, and already have the telemetry and rollback paths needed to narrow the problem. Reliability is tightly connected to deployment discipline, observability, and ownership clarity.
Why this matters in production
This topic matters because the majority of production pain comes from repeated operational basics, not spectacular once-in-a-decade failures. If a team improves the top recurring patterns, incident duration drops sharply. The platform becomes calmer through better defaults around releases, capacity, and visibility rather than through heroics.
Implementation approach
A practical response model begins with uncertainty reduction. Check recent deploys, service health, dependency status, error logs, and saturation signals. If there was a fresh release and user impact is high, rollback is often the safest first move. If no release occurred, inspect DNS, certificate state, queue backlog, resource exhaustion, and dependency health before diving into deeper theory. Good production engineering means those checks are documented and easy to execute under pressure.
kubectl get deploy,po,svc -n production
kubectl logs deploy/api -n production --since=10m
kubectl get events -n production --sort-by=.lastTimestamp
aws elbv2 describe-target-health --target-group-arn <target-group-arn>Real-world use case
Imagine a platform where API latency rises, queue age grows, and alerting becomes noisy after a deployment. The team sees that the new release changed database query behavior, rolls back quickly, watches the queue recover, and only then investigates the query regression in detail. The important part is not the bug itself. It is that rollback was safe, telemetry pointed to the likely failure domain, and the team did not keep broken code live while debugging under pressure.
Common mistakes and operating risks
The usual mistakes are treating every incident like a novel mystery, debugging without considering rollback, and relying on dashboards that show only isolated host data without release or dependency context. Another common problem is failing to convert repeated incidents into platform defaults. If the same certificate, capacity, or logging issue returns every few months, the real failure is organizational learning, not just technical behavior.
When this pattern fits best
These practices fit every production team because every platform eventually runs into the same operational families of failure. They are especially relevant for growing teams that need a shared way to reason about outages rather than depending on one experienced engineer to remember every past incident from memory.
Checklist
- Keep rollback simple, documented, and tested regularly.
- Correlate incidents with recent deploys before chasing deeper theories.
- Track dependency health, queue backlog, and resource saturation together.
- Review recurring incident types and turn them into platform improvements.
- Document ownership, runbooks, and the telemetry responders should open first.
How to roll this out safely
The safest rollout path is usually narrower than teams expect. Start with one service, one environment, or one clear platform boundary and baseline the metrics that matter before changing everything at once. Document ownership, define rollback or fallback behavior, and review the first few changes with the people who will support the system during real incidents. That approach prevents architecture optimism from outpacing operational reality. Mature patterns spread well because they are tested in small steps first, not because they looked complete in a design document.
What to measure after adoption
Success should be visible in operating outcomes, not only in implementation status. Good patterns reduce surprise, shorten diagnosis time, improve release confidence, or create a more predictable cost and performance profile. If the change only adds process, dashboards, or YAML without improving those outcomes, the design is probably too heavy. Measure the behaviors that matter to responders and service owners, then simplify aggressively anywhere the pattern creates ceremony without making production safer or easier to understand.
What teams usually learn after the first real test
The first serious deployment, spike, or incident almost always reveals something the design discussion missed. Maybe ownership was less clear than expected, maybe the observability path was too thin, or maybe the new process worked but took longer than planned because one dependency was not included in the original mental model. That is normal. Production patterns mature when teams capture that feedback immediately and adjust the defaults before the next rollout. In practice, the best patterns are not the most complicated ones. They are the ones that survive contact with real operations and become easier to use with every review.
Ownership and review cadence
Every useful platform practice needs a review loop. After the first few real uses, revisit the pattern with fresh evidence from deployments, incidents, and operator feedback. Ask what was confusing, what created noise, what saved time, and what controls were worth keeping. The strongest engineering patterns usually become smaller and clearer over time because teams trim the parts that do not change behavior. Review cadence turns a one-time implementation into a dependable operating habit.
That final review step is easy to skip when the initial rollout appears successful, but it is usually where the best long-term improvements are found. Small refinements in defaults, ownership, and observability often create more value than another wave of tooling.
A good rule is to treat the first month after adoption as part of the implementation rather than as an afterthought. Watch how the pattern behaves under normal changes, under stress, and during one real support event. If it remains understandable in all three cases, it is probably strong enough to become a team standard.
If the pattern is difficult to explain to a new engineer after that first month, it still needs refinement. Clarity is one of the most reliable indicators that a production practice is ready to scale across teams.
Documentation should evolve along with the pattern. Keep the shortest possible notes that explain ownership, the expected success signals, the rollback or fallback path, and the dashboards or logs responders should check first. Teams often over-document implementation detail and under-document the operational decisions that matter during a real event. A concise, current operating note is usually more valuable than a long design artifact nobody opens once the initial rollout is complete.
That knowledge-transfer step is especially important when more than one team or on-call rotation will depend on the pattern. A practice is not really finished until another engineer can use it confidently without needing the original author in the room.
Continue the thread
Related archive posts that connect this guide back to the original LinkedIn stream.
What 2.5 Years of DevOps Incidents Taught Me (The Hard Way)
What 2.5 Years of DevOps Incidents Taught Me (The Hard Way): The simplest explanation is usually right… Unless you're trying to explain it to management, then good luck. Logs lie less than dashboards. Dashboards smile while everything burns in the background. Logs are the friend who bluntly tells you your code sucks. Your backup strategy only works when you don't need it. Real test? When everything crashes, and all you have left is a prayer and that old backup. "Quick fix" = 4 hours of pain + 2 sleepless nights + one existential crisis. And yes, we still called it a "hotfix" in the changelog. Documentation written at 3AM is brutally honest. None of that corporate fluff — just raw, chaotic truth like: "I don't know why this works. Don't touch it." Success teaches nothing. Failure gives you character... and gray hair. Embrace the postmortems. They're just therapy sessions with charts. DevOps isn't a job title. It's a mindset — and a chaotic symphony of creativity, duct tape, and caffeine. You don't do DevOps. You live it. (And sometimes cry in a cloud console.)
DevOps Rescue Story: Recovering an EC2 Instance Without a PEM Key
"Lost PEM? No SSH? SSM dead? Don't panic — AWS always leaves a backdoor for those who know where to look." Yesterday I ran into one of those heart-sinking moments: an EC2 instance was completely locked out. - PEM key gone → SSH impossible - SSM agent broken → root volume full, wouldn't start even after EBS expansion - EC2 Instance Connect failing Basically… the instance was bricked. Or so it seemed. The Recovery Playbook I Followed 1. Spun up a helper EC2 instance with a fresh key pair. 2. Detached the root volume from the locked instance → attached it to the helper. 3. Mounted the volume → discovered the partition still capped at 100GB even though the EBS size was already 150GB. 4. Ran growpart + resize2fs → filesystem finally stretched to the full 150GB. (49GB free instantly.) 5. Cleared old logs and temp files for breathing room. 6. Added a new SSH public key into ~/.ssh/authorized_keys. 7. Detached the fixed root volume → reattached it back to the original instance. 8. Rebooted → boom! SSH worked with the new PEM, and the SSM Agent sprang back to life.
Next step
Need help with DevOps setup? Contact me.
FAQ
Quick answers to the questions teams usually ask when implementing this pattern.
What causes most production incidents?
Usually familiar operational failures: bad deploys, exhausted resources, dependency issues, DNS or certificate mistakes, and weak observability rather than exotic edge cases.
What shortens incidents the most?
Visibility and rollback discipline. Teams recover faster when they can see what changed, where pressure is rising, and how to return to the last known-good state quickly.
Should every issue have an automated fix?
No. Automate repetitive low-risk remediations first, but keep humans in the loop for stateful, ambiguous, or business-critical decisions.
What should every team document?
Ownership, rollback steps, dependency maps, top incident runbooks, and where the most important telemetry lives.
Related Posts
Infrastructure Monitoring Best Practices
Improve infrastructure monitoring with practical signal design, alert strategy, dependency context, and dashboards that help operators act faster.
Most DevOps problems aren't tech problems - They're organizational chaos wearing a YAML hoodie
Most "DevOps problems" aren't tech problems. They're just organizational chaos wearing a YAML hoodie. We love to buy tools to fix culture. It never works. If you want to actually ship faster, try this Rule of Three: 1. Repeat it 3 times? Automate it. 2. Need a 12-step README to run it? You didn't automate it, you just outsourced the confusion. 3. Takes more time to maintain than it saves? Delete it. You've built a monument, not a tool. The Boring DevOps Checklist: Pipelines: Should be idempotent and predictable. If it's "flaky," it's broken. Infra: Treat it like code. If it's not versioned and reviewed, it's a liability. Alerts: If it doesn't require immediate human action? Don't send a page. The Goal: One command to deploy. One dashboard to verify. Stop looking for more tools. Start looking for less surprise.
GitLab's 2017 'oops' moment - One command. Wrong server. 6 hours of data gone.
GitLab's 2017 "oops" moment One command. Wrong server. 6 hours of production data… gone. What went wrong? - A spam attack overloaded their DB → replication lag. - An engineer tried to resync the replica… but ran the wipe command on the primary. - Backups? Many were broken or untested. - Final fix: restoring from a 6-hour-old staging copy (painfully slow). Lessons for us DevOps folks: 1. Backups mean nothing until you've tested restores. 2. Guardrails on destructive ops save careers. 3. Treat RPO/RTO as facts, not assumptions. 4. Blameless culture = faster learning, fewer cover-ups. If you've never practiced a restore, you don't have a backup — you have a bedtime story.