$30 off During Our Annual Pro Sale. View Details »

Automating AWS

Andrew Best
July 19, 2016
Programming
2
180

Automating AWS

Using Octopus, Cloud Formation and Powershell DSC to build immutable phoenix environments in AWS

Andrew Best

July 19, 2016
Tweet

More Decks by Andrew Best

See All by Andrew Best
Learn Authentication The Hard Way
andrewabest
0
140
Finding The Sweet Spot BNE
andrewabest
1
160
Finding The Sweet Spot
andrewabest
0
260
Conventional Wisdom
andrewabest
1
230
DSC a-b-c's
andrewabest
0
95
AWS a-b-c's
andrewabest
3
140
What is Git?
andrewabest
0
200
Client Side Testing
andrewabest
0
48
Seven Year Itch
andrewabest
0
170

Other Decks in Programming

See All in Programming
Javaの入門が終わったら何の勉強をすればいいの? / what should we study after language
kishida
4
22k
The Kotlin Features You’ve Been Missing Out On
manuelernest0
2
110
排他制御のためだけに渋々 Redis 使ってませんか?
mpyw
7
740
Navigating the Streaming Landscape
dunithd
0
230
サーバーレスなメール送信システムをAWS CDKで構築し数千人規模の環境で運用した話 / aws dev day cdk mail
gotok365
2
690
レガシーフロントエンドからNext.jsへの段階移行を可能にするAWS構成
tamizuma
10
3k
Cloud-Native: Einführung, Überblick & Myth Busting
christianweyer
PRO
0
160
Amazon EKS上の開発体験を最大化するプレビュー環境の作り方
katainaka0503
0
200
開発チームの生産性向上に取り組む
ytakahashi
1
160
lazy grid layout
spbaya0141
1
250
Being On Call Does Not Have to Suck.
charity
0
530
2022 - 默默會 - 重新學習 MVC 的 Model
elct9620
1
210

Featured

See All Featured
Writing Fast Ruby
sferik
613
57k
Bootstrapping a Software Product
garrettdimon
299
110k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
351
21k
Rebuilding a faster, lazier Slack
samanthasiow
64
7.4k
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
stephaniewalter
270
12k
Reflections from 52 weeks, 52 projects
jeffersonlam
337
18k
Three Pipe Problems
jasonvnalue
89
8.8k
Fantastic passwords and where to find them - at NoRuKo
philnash
31
1.8k
Support Driven Design
roundedbygravity
87
8.8k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
27
19k
Infographics Made Easy
chrislema
234
17k
Put a Button on it: Removing Barriers to Going Fast.
kastner
56
2.5k

Transcript

  1. Automating AWS

  2. Part 1 Automating Infrastructure

  3. Page Birds-eye view / Copyright ©2014 by Readify Pty Ltd

    3 Step 1: Deploy infrastructure Step 2: Bootstrap instances Step 3: Deploy software

  4. Page The infrastructure / Copyright ©2014 by Readify Pty Ltd

    4

  5. Page / Copyright ©2014 by Readify Pty Ltd 5 Deploy

    Infrastructure Bootstrap Instances Register Tentacle Deploy Software Fire Project Trigger Nothing up my sleeve…

  6. Page / Copyright ©2014 by Readify Pty Ltd 6 Deploy

    Infrastructure Bootstrap Instances Register Tentacle Deploy Software Fire Project Trigger Nothing up my sleeve…

  7. Page Step 1: Deploy infrastructure › Deploy.ps1 › Package and

    upload bootstrapping resources to S3 › Package and upload configuration variables to S3 › Do we need to deploy a new stack? › Yes - New-CFNStack › No - New-CFNChangeSet › CloudFormation resource creation based on template / Copyright ©2014 by Readify Pty Ltd 7

  8. Page / Copyright ©2014 by Readify Pty Ltd 8 Deploy

    Infrastructure Bootstrap Instances Register Tentacle Deploy Software Fire Project Trigger Nothing up my sleeve…

  9. Page Step 2: Bootstrap instances › EC2 userdata › cfn-init.exe

    › AWS::CloudFormation::Init › Powershell DSC › Octopus tentacle › tentacle.exe --register-with / Copyright ©2014 by Readify Pty Ltd 9

  10. Page / Copyright ©2014 by Readify Pty Ltd 10 Deploy

    Infrastructure Bootstrap Instances Register Tentacle Deploy Software Fire Project Trigger Nothing up my sleeve…

  11. Page Step 3: Deploy software › Prior to Octopus 3.4

    => DSC › Octopus 3.4 => Project Triggers › Software is deployed by Octopus via the Project Trigger › DSC polls a local health check endpoint › ASG waits to be signalled before completion › DSC => cfn-signal.exe › fin / Copyright ©2014 by Readify Pty Ltd 11

  12. Page / Copyright ©2014 by Readify Pty Ltd 12 Deploy

    Infrastructure Bootstrap Instances Register Tentacle Deploy Software Fire Project Trigger Nothing up my sleeve…

  13. Part 2 Immutable infrastructure

  14. Page Updating CF stacks What updating stacks used to be

    like / Copyright ©2014 by Readify Pty Ltd 14 Are you feeling lucky?

  15. Page / Copyright ©2014 by Readify Pty Ltd 15

  16. Page CloudFormation Change Sets › Supply your updated template to

    a Change Set via New-CFNChangeSet › AWS diffs the updated template against the current stack › A detailed list of what changes and what doesn’t is provided › Details the dependency chain and how it is effected / Copyright ©2014 by Readify Pty Ltd 16

  17. Page Immutability › Rev infrastructure package => refresh instances ›

    CI + CloudFormation can do this for us › Inject version into Launch configuration userdata › Triggers a replacement of the launch configuration › How do we stay HA while our infrastructure refreshes? / Copyright ©2014 by Readify Pty Ltd 17

  18. Page AutoScaleGroup Update Policies › Allows an ASG to stay

    HA while undergoing a refresh › Keeps a number of instances in service while terminating stale and creating fresh instances › Works with cfn-signal.exe to ensure updates are successful › Rolls back on failure / Copyright ©2014 by Readify Pty Ltd 18

  19. Part 3 Phoenix environments The really really cool part!

  20. Page Deploying feature branches › The Dream: › Developer checks

    in code on a feature branch › The feature branch is built by our CI service of choice › Once complete, our CI service then invokes Octopus and triggers an isolated stack of hardware to be deployed for it › Once the hardware is ready, the feature branch’s payload is automatically deployed to it by Octopus › From check-in to our feature running on new, isolated compute. Ready to test and destroy when we are done / Copyright ©2014 by Readify Pty Ltd 20

  21. Page Octopus 3.4 › Introduces new features that allow us

    to work with a tonne more flexibility in elastic environments › Multi-tenancy › Project Triggers / Auto Deploy Overrides › Machine Policies / Copyright ©2014 by Readify Pty Ltd 21

  22. Page Setup › We have built a new feature ryan

    on an isolated feature branch! We push the code up to our repository › Our CI service notices this and creates a release for our feature branch package, with a semver version number 1.0.0-ryan0001 / Copyright ©2014 by Readify Pty Ltd 22

  23. Page Octo 3.4 – Multi-tenancy › We created a tenant

    ryan0001for our feature branch –we are using the semver from the built package as a naming convention › Allows us to isolate and group sets of machines within an environment › Allows us to configure projects with tenant-specific variables › Allows us to control what software gets deployed to what sets of machines via triggers within an environment / Copyright ©2014 by Readify Pty Ltd 23

  24. Page Octo 3.4 – Auto Deploy Overrides › We created

    an auto deploy override for our feature branch tenant ryan0001 for the feature branch package version 1.0.0-ryan0001 › Part of Project Triggers › Auto Deploy Overrides allow us to say ‘when a project trigger fires, and the machine that triggered it is for a given tenant, deploy an explicit version of the project to the machine, not the default’ / Copyright ©2014 by Readify Pty Ltd 24

  25. Page Octo 3.4 – Machine Policies › When our instances

    register with Octopus via tentacle.exe, they indicate a machine policy › When we clean up our CloudFormation, how do we ensure Octopus is cleaned up as well? › Old way: AWS Lambda › New way: Octopus Machine Policies › Healthchecks and unavailable machines › Cleanup unavailable machines / Copyright ©2014 by Readify Pty Ltd 25

  26. Page Living The Dream 26

  27. Thank you Andrew Best | @_andrewb | andrew.best@readify.net