HashiTalks DACH 2021 Netzwerkautomatisierung Cedric Feist

Transcript

1. None

2. On-Prem Netzwerk Automatisierung mit Terraform Cloud GitHub | Terraform Cloud

   | Cisco ACI

3. Solutions Engineer @ HashiCorp he/him GitHub: cedricfeist Cedric Feist

4. CODE EDITOR agenda.hcl resource "agenda" "DevNetWorkshop2_agenda" { Point_1 = "Terraform

   Overview" Point_2 = "Terraform Cloud" Point_3 = "Terraform Cloud + On Prem" Point_4 = "Demo" }
5. None

6. Provides the foundation for cloud infrastructure automation using infrastructure as

   code for provisioning and compliance in the cloud operating model. Collaborative infrastructure as code Compliance & Management Self-Service infrastructure 1000+ Providers Millions Weekly D/Ls 900+ Customers Trusted by: Terraform

7. Guiding principle: Infrastructure as code ▪ Using version control and

   automation to reduce human error and failed builds ▪ Terraform infrastructure as code (HCL) and policy as code to automate everything ▪ Open source providers allow rapid creation and support for any infrastructure

8. Terraform Cloud for Business • Central platform running in the

   cloud • Provides common workflows for users across teams and clouds (VCS/API/CLI/UI) • Adds an API, RBAC, State Management, VCS Connections, Variable Store, Private Module Registry, Cost Estimation, Run Triggers, Run Notifications. • Allows to establish a Producer/Consumer model, for separation of duties. • Provides a Policy as Code Framework via Sentinel, to ensure governance across workspaces.

9. Use case: Self-Service Infrastructure ▪ Increase productivity using a library

   of infrastructure modules for technical and non-technical end-users. ▪ Reduce risk with Sentinel policies automatically enforced against every request. ▪ Increase adoption by integrating with VCSs, CI/CD pipelines, and ITSM interfaces to enable developers to use their existing workflows to provision with Terraform.

10. Terraform Cloud Agents Self-hosted Agents Terraform Agents can be self-hosted

    in a private network or on premise environment. This allows Terraform to securely interact with APIs that are not reachable from the public internet.

11. Customer Firewall On-Prem Infrastructure Modern Developers DevOps Teams SRE Teams

    TFC Cloud Runner(s) VCS Business Compute Storage Network Security TFC Cloud Agent(s) Outbound Polling Agent Pool Queue Your infrastructure choice Terraform Providers

12. Customer Firewall On-Prem Infrastructure Modern Developers DevOps Teams SRE Teams

    TFC Cloud Runner(s) VCS Business Compute Storage Network Security Assist Appliance TFC Cloud Agent(s) Cisco Intersight SaaS to Agent Workflow Terraform Providers Outbound Polling Agent Pool Queue Technical Assistance Center

13. DEVELOPER (You) TF WORKSPACE PLAN APPLY GIT PUSH TRIGGER Demo

    Workflow GitHub > Terraform Cloud > Cisco ACI GIT REPOSITORY PROVIDERS CiscoDevNet/aci RESOURCES (ACI Fabric) CONFIRM ✅

14. DEMO

15. Thank You [email protected] | learn.hashicorp.com | discuss.hashicorp.com