AWS初心者がCodenize.toolsでInfrastructure as Codeした話/jawsug-beginner2-lt

3174b33cfbf39090f00a4791b3780888?s=47 Naoto Enokawa
July 24, 2015
0
730

AWS初心者がCodenize.toolsでInfrastructure as Codeした話/jawsug-beginner2-lt

JAWS-UG初心者支部【第2回】懇親会LT資料
https://jawsug-beginner.doorkeeper.jp/events/26430

3174b33cfbf39090f00a4791b3780888?s=128

Naoto Enokawa

July 24, 2015
Tweet

More Decks by Naoto Enokawa

See All by Naoto Enokawa
3174b33cfbf39090f00a4791b3780888?s=48 enokawa
0
100
3174b33cfbf39090f00a4791b3780888?s=48 enokawa
1
280
3174b33cfbf39090f00a4791b3780888?s=48 enokawa
0
2.4k
3174b33cfbf39090f00a4791b3780888?s=48 enokawa
3
1.2k
3174b33cfbf39090f00a4791b3780888?s=48 enokawa
0
340
3174b33cfbf39090f00a4791b3780888?s=48 enokawa
0
280
3174b33cfbf39090f00a4791b3780888?s=48 enokawa
0
1.6k
3174b33cfbf39090f00a4791b3780888?s=48 enokawa
0
580
3174b33cfbf39090f00a4791b3780888?s=48 enokawa
0
56

Featured

See All Featured
E837d2996f52008ace055a08fbfff992?s=48 frogandcode
121
20k
766b9746b59e6f09e280cd33cf4ed419?s=48 skipperchong
2
410
3d6ace9554821d552146413bcdf874f6?s=48 trishagee
5
380
0bce06bd06ee7a2c4f5500f25dcf7f18?s=48 paulrobertlloyd
70
3.3k
5f2da528927a2ec9ba4fec2069cbc958?s=48 kneath
218
14k
1b8ad785acdd1ce1c99914b1c2a4e10e?s=48 sugarenia
230
750k
D67fff74178013024d833b3eec6cf27f?s=48 lynnandtonic
264
16k
F716e5f737fcfb03f2cf8d1a184f1dbe?s=48 nonsquared
78
3.1k
Ae14cc4491ac334f9cd23f9f93b4305e?s=48 orderedlist
325
34k
Aebc2d07a50011e2a30d38435fde564a?s=48 jrom
113
6.8k
5ce91fa49a613cbc3e20d5f96856473f?s=48 edds
55
9.2k
91cefdf141106fa10674aae74ce05890?s=48 yeseniaperezcruz
296
30k

Transcript

  1. AWSॳ৺ऀ͕ Codenize.toolsͰ Infrastructure as Codeͨ͠࿩ Naoto Enokawa

  2. ࣗݾ঺հ • ͑ͷ͔Θ ͳ͓ͱ • cloudpack৽ଔ̍೥໨ • ԭೄੜ·Εԭೄҭͪ • JAWS-UGԭೄίΞϝϯόʔ

    • AWSॳ৺ऀʗΫϥ΢υΏͱΓ

  3. Infrastructure as Code • ΠϯϑϥΛίʔυͰॻ͘ • ίʔυʹ͢Δ͜ͱͰϛεΛ๷͙ • εϐʔσΟʹΠϯϑϥΛௐୡͰ͖Δ

  4. None
  5. None

  6. Piculet • Ruby੡ • AWSͷSecurity GroupsΛίʔυԽ • ΫοΫύουͷ@sgwr_dts ͞Μ͕࡞੒

  7. PiculetͷϝϦοτ • ΞΧ΢ϯτΛ·͍ͨͰSGΛҠߦͰ͖Δ • ։ൃˠεςʔδϯάˠຊ൪ͷSGҠߦ͕ϥΫ • 10෼͋Ε͹ҠߦͰ͖Δ • --dry-runΦϓγϣϯ͕࢖͑Δ

  8. खॱ

  9. खॱ • IAMϢʔβʔ࡞੒ • credentialsઃఆ • PiculetΠϯετʔϧ • Piculet࣮ߦʂ

  10. IAMϢʔβʔ࡞੒ • SecurityGroupsͷૢ࡞ΛڐՄ͢Δ
 ϙϦγʔΛద༻ • IP੍ݶΛೖΕΔͱঘΑ͠

  11. $ cat ~/.aws/credentials [dev] #։ൃ؀ڥ༻ aws_access_key_id = AKIXXXXXXXXXXXXXXXX aws_secret_access_key =

    SSSSSSSSSSSSSSSSSSSSSSSSSSSSSSS [prod] #ຊ൪؀ڥ༻ aws_access_key_id = AKIXXXXXXXXXXXXXXXX aws_secret_access_key = SSSSSSSSSSSSSSSSSSSSSSSSSSSSSSS

  12. $ gem install piculet

  13. $ piculet -e -p dev -r ap-northeast-1 > Groupfile

  14. ͜ͷSG͕

  15. security_group "web-sg" do ingress do permission :tcp, 80..80 do ip_ranges(

    "0.0.0.0/0" ) end end end ͜Μͳײ͡

  16. ։ൃ؀ڥ͔Β ຊ൪؀ڥʹઃఆ͢Δʹ͸

  17. $ piculet -a -p prod -r ap-northeast-1 ※--dry-runΦϓγϣϯ΋࢖͑Δ͠ศརʂ

  18. Future • Github(private)Ͱόʔδϣϯ؅ཧ • SG΋ίʔυϨϏϡʔ

  19. AWSॳ৺ऀ͕ Codenize.toolsͰ Infrastructure as Codeͨ͠࿩ Naoto Enokawa