Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Configuration management for future operating systems

Gareth Rushgrove
November 25, 2014
Technology
11
1.8k

Configuration management for future operating systems

Talk given at the New Directions in Operating Systems conference. A run through some of the history of configuration management as a discipline, on to future trends in infrastructure management and finally examples of using Puppet to manage high level or at-a-distance resources.

Gareth Rushgrove

November 25, 2014
Tweet

More Decks by Gareth Rushgrove

See All by Gareth Rushgrove
GTM vs Open Source
garethr
0
690
Software Build of Materials For Cloud Native applications
garethr
1
330
Evolving vulnerabilities in CycloneDX
garethr
0
270
Configuration security is a developer problem
garethr
2
1.9k
Patterns for secure container base image management
garethr
1
1.9k
Testing configuration with Open Policy Agent
garethr
0
490
Building a Docker Image Packaging Pipeline Using GitHub Actions
garethr
5
2.1k
The perils of configuration security
garethr
1
190
Shifting Terraform security left
garethr
3
1.6k

Other Decks in Technology

See All in Technology
**強い**エンジニアのなり方 - フィードバックサイクルを勝ち取る / grow one day each day
soudai
60
17k
プロトタイピングによる不確実性の低減 / Reducing Uncertainty through Prototyping
ohbarye
3
180
転移学習とドメイン適応の基礎
kmatsui
2
570
次世代Web認証「パスキー」 / mo-zatsudan-passkey
nkzn
22
13k
A (short) History of AI
harishpillay
0
110
SIEMを用いて、セキュリティログ分析の可視化と分析を実現し、PDCAサイクルを回してみた
coconala_engineer
0
200
長期運用プロジェクトでのMySQLからTiDB移行の検証
colopl
1
520
クラウドサインにおけるプロダクトマネージャーの役割と開発プロセス / 20240410_cloudsign-PdM
bengo4com
1
670
コンテナセキュリティの基本と脅威への対策
kyohmizu
3
670
Delivering Millions of Messages within seconds @ Duolingo
pelelgrino
0
320
なぜ NOT A HOTEL が Web3 に取り組むのか - NOT A HOTEL TECH TALK
ynunokawa
0
160
Databricks における 『MLOps』
databricksjapan
2
130

Featured

See All Featured
Keith and Marios Guide to Fast Websites
keithpitt
408
22k
Adopting Sorbet at Scale
ufuk
67
8.6k
Unsuck your backbone
ammeep
662
57k
Building Applications with DynamoDB
mza
88
5.6k
Statistics for Hackers
jakevdp
789
220k
Being A Developer After 40
akosma
56
580k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
115
18k
Creatively Recalculating Your Daily Design Routine
revolveconf
209
11k
No one is an island. Learnings from fostering a developers community.
thoeni
14
2.1k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
6
990
The Mythical Team-Month
searls
214
42k
The Cult of Friendly URLs
andyhume
73
5.7k

Transcript

  1. Configuration Management Puppet Labs Gareth Rushgrove For future infrastructure

  2. @garethr

  3. Gareth Rushgrove

  4. Gareth Rushgrove

  5. What is configuration management?

  6. Any input to your infrastructure is configuration Gareth Rushgrove

  7. Configuration management is about managing all of those inputs over

    time Gareth Rushgrove

  8. Configuration management is about managing all of those inputs over

    time Gareth Rushgrove

  9. This talk

  10. A little history Gareth Rushgrove

  11. Emerging patterns Gareth Rushgrove

  12. Immutable infrastructure Infrastructure APIs Autonomous systems Simpler hosts Gareth Rushgrove

  13. Immutable infrastructure Infrastructure APIs Autonomous systems Simpler hosts Gareth Rushgrove

  14. Immutable infrastructure Infrastructure APIs Autonomous systems Simpler hosts Gareth Rushgrove

  15. Immutable infrastructure Infrastructure APIs Autonomous systems Simpler hosts Gareth Rushgrove

  16. Future infrastructure as code Gareth Rushgrove

  17. A little history

  18. 1950s research, 1960s 480 series, 1991 MIL- HDBK-61, 1998 ANSI-

    EIA-649 Gareth Rushgrove

  19. Military Handbook Configuration Management Guidance MIL-HDBK-61B Gareth Rushgrove

  20. Identification Control Status accounting Verification and audit Gareth Rushgrove

  21. National Consensus Standard for Configuration Management EIA-649 Gareth Rushgrove

  22. Configuration management verifies that a system is identified and documented

    in sufficient detail Gareth Rushgrove

  23. Configuration management verifies that a system performs as intended Gareth

    Rushgrove

  24. Service management, ITIL, ISO 20000 Gareth Rushgrove

  25. Infrastructure as code Gareth Rushgrove

  26. Gareth Rushgrove

  27. Immutable infrastructure

  28. Build once, run many times Gareth Rushgrove

  29. Amazon Machine Images Gareth Rushgrove

  30. End-to-end automation to avoid the golden image problem Gareth Rushgrove

  31. Gareth Rushgrove

  32. Containers Gareth Rushgrove

  33. Gareth Rushgrove

  34. Docker as the user interface Gareth Rushgrove

  35. How immutable are your docker containers? Gareth Rushgrove

  36. Infrastructure with APIs

  37. Infrastructure as a service Gareth Rushgrove

  38. Gareth Rushgrove

  39. Gareth Rushgrove

  40. Gareth Rushgrove

  41. Platform as a service Gareth Rushgrove

  42. Gareth Rushgrove

  43. Gareth Rushgrove

  44. Gareth Rushgrove

  45. OSv Gareth Rushgrove

  46. Gareth Rushgrove

  47. Not just compute, but network and storage too Gareth Rushgrove

  48. Gareth Rushgrove

  49. Not just *nix Gareth Rushgrove

  50. Gareth Rushgrove

  51. Configuration at a distance Gareth Rushgrove

  52. Configuring autonomous systems

  53. We’re increasingly managing higher level systems Gareth Rushgrove

  54. If servers are cattle not pets, we need to talk

    about fields and farms Gareth Rushgrove

  55. Autoscaling groups Gareth Rushgrove

  56. Gareth Rushgrove

  57. Gareth Rushgrove

  58. Simpler hosts

  59. Combinatorial package explosion Gareth Rushgrove

  60. Gareth Rushgrove

  61. Gareth Rushgrove OSTree

  62. Gareth Rushgrove

  63. Gareth Rushgrove

  64. Gareth Rushgrove

  65. CoreOS is a firmware for running containers Gareth Rushgrove John

    Vincent - http://blog.lusis.org/blog/2014/11/21/a-few-things/

  66. Moving configuration from hosts to the network Gareth Rushgrove

  67. Etcd, Consul, Zookeeper Gareth Rushgrove

  68. Future infrastructure as code

  69. From: Host centric Localised Executable for integration Gareth Rushgrove

  70. To: Cluster centric Distributed HTTP for integration Gareth Rushgrove

  71. Going from Puppet to etcd Gareth Rushgrove

  72. Gareth Rushgrove

  73. Where similar interfaces exist we can provide abstractions Gareth Rushgrove

  74. Gareth Rushgrove

  75. Gareth Rushgrove garethr/key_value_config

  76. Going from etcd to Puppet with Hiera Gareth Rushgrove

  77. Gareth Rushgrove

  78. Gareth Rushgrove garethr/hiera-etcd

  79. Installing systems Gareth Rushgrove

  80. Gareth Rushgrove

  81. Gareth Rushgrove

  82. More interestingly, using systems via APIs Gareth Rushgrove

  83. Gareth Rushgrove

  84. garethr/garethr-docker Gareth Rushgrove

  85. Gareth Rushgrove

  86. Gareth Rushgrove

  87. puppetlabs/puppetlabs-aws Gareth Rushgrove

  88. Gareth Rushgrove

  89. garethr/digitalocean Gareth Rushgrove

  90. Gareth Rushgrove

  91. Gareth Rushgrove I want a pony

  92. Managing an autoscaling CoreOS/Atomic cluster in AWS… Gareth Rushgrove

  93. …with configuration in etcd/consul… Gareth Rushgrove

  94. …with the network in VPC /Weave… Gareth Rushgrove

  95. …with docker containers arranged by Kubernetes… Gareth Rushgrove

  96. All from the Puppet DSL Gareth Rushgrove

  97. Conclusions

  98. The future is already here — it's just not very

    evenly distributed. Gareth Rushgrove William Gibson

  99. Manage. Not just provision Gareth Rushgrove

  100. Gareth Rushgrove

  101. Questions? And thanks for listening