Upgrade to Pro — share decks privately, control downloads, hide ads and more …

[Network Automation Meetup] Network Fire Drills...

Ho Ming Li
July 16, 2019
Technology
0
950

[Network Automation Meetup] Network Fire Drills with Chaos Engineering

Have you had to wake up to tackle late-night on-call incidents? Not again. Network partition. Latency spike. Application systems are so fragile. What can we do about it? What if, we can know how systems behave under turbulent network conditions? Yes we can. HML will introduce the practice of Chaos Engineering, to proactively get ahead of network issues in your environment, so you can sleep better at night.

Ho Ming Li

July 16, 2019
Tweet

More Decks by Ho Ming Li

See All by Ho Ming Li
[Velocity EU] Chaos Engineering: When The Network Breaks
homingli
1
420
[PD Summit 2019] Best Practices to Kickstart your Chaos Engineering Journey
homingli
2
130
Chaos Engineering: Practice for the on-call Engineer
homingli
0
98
Reliably Scaling to your First Million Users
homingli
0
52
[NGINX Meetup] Practicing Thoughtful Controlled Chaos Engineering
homingli
1
84
[Chaos Meetup] Running a Successful GameDay
homingli
0
45
Observe your (way to) Resilience
homingli
1
94
[GOTOBER] GameDays: Practice Thoughtful Chaos Engineering
homingli
2
51
Definitive Guide to GameDays - Road to Resilient Services
homingli
0
140

Other Decks in Technology

See All in Technology
100 名超が参加した日経グループ横断の競技型 AWS 学習イベント「Nikkei Group AWS GameDay」の紹介/mediajaws202411
nikkei_engineer_recruiting
1
170
Why App Signing Matters for Your Android Apps - Android Bangkok Conference 2024
akexorcist
0
130
障害対応指揮の意思決定と情報共有における価値観 / Waroom Meetup #2
arthur1
5
480
飲食店データの分析事例とそれを支えるデータ基盤
kimujun
0
100
iOSチームとAndroidチームでブランチ運用が違ったので整理してます
sansantech
PRO
0
140
10XにおけるData Contractの導入について: Data Contract事例共有会
10xinc
6
650
誰も全体を知らない ~ ロールの垣根を超えて引き上げる開発生産性 / Boosting Development Productivity Across Roles
kakehashi
1
230
Terraform CI/CD パイプラインにおける AWS CodeCommit の代替手段
hiyanger
1
240
SREによる隣接領域への越境とその先の信頼性
shonansurvivors
2
520
Evangelismo técnico: ¿qué, cómo y por qué?
trishagee
0
360
Taming you application's environments
salaboy
0
190
プロダクト活用度で見えた真実 ホリゾンタルSaaSでの顧客解像度の高め方
tadaken3
0
120

Featured

See All Featured
Gamification - CAS2011
davidbonilla
80
5k
Writing Fast Ruby
sferik
627
61k
Ruby is Unlike a Banana
tanoku
97
11k
Build The Right Thing And Hit Your Dates
maggiecrowley
33
2.4k
The Cult of Friendly URLs
andyhume
78
6k
Building a Scalable Design System with Sketch
lauravandoore
459
33k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
329
21k
Six Lessons from altMBA
skipperchong
27
3.5k
It's Worth the Effort
3n
183
27k
Practical Orchestrator
shlominoach
186
10k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
44
6.8k
Fontdeck: Realign not Redesign
paulrobertlloyd
82
5.2k

Transcript

  1. 1 Network Fire Drills with Chaos Engineering Ho Ming Li

    Principal Solutions Architect, Gremlin [email protected] @horeal July 2019

  2. @horeal @gremlininc Gremlin Networking

  3. @horeal @gremlininc Pretty boring. AWS/VPC/Subnets Bastion Host Split Staging and

    Production Two regions (today, more in the future) Cloudformation/Terraform (Infrastructure as Code) Auditing and Privilege Escalation

  4. @horeal @gremlininc Privilege Escalation

  5. None

  6. PAUSE

  7. @horeal @gremlininc I’m not Amazon. I’m not Netflix. I’m not

    _________ . I don’t have their problems. … okay.

  8. @horeal @gremlininc But… does it mean your system never fail?

    You still need resilience in your systems. Availability? Data Integrity? Deliverability?

  9. @horeal @gremlininc Think about Change Management Think also Operational Excellence

    When your service is not resilient, you cannot deliver value to customers.

  10. @horeal @gremlininc Why is it so hard? Existing methods take

    reactive approach. Chaos Engineering instead takes a proactive approach to validate the knowns and surface the unknowns.

  11. @horeal @gremlininc Like a vaccine, we inject harm to build

    immunity.
  12. None

  13. CHAOS you resilience

  14. @horeal @gremlininc “Digital Transformation” Monolith → Microservices Containers on Kubernetes

    External Dependencies

  15. @horeal @gremlininc Common Failure Scenarios 1. Slowness from Database 2.

    Network Partitions 3. Managed Service Failure 4. External Dependency Failure

  16. @horeal @gremlininc App to DB Slowness - Timeout value -

    Upstream Response Code

  17. @horeal @gremlininc Network Partition - Read-only? - Unavailable?

  18. @horeal @gremlininc External Dependencies - S3? Dyn? Cloudflare? - What

    if THEY fail? - Raise the bar. - Own the user experience.

  19. @horeal @gremlininc Network Traffic Control (TC) $ tc qdisc add

    dev eth0 root netem delay 1000ms 500ms Iptable iptables -A OUTPUT -p tcp -d 157.240.0.0/16 -j DROP PF (Mac) block quick from any to 157.240.0.0/16

  20. @horeal @gremlininc Network

  21. @horeal | @gremlininc Humans are fallible Fal·li·ble Adjective capable of

    making mistakes or being erroneous.

  22. Don’t Forget the Human Last Updated: 04/01/2013 Last Validated: 02/01/2019

  23. @horeal | @gremlininc Everything fails all the time. - Werner

    Vogels, Amazon CTO

  24. Thank you.

  25. Join the Chaos, Join Slack. bit.ly/chaos-eng-slack Learn more:

  26. @gremlininc

  27. @horeal @gremlininc 11 Attacks