Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Ansibleで構成管理。〜たったひとつの冴えたやりかた〜

Tomohiko Isobe
January 09, 2018
Technology
12
18k

 Ansibleで構成管理。〜たったひとつの冴えたやりかた〜

https://ljstudy.connpass.com/event/71037/
でのLT資料です。

Tomohiko Isobe

January 09, 2018
Tweet

More Decks by Tomohiko Isobe

See All by Tomohiko Isobe
今さらだけど、group_varsとhost_varsについて一言言いたい
isobetomohiko
2
1.5k
Ansible-Vaultはこう使え!
isobetomohiko
1
420
あえて、AnsibleでRDSを構築してみる
isobetomohiko
0
270

Other Decks in Technology

See All in Technology
ずっと昔に Star をつけたはずの 思い出せない GitHub リポジトリを見つけたい!
rokuosan
0
150
非機能品質を作り込むための実践アーキテクチャ
knih
5
1.2k
サイバー攻撃を想定したセキュリティガイドライン 策定とASM及びCNAPPの活用方法
syoshie
3
1.2k
レンジャーシステムズ | 会社紹介(採用ピッチ)
rssytems
0
150
第3回Snowflake女子会_LT登壇資料(合成データ)_Taro_CCCMK
tarotaro0129
0
190
WACATE2024冬セッション資料(ユーザビリティ)
scarletplover
0
200
Oracle Cloud Infrastructure:2024年12月度サービス・アップデート
oracle4engineer
PRO
0
180
20241220_S3 tablesの使い方を検証してみた
handy
4
390
ブラックフライデーで購入したPixel9で、Gemini Nanoを動かしてみた
marchin1989
1
530
Opcodeを読んでいたら何故かphp-srcを読んでいた話
murashotaro
0
230
KubeCon NA 2024 Recap: How to Move from Ingress to Gateway API with Minimal Hassle
ysakotch
0
200
コンテナセキュリティのためのLandlock入門
nullpo_head
2
320

Featured

See All Featured
Statistics for Hackers
jakevdp
796
220k
Unsuck your backbone
ammeep
669
57k
Documentation Writing (for coders)
carmenintech
66
4.5k
Typedesign – Prime Four
hannesfritz
40
2.4k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
44
6.9k
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
irinanazarova
5
450
Building an army of robots
kneath
302
44k
A Modern Web Designer's Workflow
chriscoyier
693
190k
Designing for humans not robots
tammielis
250
25k
Build your cross-platform service in a week with App Engine
jlugia
229
18k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
111
49k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
47
5.1k

Transcript

  1. AnsibleͰߏ੒؅ཧɻ ʙͨͬͨͻͱͭͷࡓ͑ͨ΍Γ͔ͨʙ 2018.1.9 ৽ఆ൪ʂAnsible ͱZabbixͰ࣮ݱ͢Δ࣍ੈ୅ӡ༻؅ཧ ү෦ஐ඙

  2. Who am I ? • ү෦ ஐ඙ (Tomohiko Isobe) •

    Infrastructure EngineerˏΫϦχΧϧɾϓϥοτϑΥʔϜג ࣜձࣾ(2017.10-) • ౡࠜݝग़਎ • Job Hopperʢݱࡏ8ࣾ໨…ʣ • Favorites: ࢙੻ɾઓ੻Ί͙ΓɺϑΝϛϨε https://clipla.jp

  3. Ansible࢖ͬͯ·͢ΑͶ

  4. ͜Μͳײ͡?

  5. Infrastructure as Code !

  6. None

  7. ͦΕͬͯ ʮߏஙखॱʯͷ؅ཧͰ͸ʁ

  8. αʔόͷʮߏ੒ʯΛ ؅ཧ͍ͨ͠

  9. ʮߏ੒؅ཧʯͱݴ͑͹

  10. ͔ͭͯɺ͜ͷੈʹ͸ ʮύϥϝʔλγʔτʯ ͳΔ΋ͷ͕͋ͬͨ

  11. ͜Μͳͷ

  12. ೔ʑͷӡ༻

  13. ύϥϝʔλγʔτɺ ߋ৽͠ͱ͖·ͨ͠❤

  14. ͋Δ೔ͷ͜ͱ

  15. None

  16. αʔόͷઃఆ͕ɺ ύϥϝʔλγʔτͱҧ͏…

  17. ͪΌΜͱαʔόೖͬ ͯ֬ೝ͠·ͨ͠ʁ

  18. Ͳ͏͢Δ͔

  19. ΩϥοͱͻΒΊ͍ͨ

  20. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  21. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  22. Playbookͱม਺Λ෼͚Δ

  23. Playbookͱม਺Λ෼͚Δ • Roleʹม਺͸ॻ͔ͳ͍ʂ • ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ͚ͩม਺ ʹʂ

  24. Roleʹม਺͸ॻ͔ͳ͍ʂ • Role͸ࡉ͔͘෼ׂͨ͠ํ͕൚༻ੑ͕ߴ·Δ • ͍͍ͪͪશ෦ͷRoleͷmain.ymlݟͯΒΜͳ͍

  25. Roleʹม਺͸ॻ͔ͳ͍ʂ • Role͸ࡉ͔͘෼ׂͨ͠ํ͕൚༻ੑ͕ߴ·Δ • ͍͍ͪͪશ෦ͷRoleͷmain.ymlݟͯΒΜͳ͍

  26. Roleʹม਺͸ॻ͔ͳ͍ʂ • Role͸ࡉ͔͘෼ׂͨ͠ํ͕൚༻ੑ͕ߴ·Δ • ͍͍ͪͪશ෦ͷRoleͷmain.ymlݟͯΒΜͳ͍ →

  27. Roleʹม਺͸ॻ͔ͳ͍ʂ • Role͸ࡉ͔͘෼ׂͨ͠ํ͕൚༻ੑ͕ߴ·Δ • ͍͍ͪͪશ෦ͷRoleͷmain.ymlݟͯΒΜͳ͍ → มߋָ͕

  28. ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ֊૚తʹॻ͚ͳ͍ͷͰɺม਺΍άϧʔϓ͕૿͑ ΔͱಡΈͮΒ͍

  29. ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ֊૚తʹॻ͚ͳ͍ͷͰɺม਺΍άϧʔϓ͕૿͑ ΔͱಡΈͮΒ͍

  30. ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ֊૚తʹॻ͚ͳ͍ͷͰɺม਺΍άϧʔϓ͕૿͑ ΔͱಡΈͮΒ͍ ͭΒ͍ʜ

  31. ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ ͚ͩม਺ʹʂ • Roleͱ߹Θͤͯ൚༻ੑ͕޲্

  32. ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ ͚ͩม਺ʹʂ • Roleͱ߹Θͤͯ൚༻ੑ͕޲্ logrotateͷtemplate(ൈਮ)

  33. ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ ͚ͩม਺ʹʂ • Roleͱ߹Θͤͯ൚༻ੑ͕޲্ logrotateͷtemplate(ൈਮ) logrotateͷvars

  34. Playbookͱม਺Λ෼͚Δ • Roleʹม਺͸ॻ͔ͳ͍ʂ • ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ͚ͩม਺ ʹʂ

  35. Playbookͱม਺Λ෼͚Δ • Roleʹม਺͸ॻ͔ͳ͍ʂ • ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ͚ͩม਺ ʹʂ →ɹgroup_vars,host_varsʹॻ͘ʂ

  36. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  37. hash_behaviour = merge

  38. hash_behaviour = merge • ม਺ͷϚʔδϙϦγʔ • ansible.cfgͷ[defaults]Ͱઃఆ • σϑΥϧτ͸”replace”

  39. hash_behaviour = merge • σϑΥϧτ(replace)ͷڍಈ + group_vars ༏ઌ౓ɿ௿ host_vars ༏ઌ౓ɿߴ

  40. hash_behaviour = merge • σϑΥϧτ(replace)ͷڍಈ + group_vars ༏ઌ౓ɿ௿ host_vars ༏ઌ౓ɿߴ

    → key2͕ফ͑ͨ

  41. hash_behaviour = merge • hash_behaviour=mergeͷڍಈ + group_vars ༏ઌ౓ɿ௿ host_vars ༏ઌ౓ɿߴ

  42. hash_behaviour = merge • hash_behaviour=mergeͷڍಈ + → group_vars ༏ઌ౓ɿ௿ host_vars

    ༏ઌ౓ɿߴ key1͸্ॻ͖ key3͕௥Ճ

  43. hash_behaviour = merge • γʔέϯε(Ϧετ)͸ཁૉ͕શ෦্ॻ͖͞Εͯ ͠·͏ͷͰ஫ҙ + group_vars ༏ઌ౓ɿ௿ host_vars

    ༏ઌ౓ɿߴ

  44. hash_behaviour = merge • γʔέϯε(Ϧετ)͸ཁૉ͕શ෦্ॻ͖͞Εͯ ͠·͏ͷͰ஫ҙ + → group_vars ༏ઌ౓ɿ௿

    host_vars ༏ઌ౓ɿߴ list͝ͱ্ॻ͖

  45. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ

  46. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ group_vars/all.yml(શαʔόڞ௨)

  47. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ group_vars/all.yml(શαʔόڞ௨) group_vars/webservers.yml(webαʔόڞ௨) +

  48. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ group_vars/all.yml(શαʔόڞ௨) group_vars/webservers.yml(webαʔόڞ௨) host_vars/web01.yml(web01ݻ༗ઃఆ) + +

  49. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ group_vars/all.yml(શαʔόڞ௨) group_vars/webservers.yml(webαʔόڞ௨) host_vars/web01.yml(web01ݻ༗ઃఆ) ࠷ऴతʹweb01ʹద༻͞ΕΔม਺ →

    + +

  50. hash_behaviour = merge • ΍Γ͗͢஫ҙ • ༧ظͤ͵্ॻ͖ • ෳ਺group_varsͷద༻ॱ •

    ม਺͕෼ࢄ͞Εͯ͠·͏

  51. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  52. ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  53. ม਺,FactҰཡΛग़ྗͯ͠؅ཧ • merge͞Εͨม਺Λग़ྗ • Fact ?

  54. merge͞Εͨม਺Λग़ྗ • templateϞδϡʔϧͰɺlocalhostʹશม਺Λग़ ྗ͢Δ • શม਺Λ”my_vars(೚ҙ)”ҎԼͷ֊૚ߏ଄ʹ͢ Δʢॏཁʂʣ • {{ hostvars[inventory_hostname]["my_vars"]

    | to_nice_yaml | indent(2, True) }}

  55. merge͞Εͨม਺Λग़ྗ • Playbook ESZSVOͰ΋ग़ྗ

  56. merge͞Εͨม਺Λग़ྗ • template

  57. merge͞Εͨม਺Λग़ྗ • ͜Μͳײ͡

  58. Fact ? • SetupϞδϡʔϧʹΑΓऩू͞ΕΔର৅ϗετ ͷ؀ڥ৘ใ • ansible_*ͱͯ͠ࢀরՄೳ

  59. ͔ͤͬ͘ͳΜͰFact΋ग़ྗ͠·͔͢ • ྫ͑͹ɺΧʔωϧͷόʔδϣϯͳΒ {{ hostvars[inventory_hostname] [ansible_kernel] }} • ͍ͬͺ͍͋ΔͷͰ؅ཧ͍ͨ͠৘ใΛ͓޷ΈͰ

  60. ͔ͤͬ͘ͳΜͰFact΋ग़ྗ͠·͔͢ • ͜Μͳײ͡

  61. ࠓͷαʔόͷߏ੒ɺ ͜͏ͳͬͯ·͢❤

  62. ύϥϝʔλγʔτײʂ

  63. ͜ΕΛgitͰ؅ཧ͢Ε͹

  64. ߏ੒؅ཧʂ

  65. ·ͱΊ

  66. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  67. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ →ߏஙखॱͱύϥϝʔλΛ෼ׂ

  68. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ →ߏஙखॱͱύϥϝʔλΛ෼ׂ

    →ύϥϝʔλΛޮ཰తʹ؅ཧ

  69. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ ≒

    ύϥϝʔλγʔτ →ߏஙखॱͱύϥϝʔλΛ෼ׂ →ύϥϝʔλΛޮ཰తʹ؅ཧ

  70. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ ≒

    ύϥϝʔλγʔτˠgit؅ཧ →ߏஙखॱͱύϥϝʔλΛ෼ׂ →ύϥϝʔλΛޮ཰తʹ؅ཧ

  71. એ఻ • ଞʹ΋Ansibleωλॻ͍ͯ·͢ • https://qiita.com/isobecky74

  72. Thank you !