Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Ansibleで構成管理。〜たったひとつの冴えたやりかた〜

Sponsored · Ship Features Fearlessly Turn features on and off without deploys. Used by thousands of Ruby developers.
Avatar for Tomohiko Isobe Tomohiko Isobe
January 09, 2018
Technology
12
19k

 Ansibleで構成管理。〜たったひとつの冴えたやりかた〜

https://ljstudy.connpass.com/event/71037/
でのLT資料です。

Avatar for Tomohiko Isobe

Tomohiko Isobe

January 09, 2018
Tweet

More Decks by Tomohiko Isobe

See All by Tomohiko Isobe
今さらだけど、group_varsとhost_varsについて一言言いたい
Avatar for Tomohiko Isobe isobetomohiko
2
1.6k
Ansible-Vaultはこう使え!
Avatar for Tomohiko Isobe isobetomohiko
1
430
あえて、AnsibleでRDSを構築してみる
Avatar for Tomohiko Isobe isobetomohiko
0
310

Other Decks in Technology

See All in Technology
2人で作ったAIダッシュボードが、開発組織の次の一手を照らした話― Cursor × SpecKit × 可視化の実践 ― Qiita AI Summit
Avatar for NOBORU ITOU noalisaai
1
370
クレジットカード決済基盤を支えるSRE - 厳格な監査とSRE運用の両立 (SRE Kaigi 2026)
Avatar for capytan capytan
6
2.1k
プロダクト成長を支える開発基盤とスケールに伴う課題
Avatar for yuu26 yuu26
3
1.1k
Meshy Proプラン課金した
Avatar for henjin0 henjin0
0
210
日本の85%が使う公共SaaSは、どう育ったのか
Avatar for たけだ taketakekaho
1
120
マーケットプレイス版Oracle WebCenter Content For OCI
Avatar for oracle4engineer oracle4engineer
PRO
5
1.5k
名刺メーカーDevグループ 紹介資料
Avatar for Sansan, Inc. sansan33
PRO
0
1k
ClickHouseはどのように大規模データを活用したAIエージェントを全社展開しているのか
Avatar for Miki Matsumoto mikimatsumoto
0
160
学生・新卒・ジュニアから目指すSRE
Avatar for Hiroya Onoe hiroyaonoe
2
510
生成AI時代にこそ求められるSRE / SRE for Gen AI era
Avatar for ymotongpoo ymotongpoo
5
2.4k
フルカイテン株式会社 エンジニア向け採用資料
Avatar for FULL KAITEN fullkaiten
0
10k
Embedded SREの終わりを設計する 「なんとなく」から計画的な自立支援へ
Avatar for SansanTech sansantech
PRO
2
1.9k

Featured

See All Featured
Test your architecture with Archunit
Avatar for Yoan thirion
1
2.1k
Leveraging Curiosity to Care for An Aging Population
Avatar for Cassini Nazir cassininazir
1
150
Exploring the relationship between traditional SERPs and Gen AI search
Avatar for Ray Grieselhuber raygrieselhuber
PRO
2
3.6k
Noah Learner - AI + Me: how we built a GSC Bulk Export data pipeline
Avatar for Tech SEO Connect techseoconnect
PRO
0
100
How Fast Is Fast Enough? [PerfNow 2025]
Avatar for Tammy Everts tammyeverts
3
450
Claude Code のすすめ
Avatar for schroneko schroneko
67
210k
Discover your Explorer Soul
Avatar for Emna emna__ayadi
2
1.1k
SERP Conf. Vienna - Web Accessibility: Optimizing for Inclusivity and SEO
Avatar for Sara Fernández Carmona sarafernandez
1
1.3k
Deep Space Network (abreviated)
Avatar for Tony Rice tonyrice
0
44
Paper Plane (Part 1)
Avatar for Katie Cordina Lindsey katiecoart
PRO
0
3.9k
The browser strikes back
Avatar for Jono Alderson jonoalderson
0
360
Measuring Dark Social's Impact On Conversion and Attribution
Avatar for Stephen Akadiri stephenakadiri
1
120

Transcript

  1. AnsibleͰߏ੒؅ཧɻ ʙͨͬͨͻͱͭͷࡓ͑ͨ΍Γ͔ͨʙ 2018.1.9 ৽ఆ൪ʂAnsible ͱZabbixͰ࣮ݱ͢Δ࣍ੈ୅ӡ༻؅ཧ ү෦ஐ඙

  2. Who am I ? • ү෦ ஐ඙ (Tomohiko Isobe) •

    Infrastructure EngineerˏΫϦχΧϧɾϓϥοτϑΥʔϜג ࣜձࣾ(2017.10-) • ౡࠜݝग़਎ • Job Hopperʢݱࡏ8ࣾ໨…ʣ • Favorites: ࢙੻ɾઓ੻Ί͙ΓɺϑΝϛϨε https://clipla.jp

  3. Ansible࢖ͬͯ·͢ΑͶ

  4. ͜Μͳײ͡?

  5. Infrastructure as Code !

  6. None

  7. ͦΕͬͯ ʮߏஙखॱʯͷ؅ཧͰ͸ʁ

  8. αʔόͷʮߏ੒ʯΛ ؅ཧ͍ͨ͠

  9. ʮߏ੒؅ཧʯͱݴ͑͹

  10. ͔ͭͯɺ͜ͷੈʹ͸ ʮύϥϝʔλγʔτʯ ͳΔ΋ͷ͕͋ͬͨ

  11. ͜Μͳͷ

  12. ೔ʑͷӡ༻

  13. ύϥϝʔλγʔτɺ ߋ৽͠ͱ͖·ͨ͠❤

  14. ͋Δ೔ͷ͜ͱ

  15. None

  16. αʔόͷઃఆ͕ɺ ύϥϝʔλγʔτͱҧ͏…

  17. ͪΌΜͱαʔόೖͬ ͯ֬ೝ͠·ͨ͠ʁ

  18. Ͳ͏͢Δ͔

  19. ΩϥοͱͻΒΊ͍ͨ

  20. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  21. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  22. Playbookͱม਺Λ෼͚Δ

  23. Playbookͱม਺Λ෼͚Δ • Roleʹม਺͸ॻ͔ͳ͍ʂ • ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ͚ͩม਺ ʹʂ

  24. Roleʹม਺͸ॻ͔ͳ͍ʂ • Role͸ࡉ͔͘෼ׂͨ͠ํ͕൚༻ੑ͕ߴ·Δ • ͍͍ͪͪશ෦ͷRoleͷmain.ymlݟͯΒΜͳ͍

  25. Roleʹม਺͸ॻ͔ͳ͍ʂ • Role͸ࡉ͔͘෼ׂͨ͠ํ͕൚༻ੑ͕ߴ·Δ • ͍͍ͪͪશ෦ͷRoleͷmain.ymlݟͯΒΜͳ͍

  26. Roleʹม਺͸ॻ͔ͳ͍ʂ • Role͸ࡉ͔͘෼ׂͨ͠ํ͕൚༻ੑ͕ߴ·Δ • ͍͍ͪͪશ෦ͷRoleͷmain.ymlݟͯΒΜͳ͍ →

  27. Roleʹม਺͸ॻ͔ͳ͍ʂ • Role͸ࡉ͔͘෼ׂͨ͠ํ͕൚༻ੑ͕ߴ·Δ • ͍͍ͪͪશ෦ͷRoleͷmain.ymlݟͯΒΜͳ͍ → มߋָ͕

  28. ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ֊૚తʹॻ͚ͳ͍ͷͰɺม਺΍άϧʔϓ͕૿͑ ΔͱಡΈͮΒ͍

  29. ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ֊૚తʹॻ͚ͳ͍ͷͰɺม਺΍άϧʔϓ͕૿͑ ΔͱಡΈͮΒ͍

  30. ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ֊૚తʹॻ͚ͳ͍ͷͰɺม਺΍άϧʔϓ͕૿͑ ΔͱಡΈͮΒ͍ ͭΒ͍ʜ

  31. ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ ͚ͩม਺ʹʂ • Roleͱ߹Θͤͯ൚༻ੑ͕޲্

  32. ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ ͚ͩม਺ʹʂ • Roleͱ߹Θͤͯ൚༻ੑ͕޲্ logrotateͷtemplate(ൈਮ)

  33. ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ ͚ͩม਺ʹʂ • Roleͱ߹Θͤͯ൚༻ੑ͕޲্ logrotateͷtemplate(ൈਮ) logrotateͷvars

  34. Playbookͱม਺Λ෼͚Δ • Roleʹม਺͸ॻ͔ͳ͍ʂ • ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ͚ͩม਺ ʹʂ

  35. Playbookͱม਺Λ෼͚Δ • Roleʹม਺͸ॻ͔ͳ͍ʂ • ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ͚ͩม਺ ʹʂ →ɹgroup_vars,host_varsʹॻ͘ʂ

  36. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  37. hash_behaviour = merge

  38. hash_behaviour = merge • ม਺ͷϚʔδϙϦγʔ • ansible.cfgͷ[defaults]Ͱઃఆ • σϑΥϧτ͸”replace”

  39. hash_behaviour = merge • σϑΥϧτ(replace)ͷڍಈ + group_vars ༏ઌ౓ɿ௿ host_vars ༏ઌ౓ɿߴ

  40. hash_behaviour = merge • σϑΥϧτ(replace)ͷڍಈ + group_vars ༏ઌ౓ɿ௿ host_vars ༏ઌ౓ɿߴ

    → key2͕ফ͑ͨ

  41. hash_behaviour = merge • hash_behaviour=mergeͷڍಈ + group_vars ༏ઌ౓ɿ௿ host_vars ༏ઌ౓ɿߴ

  42. hash_behaviour = merge • hash_behaviour=mergeͷڍಈ + → group_vars ༏ઌ౓ɿ௿ host_vars

    ༏ઌ౓ɿߴ key1͸্ॻ͖ key3͕௥Ճ

  43. hash_behaviour = merge • γʔέϯε(Ϧετ)͸ཁૉ͕શ෦্ॻ͖͞Εͯ ͠·͏ͷͰ஫ҙ + group_vars ༏ઌ౓ɿ௿ host_vars

    ༏ઌ౓ɿߴ

  44. hash_behaviour = merge • γʔέϯε(Ϧετ)͸ཁૉ͕શ෦্ॻ͖͞Εͯ ͠·͏ͷͰ஫ҙ + → group_vars ༏ઌ౓ɿ௿

    host_vars ༏ઌ౓ɿߴ list͝ͱ্ॻ͖

  45. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ

  46. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ group_vars/all.yml(શαʔόڞ௨)

  47. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ group_vars/all.yml(શαʔόڞ௨) group_vars/webservers.yml(webαʔόڞ௨) +

  48. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ group_vars/all.yml(શαʔόڞ௨) group_vars/webservers.yml(webαʔόڞ௨) host_vars/web01.yml(web01ݻ༗ઃఆ) + +

  49. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ group_vars/all.yml(શαʔόڞ௨) group_vars/webservers.yml(webαʔόڞ௨) host_vars/web01.yml(web01ݻ༗ઃఆ) ࠷ऴతʹweb01ʹద༻͞ΕΔม਺ →

    + +

  50. hash_behaviour = merge • ΍Γ͗͢஫ҙ • ༧ظͤ͵্ॻ͖ • ෳ਺group_varsͷద༻ॱ •

    ม਺͕෼ࢄ͞Εͯ͠·͏

  51. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  52. ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  53. ม਺,FactҰཡΛग़ྗͯ͠؅ཧ • merge͞Εͨม਺Λग़ྗ • Fact ?

  54. merge͞Εͨม਺Λग़ྗ • templateϞδϡʔϧͰɺlocalhostʹશม਺Λग़ ྗ͢Δ • શม਺Λ”my_vars(೚ҙ)”ҎԼͷ֊૚ߏ଄ʹ͢ Δʢॏཁʂʣ • {{ hostvars[inventory_hostname]["my_vars"]

    | to_nice_yaml | indent(2, True) }}

  55. merge͞Εͨม਺Λग़ྗ • Playbook ESZSVOͰ΋ग़ྗ

  56. merge͞Εͨม਺Λग़ྗ • template

  57. merge͞Εͨม਺Λग़ྗ • ͜Μͳײ͡

  58. Fact ? • SetupϞδϡʔϧʹΑΓऩू͞ΕΔର৅ϗετ ͷ؀ڥ৘ใ • ansible_*ͱͯ͠ࢀরՄೳ

  59. ͔ͤͬ͘ͳΜͰFact΋ग़ྗ͠·͔͢ • ྫ͑͹ɺΧʔωϧͷόʔδϣϯͳΒ {{ hostvars[inventory_hostname] [ansible_kernel] }} • ͍ͬͺ͍͋ΔͷͰ؅ཧ͍ͨ͠৘ใΛ͓޷ΈͰ

  60. ͔ͤͬ͘ͳΜͰFact΋ग़ྗ͠·͔͢ • ͜Μͳײ͡

  61. ࠓͷαʔόͷߏ੒ɺ ͜͏ͳͬͯ·͢❤

  62. ύϥϝʔλγʔτײʂ

  63. ͜ΕΛgitͰ؅ཧ͢Ε͹

  64. ߏ੒؅ཧʂ

  65. ·ͱΊ

  66. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  67. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ →ߏஙखॱͱύϥϝʔλΛ෼ׂ

  68. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ →ߏஙखॱͱύϥϝʔλΛ෼ׂ

    →ύϥϝʔλΛޮ཰తʹ؅ཧ

  69. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ ≒

    ύϥϝʔλγʔτ →ߏஙखॱͱύϥϝʔλΛ෼ׂ →ύϥϝʔλΛޮ཰తʹ؅ཧ

  70. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ ≒

    ύϥϝʔλγʔτˠgit؅ཧ →ߏஙखॱͱύϥϝʔλΛ෼ׂ →ύϥϝʔλΛޮ཰తʹ؅ཧ

  71. એ఻ • ଞʹ΋Ansibleωλॻ͍ͯ·͢ • https://qiita.com/isobecky74

  72. Thank you !