Upgrade to Pro — share decks privately, control downloads, hide ads and more …

ITT 2019 - Kief Morris - Building Evolvable Infrastructure

Istanbul Tech Talks
April 02, 2019
Technology
1
45

ITT 2019 - Kief Morris - Building Evolvable Infrastructure

Design strategies for building infrastructure that can be continuously evolved, by using pipelines, automated tests, and loosely integrated stacks to enable a continuous flow of changes and improvements.

People are adopting dynamic infrastructure technologies like cloud, containers, and serverless so that they can easily make changes to it. Defining infrastructure as code should make systems consistent, reliable, and easy to manage. But an infrastructure codebase can easily become a complicated, fragile mess that is scary to change. Teams can gain confidence to make frequent, rapid changes to continuously improve their infrastructure by applying appropriate design patterns and implementation practices.

Istanbul Tech Talks

April 02, 2019
Tweet

More Decks by Istanbul Tech Talks

See All by Istanbul Tech Talks
ITT 2019 - Constance Caramanolis - High severity incident response leveraging Envoy
istanbultechtalks
0
140
ITT 2019 - Mark West - A Practical(ish) Introduction to Data Science
istanbultechtalks
1
140
ITT 2019 - Kavya Joshi - Let's talk locks!
istanbultechtalks
1
140
ITT 2019 - Martin Beeby - A Developer Primer on Blockchain
istanbultechtalks
1
42
ITT 2019 - Nikolas Burk - Boost your API Development with GraphQL & Prisma
istanbultechtalks
0
82
ITT 2019 - Michael Hüttermann - Continuous Delivery/DevOps Live Cooking Show
istanbultechtalks
0
68
ITT 2019 - Nic Jackson - From the first photocopy to modern failure detection in distributed systems
istanbultechtalks
2
81
ITT 2018 - Randy Shoup - Service Architectures at Scale
istanbultechtalks
0
57
ITT 2018 - Tim Berglund - Processing Streaming Data with KSQL
istanbultechtalks
0
93

Other Decks in Technology

See All in Technology
試して分かった!AWS を使った PLCのデータ収集と分析基盤の実践ノウハウ #FA設備技術勉強会#13
ganota
1
3.4k
また(CDK界隈の)世界を縮めてしまった
bun913
0
560
ChatGPT(GPT-4版)でIoTやってみた / IoTLT vol.97
you
0
180
関数型で表現するイベントソーシングの実装とその教育
tomohisa
0
190
サービスと共にチームも成長する 〜New Relicを利用したサービスとチームの定量化〜
hirokiotsuka
0
140
開幕LT
makamaka
0
360
エンジニアのためのドキュメントライティング / Docs for Developers and Paragraph Writing
nttcom
3
590
データの民主化はじめました 俺たちの民主化はこれからだ
akki_megane
0
160
ジョブキューシステムFireworqのアーキテクチャ設計と運用時のベストプラクティス
tarao
1
850
シゴトをジモトに運び込め〜大企業でCCoEやってた私が地元に事業所を作るまで〜
mamohacy
2
100
GitHub Actionsと"仲良くなる"ための練習方法
tsubakimoto_s
10
2.9k
マルチベンダに対応したネットワークコントローラを OSS として公開している話 (NTT Tech Conference 2023)
motok1
3
350

Featured

See All Featured
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
152
13k
How to train your dragon (web standard)
notwaldorf
66
4.4k
Testing 201, or: Great Expectations
jmmastey
25
5.8k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
24
5.1k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
44
14k
Web Components: a chance to create the future
zenorocha
304
41k
Faster Mobile Websites
deanohume
296
29k
Typedesign – Prime Four
hannesfritz
34
1.6k
The Cult of Friendly URLs
andyhume
70
5.2k
Code Reviewing Like a Champion
maltzj
508
38k
The Pragmatic Product Professional
lauravandoore
21
3.6k
Three Pipe Problems
jasonvnalue
89
9k

Transcript

  1. BUILDING
    EVOLVABLE
    INFRASTRUCTURE
    (as code)

    View Slide

  2. [email protected]
    Head of Cloud Engineering
    Twitter: @kief
    Book: http://oreil.ly/1JKIBVe
    Site: http://infrastructure-as-code.com

    View Slide

  3. SPEED

    View Slide

  4. IMPEDIMENT

    View Slide

  5. CLOUD

    View Slide

  6. QUALITY

    View Slide

  7. Fast
    Slow Careless
    Careful

    View Slide

  8. State of the DevOps Report
    https://devops-research.com/
    Accelerate,
    Nicole Forsgren, PhD,
    Jez Humble,
    Gene Kim

    View Slide

  9. Graphic from State of the DevOps Report 2018
    The four
    metrics

    View Slide

  10. "The highest
    performers excel at
    throughput and
    stability"
    State of the DevOps Report 2018
    Nicole Forsgren, PhD, Jez Humble, Gene Kim
    https://devops-research.com/

    View Slide

  11. Optimize for the capability
    to deliver changes
    RAPIDLY and RELIABLY

    View Slide

  12. "Since we can't avoid
    change, we need to
    exploit it"
    Building Evolutionary Architectures
    Neal Ford, Rebecca Parsons, Pat Kua

    View Slide

  13. How do we make our
    infrastructure evolvable?

    View Slide

  14. OPTIMIZE
    FOR
    CHANGE
    AS CODE
    Define all your stuff as code
    So that everything is visible,
    repeatable, and changes
    are actionable

    View Slide

  15. OPTIMIZE
    FOR
    CHANGE
    CONTINUOUS
    VALIDATION
    Integrate and test all work
    in progress as we go
    So that problems are
    discovered and fixed up
    front

    View Slide

  16. OPTIMIZE
    FOR
    CHANGE
    Build small, independently
    releasable components
    So that they are easier and faster
    to change, test, and release
    SMALL
    PIECES

    View Slide

  17. Define all
    your stuff
    AS CODE

    View Slide

  18. Define infrastructure as code
    Infrastructure configuration is:
    § Reusable
    § Consistent
    § Visible
    § Versioned

    View Slide

  19. Configuration drift
    Servers start
    out identical
    But changes
    accumulate
    over time

    View Slide

  20. Synchronize continuously

    View Slide

  21. INFRASTRUCTURE STACK

    View Slide

  22. Some platforms:
    • AWS
    • Azure
    • Google Cloud Platform
    • VMWare
    • Digital Ocean
    • Bare metal clouds
    Infrastructure Platform
    A dynamic pool of
    compute, storage,
    and networking
    resources

    View Slide

  23. Infrastructure stack
    A collection of infrastructure
    resources provisioned and
    updated as a unit

    View Slide

  24. Stack management tool
    Stack instances
    Platform API
    Stack definition
    Some tools:
    • Terraform
    • AWS CloudFormation
    • Azure Resource Manager
    • Google Deployment Manager
    • Ansible Cloud Modules

    View Slide

  25. A stack often
    includes servers

    View Slide

  26. Server configuration tool
    Configuration
    tool
    Configuration
    definitions
    Server instance
    Some tools:
    • Ansible
    • Chef
    • Puppet
    • Saltstack

    View Slide

  27. MANAGING
    MULTIPLE
    ENVIRONMENTS

    View Slide

  28. MANY-HEADED STACK antipattern
    Test Staging Production
    our_env/
    └── test.tf
    └── staging.tf
    └── production.tf

    View Slide

  29. Changes have a wide blast radius
    Test Staging Production
    our_env/
    └── test.tf
    └── staging.tf
    └── production.tf
    !

    View Slide

  30. SINGLETON STACK antipattern
    our_env/
    └── test/
    └── servers.tf
    our_env/
    └── staging/
    └── servers.tf
    our_env/
    └── production/
    └── servers.tf
    Test
    Staging
    Production

    View Slide

  31. Code changes by copy/paste
    our_env/
    └── test/
    └── servers.tf
    our_env/
    └── staging/
    └── servers.tf
    our_env/
    └── production/
    └── servers.tf
    Test
    Staging
    Production
    !

    View Slide

  32. test instance
    staging instance
    production instance
    TEMPLATE STACK pattern stack
    source
    code

    View Slide

  33. id=test
    Instance parameter values
    id=staging
    id=production

    View Slide

  34. ! Blast radius is managed
    ! Environments are consistent
    ! Testing is more reliable
    " Adds moving parts
    # Requires versioning and
    parameterization mechanisms

    View Slide

  35. CONTINUOUSLY
    VALIDATE all
    work in progress
    as you go

    View Slide

  36. Automatically test every change before
    applying it

    View Slide

  37. Promote changes to environments using
    a pipeline
    BUILD
    LOCAL
    APPLY
    TO QA
    APPLY
    TO
    PROD
    Sandbox
    QA Production
    APPLY
    TO TEST
    Test

    View Slide

  38. Processes and
    controls are
    enforced by code
    Every change is logged
    and traceable, from
    commit to production
    Enable
    governance with
    pipelines
    Environment
    Definitions
    Test Code
    Compliance
    Specifications
    Pipeline
    Definitions

    View Slide

  39. Challenge: Feedback cycles
    (This stuff is slow. Very. Very.
    Slow)

    View Slide

  40. Solution: Break stacks apart
    into smaller pieces

    View Slide

  41. BUILD SMALL,
    independently
    releasable
    components

    View Slide

  42. A stack with servers
    Stack provisioning
    includes creating and
    configuring the servers

    View Slide

  43. Testing the stack is slow
    Provision the entire
    stack on the platform,
    with all elements
    Or update an
    environment that we
    keep running all the time
    Repeat for
    every stage

    View Slide

  44. Break out a server role
    Application
    server role
    Stack
    Server
    configurations
    Java
    Cookbook
    Tomcat
    Cookbook

    View Slide

  45. Stack
    Java
    Cookbook
    Tomcat
    Cookbook
    Appserver
    Role
    Server configuration tool
    provisions the server
    separately from the stack

    View Slide

  46. Test server configurations
    Test configuration
    elements separately
    Provision and test using
    virtual machines or
    containers
    Test locally or on
    build agents

    View Slide

  47. Extract separate pipeline stages
    for server configuration
    Test stack definition
    Test server configuration
    Test integrated system

    View Slide

  48. How do we scale?

    View Slide

  49. Monolithic stack

    View Slide

  50. Monolithic stack
    Wide blast radius, high coordination overhead
    !

    View Slide

  51. Divide infrastructure into multiple,
    independently changeable stacks

    View Slide

  52. Each stack has its own pipeline to deliver
    changes

    View Slide

  53. Draw boundaries to minimize changes
    that cross stacks

    View Slide

  54. CONCLUSION:
    Optimize for
    change in order to
    achieve reliability

    View Slide

  55. [email protected]
    Head of Cloud Engineering
    Twitter: @kief
    Book: http://oreil.ly/1JKIBVe
    Site: http://infrastructure-as-code.com

    View Slide