Upgrade to Pro — share decks privately, control downloads, hide ads and more …

DevOps for the Rubyist Soul at RailsConf 2013

John Downey
May 01, 2013
Programming
6
1k

DevOps for the Rubyist Soul at RailsConf 2013

Video available at http://confreaks.com/videos/2479-railsconf2013-devops-for-the-rubyist-soul

John Downey

May 01, 2013
Tweet

More Decks by John Downey

See All by John Downey
Cryptography Pitfalls at CactusCon 2019
jtdowney
0
150
Intro to Cybersecurity Workshop
jtdowney
0
120
Cryptography Pitfalls at BsidesMSP 2017
jtdowney
0
160
Cryptography Pitfalls at THOTCON 0x8
jtdowney
0
160
Cryptography Pitfalls at ConFoo Montreal 2017
jtdowney
1
340
Cryptography Pitfalls at BSidesPhilly 2016
jtdowney
0
140
Cryptography Pitfalls at LASCON 2016
jtdowney
0
190
Debugging TLS/SSL at DevOps Days Detroit 2016
jtdowney
1
210
Debugging TLS/SSL at DevOpsDays Boston
jtdowney
1
300

Other Decks in Programming

See All in Programming
役立つログに取り組もう
irof
28
9.5k
CSC509 Lecture 09
javiergs
PRO
0
140
ECS Service Connectのこれまでのアップデートと今後のRoadmapを見てみる
tkikuc
2
240
受け取る人から提供する人になるということ
little_rubyist
0
220
Duckdb-Wasmでローカルダッシュボードを作ってみた
nkforwork
0
110
macOS でできる リアルタイム動画像処理
biacco42
9
2.3k
外部システム連携先が10を超えるシステムでのアーキテクチャ設計・実装事例
kiwasaki
1
290
NSOutlineView何もわからん:( 前編 / I Don't Understand About NSOutlineView :( Pt. 1
usagimaru
0
310
광고 소재 심사 과정에 AI를 도입하여 광고 서비스 생산성 향상시키기
kakao
PRO
0
170
Importmapを使ったJavaScriptの 読み込みとブラウザアドオンの影響
swamp09
4
1.4k
WebフロントエンドにおけるGraphQL(あるいはバックエンドのAPI)との向き合い方 / #241106_plk_frontend
izumin5210
4
1.3k
A Journey of Contribution and Collaboration in Open Source
ivargrimstad
0
700

Featured

See All Featured
Speed Design
sergeychernyshev
24
610
Docker and Python
trallard
40
3.1k
Principles of Awesome APIs and How to Build Them.
keavy
126
17k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
131
33k
Mobile First: as difficult as doing things right
swwweet
222
8.9k
Thoughts on Productivity
jonyablonski
67
4.3k
A better future with KSS
kneath
238
17k
Making Projects Easy
brettharned
115
5.9k
How GitHub (no longer) Works
holman
310
140k
How STYLIGHT went responsive
nonsquared
95
5.2k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
93
16k
GraphQLの誤解/rethinking-graphql
sonatard
67
10k

Transcript

  1. DEVOPS FOR THE RUBYIST SOUL John Downey | @jtdowney

  2. The authenticity of host 'apollo.local (10.0.2.56)' can't be established. RSA

    key fingerprint is 04:63:c1:ba:c7:31:04:12:14:ff:b6:c4:32:cf:44:ec. Are you sure you want to continue connecting (yes/no)?

  3. John Downey | @jtdowney

  4. None

  5. http://www.flickr.com/photos/jackol/3291891191/ Highly Available

  6. None

  7. Automated Repeatable Verifiable

  8. None

  9. BRAINTREE PATH TO DEVOPS

  10. None

  11. http://www.flickr.com/photos/orcmid/3880056930/ Agile Process

  12. Pairing http://www.flickr.com/photos/damienpollet/5048830734/

  13. None

  14. http://www.flickr.com/photos/us-pacific-command/7072151539/ Guerrilla DevOps

  15. MY PATH TO DEVOPS

  16. I <3 LINUX

  17. None

  18. Blue team!

  19. You’re a DevOps engineer, Harry

  20. cap qa puppet:noop

  21. http://www.flickr.com/photos/sp3ccylad/462995220/ Puppet

  22. console $ gem install puppet

  23. http://www.flickr.com/photos/fortwainwright/7217500612/ Puppet Master

  24. manifests/site.pp node "app01.qa" { package { "ruby": ensure => installed

    } $blah = "test" file { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  25. manifests/site.pp node "app01.qa" { package { "ruby": ensure => installed

    } $blah = "test" file { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  26. manifests/site.pp node "app01.qa" { package { "ruby": ensure => installed

    } $blah = "test" file { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  27. manifests/site.pp node "app01.qa" { package { "ruby": ensure => installed

    } $blah = "test" file { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  28. manifests/site.pp node "app01.qa" { package { "ruby": ensure => installed

    } $blah = "test" file { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  29. manifests/site.pp node "app01.qa" { package { "ruby": ensure => installed

    } $blah = "test" file { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  30. templates/foo/bar.conf.erb [test] blah = <%= blah %> <%- 1.upto(6) do

    |i| -%> foo<%= i %> = <%= i %> <%- end -%>

  31. templates/foo/bar.conf.erb [test] blah = <%= blah %> <%- 1.upto(6) do

    |i| -%> foo<%= i %> = <%= i %> <%- end -%>

  32. manifests/ruby.pp class ruby { package { "ruby": ensure => installed

    } }

  33. manifests/ruby.pp class ruby { package { "ruby": ensure => installed

    } }

  34. manifests/ruby.pp class ruby { package { "ruby": ensure => installed

    } }

  35. manifests/site.pp node "app1.qa" { include ruby $blah = "test" file

    { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  36. http://www.flickr.com/photos/wwarby/4782904694/ Abstraction

  37. http://www.flickr.com/photos/chicagobart/3364948220/ Facter

  38. console $ gem install facter

  39. console $ facter architecture => x86_64 domain => local facterversion

    => 1.6.17 fqdn => apollo.local hardwareisa => i386 hardwaremodel => x86_64 hostname => apollo id => jtdowney is_virtual => false kernel => Darwin ...

  40. console $ facter architecture => x86_64 domain => local facterversion

    => 1.6.17 fqdn => apollo.local hardwareisa => i386 hardwaremodel => x86_64 hostname => apollo id => jtdowney is_virtual => false kernel => Darwin ...

  41. manifests/blah.pp class blah { case $operatingsystem { "Ubuntu": { ...

    } "CentOS" { ... } } }

  42. http://www.flickr.com/photos/evelynishere/2680853104/ Modules

  43. my_module ├── files │ └── somefile ├── manifests │ ├──

    files.pp │ ├── init.pp │ ├── package.pp │ └── service.pp └── templates └── sometemplate.erb

  44. my_module ├── files │ └── somefile ├── manifests │ ├──

    files.pp │ ├── init.pp │ ├── package.pp │ └── service.pp └── templates └── sometemplate.erb

  45. my_module ├── files │ └── somefile ├── manifests │ ├──

    files.pp │ ├── init.pp │ ├── package.pp │ └── service.pp └── templates └── sometemplate.erb

  46. my_module ├── files │ └── somefile ├── manifests │ ├──

    files.pp │ ├── init.pp │ ├── package.pp │ └── service.pp └── templates └── sometemplate.erb

  47. my_module ├── files │ └── somefile ├── manifests │ ├──

    files.pp │ ├── init.pp │ ├── package.pp │ └── service.pp └── templates └── sometemplate.erb

  48. my_module ├── files │ └── somefile ├── manifests │ ├──

    files.pp │ ├── init.pp │ ├── package.pp │ └── service.pp └── templates └── sometemplate.erb

  49. manifests/site.pp node "app1.qa" { include my_module include ruby }

  50. Puppetforge

  51. http://www.flickr.com/photos/baggis/3576064503/ Hiera

  52. console $ gem install hiera

  53. data ├── common.yaml ├── domains │ ├── chi.braintreepayments.com │ │

    ├── db.yaml │ │ ├── db01.yaml │ │ ├── jenkins.yaml │ │ ├── xen01.yaml │ │ ├── xen02.yaml │ │ ├── xen03.yaml

  54. data ├── common.yaml ├── domains │ ├── chi.braintreepayments.com │ │

    ├── db.yaml │ │ ├── db01.yaml │ │ ├── jenkins.yaml │ │ ├── xen01.yaml │ │ ├── xen02.yaml │ │ ├── xen03.yaml

  55. data ├── common.yaml ├── domains │ ├── chi.braintreepayments.com │ │

    ├── db.yaml │ │ ├── db01.yaml │ │ ├── jenkins.yaml │ │ ├── xen01.yaml │ │ ├── xen02.yaml │ │ ├── xen03.yaml

  56. data ├── common.yaml ├── domains │ ├── chi.braintreepayments.com │ │

    ├── db.yaml │ │ ├── db01.yaml │ │ ├── jenkins.yaml │ │ ├── xen01.yaml │ │ ├── xen02.yaml │ │ ├── xen03.yaml

  57. data/domains/chi.braintreepayments.com/xen02.yaml xen::guests: "app02.chi": cpus: 12 memory_mb: 30720 management_vlan_mac: "FF:FF:FF:FF:FF:FF" management_vlan_ip:

    "%{app02_mgmt_ip}" application_networks: - { vlan: "%{gateway_vlan}", mac: ... distribution: "debian-squeeze-amd64-10g" "mailman01.chi": cpus: 2

  58. data/domains/chi.braintreegateway.com/xen02.yaml xen::guests: "app02.chi": cpus: 12 memory_mb: 30720 management_vlan_mac: "FF:FF:FF:FF:FF:FF" management_vlan_ip:

    "%{app02_mgmt_ip}" application_networks: - { vlan: "%{gateway_vlan}", mac: ... distribution: "debian-squeeze-amd64-10g" "mailman01.chi": cpus: 2

  59. Puppet does not manage truth, puppet maps truth to complexity

    http://www.flickr.com/photos/brionybarr/4310798716/
  60. None

  61. http://www.flickr.com/photos/baggis/3576064503/ Puppet Model

  62. http://www.flickr.com/photos/usairforce/5977871446/ Supply drop

  63. console $ gem install supply_drop

  64. pitluga/supply_drop

  65. console $ mkdir infrastructure $ cd infrastructure $ gem install

    supply_drop $ capify . $ vim Capfile

  66. console $ mkdir infrastructure $ cd infrastructure $ gem install

    supply_drop $ capify . $ vim Capfile

  67. console $ mkdir infrastructure $ cd infrastructure $ gem install

    supply_drop $ capify . $ vim Capfile

  68. Capfile require "supply_drop" def datacenter_tasks(datacenter, servers) task datacenter do role

    :server, *servers end servers.each do |server| task server do role :server, server end end end

  69. Capfile require "supply_drop" def datacenter_tasks(datacenter, servers) task datacenter do role

    :server, *servers end servers.each do |server| task server do role :server, server end end end

  70. Capfile require "supply_drop" def datacenter_tasks(datacenter, servers) task datacenter do role

    :server, *servers end servers.each do |server| task server do role :server, server end end end

  71. Capfile require "supply_drop" def datacenter_tasks(datacenter, servers) task datacenter do role

    :server, *servers end servers.each do |server| task server do role :server, server end end end

  72. Capfile ... datacenter_tasks :qa, %w[ app01.qa db.qa ] datacenter_tasks :production,

    %w[ app01.prod db.prod ]

  73. puppet.pp node "app01.qa" { package { "ruby": ensure => installed

    } }

  74. puppet.pp node "app01.qa" { package { "ruby": ensure => installed

    } }

  75. console $ cap app01.qa puppet:noop notice: /Stage[main]/Package[ruby]/ensure: current_value absent, should

    be present (noop) $ cap app01.qa puppet:apply $ cap qa puppet:noop $ git add -Av $ git commit -m "install ruby" $ git push

  76. console $ cap app01.qa puppet:noop notice: /Stage[main]/Package[ruby]/ensure: current_value absent, should

    be present (noop) $ cap app01.qa puppet:apply $ cap qa puppet:noop $ git add -Av $ git commit -m "install ruby" $ git push Always read the diff!!

  77. console $ cap app01.qa puppet:noop notice: /Stage[main]/Package[ruby]/ensure: current_value absent, should

    be present (noop) $ cap app01.qa puppet:apply $ cap qa puppet:noop $ git add -Av $ git commit -m "install ruby" $ git push

  78. console $ cap app01.qa puppet:noop notice: /Stage[main]/Package[ruby]/ensure: current_value absent, should

    be present (noop) $ cap app01.qa puppet:apply $ cap qa puppet:noop $ git add -Av $ git commit -m "install ruby" $ git push

  79. console $ cap app01.qa puppet:noop notice: /Stage[main]/Package[ruby]/ensure: current_value absent, should

    be present (noop) $ cap app01.qa puppet:apply $ cap qa puppet:noop $ git add -Av $ git commit -m "install ruby" $ git push

  80. console $ cap db01.qa puppet:noop $ cap app{01..12}.qa puppet:noop $

    cap qa puppet:noop $ cap qa invoke COMMAND="ls"

  81. console $ git branch * master # maps to qa

    production # maps to production staging # maps to staging

  82. console $ git checkout staging $ git merge master $

    cap staging puppet:noop $ cap staging puppet:apply $ git push

  83. console $ git checkout staging $ git merge master $

    cap staging puppet:noop $ cap staging puppet:apply $ git push

  84. console $ git checkout staging $ git merge master $

    cap staging puppet:noop $ cap staging puppet:apply $ git push

  85. console $ git checkout staging $ git merge master $

    cap staging puppet:noop $ cap staging puppet:apply $ git push
  86. None

  87. http://www.flickr.com/photos/michelleishere/4226094476/

  88. Production Staging QA

  89. Production Staging QA

  90. None

  91. LESSONS LEARNED • Stick to the puppet style guide •

    Use modules • Turn on puppet backup file bucket • Merge regularly

  92. PUPPET STYLE GUIDE • http://docs.puppetlabs.com/guides/style_guide.html • Idiomatic puppet • Cleaner

    and more maintainable

  93. USE MODULES • Composeable • Generic components • apache, elasticsearch,

    postgresql, etc • Check puppetforge first • Unique services • What makes your business run

  94. PUPPET BACKUP • Keep every file version • Great if

    you screw up • Sucks for large files • Turn off per-file

  95. MERGE REGULARLY • Same reason we deploy often • Don’t

    let changes linger
  96. None

  97. console $ gem install vagrant

  98. console $ gem install vagrant

  99. http://www.vagrantup.com/

  100. console $ vagrant init precise64 $ vagrant up $ vagrant

    ssh

  101. Vagrantfile Vagrant::Config.run do |config| config.vm.box = "precise64" config.vm.define :web do

    |web_config| web_config.vm.box = "web" web_config.vm.forward_port 80, 8080 end config.vm.define :db do |db_config| db_config.vm.box = "db" db_config.vm.forward_port 5432, 5432 end end

  102. Vagrantfile Vagrant::Config.run do |config| config.vm.box = "precise64" config.vm.define :web do

    |web_config| web_config.vm.box = "web" web_config.vm.forward_port 80, 8080 end config.vm.define :db do |db_config| db_config.vm.box = "db" db_config.vm.forward_port 5432, 5432 end end

  103. Vagrantfile Vagrant::Config.run do |config| config.vm.box = "precise64" config.vm.define :web do

    |web_config| web_config.vm.box = "web" web_config.vm.forward_port 80, 8080 end config.vm.define :db do |db_config| db_config.vm.box = "db" db_config.vm.forward_port 5432, 5432 end end

  104. Vagrantfile config.vm.provision :puppet do |puppet| puppet.manifests_path = "manifests" puppet.manifest_file =

    "puppet.pp" end

  105. http://www.flickr.com/photos/nickames/5307403412/ Rapid prototyping

  106. http://www.flickr.com/photos/jrhode/4632887921/ Dev box

  107. DEVOPS HUMOR

  108. DEVOPS REACTIONS Visiting the guy that wrote the build scripts

    http://devopsreactions.tumblr.com

  109. @DEVOPS_BORAT

  110. @NeckbeardHacker

  111. John Downey | @jtdowney