Upgrade to Pro — share decks privately, control downloads, hide ads and more …

DevOps for the Rubyist Soul at Steel City Ruby 2013

John Downey
August 17, 2013
Programming
2
330

DevOps for the Rubyist Soul at Steel City Ruby 2013

John Downey

August 17, 2013
Tweet

More Decks by John Downey

See All by John Downey
Cryptography Pitfalls at CactusCon 2019
jtdowney
0
140
Intro to Cybersecurity Workshop
jtdowney
0
110
Cryptography Pitfalls at BsidesMSP 2017
jtdowney
0
140
Cryptography Pitfalls at THOTCON 0x8
jtdowney
0
160
Cryptography Pitfalls at ConFoo Montreal 2017
jtdowney
1
310
Cryptography Pitfalls at BSidesPhilly 2016
jtdowney
0
120
Cryptography Pitfalls at LASCON 2016
jtdowney
0
180
Debugging TLS/SSL at DevOps Days Detroit 2016
jtdowney
1
200
Debugging TLS/SSL at DevOpsDays Boston
jtdowney
1
280

Other Decks in Programming

See All in Programming
検証も兼ねて個人開発でHonoとかと向き合った話
hanetsuki
1
1.3k
Milestoner
bkuhlmann
1
410
AWS CDKコントリビュートTIPS / aws-cdk-contribution-tips
gotok365
4
320
PHP8.3の機能を振り返る / Review of PHP 8.3 features
seike460
PRO
1
120
Snowflakeで眠ったデータを起こそう!
estie
0
130
大規模UIKitベースアプリへのTCAの段階的導入/gradual-adoption-of-tca-in-a-large-scale-uikit-based-app
takehilo
2
200
障害対応を起点としたもっといい開発と運用のサイクル作りのためにできること / Hatena Enginner Seminar #29
polamjag
0
320
FigmaとPHPで作る1ミリたりとも表示崩れしない最強の帳票印刷ソリューション
ttskch
43
19k
Azure OpenAI Serviceのプロンプトエンジニアリング入門
tomokusaba
3
860
Scalable Customer Journey Orchestration (CJO)
lewuathe
0
410
Netty Chicago Java User Group 2024-04-17
sullis
0
200
DMMプラットフォームがTiDB Cloudを採用した背景
pospome
9
4.2k

Featured

See All Featured
Designing for Performance
lara
602
67k
Designing on Purpose - Digital PM Summit 2013
jponch
111
6.5k
Documentation Writing (for coders)
carmenintech
61
4k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
danielanewman
222
21k
Visualization
eitanlees
137
14k
The Power of CSS Pseudo Elements
geoffreycrofte
61
5k
GraphQLの誤解/rethinking-graphql
sonatard
55
9.3k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
14
1.5k
We Have a Design System, Now What?
morganepeng
44
6.8k
Learning to Love Humans: Emotional Interface Design
aarron
267
39k
Creatively Recalculating Your Daily Design Routine
revolveconf
211
11k
Mobile First: as difficult as doing things right
swwweet
217
8.6k

Transcript

  1. DEVOPS FOR THE RUBYIST SOUL John Downey | @jtdowney

  2. None
  3. None

  4. http://www.flickr.com/photos/jackol/3291891191/ Highly Available

  5. None

  6. Automated Repeatable Verifiable

  7. None

  8. BRAINTREE PATH TO DEVOPS

  9. None

  10. http://www.flickr.com/photos/orcmid/3880056930/ Agile Process

  11. Pairing http://www.flickr.com/photos/damienpollet/5048830734/

  12. None

  13. http://www.flickr.com/photos/us-pacific-command/7072151539/ Guerrilla DevOps

  14. MY PATH TO DEVOPS

  15. I <3 LINUX

  16. None

  17. Blue team!

  18. You’re a DevOps engineer, Harry

  19. cap qa puppet:noop

  20. None

  21. http://www.flickr.com/photos/sp3ccylad/462995220/ Puppet

  22. console $ gem install puppet

  23. manifests/site.pp node "app01.qa" { package { "ruby": ensure => installed

    } $blah = "test" file { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  24. manifests/site.pp node "app01.qa" { package { "ruby": ensure => installed

    } $blah = "test" file { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  25. manifests/site.pp node "app01.qa" { package { "ruby": ensure => installed

    } $blah = "test" file { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  26. manifests/site.pp node "app01.qa" { package { "ruby": ensure => installed

    } $blah = "test" file { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  27. manifests/site.pp node "app01.qa" { package { "ruby": ensure => installed

    } $blah = "test" file { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  28. manifests/site.pp node "app01.qa" { package { "ruby": ensure => installed

    } $blah = "test" file { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  29. templates/foo/bar.conf.erb [test] name = <%= blah %>

  30. templates/foo/bar.conf.erb [test] name = <%= blah %>

  31. manifests/ruby.pp class ruby { package { "ruby": ensure => installed

    } }

  32. manifests/ruby.pp class ruby { package { "ruby": ensure => installed

    } }

  33. manifests/ruby.pp class ruby { package { "ruby": ensure => installed

    } }

  34. manifests/site.pp node "app1.qa" { include ruby $blah = "test" file

    { "/etc/foo/bar.conf": ensure => file, content => template("foo/bar.conf.erb"), owner => "root", group => "root", mode => "0644" } }

  35. http://www.flickr.com/photos/wwarby/4782904694/ Abstraction

  36. http://www.flickr.com/photos/chicagobart/3364948220/ Facter

  37. console $ gem install facter

  38. console $ facter architecture => x86_64 domain => local facterversion

    => 1.6.17 fqdn => apollo.local hardwareisa => i386 hardwaremodel => x86_64 hostname => apollo id => jtdowney is_virtual => false kernel => Darwin ...

  39. console $ facter architecture => x86_64 domain => local facterversion

    => 1.6.17 fqdn => apollo.local hardwareisa => i386 hardwaremodel => x86_64 hostname => apollo id => jtdowney is_virtual => false kernel => Darwin ...

  40. manifests/blah.pp class blah { case $operatingsystem { "Ubuntu": { ...

    } "CentOS" { ... } } }

  41. http://www.flickr.com/photos/evelynishere/2680853104/ Modules

  42. my_module ├── files │ └── somefile ├── manifests │ ├──

    files.pp │ ├── init.pp │ ├── package.pp │ └── service.pp └── templates └── sometemplate.erb

  43. my_module ├── files │ └── somefile ├── manifests │ ├──

    files.pp │ ├── init.pp │ ├── package.pp │ └── service.pp └── templates └── sometemplate.erb

  44. my_module ├── files │ └── somefile ├── manifests │ ├──

    files.pp │ ├── init.pp │ ├── package.pp │ └── service.pp └── templates └── sometemplate.erb

  45. my_module ├── files │ └── somefile ├── manifests │ ├──

    files.pp │ ├── init.pp │ ├── package.pp │ └── service.pp └── templates └── sometemplate.erb

  46. my_module ├── files │ └── somefile ├── manifests │ ├──

    files.pp │ ├── init.pp │ ├── package.pp │ └── service.pp └── templates └── sometemplate.erb

  47. my_module ├── files │ └── somefile ├── manifests │ ├──

    files.pp │ ├── init.pp │ ├── package.pp │ └── service.pp └── templates └── sometemplate.erb

  48. manifests/site.pp node "app1.qa" { include my_module include ruby }

  49. Puppetforge

  50. http://www.flickr.com/photos/baggis/3576064503/ Hiera

  51. console $ gem install hiera

  52. Puppet does not manage truth, puppet maps truth to complexity

    http://www.flickr.com/photos/brionybarr/4310798716/

  53. modules/nagios/manifests/init.pp class nagios::init { $servers = ["proxy1.qa", "proxy2.qa"] file {

    "/etc/nagios3/host-proxy.conf": ensure => file, content => template("nagios/proxy.erb"), owner => "root", group => "root", mode => "0644" } }

  54. modules/nagios/manifests/init.pp class nagios::init { $servers = ["proxy1.qa", "proxy2.qa"] file {

    "/etc/nagios3/host-proxy.conf": ensure => file, content => template("nagios/proxy.erb"), owner => "root", group => "root", mode => "0644" } }

  55. data ├── common.yaml ├── domains │ ├── chi.braintreepayments.com │ │

    ├── db.yaml │ │ ├── db01.yaml │ │ ├── jenkins.yaml │ │ ├── xen01.yaml │ │ ├── xen02.yaml │ │ ├── xen03.yaml

  56. data ├── common.yaml ├── domains │ ├── chi.braintreepayments.com │ │

    ├── db.yaml │ │ ├── db01.yaml │ │ ├── jenkins.yaml │ │ ├── xen01.yaml │ │ ├── xen02.yaml │ │ ├── xen03.yaml

  57. data ├── common.yaml ├── domains │ ├── chi.braintreepayments.com │ │

    ├── db.yaml │ │ ├── db01.yaml │ │ ├── jenkins.yaml │ │ ├── xen01.yaml │ │ ├── xen02.yaml │ │ ├── xen03.yaml

  58. data ├── common.yaml ├── domains │ ├── chi.braintreepayments.com │ │

    ├── db.yaml │ │ ├── db01.yaml │ │ ├── jenkins.yaml │ │ ├── xen01.yaml │ │ ├── xen02.yaml │ │ ├── xen03.yaml

  59. data/domains/chi.braintreepayments.com/xen02.yaml xen::guests: "app02.chi": cpus: 12 memory_mb: 30720 management_vlan_mac: "FF:FF:FF:FF:FF:FF" management_vlan_ip:

    "%{app02_mgmt_ip}" application_networks: - { vlan: "%{gateway_vlan}", mac: ... distribution: "debian-squeeze-amd64-10g" "mailman01.chi": cpus: 2

  60. data/domains/chi.braintreegateway.com/xen02.yaml xen::guests: "app02.chi": cpus: 12 memory_mb: 30720 management_vlan_mac: "FF:FF:FF:FF:FF:FF" management_vlan_ip:

    "%{app02_mgmt_ip}" application_networks: - { vlan: "%{gateway_vlan}", mac: ... distribution: "debian-squeeze-amd64-10g" "mailman01.chi": cpus: 2

  61. http://www.flickr.com/photos/baggis/3576064503/ Puppet Model

  62. None

  63. http://www.flickr.com/photos/fortwainwright/7217500612/ Puppet Master

  64. http://www.flickr.com/photos/usairforce/5977871446/ Supply drop

  65. console $ gem install supply_drop

  66. pitluga/supply_drop

  67. console $ mkdir infrastructure $ cd infrastructure $ gem install

    supply_drop $ capify . $ vim Capfile

  68. console $ mkdir infrastructure $ cd infrastructure $ gem install

    supply_drop $ capify . $ vim Capfile

  69. console $ mkdir infrastructure $ cd infrastructure $ gem install

    supply_drop $ capify . $ vim Capfile

  70. Capfile require "supply_drop" def datacenter_tasks(datacenter, servers) task datacenter do role

    :server, *servers end servers.each do |server| task server do role :server, server end end end

  71. Capfile require "supply_drop" def datacenter_tasks(datacenter, servers) task datacenter do role

    :server, *servers end servers.each do |server| task server do role :server, server end end end

  72. Capfile require "supply_drop" def datacenter_tasks(datacenter, servers) task datacenter do role

    :server, *servers end servers.each do |server| task server do role :server, server end end end

  73. Capfile require "supply_drop" def datacenter_tasks(datacenter, servers) task datacenter do role

    :server, *servers end servers.each do |server| task server do role :server, server end end end

  74. Capfile ... datacenter_tasks :qa, %w[ app01.qa db.qa ] datacenter_tasks :production,

    %w[ app01.prod db.prod ]

  75. puppet.pp node "app01.qa" { package { "ruby": ensure => installed

    } }

  76. puppet.pp node "app01.qa" { package { "ruby": ensure => installed

    } }

  77. console $ cap app01.qa puppet:noop notice: /Stage[main]/Package[ruby]/ensure: current_value absent, should

    be present (noop) $ cap app01.qa puppet:apply $ cap qa puppet:noop $ git add -Av $ git commit -m "install ruby" $ git push

  78. console $ cap app01.qa puppet:noop notice: /Stage[main]/Package[ruby]/ensure: current_value absent, should

    be present (noop) $ cap app01.qa puppet:apply $ cap qa puppet:noop $ git add -Av $ git commit -m "install ruby" $ git push Always read the diff!!

  79. console $ cap app01.qa puppet:noop notice: /Stage[main]/Package[ruby]/ensure: current_value absent, should

    be present (noop) $ cap app01.qa puppet:apply $ cap qa puppet:noop $ git add -Av $ git commit -m "install ruby" $ git push

  80. console $ cap app01.qa puppet:noop notice: /Stage[main]/Package[ruby]/ensure: current_value absent, should

    be present (noop) $ cap app01.qa puppet:apply $ cap qa puppet:noop $ git add -Av $ git commit -m "install ruby" $ git push

  81. console $ cap app01.qa puppet:noop notice: /Stage[main]/Package[ruby]/ensure: current_value absent, should

    be present (noop) $ cap app01.qa puppet:apply $ cap qa puppet:noop $ git add -Av $ git commit -m "install ruby" $ git push

  82. console $ cap db01.qa puppet:noop $ cap app{01..12}.qa puppet:noop $

    cap qa puppet:noop $ cap qa invoke COMMAND="ls"

  83. console $ git branch * master # maps to qa

    production # maps to production staging # maps to staging

  84. console $ git checkout staging $ git merge master $

    cap staging puppet:noop $ cap staging puppet:apply $ git push

  85. console $ git checkout staging $ git merge master $

    cap staging puppet:noop $ cap staging puppet:apply $ git push

  86. console $ git checkout staging $ git merge master $

    cap staging puppet:noop $ cap staging puppet:apply $ git push

  87. console $ git checkout staging $ git merge master $

    cap staging puppet:noop $ cap staging puppet:apply $ git push
  88. None

  89. http://www.flickr.com/photos/michelleishere/4226094476/

  90. Production Staging QA

  91. Production Staging QA

  92. None

  93. LESSONS LEARNED • Stick to the puppet style guide •

    Use modules • Know where the truth is • Turn on puppet backup file bucket • Merge regularly

  94. PUPPET STYLE GUIDE • http://docs.puppetlabs.com/guides/style_guide.html • Idiomatic puppet • Cleaner

    and more maintainable

  95. USE MODULES • Composeable • Generic components • apache, elasticsearch,

    postgresql, etc • Check puppetforge first • Unique services • What makes your business run

  96. TRUTH • Use Hiera to manage truth • Don’t let

    it get scattered • Refactor it when you spot it

  97. PUPPET BACKUP • Keep every file version • Great if

    you screw up • Sucks for large files • Turn off per-file

  98. MERGE REGULARLY • Same reason we deploy often • Don’t

    let changes linger
  99. None

  100. console $ gem install vagrant

  101. console $ gem install vagrant

  102. http://www.vagrantup.com/

  103. console $ vagrant init precise64 $ vagrant up $ vagrant

    ssh

  104. Vagrantfile Vagrant::Config.run do |config| config.vm.box = "precise64" config.vm.define :web do

    |web_config| web_config.vm.box = "web" web_config.vm.forward_port 80, 8080 end config.vm.define :db do |db_config| db_config.vm.box = "db" db_config.vm.forward_port 5432, 5432 end end

  105. Vagrantfile Vagrant::Config.run do |config| config.vm.box = "precise64" config.vm.define :web do

    |web_config| web_config.vm.box = "web" web_config.vm.forward_port 80, 8080 end config.vm.define :db do |db_config| db_config.vm.box = "db" db_config.vm.forward_port 5432, 5432 end end

  106. Vagrantfile Vagrant::Config.run do |config| config.vm.box = "precise64" config.vm.define :web do

    |web_config| web_config.vm.box = "web" web_config.vm.forward_port 80, 8080 end config.vm.define :db do |db_config| db_config.vm.box = "db" db_config.vm.forward_port 5432, 5432 end end

  107. Vagrantfile config.vm.provision :puppet do |puppet| puppet.manifests_path = "manifests" puppet.manifest_file =

    "puppet.pp" end

  108. http://www.flickr.com/photos/nickames/5307403412/ Rapid prototyping

  109. http://www.flickr.com/photos/jrhode/4632887921/ Dev box

  110. DEVOPS HUMOR

  111. DEVOPS REACTIONS Visiting the guy that wrote the build scripts

    http://devopsreactions.tumblr.com

  112. @DEVOPS_BORAT

  113. @NeckbeardHacker

  114. John Downey | @jtdowney