Ansible Automation Best Practices From Startups To Enterprises

Transcript

1. @KeithResar

2. @KeithResar Keith [email protected] @KeithResar

3. #!/bin/bash

4. #!/bin/bash CM

5. a simple automation language that can perfectly describe an IT

   application infrastructure in Ansible Playbooks. an automation engine that runs Ansible Playbooks. Ansible Tower is an enterprise framework for controlling, securing and managing your Ansible automation with a UI and restful API.

6. • 22,000+ stars & 7,100+ forks on GitHub • 2600+

   GitHub Contributors • Over 1000 modules shipped with Ansible • New contributors added every day • 1400+ users on IRC channel • Top 10 open source projects in 2014 • World-wide meetups taking monthly • Ansible Galaxy: over 7,000 Roles • 250,000+ downloads a month • AnsibleFests in NYC, SF, London

7. Human readable automation No special coding skills needed Tasks executed

   in order Get productive quickly App deployment Configuration management Workflow orchestration Orchestrate the app lifecycle Agentless architecture Uses OpenSSH & WinRM No agents to exploit or update More efficient & more secure @KeithResar

8. @KeithResar

9. @KeithResar From: The Boss To: Sweater Subject: Rebuild Web02! Sweater,

   Get Apache installed straight away on web02. Corp-web is down. Use the same config as web01. - The Boss.

10. @KeithResar Sweater, INSTALL APACHE on WEB02

11. @KeithResar > ssh web02 Sweater, INSTALL APACHE on WEB02

12. @KeithResar > ssh web02 web02> yum -y install httpd Sweater,

    INSTALL APACHE on WEB02

13. @KeithResar > ssh web02 web02> yum -y install httpd web02>

    sudo yum -y install httpd Sweater, INSTALL APACHE on WEB02

14. @KeithResar > ssh web02 web02> yum -y install httpd web02>

    sudo yum -y install httpd web02> # Copy configs from web01 Sweater, INSTALL APACHE on WEB02

15. @KeithResar > ssh web02 web02> yum -y install httpd web02>

    sudo yum -y install httpd web02> # Copy configs from web01 web02> # DONE? Sweater, INSTALL APACHE on WEB02

16. @KeithResar Ansible, INSTALL APACHE on WEB02 how what who

17. @KeithResar

18. @KeithResar

19. @KeithResar what

20. @KeithResar how

21. @KeithResar [web] webserver1.example.com webserver2.example.com [db] dbserver1.example.com who

22. @KeithResar who

23. @KeithResar

24. @KeithResar

25. @KeithResar --- - name: install and start apache hosts: all

    vars: http_port: 80 max_clients: 200 remote_user: root tasks: - name: install httpd yum: pkg=httpd state=latest - name: write the apache config file template: src=/srv/httpd.j2 dest=/etc/httpd.conf - name: start httpd service: name=httpd state=running

26. @KeithResar --- - name: install and start apache hosts: all

    vars: http_port: 80 max_clients: 200 remote_user: root tasks: - name: install httpd yum: pkg=httpd state=latest - name: write the apache config file template: src=/srv/httpd.j2 dest=/etc/httpd.conf - name: start httpd service: name=httpd state=running

27. @KeithResar --- - name: install and start apache hosts: all

    vars: http_port: 80 max_clients: 200 remote_user: root tasks: - name: install httpd yum: pkg=httpd state=latest - name: write the apache config file template: src=/srv/httpd.j2 dest=/etc/httpd.conf - name: start httpd service: name=httpd state=running

28. @KeithResar --- - name: install and start apache hosts: all

    vars: http_port: 80 max_clients: 200 remote_user: root tasks: - name: install httpd yum: pkg=httpd state=latest - name: write the apache config file template: src=/srv/httpd.j2 dest=/etc/httpd.conf - name: start httpd service: name=httpd state=running

29. @KeithResar --- - name: install and start apache hosts: all

    vars: http_port: 80 max_clients: 200 remote_user: root tasks: - name: install httpd yum: pkg=httpd state=latest - name: write the apache config file template: src=/srv/httpd.j2 dest=/etc/httpd.conf - name: start httpd service: name=httpd state=running

30. @KeithResar --- - name: install and start apache hosts: all

    vars: http_port: 80 max_clients: 200 remote_user: root tasks: - name: install httpd yum: pkg=httpd state=latest - name: write the apache config file template: src=/srv/httpd.j2 dest=/etc/httpd.conf - name: start httpd service: name=httpd state=running

31. @KeithResar --- - name: install and start apache hosts: all

    vars: http_port: 80 max_clients: 200 remote_user: root tasks: - name: install httpd yum: pkg=httpd state=latest - name: write the apache config file template: src=/srv/httpd.j2 dest=/etc/httpd.conf - name: start httpd service: name=httpd state=running

32. @KeithResar > ansible -m setup > ansible -m ping >

    ansible -m command -a ‘rm -rf /var/tmp/session’ > ansible -m copy -a ‘src=foo dest=/foo/bar’

33. @KeithResar

34. @KeithResar

35. • • •

36. @KeithResar roles/ common/ # This hierarchy represents a "role" tasks/

    # main.yml # <-- tasks file can include smaller files handlers/ # main.yml # <-- handlers file templates/ # <-- files for use with template module httpd.conf.j2 # <-- templates end in .j2 files/ # bar.txt # <-- files for use with the copy module foo.sh # <-- script files used with script module vars/ # main.yml # <-- variables associated with this role

37. @KeithResar

38. @KeithResar CROSS PLATFORM – Linux, Windows, UNIX Agentless support for

    all major OS variants, physical, virtual, cloud and network HUMAN READABLE – YAML Perfectly describe and document every aspect of your application environment PERFECT DESCRIPTION OF APPLICATION Every change can be made by playbooks, ensuring everyone is on the same page VERSION CONTROLLED Playbooks are plain-text. Treat them like code in your existing version control. DYNAMIC INVENTORIES Capture all the servers 100% of the time, regardless of infrastructure, location, etc. ORCHESTRATION THAT PLAYS WELL WITH OTHERS Homogenize existing environments by leveraging current toolsets
39. None

40. @KeithResar @KeithResar