OkinawaOpendays2016_ネットワーク運用コード化への取り組み

ωοτϫʔΫӡ༻ίʔυԽ΁ͷ
औΓ૊Έ
αΠόʔΤʔδΣϯτ
ΞυςΫຊ෦
ࢁຊ ޸໌
@Okinawa Open Days 2016

View Slide

Okinawa Open
Days 2016
1.͸͡Ίʹ  
2.ωοτϫʔΫࣗಈԽ(?)Λ΍ͬͯΈͨ࿩ 
3.ࣾ಺ʹAPI GatewayΛཱͯͨ࿩ 
4.ۤ࿑ͨ͠ϙΠϯτͱΘ͔ͬͨ͜ͱ 
5.͓ΘΓʹ
Agenda

View Slide

ࣗݾ঺հ
Okinawa Open
Days 2016
ΞυςΫຊ෦ͷΠϯϑϥΤϯδχΞɻ
ओʹΦϯϓϨͷωοτϫʔΫ(෺ཧ/Ծ૝)͓Αͼ
OpenStackͷҰ෦Λ୲౰ɻ
• SDN Japan 2016 ΞυςΫʹඞཁͳSDN
• IT PRO EXPOʮωοτϫʔΫΛ؂ࢹ͢ΔZabbix
ͷ׆༻ࣄྫʯ
• Interop Tokyo 2015 / 2016 ͳͲ
https://speakerdeck.com/komeiy/
ϓϩϑΟʔϧ@komeinw

View Slide

αΠόʔΤʔδΣϯτ ΞυςΫຊ෦ͱ͸

View Slide

ΞυςΫຊ෦ͷઆ໌ͷલʹɾɾɾ
αΠόʔΤʔδΣϯτʹ͍ͭͯ
؆୯ʹઆ໌ͤͯ͞௖͖·͢ɹɹ

View Slide

αΠόʔΤʔδΣϯτʹ͍ͭͯ
1998೥ͷ૑ۀҎདྷɺΠϯλʔωοτΛ࣠ʹࣄۀΛల։͠
ݱࡏͰ͸୅දతͳαʔϏεͰ͋ΔʮAmebaʯΛ͸͡Ίɺ
εϚʔτϑΥϯ޲͚ʹଟ਺ͷίϛϡχςΟαʔϏε΍ήʔϜΛ
ఏڙ͍ͯ͠·͢ɻ
and
m
ore
!!

View Slide

αΠόʔΤʔδΣϯτͷࣄۀ಺༰

View Slide

ΞυςΫຊ෦ʹ͍ͭͯ
Πϯλʔωοτ޿ࠂʹ͓͍ͯɺ޿ࠂ഑৴ͷ࠷దԽ΍ϝσΟΞͷऩӹ࠷େԽͱ͍͏
؍఺͔ΒΞυςΫϊϩδʔͷॏཁ౓͕ߴ·͍ͬͯ·͢ɻ
αΠόʔΤʔδΣϯτͰ͸ΞυςΫϊϩδʔ෼໺ʹ͓͚Δ
͜ΕΒͷαʔϏεʹ͍֤ͭͯࢠձࣾΛ௨͡։ൃ͓ͯ͠Γ·͕ͨ͠ɺ
֤αʔϏεͷ։ൃ෦໳Λԣஅͯ͠૊৫Խ͢Δઐ໳෦ॺͱͯ͠
ΞυςΫຊ෦͕ઃཱ͞Ε·ͨ͠ɻ

View Slide

View Slide

αΠόʔΤʔδΣϯτͷΞυςΫϚοϓ

View Slide

αΠόʔΤʔδΣϯτͷΞυςΫ
ৄࡉ͸ʮ೔ຊҰ΍͍͞͠ΞυςΫڭࣨʯΛޚཡ͍ͩ͘͞ʂ
https://www.cyberagent.co.jp/ir/personal/adtech/adtech_01/

View Slide

͔͜͜Βຊ୊ʹೖΓ·͢ɾɾɾɻ

View Slide

Okinawa Open Days
2016
ࠓ೔͸ओʹΦϯϓϨ؀ڥͷ 
͓࿩Λ͠·͢

View Slide

ٻΊΒΕΔωοτϫʔΫͬͯʁ
Okinawa Open Days
2016
 
Not ख࡞ۀ but ࣗಈԽ

View Slide

Okinawa Open Days
2016
ࣗಈԽʁ 
 
ηϧϑαʔϏεԽʁ
ٻΊΒΕΔωοτϫʔΫͬͯʁ

View Slide

SDNͰղܾʁ
Okinawa Open Days
2016
ɹSDNͱ͸ɺίϯϐϡʔλωοτϫʔΫΛߏ੒͢Δ௨৴ػثΛ୯Ұͷιϑτ΢ΣΞʹΑͬͯूதతʹ
੍ޚ͠ɺωοτϫʔΫͷߏ଄΍ߏ੒ɺઃఆͳͲΛॊೈʹɺಈతʹมߋ͢Δ͜ͱΛՄೳͱ͢Δٕज़ͷ૯শɻ
ɹ·ͨɺͦͷΑ͏ͳٕज़ʹΑΓɺωοτϫʔΫͷ૷ஔͷ഑ஔ΍഑ઢͳͲͷ෺ཧతߏ੒ͱ͸͋Δఔ౓ಠཱ
ʹɺ໨తʹԠͯ͡ෳ਺ͷԾ૝తͳωοτϫʔΫΛߏங͢Δ͜ͱ΍ɺͦͷΑ͏ʹͯ͠ߏங͞Εͨωοτϫʔ
Ϋͷ͜ͱɻ͜Ε͸ʮωοτϫʔΫԾ૝Խʯͱ΋ݺ͹Εɺݫີʹ͸SDNͷԠ༻ͷҰͭͰ͋Γɺ·ͨɺ
SDNʹΑΒͣผͷٕज़ʹΑ࣮ͬͯݱ͢Δख๏΋͋ΔͨΊɺSDNͦͷ΋ͷͱ͸۠ผ͢Δඞཁ͕͋Δɻ
ग़ల: http://e-words.jp/w/SDN.html
ཁ͢Δʹɺ͍ΘΏΔίϯτϩʔϥʹ૬౰͢Δ΋ͷ͕ϓ
ϥΠϕʔτΫϥ΢υج൫ͷσʔλϕʔεͱ࿈ܞͯ͠ಈ
తʹωοτϫʔΫͷઃఆΛ࣮ߦ͢Ε͹OK

View Slide

ฐࣾͷωοτϫʔΫߏ੒
Okinawa Open Days
2016
• SDN ͳ؀ڥ͸͋Δɻ ৽ͨʹ࡞ͬͨҰ෦ͷ؀ڥͰ࠾༻
• ඞཁʹԠͯͦ͡ͷ࣌ʑͰ࠷దͳϋʔυ΢ΣΞΛબ୒͠࠾༻͍ͯ͠Δ
• ࠾༻͍ͯ͠Δϋʔυ΢ΣΞʹ͍ͭͯ͸ϚϧνϕϯμʔͰߏ੒
ͳΔ΂͘Φʔϓϯͳٕज़ͰSDNͳ
؀ڥͱͦ͏Ͱͳ͍؀ڥͷ྆ํΛέ
Ξ͢Δඞཁ͕͋Δ

View Slide

ҰൠతͳωοτϫʔΫΤϯδχΞͷ͓࢓ࣄ
• VLAN௥Ճ/มߋ
• ϧʔςΟϯά௥Ճ/มߋ
• ϩʔυόϥϯαʔઃఆ௥Ճ
• ACL௥Ճ
• τϥϑΟοΫ֬ೝ
• VPNϢʔβ௥Ճ/มߋ
Okinawa Open Days
2016
• ૿ڧͳͲͷߏ੒มߋ
• ৽ٕज़ͷݕূ
• τϥϒϧγϡʔτ
• ߏ੒؅ཧ
• ϕϯμʔίϯτϩʔϧ
etc…
ΤϯδχΞͱͯ͠͸ɺ
͜͜ʹ஫ྗ͍ͨ͠

View Slide

ωοτϫʔΫΤϯδχΞͷ೰Έ
Okinawa Open Days
2016
ʮACL௥Ճͯ͠΄͍͠Μ͚ͩͲɻࠓ೔ʯ
ʮVPNϢʔβͬͯࠓ୭͕ొ࿥͞Εͯ·͚ͨͬ͠ʁʯ
ʮτϥϑΟοΫ͍ͬͯ·Ͳͷ͘Β͍ग़ͯ·͢ʁʯ
໘౗ʹࢥͬͨΓޙճ͠ʹͨ͠ͱࢥ͍ͳ͕Β࡞ۀͨ͠
ܦݧ͸͋Γ·ͤΜ͔ʁʁ

View Slide

࢓૊ΈతʹΑ͘ͳ͍ͷͰɺ 
 
SDNͰ͸ͳ͍؀ڥͰ΋ 
 
ָͳӡ༻ʹ͍ͨ͠
ʢશ෦SDNͳ
ΒɾɾɾϘιʣ

View Slide

ͱ͍͏͜ͱͰɺ࡞ͬͯΈ·ͨ͠ɻ
Okinawa Open Days
2016

View Slide

ԿΛ࡞ͬͨʁͲΜͳޮՌʁ
• ެ։༻API Gateway
• AWS CLI ΍ gcloud Έ͍ͨͳίϚϯυϥΠϯͷఏڙ
• গਓ਺Ͱͷӡ༻ΛΧόʔ
• ৽نαʔϏεͷ্ཱͪ͛εϐʔυΛଛͳΘͳ͍࢓૊Έ
• ͭ·Βͳ͍࡞ۀ͸ۃྗ΍Γͨ͘ͳ͍
μϝɻ࡞ۀϛεɺϦϦʔε೔΁ͷӨڹɺΤϯδχΞͷϞνϕʔγϣϯ௿Լ
Okinawa Open Days
2016
͜ͷೋ͕ͭ͋Ε͹ࣗಈԽɾηϧϑαʔϏεԽ͸ଅਐͰ͖Δ

View Slide

Okinawa Open Days
2016
ϓϥΠϕʔτΫϥ΢υͷૢ࡞Πϝʔδ
• ֶशίετ͕௿͍ʢΞϓϦέʔγϣϯͷ։ൃऀ͕
ɹ֤੡඼ݻ༗ͷίϚϯυΛ֮͑Δඞཁ͕ͳ͍ʣ
• ؆୯ʹJOBʹ૊ΈࠐΜͩΓ͢Δ͜ͱ͕Մೳ
• ࢥཱ͍ͬͨͱ͖ʹ͙͢Πϯϑϥͷૢ࡞͕Ͱ͖Δ
• Ϛϧνϕϯμʔͳ؀ڥͰ΋Ϣʔβ͸ҙࣝ͠ͳ͍
͜Μͳײ͡ͰͷϧʔλɾεΠονɾϩʔ
υόϥϯαʔɺNeutronͷઃఆ͕Ͱ͖
Δɻ
Regionͷ֓೦΋͍࣋ͨͤͯ·͢

View Slide

Okinawa Open Days
2016
αʔϏεϝχϡʔ
• ৽نαʔϏε্ཱ͕͕ͪΔ͝ͱʹ૿͑Δ΋
ͷ΍ૢ࡞͢Δ΋ͷΛجຊʹߏ੒
• جװܥͷ࡞ۀ͸ಛఆͷϢʔβݖݶͷΈͰ͠
͔৮Εͳ͍Α͏ʹ੍ޚ
• αʔϏεϝχϡʔ͸ӈهҎ֎ʹ΋ෳ਺ଘࡏ
• DC಺ͷϩʔΧϧϨϙδτϦ͔Β഑෍

View Slide

ߏ੒Πϝʔδͱ࢖༻ٕज़
Okinawa Open Days
2016
• ݴޠ
Python
Shell Script
• ιϑτ΢ΣΞ
ɹ Flask
Nginx
Gunicorn
ͦͷଞ
API Server
ग़లɿhttps://dzone.com/articles/learn-python-overtakes-learn-java
"Learn Python" Overtakes "Learn Java" on Google Trends
ೝՄɾೝূ
REST API
REST API
REST API
SSH
command
ଞʹ͸ɾɾɾ

View Slide

@api.route('/pool//member', methods=['POST'])
def poolmemberpost(poolname):
if not request.json:
abort(400)
if 'name' not in request.json:
abort(400)
return b.memberpost(g.bigip_partition, poolname, request.json)
• apiΛϧʔςΟϯά͢Δ͚ͩͷ΋ͷ͸ͦͷ··ྲྀ͢ɻՃ޻͕ඞཁͳ΋ͷ
͸ɺదٓσʔλͷ append ΍ ਖ਼౰ੑνΣοΫΛ͍ͯ͠Δ
• api ඇରԠσόΠεͱ͸ɺ pexpect Λར༻
APIαʔόͷΠϝʔδ
• Python ͷ؆қ WEB ΞϓϦέʔγϣϯͰ͋Δ FLASK Λ࢖༻
Okinawa Open Days
2016

View Slide

APIαʔόͷΠϝʔδ
" API αʔόʹ͸֤ϝʔΧʔͷૢ࡞༻ͷεΫϦϓτ͕֨ೲ͞Ε͍ͯΔ
ྫʣneutron ͷ port list / port show / port update Λ·ͱ·ͨ΋ͷ
ɹɹL3 SW΁ͷΞΫηεϦετ౤ೖͱΞυϨενΣοΫΛ࣮ߦ͢Δ΋ͷ
" GitHub (ࣾ಺ Organization) ΁ެ։͠ɺisuue ΍ pull request ϕʔεͰϢʔ
β͔Βͷཁ๬ΛऔΓࠐΈ
" ݖݶ΋ FLASK ଆͰ؅ཧ͍ͯ͠ΔͨΊɺςφϯτͷ֓೦͕ͳ͍ઃఆઌʹ
ʹରͯ͠΋ݖݶΛ֬ೝ͠ద੾ͳૢ࡞͚ͩʹ੍ݶ͍ͯ͠Δ
" API Λެ։͢Δ͚ͩͩͱؾܰʹར༻ͯ͠΋Β͑ͳ͍ͨΊɺίϚϯυϥΠ
ϯπʔϧΛఏڙͯ͠རศੑͷ޲্ΛਤΔ
Okinawa Open Days
2016

View Slide

ͳͥ͜ͷΑ͏ͳߏ੒Λ
࠾༻ͨ͠ͷ͔
Okinawa Open Days
2016

View Slide

REST APIͷ࿩
Okinawa Open Days
2016
• Τϥʔॲཧָ͕
ɹɹͳͷͰɺώϡʔϚϯΤϥʔ͞Α͏ͳΒʹۙͮ͘
• ωοτϫʔΫΤϯδχΞҎ֎Ͱ΋ૢ࡞͠΍͍͢
ɹɹͳͷͰɺެ։͢Ε͹࢖ͬͯ͘Εͦ͏
• ౰વɺߏ੒؅ཧπʔϧͱ͔ͱ͸ҧ͏
• దࡐదॴͰ࢖͍·͠ΐ͏
ΞϓϦέʔγϣϯϓϩάϥϛϯάΠϯλϑΣʔε (APIɺӳ: Application Programming Interface) ͱ͸ɺιϑτ΢ΣΞί
ϯϙʔωϯτ͕ޓ͍ʹ΍ΓͱΓ͢Δͷʹ࢖༻͢ΔΠϯλϑΣʔεͷ࢓༷Ͱ͋Δɻ APIʹ͸ɺαϒϧʔνϯɺσʔλߏ଄ɺΦ
ϒδΣΫτΫϥεɺม਺ͳͲͷ࢓ؚ༷͕·ΕΔɻ ग़లɿAPI - ΢ΟΩϖσΟΞ https://ja.wikipedia.org/wiki/ΞϓϦέʔγϣϯϓϩάϥϛϯάΠϯ
λϑΣʔε

View Slide

Okinawa Open Days
2016
ChatͰ࿩͔͚Δͱɾɾɾ
SVI / VLAN࡞੒ɺLBઃఆɺNeutronઃఆɺςετɺςετ؀ڥ࡟আ
·ͰͷҰ࿈ͷྲྀΕΛ࣮ࢪɻ݁Ռ͸ChatͰ௨஌ɻ
APIԽ͢ΔͱChatOpsָ͕ʹͳΔ

View Slide

Okinawa Open Days
2016
• άϥϑΟΧϧͳ෦෼͸ChatͰͰ͖ΔΑ
͏ʹ͓ͯ͘͠ͱҎ֎ͱศརɻ
• “པ·ΕΔଆ” ΋ ”པΉଆ” ʹऔͬͯ΋ε
τϨεϑϦʔ
• ଞʹ΋ՄࢹԽͱ؆୯ͳϓϩϏδϣϯͰ
׆༻
• Jobʹ૊ΈࠐΜͩΓ͢ΔՄೳੑ͕͋Δ
΋ͷ͸ɺCLIͳ͍͠͸APIͰఏڙͨ͠ํ
͕Α͍
APIԽ͢ΔͱChatOpsָ͕ʹͳΔ

View Slide

Okinawa Open Days
2016
• ؂ࢹ͸ Zabbix ͕ࣗಈͰरͬͯ͘Δ
• Zabbix͕ϝʔΧ΍໾ׂΛ൑ผͯ͠άϧʔϐϯά͢Δ
• ωοτϫʔΫ؅ཧऀ͸ DNS ͷొ࿥ͱ ZTP ͷ४උ͚͓ͩͯ͘͠
• όοΫΞοϓͷδϣϒ͸ Jenkins ͕ຖ൩࣮ߦͯ͠ɺ໰୊͋Ε͹
Slack Ͱ௨஌
• όοΫΞοϓର৅͸ Zabbix ͷ API Λ Jenkins ͔Βୟ͍ͯ࠷৽Λऔ
ಘ
• VLAN ࡞੒ͳͲͷ JOB ΋ Zabbix ͷ࠷৽Λݩʹੜ੒͞ΕΔ
ଞʹ΋͜Μͳͱ͜ΖͰAPI͕ɾɾɾ

View Slide

ωοτϫʔΫΤϯδχΞͷ೰Έ
Okinawa Open Days
2016
ʮACL௥Ճͯ͠΄͍͠Μ͚ͩͲɻࠓ೔ʯ
ʮVPNϢʔβͬͯࠓ୭͕ొ࿥͞Εͯ·͚ͨͬ͠ʁʯ
ʮτϥϑΟοΫ͍ͬͯ·Ͳͷ͘Β͍ग़ͯ·͢ʁʯ
͜͏͍͏࡞ۀ͔Βղ์͞Ε·ͨ͠ɻ͓ޓ͍ʹɻ

View Slide

Okinawa Open Days
2016
ੈؒҰൠͷSDNͱ͸ҧ͏͚Ͳɺ 
 
͜Ε΋Ұͭͷ 
Software Defined Network??

View Slide

ۤ࿑ͨ͠ϙΠϯτ
Okinawa Open Days
2016
• APIͳ͠ͷػثΛૢ࡞͢Δ৔߹ɺexpectͰରԠͤ͟ΔΛಘͳ͍
ɹɹˠॲཧ్͕தͰࢭ·Δͱ͔ɾɾɾ
ɹɹɹෛ୲ʹͳΒͳ͍ఔ౓ͷΤϥʔॲཧΛɻ
• ໰୊͕͋ͬͨ࣌ͷ੾Γ෼͚ΛͲ͏͢Δ͔
ɹɹˠ DebugΦϓγϣϯΛ࣮૷ɻClientଆͰऔΕΔΑ͏ʹɻ
ɹɹɹ APIͷΤϥʔίʔυͱϝοηʔδΛΫϥΠΞϯτଆ΁ग़ྗ
• REST APIͷઃܭ
ɹɹˠ ૉਓ͕΍ͬͨͷͰԚ͍ɻۤ࿑ͨ͠ํ͕ྑ͔ͬͨϙΠϯτɻ
ɹɹɹ ޙչɻ

View Slide

Θ͔ͬͨ͜ͱ
Okinawa Open Days
2016
• ݖݶपΓ͸ࣗ෼Ͱ࡞ͬͨ΄͏͕͍͍
ɹɹˠ ֤ػثͷػೳࠩΛٵऩ͢Δඞཁ͋Γ
• ঎༻ʹཔΓ͗ͯ͢ϕϯμʔϩοΫΠϯʹͳΒͳ͍Α͏஫ҙ
ɹɹˠ ίϯτϩʔϥʔཚཱ΋ͪΐͬͱɾɾɾ
• Ͱ΋ࣗ࡞ͰଐਓԽʹ΋஫ҙɻΤϯδχΞʹҰఆͷϨϕϧΛ
ɹɹˠ νʔϜ։ൃͰ͖Δ؀ڥΛ

View Slide

Interop Tokyo 2016
෭࢈෺తͳ΋ͷͰ͕͢ɾɾɾ
• ωοτϫʔΫػثͱͯ͠΋ɺσϓϩΠπʔϧͱͯ͠΋ɺӡ༻πʔϧͱͯ͠΋ɺط੒
ͷιϑτ΢ΣΞΛ׆༻͢Δ͜ͱͰΦʔϓϯͳωοτϫʔΫʹۙͮ͘͜ͱ͕Ͱ͖Δ
• ࣮ࡍͷωοτϫʔΫΛ੍ޚ͢Δ૷ஔͷมΘΓʹιϑτ΢ΣΞͰωοτϫʔΫ
Λ૊Ήʢϋʔυͱιϑτͷ෼཭ʣ͜ͱ΋͋Δ
• σϓϩΠपΓͰ͸ɺదٓඞཁͳ࢓૊ΈΛࣾ಺Ͱ࡞ͬͯӡ༻ΛΧόʔ͍ͯ͠Δ
έʔε΋͋ΔʢPython෦෼ͰதؒϨΠϠʔ࡞ͬͯHWͷࠩΛٵऩ͍ͯ͠·͢ʣ
• Ͳ͜Ͳ͜੡ͷίϯτϩʔϥΛങ͏ͷ͔ɺࣗ෼ͰͦΕͬΆ͍࢓૊ΈΛ࡞Δͷ͔
͸ɺϙϦγʔ࣍ୈͰ൑அ
Okinawa Open Days
2016

View Slide

·ͱΊ
Okinawa Open Days
2016
● ϨΨγʔͳ؀ڥͰ΋ SDN ͷΑ͏ʹརศੑͷ޲্Λ໨ࢦ͢͜
ͱ͸Մೳ
● ωοτϫʔΫΑΓ΋αʔόଆͷٕज़ֵ৽͕ਐΜͰ͓ΓɺΦʔ
ϓϯͳٕज़Λར༻͍ͯ͠ΔͷͰඇৗʹࢀߟʹͳΔ
5෼ͷख࡞ۀΑΓ15෼ͰίʔυΛॻ͖·͠ΐ͏
ʢͦΜͳ࣌୅ʁʣ
Automation is the new skillset that network engineers need to pick up. Much like sysadmins
have had to learn how to use new tools like Chef and Puppet, network engineers are learning
that they just can't do things manually anymore. With examples in each chapter, this practical
book provides you with baseline skills in network programmability and automation, using a
range of technologies including Linux, Python, JSON, and XML. No previous knowledge of
software development, programming, automation, or DevOps is required.

View Slide

OkinawaOpendays2016_ネットワーク運用コード化への取り組み

OkinawaOpendays2016_ネットワーク運用コード化への取り組み

komeinw

More Decks by komeinw

Other Decks in Technology

Featured

Transcript