Vagrant + Ansible

Vagrant and Ansible
Michael Heap (@mheap)
Developer at DataSift
Presented at PHPNW13
Saturday, 5 October 13

View Slide

Vagrant?

View Slide

Ansible?

View Slide

Puppet / Chef?

View Slide

Me!
I’m Michael
I’m @mheap
Developer at...

View Slide


View Slide

Vagrant and Ansible

View Slide

Vagrant
Development environments made easy

View Slide

Ansible
Radically simple IT orchestration

View Slide

Why do we need them?

View Slide

“Works on my box”

View Slide

“The server disk died”

View Slide

Reproduction

View Slide

Let’s develop something!
Spin up virtual machine
Deploy dependencies
Start hacking

View Slide

Get a machine
This is where Vagrant comes in

View Slide

Installation
You’ll need Virtualbox (https://www.virtualbox.org/)
You’ll also need Vagrant (http://vagrantup.com/)

View Slide

Get a Vagrant Box
A box is a virtual machine image.
There are official boxes available
More at http://vagrantbox.es

View Slide

Create a box
vagrant box add [name] [url]

View Slide

Initialise a box
mkdir vagrant-example
cd vagrant-example
vagrant init [name]

View Slide

Vagrant.configure(2) do |config|
config.vm.box = "precise64"
config.vm.network :private_network, ip: "192.168.33.10"
config.vm.provider :virtualbox do |vb|
vb.customize ["modifyvm", :id, "--memory", "1024"]
end
end

View Slide

$ vagrant up
This will boot up your machine.
If it already exists, it’ll just boot.
If it doesn’t, it’ll import your base box

View Slide

$ vagrant ssh
Log in to your new VM
This uses INSECURE KEYS.

View Slide

$ vagrant halt
Stop your machine and free up resources

View Slide

$ vagrant destroy
Destroy your VM, including any changes you made.
Next time you $ vagrant up, it’ll be a fresh box

View Slide

That’s Vagrant

View Slide

Now what?
We have a machine, but it doesn’t actually
do anything.

View Slide

It needs provisioning
That’s where Ansible comes in

View Slide

What is Ansible?
“Radically simple IT orchestration.”
What does that actually mean?

View Slide

Demo Time!
Install apache2, php, mysql and git
Configure a virtualhost
Clone a site from Github
Visit it in Chrome

View Slide

Installing Ansible
Install from source, or from a package manager
Use pip, apt or yum

View Slide

Inventory files
We need to tell Ansible what machines to run on

View Slide

[web]
web1.example.com
web2.example.com
[loadbalancers]
lb1.example.com
[db]
db1.example.com

View Slide

Development
[web]
192.168.33.10
192.168.33.11
[loadbalancers]
192.168.33.12
[db]
192.168.33.13

View Slide

[web]
web[1:10].example.com
[loadbalancers]
lb1.example.com
lb2.example.com
[db]
db1.example.com
Production

View Slide

[web]
s1.a.com ansible_connection=ssh ansible_ssh_user=bob
ansible_*

View Slide

[web]
192.168.33.10 ansible_ssh_user=vagrant
ansible_ssh_private_key_file=~/.vagrant.d/insecure_private_key
ansible_*

View Slide

ansible-playbook
Once you’ve told Ansible where to run, we need
to tell it what to run

View Slide

YAML files
It’s worth mentioning that playbooks are just YAML
files

View Slide

---
- hosts: all
sudo: true
vars:
- domain: demo.dev
# Some packages omitted
tasks:
- name: Install apache
apt: name=apache2 state=installed
- name: create vhost
template: src=templates/demo dest=/etc/apache2/sites-enabled/demo
notify:
- restart apache
- name: clone repo
git: repo=https://github.com/mheap/demo.git dest=/var/www/demo
handlers:
- name: restart apache
service: name=apache2 state=restarted

View Slide

Better playbooks
Whilst that playbook works, it’s not very
maintainable

View Slide

Roles
Ansible has a concept of roles.
You can define roles e.g. “web” that installs
Apache and PHP, and “db” that installs mysql and
then apply them on demand.

View Slide

Tags
Tag sections of playbooks and run just those
sections on demand

View Slide

Parameterised includes
Imagine you have a Wordpress playbook but want
different database passwords for each of them.

View Slide

Conditional actions
When collecting facts with Facter or ohai, you can
run actions conditionally.

View Slide

Rolling Deploys
You can set the maximum number of nodes to run
on, and a maximum failure percentage.
No need to take down your entire cluster with a
bad deploy.

View Slide

More!
We’d be here all day if I listed all of the available
features, so go read the docs.

View Slide

Orchestration!
You can do crazy things like take machines out of a
load balancer pool, upgrade and add them again

View Slide

Modules
There’s lots of modules available
(141 at time of writing!)

View Slide

Packaging: apt, yum, pip, npm, gem
Files: file, copy, template, lineinfile
Cloud: ec2, linode, digital_ocean, s3, rds
Notiﬁcation: campfire, hipchat, irc, jabber, email
DB: mysql_user, mongodb_user, postgresql_user
Alerting: monit, nagios,pagerduty, pingdom
CLI: command, shell
(this is a small selection)

View Slide

Write your own
Use PHP if you want.
Just because Ansible is Python, it doesn’t mean
modules have to be.

View Slide

ansible
There’s a command line tool too!

View Slide

ansible all -m “module” -a “arg1=foo arg2=bar”

View Slide

ansible all -m “shell” -a “uname -r”

View Slide

ansible all -m “shell” -a “uname -r”
192.168.33.10 | success | rc=0 >>
3.2.0-23-generic

View Slide

ansible all -m “lineinfile” -a “dest=/etc/selinux/config
regexp=^SELINUX= line=SELINUX=disabled”

View Slide

Big wins
It uses SSH as it’s PKI.
There’s no daemon to run on a server.
You choose when to run it, not a cron job.

View Slide

ansible-pull
If you want it though, you can emulate the “pull”
functionality.
Clones your playbooks, runs them locally.
Infinitely* scaleable.
* If your Git host can handle infinite clones

View Slide

Running via Vagrant
Vagrant has an Ansible provisioner module.

View Slide

Any questions?

View Slide

Thanks!
I’ve been @mheap, you’ve been awesome.
Please leave feedback on Joind.in
https://joind.in/9297

View Slide

Vagrant + Ansible

Vagrant + Ansible

Michael Heap

More Decks by Michael Heap

Other Decks in Technology

Featured

Transcript