DevOps, Puppet & Chef (from susestudio.com's perspective) 

I'm James Tan @jamestyj on Twitter & Github blog.susestudio.com Engineering Manager @ 

Where I'm from... Singapore! (but living in Germany) 

No content

No content

No content

What I work on... 

No content

No content

Appliance / Image 

SUSE Cloud 

No content

No content

No content

No content

No content

No content

No content

No content

No content

No content

DevOps 

I want change! I want stability! Wall of Confusion Development Operations 

Wall of Confusion Development Operations 

Wall of Confusion Development Operations 

Communication Collaboration Integration Automation 

We have change without pain We're in it together! Development Operations 

Continuous deployments Continuous (automated) builds, integration, tests, and deployments 

0 10 20 30 40 50 60 susestudio.com deployments (per month) Jun 2009 to Sep 2012 Deployments Continuous deployments! 

Configuration Management is not easy 

No content

No content

What happens when the server crashes? How do you scale this to other servers? How do you deploy to other data centers or to the cloud? 

Infrastructure as Code Repeatable Scalable Maintainable 

Infrastructure as Code Version control Peer code reviews Tests 

vs 

Flavors Serverless Puppet Master/Agent Puppet Puppet Enterprise Chef Solo Chef Client & Server Private Chef Hosted Chef 

Installing on openSUSE 12.2 # Installing Puppet > zypper ar http://download.opensuse.org/repositories\ /systemsmanagement:/puppet/openSUSE_12.2/ Puppet > zypper in puppet # Installing Chef > zypper ar http://download.opensuse.org/repositories\ /systemsmanagement:/chef/openSUSE_12.2/ Chef > zypper in rubygem-chef 

Puppet quickstart (serverless) > vim test.pp file { 'testfile-puppet': path => '/tmp/testfile-puppet', ensure => present, mode => '0640', content => "I'm a test file.\n" } > puppet apply test.pp 

Chef quickstart (solo) > knife cookbook create test > vim /var/chef/cookbooks/test/recipes/default.rb file "/tmp/testfile-chef" do mode "0640" content "I'm a test file.\n" action :create end > chef-solo -o test -N test 

Puppet package, file, service package { 'openssh-server': ensure => present, before => File['/etc/ssh/sshd_config'] } file { '/etc/ssh/sshd_config': ensure => file, mode => '0600', source => 'sshd_config' } service { 'sshd': ensure => running, enable => true, hasrestart => true, hasstatus => true, subscribe => File['/etc/ssh/sshd_config'] } Ensure order! 

Chef package, file, service package "openssh-server" do action :install end cookbook_file "/etc/ssh/sshd_config" do source "sshd_config" mode "0600" end service "sshd" do supports :status => true, :restart => true action [ :enable, :start ] subscribes :reload, resources( "cookbook_file[/etc/ssh/sshd_config]") end 

Puppet vs Chef package, file, service package { 'openssh-server': ensure => present, before => File['/etc/ssh/sshd_config'] } file { '/etc/ssh/sshd_config': ensure => file, mode => '0600', source => 'sshd_config' } service { 'sshd': ensure => running, enable => true, hasrestart => true, hasstatus => true, subscribe => File['/etc/ssh/sshd_config'] } package "openssh-server" do action :install end cookbook_file "/etc/ssh/sshd_config" do source "sshd_config" mode "0600" end service "sshd" do supports :status => true, :restart => true action [ :enable, :start ] subscribes :reload, resources( "cookbook_file[/etc/ssh/sshd_config]") end 

Resources Puppet & Chef: cron, exec/execute, file, group, mount, package, service, user Puppet: augeas, host, interface, nagios_command, ssh_authorized_key, sshkey, zfs, zone, … Chef: deploy, directory, env, git, HTTP request, Link, log, route, Ruby block, subversion, ... 

Puppet & Chef templates (ERB) # Puppet manifest: balancer.pp $nodes = [ "node100", "node101", "node102" ] file { '/etc/apache/balancer.conf': path => '/etc/apache/balancer.conf', ensure => file, content => template("balancer.erb") } # Chef recipe: balancer.rb template "/etc/apache/balancer.conf" do source "balancer.erb" variables({ :nodes => ["node100", "node101", "node102"] }) end 

Puppet & Chef templates (ERB) # Template: balancer.erb <% nodes.each do |node| -%> BalancerMember http://<%= node %>.cluster.xs:81 <% end -%> # Output: /etc/apache/balancer.conf BalancerMember http://node100.cluster.xs:81 BalancerMember http://node101.cluster.xs:81 BalancerMember http://node102.cluster.xs:81 

Code reuse Puppet modules Manifests Files Libraries Templates (ERB) Chef cookbooks Recipes File Distribution Libraries Templates (ERB) Attributes Definitions Lightweight Resources & Providers (LWRP) Metadata 

Puppet Master / Agent Puppet Master Workstation Nodes Git Git MCollective PuppetDB Puppet Dashboard Puppet Agent Facter 

No content

Chef Server / Client Chef API server Workstation Nodes Git knife Chef Indexer (Solr) Chef Web UI Chef Client Ohai CouchDB RabbitMQ knife (ssh) 

No content

No content

Other concepts Puppet Classes External Node Classifier (ENC) Chef Roles Run lists (Encrypted) Databags Search 

We're moving from Puppet to Chef Why? 

More maintainers needed! 

Questions? Slides @ http://speakerdeck.com/u/jamestyj