Infrastructure as Code

✦ ✦ ✦

✦ ✦ ✦ ✦

✦ ✦ ✦

✦ ✦ ✦ ✦ ✦ ✦

✦ このへんがインフラ

✦ ✦ ✦ ✦ ✦ ✦ ✦

✦ ✦ ✦ ✦ ✦ ✦

✦ ✦ ✦ ✦ ✦

✦ ✦ ✦ ✦ ✦ ✦ ✦ ✦

このへん

✦ ✦ ✦ ✦ ✦

✦ ✦ ✦

✦ ✦ ✦ ✦

✦ ✦

✦ ✦ ✦ ✦

✦ ✦ ✦

✦ ✦ ✦ ✦

✦ ✦

✦ ✦ ✦

✦ ✦ ✦ ✦ ✦ ✦ ✦ ✦ ✦ ✦

✦ ✦ ✦ ✦ ✦

✦ ✦

✦ ✦ ✦ ✦ ✦

✦ ✦ startではない

✦ ✦ ✦ ✦ ✗ ✦

✦ ✦ RHELでもUbuntuでもCentOSでも一緒

✦ ✦ ✦ ✦

✦ ✦ ✦

✦ ✦ ✦ ✦ ✦

✦ ✦ ✦

cp /tmp/created_nginx.conf /usr/local/nginx/conf/nginx.conf 実行しまくるとconfigが壊れていく ✦ ✦ 何回やっても結果は一緒

✦ ✦ ✦ ✦

✦ ✦ ✦

✦ ✦

✦ ✦ ✦ ✦ ✦ ✦

✦ ✦

✦ ✦ ✦ ✦ ✦ ✦

この2行だけ追記してください

✦ Ansibleの説明は後ほど

✦ ✦

✦ $ sudo systemctl stop nginx.service # nginxを止めてみる $ sudo
vi /etc/nginx/nginx.conf # configを書き換えてみる $ sudo chmod 600 /var/log/nginx/access.log # permissionを変えてみる $ sudo vi /usr/share/nginx/html/index.html # DocumentRootを変えてみる

✦ $ sudo ansible-playbook -i production site.yml --check --diff (略)
TASK [nginx : replace index.html] ********************************************** --- before: /usr/share/nginx/html/index.html +++ after: dynamically generated @@ -1,2 +1 @@ hello, production ansible -hogehoge 書き換えたところが戻る・・・これだけ？オプションで dry-runが可能

$ sudo ansible-playbook -i production site.yml (略) TASK [nginx :
replace index.html] ********************************************** --- before: /usr/share/nginx/html/index.html +++ after: dynamically generated @@ -1,2 +1 @@ hello, production ansible -hogehoge

✦ ✦ $ sudo yum erase -y nginx

✦ ✦ ✦

✦ ✦ ✦ ✦ ✦

✦ # VM上で実行してください $ cd ~ $ git clone https://github.com/tkit/ansible-todo-manager.git
$ cd ansible-todo-manager

✦ ✦ # VM上で実行してください $ ansible-playbook -i inventory playbook.yml PLAY
[webservers] ************************************************************** TASK [setup] ******************************************************************* ok: [localhost] PLAY RECAP ********************************************************************* localhost : ok=1 changed=0 unreachable=0 failed=0 何もない

✦ ✦ ✦ . ├── inventory ├── playbook.yml └── roles
└── nodejs ├── meta │ └── main.yml └── tasks └── main.yml インベントリ : 操作対象ホストの全部の一覧プレイブック : 全体の設計(どのホストに、どんな処理をするか) タスク : 具体的な処理の詳細

✦ ✦ # playbook.yml --- - hosts: webservers become: yes
connection: local roles: - nodejs webserversっていうホスト群に対して操作 sudo実行する nodejsっていうroleを実行する

✦ ✦ # inventory [webservers] localhost webserversというグループには localhostが存在(複数行書くこともできる)

✦ ✦ ✦ ✦ ├── defaults │ └── main.yml ├──
files ├── handlers │ └── main.yml ├── meta │ └── main.yml ├── README.md ├── tasks │ └── main.yml ├── templates ├── tests │ ├── inventory │ └── test.yml └── vars └── main.yml 本当はもっと構成が複雑

✦ ✦ --- # tasks file for nginx - name:
install nginx yum: name: nginx state: installed - name: replace index.html template: src: index.html.j2 dest: /usr/share/nginx/html/index.html - name: nginx start service: name: nginx state: started enabled: yes

✦ ✦ ✦ ✦ ✦ # VM上で実行してください $ ansible-playbook -i
inventory playbook.yml

✦ $ git checkout ansible # 回答

✦ ✦ ✦ ✦

✦ ✦ ✦ ✦ $ forever list info: Forever processes
running data: uid command script forever pid id logfile uptime data: [0] todo /usr/bin/node /usr/local/src/todo-manager/app.js 30755 30767 /home/vagrant/.forever/todo.log 0:0:1:6.134 data: [1] todo /usr/bin/node /usr/local/src/todo-manager/app.js 31036 31048 /home/vagrant/.forever/todo.log STOPPED STOPPEDの行が増えている

✦ $ ansible localhost -m setup localhost | SUCCESS =>
{ "ansible_facts": { "ansible_all_ipv4_addresses": [ "192.168.33.10", "10.0.2.15" ], "ansible_all_ipv6_addresses": [ "fe80::a00:27ff:fe36:11ec", "fe80::5054:ff:fe88:15b6" ], (すごいいっぱいでてくる)

✦ ✦ ✦ ✦ ✦ ✦

✦ ✦ ✦ ✦ ✦ ✦ ✦ ✦ ✦

✦ $ git checkout ansible-advance # 回答

✦ ✦

✦ ✦ ✦ ✦ ✦ ✦

✦ ✦

✦ ✦ ✦ ✦ ✦

✦ ✦ ✦

✦ ✦ ✦ ✦

✦ ✦ ✦ describe service('ntpd') do it { should be_running
} end 分かりやすく書ける

✦ ✦

✦ ✦ ✦

✦ ✦ describe server(:app) do describe http('http://app') do it "responds
content including 'This is app server'" do expect(response.body).to include('This is app server') end end End これもわかりやすい

✦ ✦ ✦

✦ ✦ ✦ ✦ ✦ ✦

✦ ✦ ✦ https://www.docker.com/what-container

✦ ✦

✦ ✦ ✦

✦ ✦ ✦ ✦

✦ ✦ ✦ ✦ ✦ ✦

✦ ✦ ✦

✦ ✦ [vagrant@demo ~]$ exit # VMから抜ける $ vagrant halt
# VMを止める場合 $ vagrant destroy # VMを消す場合

✦ ✦ ✦ ✦ ✦

✦ ✦

✦ ✦ ✦ ✦ ✦ ✦ ✦

$ cd ~ $ git clone https://github.com/tkit/docker-todo-manager.git $ cd docker-todo-manager
$ vim Dockerfile # Dockerfileに手順を書く $ docker build -t todo-manager . # ビルド $ docker run <options> --name todo-manager todo-manager # あとはアクセス！ ✦ ✦

Image Container Dockerfile # イメージビルド $ docker build -t todo-manager
. # Dockerfile修正 ``` FROM ベースイメージ RUN ... CMD ... ``` # コンテナ起動 $ docker run ... ✦ ✦ ✦ ✦

✦ $ git checkout docker # 回答

✦ ✦

✦ # コンテナを消す $ docker container ls # コンテナの一覧を調べる $
docker stop <container名> $ docker container rm -f <container名> # 特定のコンテナを消す # イメージを消す $ docker image ls # イメージの一覧を調べる $ docker image rm <image名> # 特定のイメージを消す # 全体的に使っていないものをきれいにする $ docker container prune $ docker image prune

✦ ✦

✦ ✦ ✦

✦ ✦ ✦ ✦

✦ ✦ ✦ ✦ ✦ ✦ ✦

Microservice Container Monolithic Physical Machines 今回学んだこと Immutable Virtual Machines

Infrastructure as Code

Infrastructure as Code

More Decks by Recruit Technologies

Other Decks in Technology

Featured

Transcript