Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Infrastructure as Code

Sponsored · Ship Features Fearlessly Turn features on and off without deploys. Used by thousands of Ruby developers.
Avatar for Recruit Technologies Recruit Technologies
June 02, 2017
Technology
6
40k

Infrastructure as Code

2017年4~5月開催「ブートキャンプ特別講座」の資料になります。

Avatar for Recruit Technologies

Recruit Technologies

June 02, 2017
Tweet

More Decks by Recruit Technologies

See All by Recruit Technologies
障害はチャンスだ! 障害を前向きに捉える
Avatar for Recruit Technologies rtechkouhou
1
740
Flutter移行の苦労と、乗り越えた先に得られたもの
Avatar for Recruit Technologies rtechkouhou
3
12k
ここ数年間のタウンワークiOSアプリのエンジニアのチャレンジ
Avatar for Recruit Technologies rtechkouhou
1
1.6k
大規模環境をAWS Transit Gatewayで設計/移行する前に考える3つのポイントと移行への挑戦
Avatar for Recruit Technologies rtechkouhou
1
2k
【61期 新人BootCamp】TOC入門
Avatar for Recruit Technologies rtechkouhou
3
42k
【RTC新人研修 】 TPS
Avatar for Recruit Technologies rtechkouhou
1
41k
Android Boot Camp 2020
Avatar for Recruit Technologies rtechkouhou
0
41k
HTML/CSS
Avatar for Recruit Technologies rtechkouhou
10
51k
TypeScript Bootcamp 2020
Avatar for Recruit Technologies rtechkouhou
9
46k

Other Decks in Technology

See All in Technology
SREが向き合う大規模リアーキテクチャ 〜信頼性とアジリティの両立〜
Avatar for Kuniaki Moriya zepprix
0
400
フルカイテン株式会社 エンジニア向け採用資料
Avatar for FULL KAITEN fullkaiten
0
10k
ZOZOにおけるAI活用の現在 ~開発組織全体での取り組みと試行錯誤~
Avatar for ZOZO Developers zozotech
PRO
5
4.8k
GitHub Issue Templates + Coding Agentで簡単みんなでIaC/Easy IaC for Everyone with GitHub Issue Templates + Coding Agent
Avatar for AEON aeonpeople
1
180
予期せぬコストの急増を障害のように扱う――「コスト版ポストモーテム」の導入とその後の改善
Avatar for Masahiro Yoshizawa muziyoshiz
1
1.6k
usermode linux without MMU - fosdem2026 kernel devroom
Avatar for Hajime Tazaki thehajime
0
210
SREじゃなかった僕らがenablingを通じて「SRE実践者」になるまでのリアル / SRE Kaigi 2026
Avatar for AEON aeonpeople
6
2.1k
All About Sansan – for New Global Engineers
Avatar for Sansan, Inc. sansan33
PRO
1
1.3k
Meshy Proプラン課金した
Avatar for henjin0 henjin0
0
250
Oracle Cloud Observability and Management Platform - OCI 運用監視サービス概要 -
Avatar for oracle4engineer oracle4engineer
PRO
2
14k
【5分でわかる】セーフィー エンジニア向け会社紹介
Avatar for Safie safie_recruit
0
42k
インフラエンジニア必見!Kubernetesを用いたクラウドネイティブ設計ポイント大全
Avatar for 高棹大樹 daitak
0
320

Featured

See All Featured
Kristin Tynski - Automating Marketing Tasks With AI
Avatar for Tech SEO Connect techseoconnect
PRO
0
130
A Guide to Academic Writing Using Generative AI - A Workshop
Avatar for Kenji Saito ks91
PRO
0
190
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
Avatar for Michelle Schulp Hunt marktimemedia
31
2.7k
Principles of Awesome APIs and How to Build Them.
Avatar for Keavy McMinn keavy
128
17k
svc-hook: hooking system calls on ARM64 by binary rewriting
Avatar for Akira Moroo retrage
1
97
Building Experiences: Design Systems, User Experience, and Full Site Editing
Avatar for Michelle Schulp Hunt marktimemedia
0
400
Side Projects
Avatar for Sacha Greif sachag
455
43k
Exploring the relationship between traditional SERPs and Gen AI search
Avatar for Ray Grieselhuber raygrieselhuber
PRO
2
3.6k
Paper Plane
Avatar for Katie Cordina Lindsey katiecoart
PRO
0
46k
The #1 spot is gone: here's how to win anyway
Avatar for Tamara Novitovic tamaranovitovic
2
930
Conquering PDFs: document understanding beyond plain text
Avatar for Ines Montani inesmontani
PRO
4
2.3k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
Avatar for Sam Stephenson sstephenson
162
16k

Transcript

  1. None
  2. None

  3. ✦ ✦ ✦

  4. None
  5. None

  6. ✦ ✦ ✦ ✦

  7. ✦ ✦ ✦

  8. ✦ ✦ ✦ ✦ ✦ ✦

  9. None
  10. None

  11. ✦ このへんがインフラ

  13. ✦ ✦ ✦ ✦ ✦ ✦ ✦

  14. ✦ ✦ ✦ ✦ ✦ ✦

  15. ✦ ✦ ✦ ✦ ✦

  17. ✦ ✦ ✦ ✦ ✦

  18. ✦ ✦ ✦ ✦ ✦ ✦ ✦ ✦

  19. None

  20. このへん

  21. ✦ ✦ ✦ ✦ ✦

  22. ✦ ✦ ✦

  23. None
  24. None
  25. None

  26. ✦ ✦ ✦ ✦

  27. ✦ ✦

  28. ✦ ✦

  29. ✦ ✦

  30. ✦ ✦

  31. ✦ ✦

  32. ✦ ✦

  33. ✦ ✦

  34. ✦ ✦

  35. None

  36. ✦ ✦ ✦ ✦

  37. ✦ ✦ ✦

  38. ✦ ✦ ✦ ✦

  39. ✦ ✦

  40. None

  41. ✦ ✦ ✦

  42. ✦ ✦ ✦

  43. ✦ ✦ ✦ ✦ ✦ ✦ ✦ ✦ ✦ ✦

  44. ✦ ✦ ✦ ✦ ✦

  46. None

  47. ✦ ✦

  48. ✦ ✦

  49. ✦ ✦ ✦ ✦ ✦

  50. ✦ ✦ startではない

  51. ✦ ✦ ✦ ✦ ✗ ✦

  52. ✦ ✦ RHELでもUbuntuでもCentOSでも一緒

  53. ✦ ✦ ✦ ✦

  54. ✦ ✦ ✦

  55. ✦ ✦ ✦ ✦ ✦

  56. ✦ ✦ ✦

  57. cp /tmp/created_nginx.conf /usr/local/nginx/conf/nginx.conf 実行しまくるとconfigが壊れていく ✦ ✦ 何回やっても結果は一緒

  58. ✦ ✦ ✦ ✦

  59. ✦ ✦ ✦

  60. None

  61. ✦ ✦

  62. ✦ ✦ ✦ ✦ ✦ ✦

  63. ✦ ✦

  64. None

  65. ✦ ✦ ✦ ✦ ✦ ✦

  66. この2行だけ追記してください

  67. None
  68. None

  69. ✦ Ansibleの説明は後ほど

  70. None

  71. ✦ ✦

  72. ✦ $ sudo systemctl stop nginx.service # nginxを止めてみる $ sudo

    vi /etc/nginx/nginx.conf # configを書き換えてみる $ sudo chmod 600 /var/log/nginx/access.log # permissionを変えてみる $ sudo vi /usr/share/nginx/html/index.html # DocumentRootを変えてみる

  73. ✦ $ sudo ansible-playbook -i production site.yml --check --diff (略)

    TASK [nginx : replace index.html] ********************************************** --- before: /usr/share/nginx/html/index.html +++ after: dynamically generated @@ -1,2 +1 @@ hello, production ansible -hogehoge 書き換えたところが戻る ・・・これだけ? オプションで dry-runが可能

  74. $ sudo ansible-playbook -i production site.yml (略) TASK [nginx :

    replace index.html] ********************************************** --- before: /usr/share/nginx/html/index.html +++ after: dynamically generated @@ -1,2 +1 @@ hello, production ansible -hogehoge
  75. None

  76. ✦ ✦ $ sudo yum erase -y nginx

  77. None

  78. ✦ ✦ ✦

  79. ✦ ✦ ✦ ✦ ✦

  80. ✦ # VM上で実行してください $ cd ~ $ git clone https://github.com/tkit/ansible-todo-manager.git

    $ cd ansible-todo-manager

  81. ✦ ✦ # VM上で実行してください $ ansible-playbook -i inventory playbook.yml PLAY

    [webservers] ************************************************************** TASK [setup] ******************************************************************* ok: [localhost] PLAY RECAP ********************************************************************* localhost : ok=1 changed=0 unreachable=0 failed=0 何もない

  82. ✦ ✦ ✦ . ├── inventory ├── playbook.yml └── roles

    └── nodejs ├── meta │ └── main.yml └── tasks └── main.yml インベントリ : 操作対象ホストの全部の一覧 プレイブック : 全体の設計(どのホストに、どんな処理をするか) タスク : 具体的な処理の詳細

  83. ✦ ✦ # playbook.yml --- - hosts: webservers become: yes

    connection: local roles: - nodejs webserversっていうホスト群に対して操作 sudo実行する nodejsっていうroleを実行する

  84. ✦ ✦ # inventory [webservers] localhost webserversというグループには localhostが存在(複数行書くこともできる)

  85. ✦ ✦ ✦ ✦ ├── defaults │ └── main.yml ├──

    files ├── handlers │ └── main.yml ├── meta │ └── main.yml ├── README.md ├── tasks │ └── main.yml ├── templates ├── tests │ ├── inventory │ └── test.yml └── vars └── main.yml 本当はもっと構成が複雑

  86. ✦ ✦ --- # tasks file for nginx - name:

    install nginx yum: name: nginx state: installed - name: replace index.html template: src: index.html.j2 dest: /usr/share/nginx/html/index.html - name: nginx start service: name: nginx state: started enabled: yes

  87. ✦ ✦ ✦ ✦ ✦ # VM上で実行してください $ ansible-playbook -i

    inventory playbook.yml

  88. ✦ $ git checkout ansible # 回答

  89. ✦ ✦ ✦ ✦

  90. ✦ ✦ ✦ ✦ $ forever list info: Forever processes

    running data: uid command script forever pid id logfile uptime data: [0] todo /usr/bin/node /usr/local/src/todo-manager/app.js 30755 30767 /home/vagrant/.forever/todo.log 0:0:1:6.134 data: [1] todo /usr/bin/node /usr/local/src/todo-manager/app.js 31036 31048 /home/vagrant/.forever/todo.log STOPPED STOPPEDの行が増えている

  91. ✦ $ ansible localhost -m setup localhost | SUCCESS =>

    { "ansible_facts": { "ansible_all_ipv4_addresses": [ "192.168.33.10", "10.0.2.15" ], "ansible_all_ipv6_addresses": [ "fe80::a00:27ff:fe36:11ec", "fe80::5054:ff:fe88:15b6" ], (すごいいっぱいでてくる)

  92. ✦ ✦ ✦ ✦ ✦ ✦

  93. ✦ ✦ ✦ ✦ ✦ ✦ ✦ ✦ ✦

  94. ✦ $ git checkout ansible-advance # 回答

  95. None
  96. None

  97. ✦ ✦

  98. None

  99. ✦ ✦

  101. ✦ ✦ ✦ ✦ ✦ ✦

  102. None

  103. ✦ ✦

  104. None

  105. ✦ ✦ ✦ ✦ ✦

  106. ✦ ✦ ✦

  108. None

  109. ✦ ✦ ✦

  110. None
  111. None

  113. ✦ ✦ ✦ ✦

  114. ✦ ✦ ✦ describe service('ntpd') do it { should be_running

    } end 分かりやすく書ける
  115. None

  116. ✦ ✦

  117. ✦ ✦

  118. ✦ ✦ ✦

  119. ✦ ✦ describe server(:app) do describe http('http://app') do it "responds

    content including 'This is app server'" do expect(response.body).to include('This is app server') end end End これもわかりやすい

  120. ✦ ✦ ✦

  121. None

  123. ✦ ✦ ✦

  124. None
  125. None

  126. ✦ ✦ ✦ ✦ ✦ ✦

  127. None
  128. None
  129. None
  130. None

  131. ✦ ✦ ✦ https://www.docker.com/what-container

  132. ✦ ✦

  133. ✦ ✦ ✦

  134. ✦ ✦ ✦ ✦

  136. ✦ ✦ ✦ ✦ ✦ ✦

  137. ✦ ✦ ✦

  139. ✦ ✦ [vagrant@demo ~]$ exit # VMから抜ける $ vagrant halt

    # VMを止める場合 $ vagrant destroy # VMを消す場合
  140. None

  141. ✦ ✦ ✦ ✦ ✦

  142. ✦ ✦

  143. ✦ ✦ ✦ ✦ ✦ ✦ ✦

  144. $ cd ~ $ git clone https://github.com/tkit/docker-todo-manager.git $ cd docker-todo-manager

    $ vim Dockerfile # Dockerfileに手順を書く $ docker build -t todo-manager . # ビルド $ docker run <options> --name todo-manager todo-manager # あとはアクセス! ✦ ✦

  145. Image Container Dockerfile # イメージビルド $ docker build -t todo-manager

    . # Dockerfile修正 ``` FROM ベースイメージ RUN ... CMD ... ``` # コンテナ起動 $ docker run ... ✦ ✦ ✦ ✦
  146. None

  147. ✦ $ git checkout docker # 回答

  148. ✦ ✦

  149. None

  150. ✦ # コンテナを消す $ docker container ls # コンテナの一覧を調べる $

    docker stop <container名> $ docker container rm -f <container名> # 特定のコンテナを消す # イメージを消す $ docker image ls # イメージの一覧を調べる $ docker image rm <image名> # 特定のイメージを消す # 全体的に使っていないものをきれいにする $ docker container prune $ docker image prune
  151. None

  152. ✦ ✦

  153. ✦ ✦ ✦

  154. None

  155. ✦ ✦ ✦ ✦

  156. ✦ ✦ ✦ ✦ ✦ ✦ ✦

  157. None
  158. None
  159. None
  160. None
  161. None
  162. None
  163. None
  164. None

  165. Microservice Container Monolithic Physical Machines 今回学んだこと Immutable Virtual Machines

  166. None