Upgrade to Pro — share decks privately, control downloads, hide ads and more …

From Infrastructure as Code to Environment as Code

Adarsh Shah
August 10, 2021
Technology
0
40

From Infrastructure as Code to Environment as Code

From Infrastructure as Code to Environment as Code: Challenges scaling IaC and how to resolve them

Description: Implementing and maintaining Infrastructure as Code (IaC) to automate the provisioning of Environments, becomes challenging as you scale. IaC is good at provisioning individual resources (or a few of them together) but engineering teams want an entire environment with various components like networking, platform (ec2/eks), database, s3 buckets, etc. to deploy and operate their applications.

To provision and tear down an entire environment, these teams have two options. They can either hand roll pipelines to manage individual resources and then manage complex dependencies between these resources within those pipelines or create a monolith IaC for the entire environment. These approaches are inefficient and slow down feature development and innovation. What if there were a better way?

In this presentation, we will introduce Environment as Code (abstraction over IaC) that enables teams to provision & teardown entire Environments in an efficient way and promotes best practices like loosely coupled infrastructure resources.

** Key Takeaways: **

* Challenges scaling Infrastructure as Code
* What is Environment as Code?
* How Environment as Code can help resolve those challenges?

Adarsh Shah

August 10, 2021
Tweet

More Decks by Adarsh Shah

See All by Adarsh Shah
Environment as Code: Moving away from Imperative Pipelines
shahadarsh
0
22
From Infrastructure as Code to Environment as Code - DevOps Days Tampa Bay
shahadarsh
0
39
From Infrastructure as Code to Environment as Code – DevOps Days Boston
shahadarsh
0
34
From Infrastructure as Code to Environment as Code - AzConf
shahadarsh
0
120
From Infrastructure as Code to Environment as Code - DevOps Days Buffalo
shahadarsh
0
71
From Infrastructure as Code to Environment as Code – DevOps Days Poznań
shahadarsh
0
51
Principles, Patterns, and Practices for Effective Infrastructure as Code
shahadarsh
0
570
Continuous Delivery for Machine Learning Systems - DevOpsDays Warsaw
shahadarsh
0
410
Continuous Delivery for Machine Learning Systems - ADDO
shahadarsh
0
440

Other Decks in Technology

See All in Technology
軟體品質不只測試: LINE QA團隊分享
line_developers_tw
PRO
0
4.9k
dbtでデータ品質活動
foursue
6
1.3k
Autonomous Database Cloud 技術詳細 / adb-s_technical_detail_jp
oracle4engineer
PRO
10
24k
ChatGPTをプロダクトに入れる開発が"毎日がAfter GPT"だった件/ChatGPT LT Link and Motivation
lmi
1
640
Linuxのブロックデバイス
sat
PRO
4
1.5k
学びが形になる!〜DeNAで6年間プロダクト開発に携わって学んだこと〜
dena_tech
PRO
0
320
[k8sjp #56] Kustomize v5 を含む最新機能とテクニックの紹介
koba1t
0
340
ペタバイト、30プロダクトを超えて成長を続けるデータ基盤の歴史
dena_tech
PRO
0
130
ワイヤレス電力伝送について
sbtechnight
PRO
0
410
Oracle Exadata Database Service on [email protected] ([email protected]) - UI スクリーン・キャプチャ集
oracle4engineer
PRO
0
280
就活は相談したもの勝ち
carta_engineering
0
110
最先端の質問応答技術の研究開発と迅速な実用化ーStudio Ousiaでの取り組みー
ikuyamada
2
400

Featured

See All Featured
Designing for Performance
lara
600
65k
The Art of Programming - Codeland 2020
erikaheidi
36
11k
GraphQLとの向き合い方2022年版
quramy
22
10k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
6
910
Fashionably flexible responsive web design (full day workshop)
malarkey
396
64k
StorybookのUI Testing Handbookを読んだ
zakiyama
8
3.4k
Designing with Data
zakiwarfel
91
4.2k
Java REST API Framework Comparison - PWX 2021
mraible
PRO
14
5.6k
We Have a Design System, Now What?
morganepeng
37
6k
Building Adaptive Systems
keathley
28
1.4k
Documentation Writing (for coders)
carmenintech
51
3k
JazzCon 2018 Closing Keynote - Leadership for the Reluctant Leader
reverentgeek
176
9.2k

Transcript

  1. From Infrastructure as
    Code to Environment as
    Code
    Challenges scaling IaC
    and how to resolve them
    Adarsh Sha
    h

    Engineering Leader, Coach, Public Speake
    r

    Founder & CEO at CompuZes
    t

    @shahadarsh 

    https://compuzest.com
    https://bit.ly/iac-to-eac

    View Slide

  2. https://compuzest.com @shahadarsh
    Infrastructure as Code
    Infrastructure as Code (IaC) is an approach that takes
    proven coding techniques used by software systems and
    extends it to infrastructure. It is one of the key DevOps
    practices that enable teams to deliver infrastructure,
    and thereby software running on it, rapidly and
    reliably, at scale.

    View Slide

  3. https://compuzest.com @shahadarsh
    IaC: Principles, Patterns, and Practices
    • Key Principles


    • Idempotenc
    y

    • Immutabilit
    y

    • Patterns and Practice
    s

    • Source Contro
    l

    • Modularize and Versio
    n

    • Documentatio
    n

    • Testin
    g

    • Security and Complianc
    e

    • Automate Execution from a Shared Environmen
    t

    • IaC Pipelin
    e

    • GitOps
    Article/Talk: https://bit.ly/iac-to-eac

    View Slide

  4. https://compuzest.com @shahadarsh
    Idempotency
    Idempotency means no matter how many times you run
    your IaC and, what your starting state is, you will end up
    with the same end state. This simpli
    fi
    es the provisioning
    of Infrastructure and reduces the chances of inconsistent
    results.

    View Slide

  5. https://compuzest.com @shahadarsh
    Non-Idempotent
    Provision
    VM VM VM
    { }
    IaC
    3 VMs
    End State

    Expected =
    3

    Actual = 6
    Idempotent
    End State

    Expected =
    3

    Actual = 3
    Reapply
    VM VM VM
    Provision
    VM VM VM
    Reapply
    No change
    { }
    IaC
    3 VMs

    View Slide

  6. https://compuzest.com @shahadarsh
    Immutability
    Immutable infrastructure means instead of changing
    an existing infrastructure you replace it with new. By
    provisioning new infrastructure every time, you are
    making sure it is reproducible and doesn’t allow for
    con
    fi
    guration drift over time.

    View Slide

  7. https://compuzest.com @shahadarsh
    Provision
    v1 v1 v1
    User
    Mutable Infrastructure
    { }
    IaC
    Apply
    changes
    v2
    v2 v2
    Change
    { }
    IaC
    v1 v1 v1
    Provision
    User
    Provision
    v2 v2 v2
    User
    Immutable Infrastructure
    { }
    IaC
    Change
    { }
    IaC
    Deploys v2 to same Infrastructure Provisions new Infrastructure with v2

    View Slide

  8. https://compuzest.com @shahadarsh
    Automate Execution from a
    Shared Environment

    View Slide

  9. https://compuzest.com @shahadarsh
    VM
    VM
    VM
    Static Analysis Unit Tests
    Continuous Integration
    Compliance
    Integration
    Tests Security
    VM VM VM
    Testing & Validation
    Ephemeral Environment
    Provision
    Smoke
    Tests
    Smoke
    Tests
    Note: This example is for Platform Layer but
    similar pipeline should be added for other layers
    (account, network & application)
    IaC Pipeline

    View Slide

  10. https://compuzest.com @shahadarsh
    GitOps
    GitOps = IaC + (Work
    fl
    ow + Control Loop)

    View Slide

  11. https://compuzest.com @shahadarsh
    Create Pull Request
    ,

    Plan & Tests
    Terraform
    Apply
    VM
    VM
    VM
    Terraform
    Plan & Tests
    Approve & 

    Merge PR
    Control Loop
    Verify Desired
    & Actual State
    Sync (if
    different)
    Provision
    GitOps

    View Slide

  12. https://compuzest.com @shahadarsh

    View Slide

  13. https://compuzest.com @shahadarsh

    View Slide

  14. https://compuzest.com @shahadarsh
    Challenges scaling IaC
    • Hand-rolling Pipelines


    • Teams want an Entire Environment and not just
    individual resources


    • Replicating Environments


    • Visualizing and Understanding Environments


    • Infrastructure Drift
    Article/Talk: https://bit.ly/iac-to-eac

    View Slide

  15. https://compuzest.com @shahadarsh
    Environment as Code
    Environment as Code (EaC) is an abstraction over
    Infrastructure as Code that provides a way of de
    fi
    ning an
    entire Infrastructure Environment. It manages state for
    the environment including dependences between various
    resources in the Environment and supports best
    practices like Loose coupling, Idempotency, Immutability
    etc. for an Environment. It allows teams to deliver entire
    environments (instead of individual infrastructure
    resources) rapidly and reliably, at scale.

    View Slide

  16. https://compuzest.com @shahadarsh
    Environment as Code
    Example

    View Slide

  17. https://compuzest.com @shahadarsh
    EaC features
    • De
    fi
    ne Entire Environment


    • Various Infrastructure Resource
    s

    • Dependencies between resource
    s

    • Manage State for the entire Environmen
    t

    • Idempotent and Immutable for entire Environmen
    t

    • Loose Couplin
    g

    • Visualize and Understand Environment
    s

    • Infrastructure Drift

    View Slide

  18. Adarsh Sha
    h

    Engineering Leader, Coach, Public Speake
    r

    Founder & CEO at CompuZes
    t

    @shahadarsh 

    https://compuzest.com
    https://bit.ly/iac-to-eac

    View Slide