Mastering Openstack the DevOps way
Mastering OpenStackthe DevOps WayScott.liao , Mr. 沙先⽣
View Slide
HELLO! I’m⾁搜 Mr. 沙先⽣ 或是 Mr. 礦物先⽣ 找到我• IT 鐵⼈賽第九屆:Puppet 從入⾨就放棄• DevOpsDays Taipei 2018 Speaker• SITCON 2019 Speaker• DevOps Taiwan CI/CD/Pipeline Tools Speaker• Cloud Summit 2019 Speaker• MOPCON 2019 Unconference SpeakerScott
What Problem We FacingQualityEfficiencyControlPeople
High Yield Rate)PX5P
$*3FWJFX1FSNJTTJPO*B$&SB 6OJU5FTUJOH*OUFHSBUJPO5FTUJOH(JU0QT$*$PEF 0QT
$*3FWJFX23SEP1FSNJTTJPO*B$&SB 6OJU5FTUJOH*OUFHSBUJPO5FTUJOH(JU0QT$*$PEF
*OGSBTUSVDUVSFBT$PEF• Manage• Coding• Clean Infrastructure• Testing
8IJDI*B$• Description-Base• API-Base
%FTDSJQUJPO#BTF*B$5PPMT• Ansible• Puppet• Chef• Saltstack• CloudFormation
"1*#BTF*B$5PPMT• Terraform• Pulumi• AWS CDK
resource "openstack_compute_instance_v2" "basic" {name = "server"image_id = “ad091b-d20dw…”flavor_id = "t2.nano"network { name = “my_network" }}
$PNQVUF/PEF $PNQVUF/PEF $PNQVUF/PEF*OTUBODF 4FDVSJUZ(SPVQ/FUXPSL 7PMVNF*NBHF
4UBCMF*OGSBTUSVDUVSF• Production don’t Allow access• Change Management• Infrastructure as code Now,Testing and review it.
ProdRole-Base
3PMF#BTFPG1FSNJTTJPO• Always read only.• Write of Change ManagementProcess.• Change Process without Humans.• Deployment of platform.
Terratest
5FSSBUFTUJODMVEJOH• Terraform, Packer, Docker• Executing commands on servers overSSH.• AWS, GCP, Azure, Kubernetes APIs.• Helm Charts.• HTTP requests.• Shell commands.• More ..
5FSSBUFTUXPSLJOH• Write tests.• Run Terratest tasks.• IsWorks or Failed.• Destroy.
%FWFMPQFS
5FSSBUFTU/PUFT• Not funcation test.• Terratest is real deployment.• More resource for testing.• Difference Networks.• Difference Role.• Everything destroy after deployment
Auditing)PX5P
0QFO1PMJDZ"HFOU• Release v0.15.0 latest• Terraform, Docker, Kubernetes.• SSH, sudo• Kafka, Ceph protection• Elastic filtering
44)
(JU0QT• Always collaboration used Git.• PR reviews before deployment.• Everything Testing of deployment.• Document on READMD or Comments.
High Yield Rate
I do it ?4IPVME
DevOps
*B$SFRVJSF4LJMMT• Git• Ops(80%), Dev(20%)• Passion• No Wife
*B$SFRVJSF.FNCFST• DevOps n+1• Members 4+
3FGFSFODF• Mastering IaC the DevOps Way @smalltown• https://github.com/gruntwork-io/terratest• https://www.openpolicyagent.org/
5IBOLT• facebook.com/shazi.liao• github/shazi7804• https://shazi.info"OZ2VFTUJPOT
shazi7804
kohbis
okazuki
sasakitomohiro
tacck
tsubakimoto_s
htsuruo
tbshiki
moritama1515
mercari
microcms
forcia_dev_pr
nabedge
thoeni
lauravandoore
andyhume
searls
kneath
frogandcode
philhawksworth
shlominoach
cherdarchuk
aarron
bluesmoon
kastner