OpenInfraDays2019 Mastering Openstack the DevOps way

Transcript

1. Mastering OpenStack the DevOps Way Scott.liao , Mr. 沙先⽣

2. HELLO! I’m ⾁搜 Mr. 沙先⽣ 或是 Mr. 礦物先⽣ 找到我 •

   IT 鐵⼈賽第九屆：Puppet 從入⾨就放棄 • DevOpsDays Taipei 2018 Speaker • SITCON 2019 Speaker • DevOps Taiwan CI/CD/Pipeline Tools Speaker • Cloud Summit 2019 Speaker • MOPCON 2019 Unconference Speaker Scott
3. None
4. None

5. What Problem We Facing Quality Efficiency Control People

6. None
7. None

8. High Yield Rate )PX
   5P

9. $* 3FWJFX 1FSNJTTJPO *B$
   &SB 6OJU
   5FTUJOH *OUFHSBUJPO
   5FTUJOH (JU0QT $* $PEF

   0QT

10. $* 3FWJFX 23 SEP 1FSNJTTJPO *B$
    &SB 6OJU
    5FTUJOH *OUFHSBUJPO
    5FTUJOH (JU0QT

    $* $PEF

11. *OGSBTUSVDUVSF
    BT
    $PEF • Manage • Coding • Clean Infrastructure • Testing

12. 8IJDI
    *B$ • Description-Base • API-Base

13. %FTDSJQUJPO#BTF
    *B$
    5PPMT • Ansible • Puppet • Chef • Saltstack •

    CloudFormation

14. "1*#BTF
    *B$
    5PPMT • Terraform • Pulumi • AWS CDK

15. resource "openstack_compute_instance_v2" "basic" { name = "server" image_id = “ad091b-d20dw…”

    flavor_id = "t2.nano" network { name = “my_network" } }

16. $PNQVUF
    /PEF $PNQVUF
    /PEF $PNQVUF
    /PEF *OTUBODF 4FDVSJUZ
    (SPVQ /FUXPSL 7PMVNF *NBHF

17. $* 3FWJFX 23 SEP 1FSNJTTJPO *B$
    &SB 6OJU
    5FTUJOH *OUFHSBUJPO
    5FTUJOH (JU0QT

    $* $PEF

18. 4UBCMF
    *OGSBTUSVDUVSF • Production don’t Allow access • Change Management •

    Infrastructure as code Now, Testing and review it.

19. Prod Role-Base

20. 3PMF#BTF
    PG
    1FSNJTTJPO • Always read only. • Write of Change Management

    Process. • Change Process without Humans. • Deployment of platform.

21. $* 3FWJFX 23 SEP 1FSNJTTJPO *B$
    &SB 6OJU
    5FTUJOH *OUFHSBUJPO
    5FTUJOH (JU0QT

    $* $PEF

22. Terratest

23. 5FSSBUFTU
    JODMVEJOH • Terraform, Packer, Docker • Executing commands on servers

    over SSH. • AWS, GCP, Azure, Kubernetes APIs. • Helm Charts. • HTTP requests. • Shell commands. • More ..

24. 5FSSBUFTU
    XPSLJOH • Write tests. • Run Terratest tasks. • IsWorks

    or Failed. • Destroy.

25. %FWFMPQFS

26. 5FSSBUFTU
    /PUFT • Not funcation test. • Terratest is real deployment.

    • More resource for testing. • Difference Networks. • Difference Role. • Everything destroy after deployment

27. $* 3FWJFX 23 SEP 1FSNJTTJPO *B$
    &SB 6OJU
    5FTUJOH *OUFHSBUJPO
    5FTUJOH (JU0QT

    $* $PEF

28. Auditing )PX
    5P

29. None

30. 0QFO
    1PMJDZ
    "HFOU • Release v0.15.0 latest • Terraform, Docker, Kubernetes. •

    SSH, sudo • Kafka, Ceph protection • Elastic filtering

31.  44)

32.  

33. $* 3FWJFX 23 SEP 1FSNJTTJPO *B$
    &SB 6OJU
    5FTUJOH *OUFHSBUJPO
    5FTUJOH (JU0QT

    $* $PEF

34. (JU0QT • Always collaboration used Git. • PR reviews before

    deployment. • Everything Testing of deployment. • Document on READMD or Comments.

35. High Yield Rate

36. I do it ? 4IPVME

37. DevOps  

38. *B$
    SFRVJSF
    4LJMMT • Git • Ops(80%), Dev(20%) • Passion • No

    Wife

39. *B$
    SFRVJSF
    .FNCFST • DevOps n+1 • Members 4+

40. 3FGFSFODF • Mastering IaC the DevOps Way @smalltown • https://github.com/gruntwork-io/terratest

    • https://www.openpolicyagent.org/

41. 5IBOLT
     • facebook.com/shazi.liao • github/shazi7804 • https://shazi.info "OZ
    2VFTUJPOT