エンジニア向けSaaSを支えるInfrastructure as Code

F5a0754ff7f5cb7b4c30416e3b7ad1f5?s=47 Kazuma Watanabe
July 03, 2016
Programming
5
1.7k

エンジニア向けSaaSを支えるInfrastructure as Code

YAP(achimon)C::Asia Hachioji 2016 Day2

F5a0754ff7f5cb7b4c30416e3b7ad1f5?s=128

Kazuma Watanabe

July 03, 2016
Tweet

Want more?

F5a0754ff7f5cb7b4c30416e3b7ad1f5?s=48 wata727
1
1k
F5a0754ff7f5cb7b4c30416e3b7ad1f5?s=48 wata727
1
220
F5a0754ff7f5cb7b4c30416e3b7ad1f5?s=48 wata727
3
660
3ab1249be442027903e1180025340b3f?s=48 reverentgeek
12
670
A9a491b0fcbe0fbce3d64063a37add99?s=48 rmw
3
350
766b9746b59e6f09e280cd33cf4ed419?s=48 skipperchong
0
230
61857dafbd287b3027c4dcea9008ad3c?s=48 carmenhchung
8
450
06f8b41980eb4c577fa40c41d5030c19?s=48 keathley
8
260
C0390e8b11079f8761c0cd3274ed61cb?s=48 productmarketing
3
330
C35e01544a0dd94a2cf1619ee8a42ebb?s=48 clairelew
4
750
6bb82b13cda86d3b821fa44100335ddf?s=48 thoeni
1
190
B3ace07412a5178ea778e7eec161fc0a?s=48 jcasabona
4
270

Transcript

  1. 1.

    ΤϯδχΞ޲͚SaaSΛࢧ͑Δ Infrastructure as Code YAP(achimon)C::Asia Hachioji 2016 Day2

  2. 2.

    ࣗݾ঺հ • ౉ᬒҰਅ (@wata727_) • Engineer in Actcat, Inc.
 ΠϯϑϥدΓαʔόαΠυ

  3. 3.

    ࠷ॳʹ

  4. 4.

    ཧ૝ͱݱ࣮

  5. 5.

    ImmutableͰ͋Δ͜ͱͷ೉͠͞ • ࠷ॳ͸Immutable Infrastructureʹ͍ͭͯτʔ Ϋ͢Δͭ΋Γͩͬͨ • ࣮ݱ͢ΔͨΊʹ͸՝୊͕ଟ͗ͨ͢ʢޙड़ʣ

  6. 6.

    ΤϯδχΞ޲͚ SaaS

  7. 7.

    SideCI

  8. 8.

    SideCI ࣗಈίʔυϨϏϡʔ

  9. 9.

    GitHub࿈ܞ

  10. 10.

    https://github.com/integrations/sideci

  11. 11.

    ࠓ೔ͷ͓࿩ • SideCIͷAWSҠߦࣄྫ • Πϯϑϥͷӡ༻ํࣜΛબ୒ͨ͠࿩ • ࣮ݱ͢ΔͨΊͷInfrastructure as Code

  12. 12.

    AWS΁ͷҠߦ

  13. 13.

    Ҏલͷߏ੒

  14. 14.

    ϋΠϒϦοτΫϥ΢υߏ੒ • AWS + GCP • VPNͰ઀ଓͯ͠ωοτϫʔΫΛߏங • Ұํͷϕϯμʔͷো֐ͰαʔϏε͕མͪΔ͜ ͱ͕͋ͬͯɺҰຊԽ͍ͨ͠ͱ͍͏࿩͕͋ͬͨ

  15. 15.

    Ҡߦͷ՝୊

  16. 16.

    ߏ੒؅ཧ͞Ε͍ͯͳ͍ • Ҿ͖ܧ͕Εͨखॱॻ.mdͷΈ • νʔϜ͕εέʔϧ͢ΔͱଐਓԽͷ໰୊Λট͖ ͦ͏ͱ͍͏ผͷ໰୊΋… • ԿΒ͔ͷࣗಈԽ͕ඞཁ

  17. 17.

    ߏ੒؅ཧ͞Ε͍ͯͳ͍ • Ҿ͖ܧ͕Εͨखॱॻ.mdͷΈ • νʔϜ͕εέʔϧ͢ΔͱଐਓԽͷ໰୊Λট͖ ͦ͏ͱ͍͏ผͷ໰୊΋… • ԿΒ͔ͷࣗಈԽ͕ඞཁ Infrastructure as

    Code Λ΍Δͧʂʂ
  18. 18.

    Πϯϑϥͷ ӡ༻ํࣜͷબ୒

  19. 19.

    Ͳ͏΍ͬͯίʔυԽ͢Δ͔ • ·ͣ͸ΠϯϑϥɺσϓϩΠͷ؅ཧɺӡ༻ΛͲ ͏͢Δ΂͖͔ߟ͔͑ͯΒɺπʔϧΛબ୒͢Δ • PushܕɺPullܕɺImmutable…

  20. 20.

    Pushܕ

  21. 21.

    Pushܕͷӡ༻ɺσϓϩΠ • ΫϥΠΞϯτ͔Β֤αʔόʹϛυϧ΢ΣΞม ߋ΍ΞϓϦέʔγϣϯͷσϓϩΠΛSSHܦ༝ ͳͲͰߦ͏ • Ansible, Itamae, CapistranoͳͲ

  22. 22.

    Pushܕͷӡ༻ɺσϓϩΠ

  23. 23.

    Pushܕͷӡ༻ɺσϓϩΠ

  24. 24.

    ϝϦοτͱσϝϦοτ • ΫϥΠΞϯτͷΈͰಈ࡞͢ΔͷͰαʔόଆʹ ઃఆ͕ෆཁͰ؅ཧָ͕ • αʔόͷ୆਺͕ଟ͔ͬͨΓɺΦʔτεέʔϦ ϯάͰ૿ݮ͢Δͱద༻͕೉͘͠ͳΔ

  25. 25.

    Pullܕ

  26. 26.

    Pullܕͷӡ༻ɺσϓϩΠ • ֤αʔό͕ࣗ෼Ͱඞཁͳϛυϧ΢ΣΞɺΞϓ ϦέʔγϣϯͷมߋΛࣗ෼ࣗ਎ʹద༻͢Δ • Chef, AWS CodeDeploy, StretcherͳͲ

  27. 27.

    Pullܕͷӡ༻ɺσϓϩΠ

  28. 28.

    Pullܕͷӡ༻ɺσϓϩΠ

  29. 29.

    Pullܕͷӡ༻ɺσϓϩΠ

  30. 30.

    ϝϦοτͱσϝϦοτ • ֤αʔό͕੹຿Λ࣋ͭͷͰεέʔϧ͢ΔɺΦʔ τεέʔϦϯάͰ΋౰વ໰୊ͳ͠ • ֤αʔόʹର͢Δ഑෍ݩͱͳΔαʔό͕SPOF ʹͳΓ͕ͪͳͷͰɺ৑௕ԽͳͲߟ͑Δͱϝϯ ςφϯείετ͕ߴ͍

  31. 31.

    Immutable

  32. 32.

    Immutableͳӡ༻ɺσϓϩΠ • ֤αʔό͸࠷ॳ͔ΒมߋࡁΈͰɺมߋΛཁ͢ Δ৔߹ʹ͸αʔό͝ͱഁغ͢Δ • ؔ࿈πʔϧ͸Packer, DockerͳͲ

  33. 33.

    Immutableͳӡ༻ɺσϓϩΠ

  34. 34.

    Immutableͳӡ༻ɺσϓϩΠ

  35. 35.

    ϝϦοτͱσϝϦοτ • ֤αʔό͸׬શʹෳ੡ՄೳͰɺϩʔϧόοΫ ͕༰қʢBlue-Green Deployʣ • ΰʔϧσϯΠϝʔδͷੜ੒ίετ͕ߴ͍

  36. 36.

    Immutableͳ ํࣜͷ࠾༻

  37. 37.

    ΰʔϧσϯΠϝʔδͷϏϧυ • αʔϏεΠϯՄೳͳϚγϯΠϝʔδΛ౎౓ PackerͰϏϧυ͢Δ • αʔϏεΠϯՄೳͰ͋Δ͜ͱ͸PackerͷϏϧ υͷ࠷ޙʹServerspecΛ࣮ߦͯ͠୲อ͢Δ

  38. 38.

    ImmutableͳσϓϩΠ • ৽͍͠ϚγϯΠϝʔδ͝ͱʹαʔόΛBlue- GreenతʹೖΕସ͑Δ • TerraformʹΑΔαʔό࠶഑ஔͷࣗಈԽ • طଘͷϦιʔε͸TerraformingͰநग़

  39. 39.

    αʔόߏஙϑϩʔ QBDLFSCVJMETFSWFSKTPO

  40. 40.

    QBDLFSCVJMETFSWFS KTPO Server ݩʹͳΔ αʔόͷىಈ αʔόߏஙϑϩʔ

  41. 41.

    αʔόߏஙϑϩʔ QBDLFSCVJMETFSWFS KTPO Server αʔόΛߏங QSPWJTJPOFST< \ UZQFTIFMM  FYFDVUF@DPNNBOE\\7BST^^TVEP&CBTIF

    \\1BUI^^\\VTFSAFOWJSPONFOUA^^  TDSJQUT< TDSJQUTSPPU@VQHSBEFTI  TDSJQUTSPPU@JOTUBMMTI > ^  ʜ
  42. 42.

    αʔόߏஙϑϩʔ QBDLFSCVJMETFSWFS KTPO Server 4FSWFSTQFDͰ ಈ࡞ςετ

  43. 43.

    αʔόߏஙϑϩʔ QBDLFSCVJMETFSWFS KTPO Server Machine Image αʔό͔ΒϚγϯ ΠϝʔδΛநग़

  44. 44.

    αʔόߏஙϑϩʔ QBDLFSCVJMETFSWFS KTPO Machine Image αʔόΛ࡟আ

  45. 45.

    αʔόߏஙϑϩʔ UFSSBGPSNBQQMZ Machine Image

  46. 46.

    αʔόߏஙϑϩʔ UFSSBGPSNBQQMZ Machine Image ݩʹͳΔϚγϯ ΠϝʔδΛࢦఆ

  47. 47.

    αʔόߏஙϑϩʔ UFSSBGPSNBQQMZ Machine Image Security Group ࢖༻͢ΔηΩϡϦςΟ άϧʔϓΛࢦఆ

  48. 48.

    αʔόߏஙϑϩʔ UFSSBGPSNBQQMZ Machine Image Security Group Server ͦΕͧΕͷઃఆ͔Β αʔόΛىಈ

  49. 49.

    ໰୊ൃੜ

  50. 50.

    ΠϝʔδͷϏϧυ͕஗͗͢Δ • 30෼͘Β͍͔͔Δ • σϓϩΠͷ଎౓͕2෼ˠ30෼ʙͱ͔ʹͳΔ • ϦϦʔεʹର͢Δ఍߅ײͷ૿େ

  51. 51.

    σϓϩΠ͚ͩPushܕʹ • σϓϩΠ͸ैདྷ௨ΓCapistrano • ϛυϧ΢ΣΞมߋ࣌ͷΈϚγϯΠϝʔδΛߋ ৽͢ΔΑ͏ʹมߋ

  52. 52.

    Ҡߦ࡞ۀͷ࣮ࢪ

  53. 53.

    ҠߦͷྲྀΕ • ฒྻͰࣄલʹϓϩμΫγϣϯ؀ڥΛՔಇͤ͞ ͓ͯ͘ʢNOT εςʔδϯάʣ • ՄೳͳݶΓɺELBͱRoute53ͷ੾Γସ͚͑ͩͰ τϥϑΟοΫͷྲྀΕΛมߋ͢ΔΑ͏ʹ͢Δ

  54. 54.

    Ҡߦલ

  55. 55.

    Ҡߦޙ

  56. 56.

    ແࣄ׬ྃ

  57. 57.

    Infrastructure as CodeΛಋೖ͢Δ ͱ͍͏͜ͱ

  58. 58.

    ָͳӡ༻Λߟ͑Δ • ྫ͑͹ɺΠϝʔδͷϏϧυʹ͕͔͔࣌ؒΓ͢ ͗ͨΓɺϏϧυͷͨΊʹෳࡶͳ؀ڥΛߏங͢ Δඞཁ͕͋Δͱɺͳ͔ͳ͔ਁಁ͠ͳ͍ • ·ͩ·ͩվળͷ༨஍͋Γ…

  59. 59.

    ن໛ʹ͋ͬͨํ๏ΛબͿ • AutoScalingΛඞཁͱ͠ͳ͍গ਺ͷαʔόͳΒ ͹PushܕͰे෼ͳ͜ͱ΋͋Δ • ͦΕͧΕʹదͨ͠πʔϧ͕͋ΔͷͰɺྲྀߦΓ ഇΓʹ࿭Θ͞Εͳ͍

  60. 60.

    Thank you!