Supporting SRE with Azure Services

YURY NIÑO Chaos Engineering Advocate www.yurynino.com JHONNATAN GIL Site Reliability
Engineer

www.ingenieriadelcaos.com .

Agenda • What is SRE • SRE Principles ◦ Azure
Services • SRE Practices ◦ Azure Services • Resources www.ingenieriadelcaos.com .

Those systems were not RELIABLE! Reliability describes the ability of
a system or component to function under stated conditions for a speciﬁed period of time.

Site Reliability Engineering is what you get when you treat
operations as if it’s a software problem. Our mission is to protect, provide for, and progress the software and systems with an ever-watchful eye on their availability, latency, performance, and capacity.

SRE Principles

7 SRE Principles Embracing Risk Service Level Objectives Eliminating Toiling
Monitoring Automation Release Engineering Simplicity www.ingenieriadelcaos.com .

Service Level Objectives www.ingenieriadelcaos.com .

Monitoring Azure Management Portal Azure provides dashboards that display speciﬁc
metrics for services that not be available through APM tools or proﬁlers. For example, the average latency of Azure Storage, or the rate for messaging within an Azure IoT Hub. Azure Services Azure helps to maximize the availability and performance of applications and services. Azure delivers a solution for collecting, analyzing, and acting on telemetry from cloud and on-premises environments. www.ingenieriadelcaos.com .

Monitoring www.ingenieriadelcaos.com .

Automation Automate ALL the Things! • User account creation. •
Software or hardware installation preparation • Runtime conﬁguration changes. • Rollouts of new software versions. Automate yourself? Automate the Resilience! www.ingenieriadelcaos.com .

Automation www.ingenieriadelcaos.com . Chaos Engineering It is the discipline of
experimenting on a system in order to build conﬁdence in the system’s capability to withstand turbulent conditions in production. https://principlesofchaos.org

Eliminating Toiling Azure DevOps www.ingenieriadelcaos.com .

Eliminating Toiling Azure ARM Templates Azure Resource Manager templates (ARM
templates) • ARM is Infrastructure as Code for Azure. • A template is a JavaScript Object Notation (JSON) ﬁle. • A template uses declarative syntax, which lets you state what you intend to deploy without having to write the sequence of programming commands to create it. • A template specify the resources to deploy and the properties for those resources www.ingenieriadelcaos.com .

Eliminating Toiling www.ingenieriadelcaos.com .

Embracing Risk Continuous Build and Deployment! Release engineers have a
solid understanding of source code management, compilers, build conﬁguration languages, automated build tools, package managers, and installers. 4 principles: Self-Service Model, High Velocity, Hermetic Builds, Enforcement Policies and Procedures. You expect to build 100% reliable services—ones that never fail. However, increasing reliability is worse for a service rather than better! Extreme reliability comes at a cost! Embrace the Risk! www.ingenieriadelcaos.com .

Release Engineering Azure Staging slots One way to implement blue-green
deployments is using the staging slots available in Azure App Service to stage a deployment before moving it to production. www.ingenieriadelcaos.com .

SRE Practices

18 SRE Practices Eﬀective Troubleshooting Practical Alerting Emergency Response Being
On-Call Postmortems Managing Incidents Tracking Outages Testing for Reliability www.ingenieriadelcaos.com .

Being On-call www.ingenieriadelcaos.com .

Practical Alerting Azure Alerts Using Azure Monitor it is possible
to generate alert rules that captures the target and criteria for alerting. Target Resource Deﬁnes the scope and signals available for alerting. • Virtual machines. • Storage accounts. • Log Analytics workspace. • Application Insights. Signals can be of the following types: metric, activity log, Application Insights, and log. www.ingenieriadelcaos.com .

On-Call Postmortems Managing Incidents Tracking Outages Testing for Reliability www.ingenieriadelcaos.com .

Emergency Response www.ingenieriadelcaos.com .

Preparation • Training and support, general knowledge management • Needs
constant iteration Analysis & Learning • Understand what happened and build new action plans and training • Siloed apps for reporting and analysis make it hard to summarize incidents, delaying post mortems Detection & Alerting • Monitoring systems send alerts for issues which need to be reviewed and escalated • Alerting systems generate noise which is lost in email, unclear where to escalate Remediation • Resolve the issues • Multiple tools, people and processes need to be coordinated for the implementation of long-term solutions for incidents. Process Overview & Challenges Containment • Data must be reviewed and the current situation assessed • Damage has to be contained quickly and efficiently to minimize the impact. Incident Management

Incident Management Azure Security Incident Management It is a critical
responsibility for Microsoft and represents an investment that any customer using Microsoft Online Services can count on. Azure implements the ﬁve-stage process. Detect Assess Diagnose Stabilize Close www.ingenieriadelcaos.com .

On-Call Postmortems Managing Incidents Tracking Outages Testing for Reliability

Eﬀective Troubleshooting www.ingenieriadelcaos.com .

Tracking Outage www.ingenieriadelcaos.com .

18 SRE Practices Handling Overload Software Engineering Cascading Failures Load
Balancing Distributed Consensus Data Pipelines Data Integrity Distributed Scheduling www.ingenieriadelcaos.com .

Software Engineering Plan Requirements Design Code Deploy Maintain www.ingenieriadelcaos.com .

Load Balancing Azure Load Balancer Azure delivers high availability and
network performance: • Instantly add scale to your applications • Load balance Internet and private network traﬃc • Improve application reliability via health checks • Flexible NAT rules for better security • Directly integrated into virtual machines and cloud services www.ingenieriadelcaos.com .

Balancing Distributed Consensus Data Pipelines Data Integrity Distributed Scheduling www.ingenieriadelcaos.com .

Handling Overload Throttling www.ingenieriadelcaos.com .

Handling Overload Priority Queue www.ingenieriadelcaos.com .

Handling Overload Circuit Breaker www.ingenieriadelcaos.com .

Load Balancing www.ingenieriadelcaos.com .

Balancing Distributed Consensus Data Pipelines Data Integrity Distributed Scheduling

Other Services DEMO Azure IaC con Terraform Bondades de la
IaC Principales opciones: terrafor, Pulumi, Crossplane, Azure Resource Manager, CLI, entre otros…. www.ingenieriadelcaos.com .

Well Framework Architecture

Resources www.yurynino.com . Azure Reference https://docs.microsoft.com/en-us/azure/service-fabric/service-fabric-controlled-chaos https://marketplace.visualstudio.com/items?itemName=proofdock.chaos-platform https://docs.microsoft.com/en-us/azure/architecture/framework/ https://docs.microsoft.com/en-us/azure/azure-resource-manager/management/reque st-limits-and-throttling

Swag and more • Claim your attendee Learner Badge here:
• 30 Days to learn it: aka.ms/global-azure/30D2L • Virtual background and ANOTHER Badge: blog.globalazure.net/Swag

Questions??

GRACIAS YURY NIÑO ROA JHONNATAN GIL CHAVES Site Reliability Engineer
ADL Digital Labs

Supporting SRE with Azure Services

Supporting SRE with Azure Services

More Decks by Yury Nino

Other Decks in Technology

Featured

Transcript