Immutable Cloud Infrastruture as Code 101
0 likes312 views
The document discusses the concept of immutable cloud infrastructure and its benefits, such as enhanced security, consistency, and simplified rollback processes. It highlights tools and practices, including cloud-init and infrastructure as code, which facilitate the management of cloud environments. The author also provides resources and demos related to cloud infrastructure and configuration management.
Immutable Cloud Infrastruture as Code 101
- 1. Alex Krause [email protected] @alex0ptr Immutable Cloud Infrastructure, as Code 101
- 2. @alex0ptr Immutable Cloud Infrastructure, as Code 101 Infrastructure AWS, GCP, DO Declarative 20102012 2006
- 3. Old Skool Cloud @alex0ptr Image: Run DMC: Streets of New York by Jeff Pinilla http://bit.ly/2Qk34XL / CC BY http://bit.ly/2vlsURa / turned black and white
- 4. „I’ve hugged a lot of servers in my life, and believe me, they do not hug you back. They hate you.“ —Werner Vogels, CTO of Amazon @alex0ptrImage: Dutch Digital Pioneers - Werner Vogels by Guido van Nispen http://bit.ly/2IEOsQE / CC BY http://bit.ly/2vlsURa / Citation added
- 5. @alex0ptr VS
- 6. 📜 Immutable Infrastructure ‣ ~ 2012 at Netflix ‣ instantiate and replace, never change Gain: ‣ no state accumulation ‣ better consistency and security ‣ true rollbacks and easy experiments @alex0ptr
- 7. @alex0ptr “… is an open source tool for creating identical machine images for multiple platforms from a single source configuration.” ‣ 2013 ‣ Super Fast Deployment ‣ Multi-provider portability ‣ Improved stability ‣ Greater testability
- 9. What else?🧐 @alex0ptr ‣ Virtualbox, VMware… ‣ Vagrant Boxes ‣ Ansible, Chef, Puppet…
- 10. How to add config and environment variables? 🤔 @alex0ptr
- 11. @alex0ptr “Cloud-init is the defacto multi-distribution package that handles early initialization of a cloud instance.” ‣ 2008 ‣ simple init for the cloud ‣ initially AWS EC2 ‣ pre-installed everywhere!
- 12. http://169.254.169.254/latest/user-data ✨ …where the Magic happens ✨ @alex0ptr
- 14. @alex0ptr ## template: jinja #!/bin/bash {% if v1.region == 'us-east-2' -%} echo 'Installing custom proxies for {{ v1.region }}' sudo apt-get install my-xtra-fast-stack {%- endif %}
- 15. @alex0ptr #cloud-config packages: - cowsay users: - default - name: app groups: docker write_files: - content: nVc+Xj7rPhMqb... encoding: b64 owner: app:app path: /home/app/application.yml permissions: '0655'
- 16. How to provision and manage the Data Center? 🤔 @alex0ptr
- 17. 🏗 Infrastructure as Code ‣ 2010 AWS CloudFormation ‣ provision ‣ and manage data centers Gain: ‣ versioning ‣ speed ‣ consistency ‣ security ‣ collaboration @alex0ptr
- 18. Infrastructure as Code @alex0ptr Config ManagementVS MutableVSImmutable ConfigVSLifecycle
- 19. @alex0ptr “Write, Plan, and Create Infrastructure as Code” ‣ 2014 ‣ ~40 Clouds ‣ Databases, Monitoring-, Infrastructure-Software ‣ Plugins
- 20. 🎊 Demo 🎉 Enterprise Cloud Architecture @alex0ptr https://github.com/alex0ptr/cloud-101
- 24. @alex0ptr Availability zone Subnet Availability zone Subnet Subnet Auto Scaling Group Subnet Instances Instances Application Load Balancer Application Load Balancer Amazon DynamoDB Amazon ECR Also: ‣ Network policies ‣ IAM
- 25. What else?🧐 @alex0ptr ‣ Modules ‣ Workspaces ‣ More Collaboration ‣ Outputs from other States
- 26. Lesestoff 🗞 ‣ A comprehensive Guide to Terraform. Gruntwork ‣ Free CloudFormation Templates. cloudonaut.io ‣ Complete AWS IAM Reference. cloudonaut.io ‣ Terraform 0.12 Preview. Terraform Blog @alex0ptr
- 27. xing.com/companies/qawaregmbh linkedin.com/company/qaware-gmbh slideshare.net/qaware twitter.com/qaware github.com/qaware youtube.com/qawaregmbh Alex Krause [email protected] @alex0ptr
- 29. QAware GmbH Mainz Rheinstraße 4 D 55116 Mainz Tel.: +49 (0) 6131 215 69 – 0 Fax: +49 (0) 6131 215 69 – 68 xing.com/companies/qawaregmbh linkedin.com/company/qaware-gmbh slideshare.net/qaware twitter.com/qaware github.com/qaware youtube.com/qawaregmbh
- 30. QAware GmbH München Aschauer Straße 32 81549 München Tel.: +49 (0) 89 23 23 15 – 0 Fax: +49 (0) 89 23 23 15 – 129 xing.com/companies/qawaregmbh linkedin.com/company/qaware-gmbh slideshare.net/qaware twitter.com/qaware github.com/qaware youtube.com/qawaregmbh