SlideShare uma empresa Scribd logo

Chef in the cloud [dbccg]

J
jtimberman

The document discusses using Chef and infrastructure as code to automate cloud infrastructure. It describes how Chef allows defining infrastructure through code using nodes, roles, recipes, and attributes. Nodes can be provisioned and configured automatically using Chef recipes, which declare resources and are installed through Chef clients running on the nodes. Roles define recipes to apply to nodes. Cloud infrastructure like load balancers and web servers can be launched from templates and provisioned using Chef automation.

Tecnologia
1 de 60
Baixar para ler offline
Chef in the Cloud Speaker: Joshua Timberman Technical Evangelist ‣ joshua@opscode.com ‣ @jtimberman ‣ www.opscode.com Copyright © 2010 Opscode, Inc - All Rights Reserved 1 Monday, September 27, 2010
System administrator Many environments Opscode: Training, Services Copyright © 2010 Opscode, Inc - All Rights Reserved http://www.flickr.com/photos/anotherphotograph/2100904507/sizes/o/ 2 Monday, September 27, 2010
Developers? Systems Administrators? “Business” people? http://www.flickr.com/photos/timyates/2854357446/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 3 Monday, September 27, 2010
Cloud Infrastructure Provisioning Configuration Management System Integration Copyright © 2010 Opscode, Inc - All Rights Reserved 4 Monday, September 27, 2010
Provisioning Nodes lb01 web01 web02 db-master01 db-slave01 db-slave02 Copyright © 2010 Opscode, Inc - All Rights Reserved 5 Monday, September 27, 2010
Configuration Management Roles loadbalancer webserver dbmaster dbslave Copyright © 2010 Opscode, Inc - All Rights Reserved 6 Monday, September 27, 2010
Systems Integration Load Balancer Recipes Web Server Web Server haproxy apache2 myssql DB Master DB Slave DB Slave Disk Disk Disk Copyright © 2010 Opscode, Inc - All Rights Reserved 7 Monday, September 27, 2010
Infrastructure as Code http://www.flickr.com/photos/wonderlane/2306082998/ Copyright © 2010 Opscode, Inc - All Rights Reserved 8 Monday, September 27, 2010
Infrastructure as Code is... A technical domain revolving around building and managing infrastructure programmatically http://www.flickr.com/photos/kwerfeldein/2634561264/sizes/o/ Copyright © 2010 Opscode, Inc - All Rights Reserved 9 Monday, September 27, 2010
Enable the reconstruction of the business from nothing but a source code repository, an application data backup, and bare metal resources. Copyright © 2010 Opscode, Inc - All Rights Reserved 10 Monday, September 27, 2010
Copyright © 2010 Opscode, Inc - All Rights Reserved 11 http://www.brooklynstreetart.com/theBlog/wp-content/uploads/2008/12/swedish_chef_bork-sleeper-cell.jpg Monday, September 27, 2010
At a High Level... ‣ A library for configuration management ‣ A configuration management system ‣ A systems integration platform ‣ An API for your entire Infrastructure http://www.flickr.com/photos/asten/2159525309/sizes/l/ Monday, September 27, 2010
Chef Client runs on your systems Copyright © 2010 Opscode, Inc - All Rights Reserved 13 Monday, September 27, 2010
Clients talk to a Chef Server Copyright © 2010 Opscode, Inc - All Rights Reserved 14 Monday, September 27, 2010
RESTful API w/ JSON responses Copyright © 2010 Opscode, Inc - All Rights Reserved 15 Monday, September 27, 2010
The Opscode Platform is a hosted Chef Server http://www.opscode.com Copyright © 2010 Opscode, Inc - All Rights Reserved 16 Monday, September 27, 2010
We call each system you configure a Node Copyright © 2010 Opscode, Inc - All Rights Reserved http://www.flickr.com/photos/peterrosbjerg/3913766224/ 17 Monday, September 27, 2010
Nodes have Attributes Kernel info! { "kernel": { "machine": "x86_64", "name": "Darwin", "os": "Darwin", "version": "Darwin Kernel Version 10.4.0: Fri Apr 23 18:28:53 PDT 2010; root:xnu-1504.7.4~1/RELEASE_I386", "release": "10.4.0" }, "platform_version": "10.6.4", "platform": "mac_os_x", "platform_build": "10F569", "domain": "local", Platform info! "os": "darwin", "current_user": "jtimberman", "ohai_time": 1278602661.60043, "os_version": "10.4.0", "uptime": "18 days 17 hours 49 minutes 18 seconds", "ipaddress": "10.13.37.116", "hostname": "cider", "fqdn": "cider.local", Hostname and IP! "uptime_seconds": 1619358 } Copyright © 2010 Opscode, Inc - All Rights Reserved 18 Monday, September 27, 2010
Nodes have a Run List What Roles or Recipes to apply in Order Copyright © 2010 Opscode, Inc - All Rights Reserved 19 Monday, September 27, 2010
Nodes have Roles Copyright © 2010 Opscode, Inc - All Rights Reserved http://www.flickr.com/photos/laenulfean/374398044/ 20 Monday, September 27, 2010
Roles have a Run List What Roles or Recipes to apply in Order Copyright © 2010 Opscode, Inc - All Rights Reserved 21 Monday, September 27, 2010
remote_file link cookbook_file service ruby_block template execute Chef manages Resources on Nodes package bash git log deploy user http_request Copyright © 2010 Opscode, Inc - All Rights Reserved 22 Monday, September 27, 2010
Resources... Declare a description of the state a part of the node should be in ‣ Have a type package "apache2" do version "2.2.11-2ubuntu2.6" action :install ‣ Have a name end template "/etc/apache2/apache2.conf" do ‣ Have parameters source "apache2.conf.erb" owner "root" ‣ Take action to put the group "root" mode 0644 resource in the action :create declared state end http://www.flickr.com/photos/xiaming/382205902/sizes/l/ Monday, September 27, 2010
Resources take action through Providers Copyright © 2010 Opscode, Inc - All Rights Reserved 24 Monday, September 27, 2010
Providers... Know how to actually perform the actions specified by a resource. Apt, Yum, Rubygems, Multiple providers per resource type. Portage, Macports, FreeBSD Ports, etc. http://www.flickr.com/photos/affableslinky/562950216/ Monday, September 27, 2010
Resources Platform Provider http://www.flickr.com/photos/acurbelo/2628837104/sizes/o/ Monday, September 27, 2010
Recipes are lists of Resources http://www.flickr.com/photos/roadsidepictures/2478953342/sizes/o/ Copyright © 2010 Opscode, Inc - All Rights Reserved 27 Monday, September 27, 2010
Recipes... Apply resources in the order they are specified package "apache2" do version "2.2.11-2ubuntu2.6" action :install 1 ‣ Evaluates resources in [ end the order they appear "package[apache2]", "template[/etc/apache2/apache2.conf]" template "/etc/apache2/apache2.conf" do ] source "apache2.conf.erb" ‣ Adds each resource to owner "root" the Resource Collection group "root" mode 0644 action :create 2 end http://www.flickr.com/photos/roadsidepictures/2478953342/sizes/o/ Monday, September 27, 2010
Order Matters http://www.infrastructures.org/papers/turing/turing.html Copyright © 2010 Opscode, Inc - All Rights Reserved 29 Monday, September 27, 2010
Cookbooks are packages for Recipes Copyright © 2010 Opscode, Inc - All Rights Reserved 30 Monday, September 27, 2010
Common Cookbook Components recipes/ default.rb files/ templates/ attributes/ default.rb metadata.rb Copyright © 2010 Opscode, Inc - All Rights Reserved 31 Monday, September 27, 2010
Cookbooks are shareable! cookbooks.opscode.com Copyright © 2010 Opscode, Inc - All Rights Reserved 32 Monday, September 27, 2010
Data bags store arbitrary data Copyright © 2010 Opscode, Inc - All Rights Reserved 33 Monday, September 27, 2010
A user data bag item... % knife data bag show users jtimberman { "comment": "Joshua Timberman", "groups": "sysadmin", "ssh_keys": "ssh-rsa SUPERSEKRATS jtimberman@cider", "files": { ".zshrc": { "mode": "0644", "source": "dot-zshrc" }, ".vimrc": { "mode": "0644", "source": "dot-vimrc" } }, "id": "jtimberman", "uid": 7004, "shell": "/usr/bin/zsh", "openid": "http://jtimberman.myopenid.com/" } Copyright © 2010 Opscode, Inc - All Rights Reserved Monday, September 27, 2010
sysadmins = search(:users, 'groups:sysadmin') sysadminss.each do |u| user u['id'] do uid u['id'] shell u['shell'] comment u['comment'] supports :manage_home => true Data bags make recipes home "/home/#{u['id']}" end awesome-r (that’s directory "/home/#{u['id']}/.ssh" do owner u['id'] group u['id'] mode 0700 totally a word) end template "/home/#{u['id']}/.ssh/authorized_keys" do source "authorized_keys.erb" owner u['id'] group u['id'] mode 0600 variables :ssh_keys => u['ssh_keys'] end end Copyright © 2010 Opscode, Inc - All Rights Reserved 35 Monday, September 27, 2010
Nodes, Roles, Data Bags are Searchable % knife search node “role:webserver” search(:users, “group:sysadmins”) Copyright © 2010 Opscode, Inc - All Rights Reserved 36 Monday, September 27, 2010
Automating the Cloud with Chef http://www.flickr.com/photos/46183897@N00/3442880227/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 37 Monday, September 27, 2010
lb1 web1 web2 Copyright © 2010 Opscode, Inc - All Rights Reserved 38 Monday, September 27, 2010
Command-line API utility, Knife http://www.flickr.com/photos/myklroventine/3474391066/ Copyright © 2010 Opscode, Inc - All Rights Reserved 39 Monday, September 27, 2010
Copyright © 2010 Opscode, Inc - All Rights Reserved 40 Monday, September 27, 2010
Fog EC2 Rackspace/Openstack Terremark/vcloud Slicehost Others...? Copyright © 2010 Opscode, Inc - All Rights Reserved 41 Monday, September 27, 2010
Add your Cloud credentials to knife.rb vi ~/chef-repo/.chef/knife.rb # Cloud credentials knife[:aws_access_key_id] = ENV['AWS_ACCESS_KEY_ID'] knife[:aws_secret_access_key] = ENV['AWS_SECRET_ACCESS_KEY'] Copyright © 2010 Opscode, Inc - All Rights Reserved 42 Monday, September 27, 2010
Download some cookbooks % knife cookbook site vendor haproxy INFO: Downloading haproxy from the cookbooks site at version 0.7.0 ... INFO: Merging changes from haproxy version 0.7.0. ... INFO: Cookbook haproxy version 0.7.0 successfully vendored! % knife cookbook site vendor apache2 ... INFO: Cookbook apache2 version 0.12.3 successfully vendored! Copyright © 2010 Opscode, Inc - All Rights Reserved 43 Monday, September 27, 2010
Upload Cookbooks! knife cookbook upload -a These run as root, kids. Let’s not blindly trust the upstream too much! Copyright © 2010 Opscode, Inc - All Rights Reserved 44 Monday, September 27, 2010
Build some roles % vi roles/lb.rb name "lb" description "Load Balancer" run_list( "recipe[haproxy]" ) % vi roles/webserver.rb name "webserver" description "Systems that serve HTTP traffic" run_list( "recipe[apache2]" ) default_attributes( "apache2" => { "listen_ports" => [ "80" ] } ) Copyright © 2010 Opscode, Inc - All Rights Reserved 45 Monday, September 27, 2010
Upload Roles % knife role from file lb.rb WARN: HTTP Request Returned 404 Not Found: Cannot load role lb WARN: Updated Role lb! % knife role from file webserver.rb WARN: HTTP Request Returned 404 Not Found: Cannot load role webserver WARN: Updated Role webserver! Copyright © 2010 Opscode, Inc - All Rights Reserved 46 Monday, September 27, 2010
Launch a new Web Server and Load Balancer knife ec2 server create ‘role[webserver]’ knife ec2 server create ‘role[lb]’ Copyright © 2010 Opscode, Inc - All Rights Reserved 47 Monday, September 27, 2010
knife ec2 server create Create EC2 instance via API Retrieve local configuration SSH to instance ‣ Write chef configuration and authentication ‣ Install Ruby and Chef ‣ Run Chef with specified run list Copyright © 2010 Opscode, Inc - All Rights Reserved 48 Monday, September 27, 2010
Chef runs on your new server sudo chef-client INFO: Starting Chef Run ... INFO: Chef Run complete in 211.852033 seconds Automatically. Copyright © 2010 Opscode, Inc - All Rights Reserved 49 Monday, September 27, 2010
cookbooks/haproxy/recipes/default.rb webservers = search(:node, "role:webserver") template "/etc/haproxy/haproxy.cfg" do source "haproxy.cfg.erb" owner "root" group "root" mode 0644 variables(:webservers => webservers) notifies :restart, resources(:service => "haproxy") end cookbooks/haproxy/templates/default/haproxy.cfg.erb listen application 0.0.0.0:80 balance roundrobin <% @webservers.each do |n| -%> server <%= n[:hostname] %> <%= n[:ipaddress] %>:80 weight 1 maxconn 50 check <% end -%> Copyright © 2010 Opscode, Inc - All Rights Reserved 50 Monday, September 27, 2010
cookbooks/apache2/templates/default/index.html.erb <html> <head> <title>Welcome to <%= node[:hostname] %></title> </head> <body> You have reached: <ul> <li><b>FQDN</b>: <%= node[:fqdn] %></title> <li><b>Public FQDN</b>: <%= node[:ec2][:public_hostname]%></id> <li><b>IP Address</b>: <%= node[:ipaddress] %></id> <li><b>Public IP</b>: <%= node[:ec2][:public_ipv4] %></id> <li><b>Platform</b>: <%= node[:platform] %></id> <li><b>Plaform Version</b>: <%= node[:platform_version] %></id> <li><b>Run List</b>: <%= node.run_list %></id> </ul> </body> </html> Copyright © 2010 Opscode, Inc - All Rights Reserved 51 Monday, September 27, 2010
Lessons Learned Copyright © 2010 Opscode, Inc - All Rights Reserved 52 Monday, September 27, 2010
You own your Availability Copyright © 2010 Opscode, Inc - All Rights Reserved http://www.flickr.com/photos/jeffmcneill/4252968654/ 53 Monday, September 27, 2010
Copyright © 2010 Opscode, Inc - All Rights Reserved 54 Monday, September 27, 2010
AMIs ‣ Amazon Machine Images ‣ Use one AMI with JEOS for each size ‣ Beware of Image Sprawl ‣ Rebundle for long-running installation http://www.flickr.com/photos/wwworks/3271208324/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 55 Monday, September 27, 2010
Instances ‣ c1.medium is best bang for the $ ‣ User data can inform configuration ‣ Use SSH key only access ‣ Allow SSH in default security group http://www.flickr.com/photos/wwworks/3271208324/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 56 Monday, September 27, 2010
Instances ‣ Internal and external network info is not unique ‣ Only trust the instance-id http://www.flickr.com/photos/wwworks/3271208324/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 57 Monday, September 27, 2010
Storage ‣ EBS ‣ Persistent storage ‣ Trivial to snapshot ‣ Snapshots can create new devices http://www.flickr.com/photos/wwworks/3271208324/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 58 Monday, September 27, 2010
Elastic IP Addresses ‣ Static public routable addresses ‣ Easy and fast to re-assign ‣ Just an API call away http://www.flickr.com/photos/wwworks/3271208324/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 59 Monday, September 27, 2010
Resources/Questions www.opscode.com/chef IRC and Mailing lists ‣ irc.freenode.net #chef ‣ lists.opscode.com Twitter: ‣ @opscode, #opschef ‣ @jtimberman Questions? Copyright © 2010 Opscode, Inc - All Rights Reserved 60 Monday, September 27, 2010

Recomendados

Opscode Lightning Talk - Operations as Code
Opscode Lightning Talk - Operations as CodeOpscode Lightning Talk - Operations as Code
Opscode Lightning Talk - Operations as CodeJohn Willis
 
Operations as Code
Operations as CodeOperations as Code
Operations as CodeIntel Corporation
 
3. cloudcamp lt
3. cloudcamp lt3. cloudcamp lt
3. cloudcamp ltOpsCamp
 
Oper
OperOper
OperJohn Willis
 
Fusion-io Memory Flash for Microsoft SQL Server 2012
Fusion-io Memory Flash for Microsoft SQL Server 2012Fusion-io Memory Flash for Microsoft SQL Server 2012
Fusion-io Memory Flash for Microsoft SQL Server 2012Mark Ginnebaugh
 
The Scope of Cloud Computing, Kevin Bloch
The Scope of Cloud Computing, Kevin BlochThe Scope of Cloud Computing, Kevin Bloch
The Scope of Cloud Computing, Kevin Blochguesta04b0
 
The State of Puppet
The State of PuppetThe State of Puppet
The State of PuppetPuppet
 
Hyper-V VMM ile Cloud computing
Hyper-V VMM ile Cloud computingHyper-V VMM ile Cloud computing
Hyper-V VMM ile Cloud computingAhmet Mutlu
 

Recomendados

Opscode Lightning Talk - Operations as Code
Opscode Lightning Talk - Operations as CodeOpscode Lightning Talk - Operations as Code
Opscode Lightning Talk - Operations as CodeJohn Willis
 
Operations as Code
Operations as CodeOperations as Code
Operations as CodeIntel Corporation
 
3. cloudcamp lt
3. cloudcamp lt3. cloudcamp lt
3. cloudcamp ltOpsCamp
 
Oper
OperOper
OperJohn Willis
 
Fusion-io Memory Flash for Microsoft SQL Server 2012
Fusion-io Memory Flash for Microsoft SQL Server 2012Fusion-io Memory Flash for Microsoft SQL Server 2012
Fusion-io Memory Flash for Microsoft SQL Server 2012Mark Ginnebaugh
 
The Scope of Cloud Computing, Kevin Bloch
The Scope of Cloud Computing, Kevin BlochThe Scope of Cloud Computing, Kevin Bloch
The Scope of Cloud Computing, Kevin Blochguesta04b0
 
The State of Puppet
The State of PuppetThe State of Puppet
The State of PuppetPuppet
 
Hyper-V VMM ile Cloud computing
Hyper-V VMM ile Cloud computingHyper-V VMM ile Cloud computing
Hyper-V VMM ile Cloud computingAhmet Mutlu
 
簡報5
簡報5簡報5
簡報5hjta
 
Fosdem chef-101-app-deploy
Fosdem chef-101-app-deployFosdem chef-101-app-deploy
Fosdem chef-101-app-deployjtimberman
 
Understanding lwrp development
Understanding lwrp developmentUnderstanding lwrp development
Understanding lwrp developmentjtimberman
 
The Strategic Triumvirate
The Strategic TriumvirateThe Strategic Triumvirate
The Strategic Triumviraterodchambers
 
Cooking security sans@night
Cooking security sans@nightCooking security sans@night
Cooking security sans@nightjtimberman
 
Mwrc2011 cookbook design patterns
Mwrc2011 cookbook design patternsMwrc2011 cookbook design patterns
Mwrc2011 cookbook design patternsjtimberman
 
tmux lightning talk mwrc
tmux lightning talk mwrctmux lightning talk mwrc
tmux lightning talk mwrcjtimberman
 
Oscon2011 tutorial
Oscon2011 tutorialOscon2011 tutorial
Oscon2011 tutorialjtimberman
 
Velocity2011 chef-workshop
Velocity2011 chef-workshopVelocity2011 chef-workshop
Velocity2011 chef-workshopjtimberman
 
Settle Your Mind With Serelax
Settle Your Mind With SerelaxSettle Your Mind With Serelax
Settle Your Mind With SerelaxAlex Buffon
 
Data driven app deploys with chef frontdev
Data driven app deploys with chef frontdevData driven app deploys with chef frontdev
Data driven app deploys with chef frontdevjtimberman
 
Derailed chef update-oct2010
Derailed chef update-oct2010Derailed chef update-oct2010
Derailed chef update-oct2010jtimberman
 
แบบทดสอบเสียงในภาษา
แบบทดสอบเสียงในภาษาแบบทดสอบเสียงในภาษา
แบบทดสอบเสียงในภาษาPiyarerk Bunkoson
 
Operations as Code
Operations as CodeOperations as Code
Operations as CodeOpsCamp
 
Automated infrastructure is on the menu
Automated infrastructure is on the menuAutomated infrastructure is on the menu
Automated infrastructure is on the menujtimberman
 
Sjug aug 2010_cloud
Sjug aug 2010_cloudSjug aug 2010_cloud
Sjug aug 2010_cloudMichael Neale
 
Cloudy Operations - OSCON 2010
Cloudy Operations - OSCON 2010 Cloudy Operations - OSCON 2010
Cloudy Operations - OSCON 2010 Chef Software, Inc.
 
Open End To End Js Stack
Open End To End Js StackOpen End To End Js Stack
Open End To End Js StackSkills Matter
 
GeekAustin DevOps
GeekAustin DevOpsGeekAustin DevOps
GeekAustin DevOpsMatt Ray
 
Automating Oracle Database deployment with Amazon Web Services, fabric, and boto
Automating Oracle Database deployment with Amazon Web Services, fabric, and botoAutomating Oracle Database deployment with Amazon Web Services, fabric, and boto
Automating Oracle Database deployment with Amazon Web Services, fabric, and botomjbommar
 
Open Innovation means Open Source
Open Innovation means Open SourceOpen Innovation means Open Source
Open Innovation means Open SourceBertrand Delacretaz
 
What Big Data Folks Need to Know About DevOps
What Big Data Folks Need to Know About DevOpsWhat Big Data Folks Need to Know About DevOps
What Big Data Folks Need to Know About DevOpsMatt Ray
 

Mais conteúdo relacionado

Destaque

簡報5
簡報5簡報5
簡報5hjta
 
Fosdem chef-101-app-deploy
Fosdem chef-101-app-deployFosdem chef-101-app-deploy
Fosdem chef-101-app-deployjtimberman
 
Understanding lwrp development
Understanding lwrp developmentUnderstanding lwrp development
Understanding lwrp developmentjtimberman
 
The Strategic Triumvirate
The Strategic TriumvirateThe Strategic Triumvirate
The Strategic Triumviraterodchambers
 
Cooking security sans@night
Cooking security sans@nightCooking security sans@night
Cooking security sans@nightjtimberman
 
Mwrc2011 cookbook design patterns
Mwrc2011 cookbook design patternsMwrc2011 cookbook design patterns
Mwrc2011 cookbook design patternsjtimberman
 
tmux lightning talk mwrc
tmux lightning talk mwrctmux lightning talk mwrc
tmux lightning talk mwrcjtimberman
 
Oscon2011 tutorial
Oscon2011 tutorialOscon2011 tutorial
Oscon2011 tutorialjtimberman
 
Velocity2011 chef-workshop
Velocity2011 chef-workshopVelocity2011 chef-workshop
Velocity2011 chef-workshopjtimberman
 
Settle Your Mind With Serelax
Settle Your Mind With SerelaxSettle Your Mind With Serelax
Settle Your Mind With SerelaxAlex Buffon
 
Data driven app deploys with chef frontdev
Data driven app deploys with chef frontdevData driven app deploys with chef frontdev
Data driven app deploys with chef frontdevjtimberman
 
Derailed chef update-oct2010
Derailed chef update-oct2010Derailed chef update-oct2010
Derailed chef update-oct2010jtimberman
 
แบบทดสอบเสียงในภาษา
แบบทดสอบเสียงในภาษาแบบทดสอบเสียงในภาษา
แบบทดสอบเสียงในภาษาPiyarerk Bunkoson
 

Destaque (13)

簡報5
簡報5簡報5
簡報5
 
Fosdem chef-101-app-deploy
Fosdem chef-101-app-deployFosdem chef-101-app-deploy
Fosdem chef-101-app-deploy
 
Understanding lwrp development
Understanding lwrp developmentUnderstanding lwrp development
Understanding lwrp development
 
The Strategic Triumvirate
The Strategic TriumvirateThe Strategic Triumvirate
The Strategic Triumvirate
 
Cooking security sans@night
Cooking security sans@nightCooking security sans@night
Cooking security sans@night
 
Mwrc2011 cookbook design patterns
Mwrc2011 cookbook design patternsMwrc2011 cookbook design patterns
Mwrc2011 cookbook design patterns
 
tmux lightning talk mwrc
tmux lightning talk mwrctmux lightning talk mwrc
tmux lightning talk mwrc
 
Oscon2011 tutorial
Oscon2011 tutorialOscon2011 tutorial
Oscon2011 tutorial
 
Velocity2011 chef-workshop
Velocity2011 chef-workshopVelocity2011 chef-workshop
Velocity2011 chef-workshop
 
Settle Your Mind With Serelax
Settle Your Mind With SerelaxSettle Your Mind With Serelax
Settle Your Mind With Serelax
 
Data driven app deploys with chef frontdev
Data driven app deploys with chef frontdevData driven app deploys with chef frontdev
Data driven app deploys with chef frontdev
 
Derailed chef update-oct2010
Derailed chef update-oct2010Derailed chef update-oct2010
Derailed chef update-oct2010
 
แบบทดสอบเสียงในภาษา
แบบทดสอบเสียงในภาษาแบบทดสอบเสียงในภาษา
แบบทดสอบเสียงในภาษา
 

Semelhante a Chef in the cloud [dbccg]

Operations as Code
Operations as CodeOperations as Code
Operations as CodeOpsCamp
 
Automated infrastructure is on the menu
Automated infrastructure is on the menuAutomated infrastructure is on the menu
Automated infrastructure is on the menujtimberman
 
Open End To End Js Stack
Open End To End Js StackOpen End To End Js Stack
Open End To End Js StackSkills Matter
 
GeekAustin DevOps
GeekAustin DevOpsGeekAustin DevOps
GeekAustin DevOpsMatt Ray
 
Automating Oracle Database deployment with Amazon Web Services, fabric, and boto
Automating Oracle Database deployment with Amazon Web Services, fabric, and botoAutomating Oracle Database deployment with Amazon Web Services, fabric, and boto
Automating Oracle Database deployment with Amazon Web Services, fabric, and botomjbommar
 
Open Innovation means Open Source
Open Innovation means Open SourceOpen Innovation means Open Source
Open Innovation means Open SourceBertrand Delacretaz
 
What Big Data Folks Need to Know About DevOps
What Big Data Folks Need to Know About DevOpsWhat Big Data Folks Need to Know About DevOps
What Big Data Folks Need to Know About DevOpsMatt Ray
 
Flex For Java Architects Ledroff Breizh Jug V Blog Cc
Flex For Java Architects Ledroff Breizh Jug V Blog CcFlex For Java Architects Ledroff Breizh Jug V Blog Cc
Flex For Java Architects Ledroff Breizh Jug V Blog CcFrançois Le Droff
 
managing your content
managing your contentmanaging your content
managing your contentSamsung
 
Large scale automation with jenkins
Large scale automation with jenkinsLarge scale automation with jenkins
Large scale automation with jenkinsKohsuke Kawaguchi
 
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...Amazon Web Services
 
Shake Hooves With BeEF - OWASP AppSec APAC 2012
Shake Hooves With BeEF - OWASP AppSec APAC 2012Shake Hooves With BeEF - OWASP AppSec APAC 2012
Shake Hooves With BeEF - OWASP AppSec APAC 2012Christian Frichot
 
Xebia adobe flash mobile applications
Xebia adobe flash mobile applicationsXebia adobe flash mobile applications
Xebia adobe flash mobile applicationsMichael Chaize
 
Developing iPhone and iPad apps that leverage Windows Azure
Developing iPhone and iPad apps that leverage Windows AzureDeveloping iPhone and iPad apps that leverage Windows Azure
Developing iPhone and iPad apps that leverage Windows AzureSimon Guest
 
Scaling capacity while saving cash
Scaling capacity while saving cashScaling capacity while saving cash
Scaling capacity while saving cashKim Moir
 

Semelhante a Chef in the cloud [dbccg] (20)

Operations as Code
Operations as CodeOperations as Code
Operations as Code
 
Automated infrastructure is on the menu
Automated infrastructure is on the menuAutomated infrastructure is on the menu
Automated infrastructure is on the menu
 
Sjug aug 2010_cloud
Sjug aug 2010_cloudSjug aug 2010_cloud
Sjug aug 2010_cloud
 
Cloudy Operations - OSCON 2010
Cloudy Operations - OSCON 2010 Cloudy Operations - OSCON 2010
Cloudy Operations - OSCON 2010
 
Open End To End Js Stack
Open End To End Js StackOpen End To End Js Stack
Open End To End Js Stack
 
GeekAustin DevOps
GeekAustin DevOpsGeekAustin DevOps
GeekAustin DevOps
 
Automating Oracle Database deployment with Amazon Web Services, fabric, and boto
Automating Oracle Database deployment with Amazon Web Services, fabric, and botoAutomating Oracle Database deployment with Amazon Web Services, fabric, and boto
Automating Oracle Database deployment with Amazon Web Services, fabric, and boto
 
Open Innovation means Open Source
Open Innovation means Open SourceOpen Innovation means Open Source
Open Innovation means Open Source
 
What Big Data Folks Need to Know About DevOps
What Big Data Folks Need to Know About DevOpsWhat Big Data Folks Need to Know About DevOps
What Big Data Folks Need to Know About DevOps
 
Flex For Java Architects Ledroff Breizh Jug V Blog Cc
Flex For Java Architects Ledroff Breizh Jug V Blog CcFlex For Java Architects Ledroff Breizh Jug V Blog Cc
Flex For Java Architects Ledroff Breizh Jug V Blog Cc
 
DevOps Note
DevOps NoteDevOps Note
DevOps Note
 
managing your content
managing your contentmanaging your content
managing your content
 
Large scale automation with jenkins
Large scale automation with jenkinsLarge scale automation with jenkins
Large scale automation with jenkins
 
Vagrant at LA Ruby
Vagrant at LA RubyVagrant at LA Ruby
Vagrant at LA Ruby
 
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
Mythical Mysfits - Monolith to microservices with Docker and Fargate - MAD305...
 
Shake Hooves With BeEF - OWASP AppSec APAC 2012
Shake Hooves With BeEF - OWASP AppSec APAC 2012Shake Hooves With BeEF - OWASP AppSec APAC 2012
Shake Hooves With BeEF - OWASP AppSec APAC 2012
 
MongoSV 2011
MongoSV 2011MongoSV 2011
MongoSV 2011
 
Xebia adobe flash mobile applications
Xebia adobe flash mobile applicationsXebia adobe flash mobile applications
Xebia adobe flash mobile applications
 
Developing iPhone and iPad apps that leverage Windows Azure
Developing iPhone and iPad apps that leverage Windows AzureDeveloping iPhone and iPad apps that leverage Windows Azure
Developing iPhone and iPad apps that leverage Windows Azure
 
Scaling capacity while saving cash
Scaling capacity while saving cashScaling capacity while saving cash
Scaling capacity while saving cash
 

Último

Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024The Digital Insurer
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEarley Information Science
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Enterprise Knowledge
 

Último (20)

Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 

Chef in the cloud [dbccg]

  • 1. Chef in the Cloud Speaker: Joshua Timberman Technical Evangelist ‣ joshua@opscode.com ‣ @jtimberman ‣ www.opscode.com Copyright © 2010 Opscode, Inc - All Rights Reserved 1 Monday, September 27, 2010
  • 2. System administrator Many environments Opscode: Training, Services Copyright © 2010 Opscode, Inc - All Rights Reserved http://www.flickr.com/photos/anotherphotograph/2100904507/sizes/o/ 2 Monday, September 27, 2010
  • 3. Developers? Systems Administrators? “Business” people? http://www.flickr.com/photos/timyates/2854357446/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 3 Monday, September 27, 2010
  • 4. Cloud Infrastructure Provisioning Configuration Management System Integration Copyright © 2010 Opscode, Inc - All Rights Reserved 4 Monday, September 27, 2010
  • 5. Provisioning Nodes lb01 web01 web02 db-master01 db-slave01 db-slave02 Copyright © 2010 Opscode, Inc - All Rights Reserved 5 Monday, September 27, 2010
  • 6. Configuration Management Roles loadbalancer webserver dbmaster dbslave Copyright © 2010 Opscode, Inc - All Rights Reserved 6 Monday, September 27, 2010
  • 7. Systems Integration Load Balancer Recipes Web Server Web Server haproxy apache2 myssql DB Master DB Slave DB Slave Disk Disk Disk Copyright © 2010 Opscode, Inc - All Rights Reserved 7 Monday, September 27, 2010
  • 8. Infrastructure as Code http://www.flickr.com/photos/wonderlane/2306082998/ Copyright © 2010 Opscode, Inc - All Rights Reserved 8 Monday, September 27, 2010
  • 9. Infrastructure as Code is... A technical domain revolving around building and managing infrastructure programmatically http://www.flickr.com/photos/kwerfeldein/2634561264/sizes/o/ Copyright © 2010 Opscode, Inc - All Rights Reserved 9 Monday, September 27, 2010
  • 10. Enable the reconstruction of the business from nothing but a source code repository, an application data backup, and bare metal resources. Copyright © 2010 Opscode, Inc - All Rights Reserved 10 Monday, September 27, 2010
  • 11. Copyright © 2010 Opscode, Inc - All Rights Reserved 11 http://www.brooklynstreetart.com/theBlog/wp-content/uploads/2008/12/swedish_chef_bork-sleeper-cell.jpg Monday, September 27, 2010
  • 12. At a High Level... ‣ A library for configuration management ‣ A configuration management system ‣ A systems integration platform ‣ An API for your entire Infrastructure http://www.flickr.com/photos/asten/2159525309/sizes/l/ Monday, September 27, 2010
  • 13. Chef Client runs on your systems Copyright © 2010 Opscode, Inc - All Rights Reserved 13 Monday, September 27, 2010
  • 14. Clients talk to a Chef Server Copyright © 2010 Opscode, Inc - All Rights Reserved 14 Monday, September 27, 2010
  • 15. RESTful API w/ JSON responses Copyright © 2010 Opscode, Inc - All Rights Reserved 15 Monday, September 27, 2010
  • 16. The Opscode Platform is a hosted Chef Server http://www.opscode.com Copyright © 2010 Opscode, Inc - All Rights Reserved 16 Monday, September 27, 2010
  • 17. We call each system you configure a Node Copyright © 2010 Opscode, Inc - All Rights Reserved http://www.flickr.com/photos/peterrosbjerg/3913766224/ 17 Monday, September 27, 2010
  • 18. Nodes have Attributes Kernel info! { "kernel": { "machine": "x86_64", "name": "Darwin", "os": "Darwin", "version": "Darwin Kernel Version 10.4.0: Fri Apr 23 18:28:53 PDT 2010; root:xnu-1504.7.4~1/RELEASE_I386", "release": "10.4.0" }, "platform_version": "10.6.4", "platform": "mac_os_x", "platform_build": "10F569", "domain": "local", Platform info! "os": "darwin", "current_user": "jtimberman", "ohai_time": 1278602661.60043, "os_version": "10.4.0", "uptime": "18 days 17 hours 49 minutes 18 seconds", "ipaddress": "10.13.37.116", "hostname": "cider", "fqdn": "cider.local", Hostname and IP! "uptime_seconds": 1619358 } Copyright © 2010 Opscode, Inc - All Rights Reserved 18 Monday, September 27, 2010
  • 19. Nodes have a Run List What Roles or Recipes to apply in Order Copyright © 2010 Opscode, Inc - All Rights Reserved 19 Monday, September 27, 2010
  • 20. Nodes have Roles Copyright © 2010 Opscode, Inc - All Rights Reserved http://www.flickr.com/photos/laenulfean/374398044/ 20 Monday, September 27, 2010
  • 21. Roles have a Run List What Roles or Recipes to apply in Order Copyright © 2010 Opscode, Inc - All Rights Reserved 21 Monday, September 27, 2010
  • 22. remote_file link cookbook_file service ruby_block template execute Chef manages Resources on Nodes package bash git log deploy user http_request Copyright © 2010 Opscode, Inc - All Rights Reserved 22 Monday, September 27, 2010
  • 23. Resources... Declare a description of the state a part of the node should be in ‣ Have a type package "apache2" do version "2.2.11-2ubuntu2.6" action :install ‣ Have a name end template "/etc/apache2/apache2.conf" do ‣ Have parameters source "apache2.conf.erb" owner "root" ‣ Take action to put the group "root" mode 0644 resource in the action :create declared state end http://www.flickr.com/photos/xiaming/382205902/sizes/l/ Monday, September 27, 2010
  • 24. Resources take action through Providers Copyright © 2010 Opscode, Inc - All Rights Reserved 24 Monday, September 27, 2010
  • 25. Providers... Know how to actually perform the actions specified by a resource. Apt, Yum, Rubygems, Multiple providers per resource type. Portage, Macports, FreeBSD Ports, etc. http://www.flickr.com/photos/affableslinky/562950216/ Monday, September 27, 2010
  • 26. Resources Platform Provider http://www.flickr.com/photos/acurbelo/2628837104/sizes/o/ Monday, September 27, 2010
  • 27. Recipes are lists of Resources http://www.flickr.com/photos/roadsidepictures/2478953342/sizes/o/ Copyright © 2010 Opscode, Inc - All Rights Reserved 27 Monday, September 27, 2010
  • 28. Recipes... Apply resources in the order they are specified package "apache2" do version "2.2.11-2ubuntu2.6" action :install 1 ‣ Evaluates resources in [ end the order they appear "package[apache2]", "template[/etc/apache2/apache2.conf]" template "/etc/apache2/apache2.conf" do ] source "apache2.conf.erb" ‣ Adds each resource to owner "root" the Resource Collection group "root" mode 0644 action :create 2 end http://www.flickr.com/photos/roadsidepictures/2478953342/sizes/o/ Monday, September 27, 2010
  • 29. Order Matters http://www.infrastructures.org/papers/turing/turing.html Copyright © 2010 Opscode, Inc - All Rights Reserved 29 Monday, September 27, 2010
  • 30. Cookbooks are packages for Recipes Copyright © 2010 Opscode, Inc - All Rights Reserved 30 Monday, September 27, 2010
  • 31. Common Cookbook Components recipes/ default.rb files/ templates/ attributes/ default.rb metadata.rb Copyright © 2010 Opscode, Inc - All Rights Reserved 31 Monday, September 27, 2010
  • 32. Cookbooks are shareable! cookbooks.opscode.com Copyright © 2010 Opscode, Inc - All Rights Reserved 32 Monday, September 27, 2010
  • 33. Data bags store arbitrary data Copyright © 2010 Opscode, Inc - All Rights Reserved 33 Monday, September 27, 2010
  • 34. A user data bag item... % knife data bag show users jtimberman { "comment": "Joshua Timberman", "groups": "sysadmin", "ssh_keys": "ssh-rsa SUPERSEKRATS jtimberman@cider", "files": { ".zshrc": { "mode": "0644", "source": "dot-zshrc" }, ".vimrc": { "mode": "0644", "source": "dot-vimrc" } }, "id": "jtimberman", "uid": 7004, "shell": "/usr/bin/zsh", "openid": "http://jtimberman.myopenid.com/" } Copyright © 2010 Opscode, Inc - All Rights Reserved Monday, September 27, 2010
  • 35. sysadmins = search(:users, 'groups:sysadmin') sysadminss.each do |u| user u['id'] do uid u['id'] shell u['shell'] comment u['comment'] supports :manage_home => true Data bags make recipes home "/home/#{u['id']}" end awesome-r (that’s directory "/home/#{u['id']}/.ssh" do owner u['id'] group u['id'] mode 0700 totally a word) end template "/home/#{u['id']}/.ssh/authorized_keys" do source "authorized_keys.erb" owner u['id'] group u['id'] mode 0600 variables :ssh_keys => u['ssh_keys'] end end Copyright © 2010 Opscode, Inc - All Rights Reserved 35 Monday, September 27, 2010
  • 36. Nodes, Roles, Data Bags are Searchable % knife search node “role:webserver” search(:users, “group:sysadmins”) Copyright © 2010 Opscode, Inc - All Rights Reserved 36 Monday, September 27, 2010
  • 37. Automating the Cloud with Chef http://www.flickr.com/photos/46183897@N00/3442880227/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 37 Monday, September 27, 2010
  • 38. lb1 web1 web2 Copyright © 2010 Opscode, Inc - All Rights Reserved 38 Monday, September 27, 2010
  • 39. Command-line API utility, Knife http://www.flickr.com/photos/myklroventine/3474391066/ Copyright © 2010 Opscode, Inc - All Rights Reserved 39 Monday, September 27, 2010
  • 40. Copyright © 2010 Opscode, Inc - All Rights Reserved 40 Monday, September 27, 2010
  • 41. Fog EC2 Rackspace/Openstack Terremark/vcloud Slicehost Others...? Copyright © 2010 Opscode, Inc - All Rights Reserved 41 Monday, September 27, 2010
  • 42. Add your Cloud credentials to knife.rb vi ~/chef-repo/.chef/knife.rb # Cloud credentials knife[:aws_access_key_id] = ENV['AWS_ACCESS_KEY_ID'] knife[:aws_secret_access_key] = ENV['AWS_SECRET_ACCESS_KEY'] Copyright © 2010 Opscode, Inc - All Rights Reserved 42 Monday, September 27, 2010
  • 43. Download some cookbooks % knife cookbook site vendor haproxy INFO: Downloading haproxy from the cookbooks site at version 0.7.0 ... INFO: Merging changes from haproxy version 0.7.0. ... INFO: Cookbook haproxy version 0.7.0 successfully vendored! % knife cookbook site vendor apache2 ... INFO: Cookbook apache2 version 0.12.3 successfully vendored! Copyright © 2010 Opscode, Inc - All Rights Reserved 43 Monday, September 27, 2010
  • 44. Upload Cookbooks! knife cookbook upload -a These run as root, kids. Let’s not blindly trust the upstream too much! Copyright © 2010 Opscode, Inc - All Rights Reserved 44 Monday, September 27, 2010
  • 45. Build some roles % vi roles/lb.rb name "lb" description "Load Balancer" run_list( "recipe[haproxy]" ) % vi roles/webserver.rb name "webserver" description "Systems that serve HTTP traffic" run_list( "recipe[apache2]" ) default_attributes( "apache2" => { "listen_ports" => [ "80" ] } ) Copyright © 2010 Opscode, Inc - All Rights Reserved 45 Monday, September 27, 2010
  • 46. Upload Roles % knife role from file lb.rb WARN: HTTP Request Returned 404 Not Found: Cannot load role lb WARN: Updated Role lb! % knife role from file webserver.rb WARN: HTTP Request Returned 404 Not Found: Cannot load role webserver WARN: Updated Role webserver! Copyright © 2010 Opscode, Inc - All Rights Reserved 46 Monday, September 27, 2010
  • 47. Launch a new Web Server and Load Balancer knife ec2 server create ‘role[webserver]’ knife ec2 server create ‘role[lb]’ Copyright © 2010 Opscode, Inc - All Rights Reserved 47 Monday, September 27, 2010
  • 48. knife ec2 server create Create EC2 instance via API Retrieve local configuration SSH to instance ‣ Write chef configuration and authentication ‣ Install Ruby and Chef ‣ Run Chef with specified run list Copyright © 2010 Opscode, Inc - All Rights Reserved 48 Monday, September 27, 2010
  • 49. Chef runs on your new server sudo chef-client INFO: Starting Chef Run ... INFO: Chef Run complete in 211.852033 seconds Automatically. Copyright © 2010 Opscode, Inc - All Rights Reserved 49 Monday, September 27, 2010
  • 50. cookbooks/haproxy/recipes/default.rb webservers = search(:node, "role:webserver") template "/etc/haproxy/haproxy.cfg" do source "haproxy.cfg.erb" owner "root" group "root" mode 0644 variables(:webservers => webservers) notifies :restart, resources(:service => "haproxy") end cookbooks/haproxy/templates/default/haproxy.cfg.erb listen application 0.0.0.0:80 balance roundrobin <% @webservers.each do |n| -%> server <%= n[:hostname] %> <%= n[:ipaddress] %>:80 weight 1 maxconn 50 check <% end -%> Copyright © 2010 Opscode, Inc - All Rights Reserved 50 Monday, September 27, 2010
  • 51. cookbooks/apache2/templates/default/index.html.erb <html> <head> <title>Welcome to <%= node[:hostname] %></title> </head> <body> You have reached: <ul> <li><b>FQDN</b>: <%= node[:fqdn] %></title> <li><b>Public FQDN</b>: <%= node[:ec2][:public_hostname]%></id> <li><b>IP Address</b>: <%= node[:ipaddress] %></id> <li><b>Public IP</b>: <%= node[:ec2][:public_ipv4] %></id> <li><b>Platform</b>: <%= node[:platform] %></id> <li><b>Plaform Version</b>: <%= node[:platform_version] %></id> <li><b>Run List</b>: <%= node.run_list %></id> </ul> </body> </html> Copyright © 2010 Opscode, Inc - All Rights Reserved 51 Monday, September 27, 2010
  • 52. Lessons Learned Copyright © 2010 Opscode, Inc - All Rights Reserved 52 Monday, September 27, 2010
  • 53. You own your Availability Copyright © 2010 Opscode, Inc - All Rights Reserved http://www.flickr.com/photos/jeffmcneill/4252968654/ 53 Monday, September 27, 2010
  • 54. Copyright © 2010 Opscode, Inc - All Rights Reserved 54 Monday, September 27, 2010
  • 55. AMIs ‣ Amazon Machine Images ‣ Use one AMI with JEOS for each size ‣ Beware of Image Sprawl ‣ Rebundle for long-running installation http://www.flickr.com/photos/wwworks/3271208324/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 55 Monday, September 27, 2010
  • 56. Instances ‣ c1.medium is best bang for the $ ‣ User data can inform configuration ‣ Use SSH key only access ‣ Allow SSH in default security group http://www.flickr.com/photos/wwworks/3271208324/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 56 Monday, September 27, 2010
  • 57. Instances ‣ Internal and external network info is not unique ‣ Only trust the instance-id http://www.flickr.com/photos/wwworks/3271208324/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 57 Monday, September 27, 2010
  • 58. Storage ‣ EBS ‣ Persistent storage ‣ Trivial to snapshot ‣ Snapshots can create new devices http://www.flickr.com/photos/wwworks/3271208324/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 58 Monday, September 27, 2010
  • 59. Elastic IP Addresses ‣ Static public routable addresses ‣ Easy and fast to re-assign ‣ Just an API call away http://www.flickr.com/photos/wwworks/3271208324/sizes/l/ Copyright © 2010 Opscode, Inc - All Rights Reserved 59 Monday, September 27, 2010
  • 60. Resources/Questions www.opscode.com/chef IRC and Mailing lists ‣ irc.freenode.net #chef ‣ lists.opscode.com Twitter: ‣ @opscode, #opschef ‣ @jtimberman Questions? Copyright © 2010 Opscode, Inc - All Rights Reserved 60 Monday, September 27, 2010