immutable deployments the new classic way for service
play

Immutable deployments: the new classic way for service deployment - PowerPoint PPT Presentation

Jan 31, 2024 •439 likes •824 views

Immutable deployments: the new classic way for service deployment Adopt the new immutable infrastructure paradigm using your old toolbox. Matteo Valentini @_Amygos Warning! The events depicted in this talk are real. Any similarity to any

  1. Immutable deployments: the new classic way for service deployment Adopt the new immutable infrastructure paradigm using your old toolbox. Matteo Valentini @_Amygos

  2. Warning! The events depicted in this talk are real. Any similarity to any technology living or dead is not a merely coincidental. The illustrated approach is based on lessons learned in almost two years of using the methodology on a production service. _Amygos

  3. The Problems

  4. The Problems: SnowflakeServer _Amygos

  5. The Problems: SnowflakeServer A server that is unique[1]: ● Manual installation ● Manual configuration ● Manual maintenance It Is your server and you take care of it, as you do with your pet. [1]https://martinfowler.com/bliki/SnowflakeServer.html _Amygos

  6. The Problems: Configuration Drift The drift from a well know start state, even if automated configuration tool are used[2]: ● Automated configuration tools manage a subset of a machine’s state ● Writing and maintaining manifests/recipes/scripts is time consuming The path of least resistance of services management Every developer or operator will always follow the simple, less costly and quick way to fix a production problem. And then he/she will forget about it. [2]http://kief.com/configuration-drift.html _Amygos

  7. The Problems: Unknown Unknowns “An unknown unknown means that there is something you need to know, but there is no way for you to find out what it is, or even whether there is an issue.” John Outsterhout, “A Philosophy of Software Design”, p. 9 _Amygos

  8. The Problems: Not Deterministic Deployment _Amygos

  9. The Solution

  10. Immutable Infrastructure “If you absolutely know a system has been created via automation and never changed since the moment of creation, most of the problems I describe above disappear. Need to upgrade? No problem. Build a new, upgraded system and throw the old one away. New app revision? Same thing. Build a server (or image) with a new revision and throw away the old ones.” Chad Fowler, “Trash Your Servers and Burn Your Code: Immutable Infrastructure and Disposable Components” http://chadfowler.com/2013/06/23/immutable-deployments.html _Amygos

  11. Immutable Infrastructure: Deterministic Deployment _Amygos

  12. Immutable Infrastructure “Immutable infrastructure make configuration changes by completely replacing the servers.Changes are made by building new server templates, and then rebuilding relevant servers using those templates. This increase predictability, as there little variance between servers as tested, and servers in production. It requires sophistication in server template management.” Kief Morris, “Infrastructure as Code: Managing Servers in the Cloud”, p.70 _Amygos

  13. Immutable infrastructure: What We Need? ● An automated provisioning/configuration tool ● An automated image generator tool ● An orchestrator ● A system to keep track of all the changes (we can use git for that) _Amygos

  14. The Tools

  15. The Tools: Automated Provisioning Shell scripts ● Almost every developer can understand it ● Simple and at the same time very powerful _Amygos

  16. The Tools: Image Builder Packer ● JSON file configuration ● Multiple provisioners support: ○ Ansible ○ Puppet ○ Chef ○ Shell scripts ○ ... ● Multiple Builder support: ○ DigitalOcean ○ AWS ○ Google Cloud ○ Azure ○ …. _Amygos

  17. The Tools: Orchestrator Terraform ● DSL (HCL) ● Declarative language configuration ● Enable IaC ● Multi cloud support ○ AWS ○ Google Cloud ○ Azure ○ DigitalOcean ○ ... _Amygos

  18. The Tools: Cloud platform DigitalOcean ● Not expensive ● Simple ● Have every thing the you need: ○ APIs ○ Compute instances ○ Snapshots ○ Cloud-init ○ Floating IPs ○ Load Balancers _Amygos

  19. The Tools: Why? ● Container vs VM ○ The vm are a more familiar concepts ○ Not all company want or need to switch to container ● Configuration Management vs shell scripts ○ The learning steps can be too high ○ For some simple tasks a shell script is enough for the work ● Complex orchestrator vs IaC ○ For most of the company a complex orchestrator (like kubernetes) is too much ○ You end up with two problems: ■ Manage the service orchestration ■ Manage the orchestrator ● Full features cloud platform vs Simple cloud platform ○ Usually you use only a subset of functionality offered ○ The practitioners prefer simple e easy interface and ways ○ The management are more inclined to approve the use of a cloud platform were costs are low and the pricing is clear _Amygos

  20. The Tools: Why? “What tools or technologies you use is irrelevant if the people who must use them hate use them, or if they don’t archive the outcomes and enable the behaviors we care about.” Nicole Forsgren PhD, Jez Humble, Gene Kim, “Accelerate: The Science of Lean Software and DevOps: Building and Scaling High Performing Technology Organizations”, p. 68 _Amygos

  21. The Implementation

  22. The application The simple app example: ● Single Go binary ● Deployed on Github releases ● 1 attached database ● Follow the 12 Factor app principles[3]: Codebase : One codebase tracked in revision control, many deploys ○ Config : Store config in the environment ○ Processes : Execute the app as one or more stateless processes ○ Disposability : Maximize robustness with fast startup and graceful ○ shutdown [3]https://12factor.net/ _Amygos

  23. Git Repository Layout . ├── packer.json ├── provisioning │ └── files │ └── app.service └── terraform ├── database.tf ├── domains.tf ├── droplet.tf ├── image.tf └── userdata.tf _Amygos

  24. Service Systemd Unit File [Unit] Description=App server After=network.target cloud-init.service [Service] Type=simple User=root EnvironmentFile=-/opt/app/conf.env WorkingDirectory=/opt/app Environment=GIN_MODE=release ExecStart=/opt/app/app [Install] WantedBy=multi-user.target _Amygos

  25. Packer Configuration { "variables": { "url": "https://github.com/Amygos/immutable_deploys", "version": "v1" }, "builders": [{ "type": "digitalocean", "image": "centos-7-x64", "region": "ams3", "size": "s-1vcpu-1gb", "ssh_username": "root", "snapshot_name": "app-{{user `version`}}-{{isotime \"2006/01/02-15:04:05\"}}" }], "provisioners": [{ "type": "file", "source": "provisioning/files/app.service", "destination": "/usr/lib/systemd/system/app.service"}, {"type": "shell", "inline": [ "mkdir -p /opt/app", "curl -L {{ user `url` }}/releases/download/{{user `version`}}/app > /opt/app/app", "chmod 0755 /opt/app/app", "systemctl daemon-reload", "systemctl enable app"]}] } _Amygos

  26. Packer Output ==> digitalocean: Creating temporary ssh key for droplet... ==> digitalocean: Creating droplet... ==> digitalocean: Waiting for droplet to become active... ==> digitalocean: Using ssh communicator to connect: 178.62.207.7 ==> digitalocean: Waiting for SSH to become available... ==> digitalocean: Connected to SSH! ==> digitalocean: Uploading provisioning/files/app.service => /usr/lib/systemd/system/app.service ==> digitalocean: Provisioning with shell script: /tmp/packer-shell648441204 ==> digitalocean: Gracefully shutting down droplet... ==> digitalocean: Creating snapshot: app-v1-2020/01/25-22:07:03 ==> digitalocean: Waiting for snapshot to complete... ==> digitalocean: Destroying droplet... ==> digitalocean: Deleting temporary ssh key... Build 'digitalocean' finished. ==> Builds finished. The artifacts of successful builds are: --> digitalocean: A snapshot was created: 'app-v1-2020/01/25-22:07:03' (ID: 58285042) in regions 'ams3' _Amygos

  27. Droplet Configuration resource "digitalocean_droplet" "app" { image = data.digitalocean_image.app.image name = "app" region = "ams3" size = "s-1vcpu-1gb" user_data = data.template_cloudinit_config.app.rendered lifecycle { create_before_destroy = true } } data "digitalocean_image" "app" { name = "app-v1-2020/01/25-22:07:03" } _Amygos

  28. cloud-init User Data data "template_cloudinit_config" "app" { gzip = false base64_encode = false part { content_type = "text/cloud-config" content = <<-EOT #cloud-config write_files: - path: /opt/app/conf.env content: | DB_HOST="${digitalocean_database_cluster.app.host}" DB_PORT="${digitalocean_database_cluster.app.port}" DB_USER="${digitalocean_database_cluster.app.user}" DB_PASSWORD="${digitalocean_database_cluster.app.password}" DB_NAME="${digitalocean_database_cluster.app.database}" EOT } } _Amygos

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Application of Quality of Service to Voice over IP Deployments RJ Atkinson Extreme Networks

Application of Quality of Service to Voice over IP Deployments RJ Atkinson Extreme Networks

Application of Quality of Service to Voice over IP Deployments RJ Atkinson Extreme Networks January 30, 2004 Abstract There is growing interest in deploying Voice over IP services , particularly within single enterprise environments. While

396 views • 10 slides
Classic ML Where is ML used? CS 5860 - Introduction to Formal Methods What is Classic ML? ML

Classic ML Where is ML used? CS 5860 - Introduction to Formal Methods What is Classic ML? ML

Classic ML an EventML Where does ML come from? Classic ML Where is ML used? CS 5860 - Introduction to Formal Methods What is Classic ML? ML types Vincent Rahli Nuprl team Polymorphism Recursion Cornell University Typing rules September

125 views • 11 slides
Latests Deployments miguel.sotos@rediris.es Enabling GMPLS GMPLS GMPLS Deployment New

Latests Deployments miguel.sotos@rediris.es Enabling GMPLS GMPLS GMPLS Deployment New

Latests Deployments miguel.sotos@rediris.es Enabling GMPLS GMPLS GMPLS Deployment New paradigm New architecture New service planning dynamic Plan everything carefully! Automatic Provisioning Service Protection 3 GMPLS

437 views • 11 slides
/*@ immutable @*/ objects Erik Poll SoS group (aka the LOOP group) Radboud University Nijmegen

/*@ immutable @*/ objects Erik Poll SoS group (aka the LOOP group) Radboud University Nijmegen

/*@ immutable @*/ objects Erik Poll SoS group (aka the LOOP group) Radboud University Nijmegen KeY workshop June 2005 yet another JML keyword... Java provides final ie. immutable - fields What about immutable objects? It

336 views • 30 slides
Securing Cloud Deployments S.S.Mulay Sr. V.P. Engineering April 6, 2013 Cloud at a Glance

Securing Cloud Deployments S.S.Mulay Sr. V.P. Engineering April 6, 2013 Cloud at a Glance

Securing Cloud Deployments S.S.Mulay Sr. V.P. Engineering April 6, 2013 Cloud at a Glance Resource Pooling Essential Features Network On Self Elasticity Metering Access Demand Service IAAS IAAS Service Models PAAS PAAS SAAS SAAS

502 views • 16 slides
PASSION FOR CLASSIC Welcome to Como Classic Boats, Lake Comos premier classic wooden boat

PASSION FOR CLASSIC Welcome to Como Classic Boats, Lake Comos premier classic wooden boat

MENAGGIO VARENNA BELLAGIO TREMEZZO PASSION FOR CLASSIC Welcome to Como Classic Boats, Lake Comos premier classic wooden boat rental company with driver. Located and operated in Laglio, next to George Clooneys villa and LEZZENO to the

234 views • 8 slides
Immutable Database Infrastructure with PXC Satoshi Mitani | @mita2 Yahoo Japan Corporation

Immutable Database Infrastructure with PXC Satoshi Mitani | @mita2 Yahoo Japan Corporation

Immutable Database Infrastructure with PXC Satoshi Mitani | @mita2 Yahoo Japan Corporation Agenda Yahoo! JAPAN Introduction Demo What is Immutable Infrastructure Architecture Why Percona XtraDB Cluster Disadvantages of

352 views • 32 slides
PASSION FOR CLASSIC Welcome to Como Classic Boats, Lake Alle Darsene di Loppia Comos premier

PASSION FOR CLASSIC Welcome to Como Classic Boats, Lake Alle Darsene di Loppia Comos premier

MENAGGIO VARENNA BELLAGIO TREMEZZO PASSION FOR CLASSIC Welcome to Como Classic Boats, Lake Alle Darsene di Loppia Comos premier classic wooden boat rental company with driver. Located and operated in Laglio, next to George Clooneys

240 views • 8 slides
F# Overview: Immutable Data + Pure Func7ons

F# Overview: Immutable Data + Pure Func7ons

F# Overview: Immutable Data + Pure Func7ons Acknowledgements Authored by Thomas Ball, MSR Redmond Includes content from the F# team

644 views • 46 slides
Network deployments for universal connectivity Radical solutions to radical problems

Network deployments for universal connectivity Radical solutions to radical problems

Network deployments for universal connectivity Radical solutions to radical problems Universal deployment Private deployments on public space and commons infrastructure Mandatory infrastructure sharing From the experience of a

387 views • 13 slides
Classic McEliece: conservative code-based cryptography Round 2 https://classic.mceliece.org/

Classic McEliece: conservative code-based cryptography Round 2 https://classic.mceliece.org/

Classic McEliece: conservative code-based cryptography Round 2 https://classic.mceliece.org/ Daniel J. Bernstein 1 , Tung Chou 2 , Tanja Lange 3 , Ingo von Maurich, Rafael Misoczki 4 , Ruben Niederhagen 5 , Edoardo Persichetti 6 , Christiane

439 views • 28 slides
Joseph Wilk The Clojure Inside Why Clojure? It was Functional Immutable there! Simple LISP

Joseph Wilk The Clojure Inside Why Clojure? It was Functional Immutable there! Simple LISP

Joseph Wilk The Clojure Inside Why Clojure? It was Functional Immutable there! Simple LISP Concurrency It was Functional Immutable there! Simple LISP Concurrency Programming Language Computer LISP Hurts (Pick languages that

703 views • 58 slides
CPL 2016, week 11 Clojure immutable data structures Oleg Batrashev Institute of Computer

CPL 2016, week 11 Clojure immutable data structures Oleg Batrashev Institute of Computer

CPL 2016, week 11 Clojure immutable data structures Oleg Batrashev Institute of Computer Science, Tartu, Estonia April 25, 2016 Overview Last week Clojure language core This week Immutable data structures Next weeks Clojure

507 views • 39 slides
Classic McEliece: conservative code-based cryptography D. J. Bernstein classic.mceliece.org

Classic McEliece: conservative code-based cryptography D. J. Bernstein classic.mceliece.org

1 Classic McEliece: conservative code-based cryptography D. J. Bernstein classic.mceliece.org Fundamental literature: 1962 Prange (attack) + many more attack papers. 1968 Berlekamp (decoder). 19701971 Goppa (codes). 1978 McEliece

775 views • 58 slides
PRESIDENTIAL CAMPAIGNS &amp; IMMUTABLE INFRASTRUCTURE Or, how we learned to stop worrying and

PRESIDENTIAL CAMPAIGNS &amp; IMMUTABLE INFRASTRUCTURE Or, how we learned to stop worrying and

PRESIDENTIAL CAMPAIGNS &amp; IMMUTABLE INFRASTRUCTURE Or, how we learned to stop worrying and love the cloud Michael E Fisher JUNE 28, 2017 F r a n k e n b u m p hello BUT FIRST, HOW DID WE GET HERE? MONTH DD, YYYY 6 feel:

660 views • 44 slides
CMSC 131 Fall 2018 Announcements Project #5 has been posted Mutability What does it mean

CMSC 131 Fall 2018 Announcements Project #5 has been posted Mutability What does it mean

CMSC 131 Fall 2018 Announcements Project #5 has been posted Mutability What does it mean for a class to be mutable? Immutable? Can we look at a class and tell? Always document whether your class is mutable or immutable! Why is immutable

233 views • 8 slides
An ASGI Server from scratch P G Jones - 2020-07-23 pgjones.dev 1 https://pgjones.dev/talks/ |

An ASGI Server from scratch P G Jones - 2020-07-23 pgjones.dev 1 https://pgjones.dev/talks/ |

An ASGI Server from scratch P G Jones - 2020-07-23 pgjones.dev 1 https://pgjones.dev/talks/ | https://github.com/pgjones/asgi_server_from_scratch Me pgjones.dev moneyed.co.uk @pgjones github/gitlab @pdgjones twitter 2 Aim HTTP ASGI

309 views • 28 slides
Deploying Python Applications with httpd Jeff Trawick http://emptyhammock.com/

Deploying Python Applications with httpd Jeff Trawick http://emptyhammock.com/

Introduction Generalities Brass Tacks Configuration/deployment example For Further Study Deploying Python Applications with httpd Jeff Trawick http://emptyhammock.com/ trawick@emptyhammock.com April 14, 2015 ApacheCon US 2015 Introduction

700 views • 51 slides
Detecting if LTE is the Bottleneck with BurstTracker Arjun Balasingam , Manu Bansal, Rakesh Misra,

Detecting if LTE is the Bottleneck with BurstTracker Arjun Balasingam , Manu Bansal, Rakesh Misra,

Detecting if LTE is the Bottleneck with BurstTracker Arjun Balasingam , Manu Bansal, Rakesh Misra, Kanthi Nagaraj, Rahul Tandra, Sachin Katti, Aaron Schulman Diagnosing Poor Streaming Quality 360p 2 Diagnosing Poor Streaming Quality 360p 2

626 views • 49 slides
CS 356 Lecture 28 Internet Authentication Spring 2013 Review Chapter 1: Basic Concepts

CS 356 Lecture 28 Internet Authentication Spring 2013 Review Chapter 1: Basic Concepts

CS 356 Lecture 28 Internet Authentication Spring 2013 Review Chapter 1: Basic Concepts and Terminology Chapter 2: Basic Cryptographic Tools Chapter 3 User Authentication Chapter 4 Access Control Lists Chapter

493 views • 20 slides
Example Sequences of interaction patterns (for discussion in Prague) 2018/3/27 Panasonic Toru

Example Sequences of interaction patterns (for discussion in Prague) 2018/3/27 Panasonic Toru

Example Sequences of interaction patterns (for discussion in Prague) 2018/3/27 Panasonic Toru Kawaguchi (with Kazuo Kajimoto) Motivation For interaction patterns (Property, Action and Event), we have rough consensus on which to use for what,

474 views • 10 slides
for Application Traffic Experimentation Utkarsh Goel, Ajay Miyyapuram, Mike P. Wittie, Qing Yang

for Application Traffic Experimentation Utkarsh Goel, Ajay Miyyapuram, Mike P. Wittie, Qing Yang

MITATE: Mobile Internet Testbed for Application Traffic Experimentation Utkarsh Goel, Ajay Miyyapuram, Mike P. Wittie, Qing Yang Montana State University - Bozeman March 26, 2014 Workshop on Active Internet Measurements (AIMS14) 1

612 views • 30 slides
ProxySQL Tutorial High Performance &amp; High Availability Proxy for MySQL With a GPL license!

ProxySQL Tutorial High Performance &amp; High Availability Proxy for MySQL With a GPL license!

ProxySQL Tutorial High Performance &amp; High Availability Proxy for MySQL With a GPL license! Santa Clara, California | April 23th 25th, 2018 Who we are Ren Canna ProxySQL Founder Derek Downey Director of OSDB, Pythian 2 Agenda

1.45k views • 103 slides
Shadow: The Case for Determinism on the Edge Matthew Furlong , Andrew Quinn, and Jason Flinn

Shadow: The Case for Determinism on the Edge Matthew Furlong , Andrew Quinn, and Jason Flinn

Slide Title Shadow: The Case for Determinism on the Edge Matthew Furlong , Andrew Quinn, and Jason Flinn Concerns for the Edge Edge Concern Effect Problem Concerns for the Edge Edge Concern Effect Problem Provisioning More jitter

875 views • 61 slides

More recommend