puppet
play

PUPPET Use at General Mills Preface HP UX platform at GMI is 15+ - PowerPoint PPT Presentation

Jul 22, 2023 •167 likes •493 views

PUPPET Use at General Mills Preface HP UX platform at GMI is 15+ years old Consolidated Superdome architecture today Moving enterprise apps to RHEL6 Oracle SAP BW/BI Warehouse Management Short migration timeframe

  1. PUPPET Use at General Mills

  2. Preface • HP UX platform at GMI is 15+ years old • Consolidated Superdome architecture today • Moving enterprise apps to RHEL6 • Oracle • SAP • BW/BI • Warehouse Management • Short migration timeframe

  3. Preface

  4. Topics • Puppet basics • Usage at GMI • Rough spots • Questions

  5. What is Puppet? • Configuration management • Files • Software packages • Users/groups • Consistent interface for wide selection of OSes • Action by declaration • Multiple uses • Run-once provisioning • Continuous compliance • Audit

  6. Components

  7. Common Resource Types • file • nagios_* • user • ssh_authorized_key • group • tidy • mount • yumrepo • package • augeas • service • cron • exec

  8. Language Example user { 'httpd': ensure => present, uid => 80, gid => 80, groups => ['users', 'engr'], comment => 'Apache User' } package { 'emacs': ensure => absent }

  9. Language Example service { 'ntpd': ensure => running, enable => true } file { 'ntp.conf': path => '/etc/ntp.conf', content => template('ntp/ntp.erb'), notify => Service['ntpd'] }

  10. Language Example class ntp { package { 'ntp' : … } file { 'ntp.conf ': … require => Package['ntp'] } service { 'ntpd' : … require => File['ntp.conf'] } }

  11. Language Example (cont.) node 'appserver1.genmills.com' { include 'ntp' include 'kerberos' class { 'net': search => 'genmills.com' } net::iface { 'eth0': address => '3.3.3.3/24', mtu => 1500 } }

  12. RHEL6 Install Main RPMs from PuppetLabs: http://yum.puppetlabs.com/el/6/products/x86_64/ • puppet.noarch • Agent/client • puppet-server.noarch • Master/server • facter.x86_64 • Agent data collection • Pure Ruby despite arch tag

  13. RHEL6 Install Augeas from RHN server-optional channel: • augeas.$ARCH • Structure config file manipulations EPEL for ruby-augeas: • http://dl.fedoraproject.org/pub/epel/6/x86_64/repoview/ruby-augeas.html • ruby-augeas.noarch • Ruby bindings

  14. Resources PuppetLabs http://docs.puppetlabs.com/puppet/ Pro Puppet ISBN - 978-1430230571

  15. Puppet at GMI • Initial provisioning via RHN Satellite • No machine-specific configuration in Kickstart • All RHEL hosts provisioned/controlled this way • Running 2.7.x agents/masters • Headed to 3.x series • sysadmin by declaration, not action

  16. Puppet at GMI

  17. Rough spots • Resource sharing • Source control workflow • Node inheritance (with classes)

  18. Resource Sharing class sap_server { package { 'compat-libstdcpp-33': ensure => present } } class oracle_server { package { 'compat-libstdcpp-33': ensure => present } }

  19. Resource Sharing • Puppet Labs stdlib for Puppet fixes this class sap_server { ensure_resource('package', 'compat-libstdcpp-33', { ensure => present } ) } • Includes many utility functions • https://github.com/puppetlabs/puppetlabs-stdlib

  20. Node Inheritance n ode base { … } n ode 'host.com' inherits base { … } • Good - Can be more simple than ENC or Hiera • Bad - Discouraged by Puppet Labs documentation • Ugly - Parameterized classes are problematic

  21. Node Inheritance: Example class appservice($secure) { if ($secure) { file { '/usr /app/secure': … } } } node base_node { class { 'appservice': secure => false } }

  22. Node Inheritance: Example node 'box.genmills.com' inherits base_node { Class['appservice'] { secure => true } } • /usr/app/secure will not be created • Class parameters aren't overridden between nodes

  23. Node Inheritance: Hack class appservice($secure) { if ($secure) { file { '/usr /app/secure': … } } } define appservice::instance($secure) { class { 'appservice': secure => $secure } }

  24. Node Inheritance: Hack Usage node base_node { appservice::instance { 'appservice': secure => false } } node 'box.genmills.com' inherits base_node { Appservice::Instance['appservice'] { secure => true } }

  25. Node Inheritance: Worth it? Caveats: • Different syntax for invocation and alteration • Class variables are inaccessible to outside • Naming standards must be followed • Language changes might have negative effects

  26. Workflow • Source control is strongly recommended • Git is a popular choice • Steeper learning curve than "traditional" VCSs • Flexible structure lends itself well to the task • Plan for change/feature promotion process • Test isolation is a must

  27. Workflow: Using git Sandbox Dev Prod Commit 1 Commit 1 Commit 1 Commit 2 Commit 2 Commit 2 Commit 3 Commit 3 Commit 3 Commit 4 Commit 4 Commit 4

  28. Workflow: Failure Sandbox Dev Prod Base Base Base Stable Item Stable Item Stable Item Danger Item Danger Item Danger Item Prod Fix Prod Fix Prod Fix

  29. Workflow: Fixed Sandbox Dev Prod Base Base Base Stable Item Stable Item Danger Item Prod Fix Prod Fix Prod Fix

  30. Workflow: How? • Manipulating (meddling) with git history • git reset – hard <commit> • Use clones, not branches, for safety • Know how far back to turn the clock • Automation in the works

  31. Questions?

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Site integral management with Puppet M. Caubet, A. Bria, X. Espinal PIC (Port d'Informaci

Site integral management with Puppet M. Caubet, A. Bria, X. Espinal PIC (Port d'Informaci

Site integral management with Puppet M. Caubet, A. Bria, X. Espinal PIC (Port d'Informaci Cientfica) Barcelona (Spain) Index 1. Introduction 2. Puppet Architecture 3. Puppet Internals 4. Puppet in production: examples 5. Conclusions 2

610 views • 36 slides
BDD with Puppet &amp; Cucumber T OM S ULSTON http://thoughtworks.com @tomsulston Whats

BDD with Puppet &amp; Cucumber T OM S ULSTON http://thoughtworks.com @tomsulston Whats

BDD with Puppet &amp; Cucumber T OM S ULSTON http://thoughtworks.com @tomsulston Whats Puppet http://www.puppetlabs.com/ What is puppet for? Managing many systems Managing configuration System consistency Treating infrastructure as code

572 views • 17 slides
HEP-Puppet AutomaCsaCon of LHC site deployment Thursday,

HEP-Puppet AutomaCsaCon of LHC site deployment Thursday,

HEP-Puppet AutomaCsaCon of LHC site deployment Thursday, 20 June 13 Lukasz Kreczko - DICE 1 LocaCon for modules hGps://github.com/HEP-Puppet

142 views • 11 slides
Untangling the Strings Scaling Puppet with inotify Steven McDonald steven.mcdonald@anchor.net.au

Untangling the Strings Scaling Puppet with inotify Steven McDonald steven.mcdonald@anchor.net.au

Untangling the Strings Scaling Puppet with inotify Steven McDonald steven.mcdonald@anchor.net.au Anchor linux.conf.au 2015 Sysadmin miniconf Background Puppet is a centralised configuration management system. Background Puppet is a

658 views • 45 slides
() Parentheses Kevin Corcoran @KevinOfCorc Im from Portland, Oregon, U.S.A. I work at

() Parentheses Kevin Corcoran @KevinOfCorc Im from Portland, Oregon, U.S.A. I work at

Puppet Plus () Parentheses Kevin Corcoran @KevinOfCorc Im from Portland, Oregon, U.S.A. I work at Puppet Labs. WHATS THIS PUPPET THING? DevOps, Infrastructure As Code, &lt;Insert Buzzword/Catchphrase here&gt; open-source tool for

464 views • 32 slides
Managing Files via Puppet Let Me Count The Ways Mike Arnold ( razorsedge ) Puppet Camp Phoenix

Managing Files via Puppet Let Me Count The Ways Mike Arnold ( razorsedge ) Puppet Camp Phoenix

Managing Files via Puppet Let Me Count The Ways Mike Arnold ( razorsedge ) Puppet Camp Phoenix 2015 Agenda Intro Managing Files Managing Lines Various Patterns Questions Links Intro Who is Mike Arnold? Unix Systems Administrator

775 views • 38 slides
Asynchronous Real- time Monitoring with MCollective Jeff McCune - @0xEFF A little about me

Asynchronous Real- time Monitoring with MCollective Jeff McCune - @0xEFF A little about me

Asynchronous Real- time Monitoring with MCollective Jeff McCune - @0xEFF A little about me Sysadmin for 10 years Puppet contributor from the beginning Puppet Labs road warrior since May 2010 Co-author of Pro-Puppet (Ask me if

401 views • 20 slides
DSPACE CLUSTERING DSPACE CLUSTERING VIA PUPPET, HAPROXY AND CEPHFS VIA PUPPET, HAPROXY AND

DSPACE CLUSTERING DSPACE CLUSTERING VIA PUPPET, HAPROXY AND CEPHFS VIA PUPPET, HAPROXY AND

DSPACE CLUSTERING DSPACE CLUSTERING VIA PUPPET, HAPROXY AND CEPHFS VIA PUPPET, HAPROXY AND CEPHFS DSpace-Clustering Bernd Nicklas, Paul Mnch OR2019 Kontakt: dspace@uni-marburg.de CC BY 4.0 TABLE OF CONTENTS TABLE OF CONTENTS 1. What we

480 views • 25 slides
Secure and version controlled configuration with Puppet, Hiera and GPG Jens Bruer

Secure and version controlled configuration with Puppet, Hiera and GPG Jens Bruer

Secure and version controlled configuration with Puppet, Hiera and GPG Jens Bruer &lt;braeuer.jens@gmail.com&gt; Agenda 1. Background 2. Puppet for infrastructure automation 2.1 Externalize configuration information 2.2 Problems with

239 views • 23 slides
Writing A New Puppet OpenStack Module Like A Rockstar Emilien Macchi Software Engineer @ Red

Writing A New Puppet OpenStack Module Like A Rockstar Emilien Macchi Software Engineer @ Red

Writing A New Puppet OpenStack Module Like A Rockstar Emilien Macchi Software Engineer @ Red Hat OpenStack Summit - Barcelona 2016 Agenda Puppet OpenStack project How to contribute Building a new module Get our hands dirty!

663 views • 23 slides
DevOps: You should be Iron Man, not a Robot Luke Kanies Founder and CEO, Puppet Labs

DevOps: You should be Iron Man, not a Robot Luke Kanies Founder and CEO, Puppet Labs

DevOps: You should be Iron Man, not a Robot Luke Kanies Founder and CEO, Puppet Labs @puppetmasterd Tuesday, December 13, 11 Puppet was born at LISA Tuesday, December 13, 11 DevOps

898 views • 72 slides
Instant LAMP Stack with Vagrant and Puppet Patrick Lee Boise Code Camp March 16, 2013

Instant LAMP Stack with Vagrant and Puppet Patrick Lee Boise Code Camp March 16, 2013

Instant LAMP Stack with Vagrant and Puppet Patrick Lee Boise Code Camp March 16, 2013 Developer Preview @ BWT Meetup Agenda What is the problem anyway? What is Vagrant? Examples! What is Puppet? More examples!

461 views • 19 slides
Puppet for Developers - Intermediate SOE That other talk Setup an SOE based on:

Puppet for Developers - Intermediate SOE That other talk Setup an SOE based on:

Puppet for Developers - Intermediate SOE That other talk Setup an SOE based on: Repo Server with Kickstart; and Puppetmaster; Write some modules for every day things: files, users, some templates, etc; very simple

1.26k views • 105 slides
Malang Mask Puppet Presentation Structure Arrangement of the Story Rabine Panji as Cultural

Malang Mask Puppet Presentation Structure Arrangement of the Story Rabine Panji as Cultural

HARMONIA : Journal of Arts Research and Education 16 (1) (2016), 66-74 p-ISSN 1411-5115 Available online at http://journal.unnes.ac.id/nju/index.php/harmonia e-ISSN 2355-3820 DOI: 10.15294/harmonia.v16i1.6021 Malang Mask Puppet Presentation

330 views • 9 slides
Initiatives First Annual Honors Band A Mini Monster Rod Puppet Workshop Hosting

Initiatives First Annual Honors Band A Mini Monster Rod Puppet Workshop Hosting

Initiatives First Annual Honors Band A Mini Monster Rod Puppet Workshop Hosting the SE Wisconsin Scholastic Writing Competition Partnering with Gateway Spanish Classes An Art Party for High School Teachers and their

448 views • 12 slides
Our Puppet Story Martin Schtte May 5 2014 About DECK36 complex web systems Architecture

Our Puppet Story Martin Schtte May 5 2014 About DECK36 complex web systems Architecture

Our Puppet Story Martin Schtte May 5 2014 About DECK36 complex web systems Architecture &amp; Engineering, Analytics &amp; Data Logistics Small team of 7 engineers Longstanding expertise in designing, implementing and operating

867 views • 49 slides
Announcing Coastal Expansion 2019-2020 WHO WE ARE Muddy Sneakers is a 501(c)(3) nonprofit that

Announcing Coastal Expansion 2019-2020 WHO WE ARE Muddy Sneakers is a 501(c)(3) nonprofit that

Announcing Coastal Expansion 2019-2020 WHO WE ARE Muddy Sneakers is a 501(c)(3) nonprofit that delivers high-quality outdoor science education to fifth-grade public school students. It was founded in Brevard in 2007 with the goal of

386 views • 27 slides
Check Against Delivery VI OLENCE AGAI NST OLDER W OMEN I N TANZANI A Ms Teresa Minja, Tanzania

Check Against Delivery VI OLENCE AGAI NST OLDER W OMEN I N TANZANI A Ms Teresa Minja, Tanzania

Check Against Delivery VI OLENCE AGAI NST OLDER W OMEN I N TANZANI A Ms Teresa Minja, Tanzania Social Protection Netw ork Paper prepared for the panel discussion: Violence and abuse against older persons, 2 nd August 2 0 1 1 , Second W orking

200 views • 4 slides
Dangling Pointer Dangling Pointer Jonathan Afek, 2/ 8/ 07, BlackHat USA 1 Table of Contents

Dangling Pointer Dangling Pointer Jonathan Afek, 2/ 8/ 07, BlackHat USA 1 Table of Contents

Dangling Pointer Dangling Pointer Jonathan Afek, 2/ 8/ 07, BlackHat USA 1 Table of Contents What is a Dangling Pointer? Code Injection Object Overriding Demonstrations Remediation Summary Q&amp;A 2 What is a

543 views • 28 slides
September 2010 BOV-SA Public Affairs Presentation Natty Montoya, 11 Jake Nelson, 11

September 2010 BOV-SA Public Affairs Presentation Natty Montoya, 11 Jake Nelson, 11

September 2010 BOV-SA Public Affairs Presentation Natty Montoya, 11 Jake Nelson, 11 Charter Day 2011 Presented by Brian Focarino (11) and Brittany Fallon (11) -The Administration and Students are pairing up to increase the

329 views • 18 slides
MINISTRY OF FINANCE CITIZEN SATISFACTION STUDY Beneficiary Funded By Stakeholders / Partners

MINISTRY OF FINANCE CITIZEN SATISFACTION STUDY Beneficiary Funded By Stakeholders / Partners

MINISTRY OF FINANCE CITIZEN SATISFACTION STUDY Beneficiary Funded By Stakeholders / Partners USAID AMIDEAST Institute of Finance Ministry of Finance - Revenues Directorate - Expenditures Directorate - Corporate

308 views • 26 slides
Barriers to womens land rights Both cultural and legal Laws prevent women from acquiring

Barriers to womens land rights Both cultural and legal Laws prevent women from acquiring

Barriers to womens land rights Both cultural and legal Laws prevent women from acquiring land rights through markets, marriage, inheritance, transfer, or gift. Poorly drafted regulations and laws governing land and property rights.

75 views • 6 slides
Asset Inheritance and the intergenerational transmission of poverty Kate Bird Overseas

Asset Inheritance and the intergenerational transmission of poverty Kate Bird Overseas

Asset Inheritance and the intergenerational transmission of poverty Kate Bird Overseas Development Institute, 11 October 2010 Introduction Asset holdings are strongly unequal Within and between group differences Between group

107 views • 9 slides
Local Market Power Mitigation Enhancements Implementation Details George Angelidis, Ph.D.

Local Market Power Mitigation Enhancements Implementation Details George Angelidis, Ph.D.

Local Market Power Mitigation Enhancements Implementation Details George Angelidis, Ph.D. Principal, Power Systems Technology Development Draft Tariff Review Stakeholder Conference Call May 8, 2019 Current LMPM Bid Inheritance MPM h h +1 B1

217 views • 4 slides

More recommend