servers so easy a caveman can do it
play

Servers So Easy A Caveman Can Do It Christopher H. Laco - PowerPoint PPT Presentation

Aug 22, 2023 •208 likes •670 views

1 Servers So Easy A Caveman Can Do It Christopher H. Laco claco@chrislaco.com @claco #clerb Follow along! http://chrislaco.com/slides/clerb-caveman.pdf Thursday, November 10, 11 1 2 Shout out to our sponsors leandog.com

  1. 1 Servers So Easy A Caveman Can Do It Christopher H. Laco » claco@chrislaco.com » @claco » #clerb Follow along! http://chrislaco.com/slides/clerb-caveman.pdf Thursday, November 10, 11 1

  2. 2 Shout out to our sponsors leandog.com within3.com Thursday, November 10, 11 2

  3. 3 Your humble speaker Reformed Music Major Turned Nerd H.A.H.S. Is Of DevOps Kind For H osting A t H ome S yndrom Hire Of Cloud Works! S.I.B.D. S ervers I n B asement D isease Hardware/Software/Network 3 Months DevOps Free. Just a programmer now. Also .NET Free since June! Thursday, November 10, 11 3

  4. 4 Why are we here? Heard the word “easy”. Sorry. I lied. Servers are hard. Food / Drink Thought this was a CleAG night Hiding from the authorities You’re the “server guy/gal/victim” Hate working on servers Looking for ideas to automate your pain away Thursday, November 10, 11 4

  5. 5 Motivations Configuring servers requires a “server guy” Testing locally is different than testing upstream Adding capacity takes time Upgrades introduce risk Changing deployment logic is troublesome Troubleshooting production is risky/difficult Disaster recovery is costly/long True “Staging” environments are difficult Thursday, November 10, 11 5

  6. 6 Motivations continued... “Works on my machine” is dangerous Nothing is repeatable Managing multiple servers is tedious MBP Setup is different Thursday, November 10, 11 6

  7. 7 Goals Any Engineer/QA can spin up machines Same configuration everywhere Add more servers when traffic increases Test OS/Software upgrades easily Tune production deployment without production Reproduce production problems out of band Recover from server failures quickly Duplicate Production in Staging Thursday, November 10, 11 7

  8. 8 Goals continued... Test outside of the MBP bubble Make setup repeatable Manage servers in bulk FNG gets instance on Day #1 FNG gets MBP Setup on Day #1 Thursday, November 10, 11 8

  9. 9 Three Steps To A New Server Step 1: Step 2: Step 3: Provision Configure Deploy Thursday, November 10, 11 9

  10. 10 Provisioning a New Server Thursday, November 10, 11 10

  11. 11 Where Do We Put The Server? Amazon AWS / EC2 Rackspace RackCloud SliceHost, Linode, TerraHost, OpenStack, Eucalyptus Local VirtualBox Install Existing Servers Managed Host / Service Provider Thursday, November 10, 11 11

  12. 12 What Needs Provisioned? Operating System + root access Install just enough to run configure / deploy steps later Install Ruby / Ohai / Chef / RubyShadow / Bundler Remove Future Roadblocks in Configuration / Deployment SSH Config: Disable Require TTY, Env Keep PATH / SSH_AUTH_LOCK Disable SeLinux (KickStart Bug! / Chef Recipes / Apache) Configure $PATH: environment, bashrc, profile, etc LD PATH: ldconfig (bundler deployment cache issues) Thursday, November 10, 11 12

  13. 13 How Do We Do It? VirtualBox 4.1.0 (4.1.2 has issues!) veewee - Creates Images (“box”) - https://github.com/jedi4ever/veewee vagrant - Manages Boxes / Instances - http://vagrantup.com/ EC2 knife / knife-ec2 - Manages Instances - https://github.com/opscode/ RackCloud knife / knife-rackcloud - Manages Instances - https://github.com/opscode/ Managed / Existing Servers ssh / sudo / su Thursday, November 10, 11 13

  14. 14 VirtualBox Provisioning Install VirtualBox 4.1.0 http://www.virtualbox.org/wiki/Download_Old_Builds_4_1 Install Ruby Gems $ gem install veewee vagrant Define/Customize a new machine image $ vagrant basebox define MyServer CentOS-5.6-x86_64-netboot Edit KickStart Config - vim ks.cfg Edit Post Install Script - vim postinstall.sh Thursday, November 10, 11 14

  15. 15 Thursday, November 10, 11 15

  16. 16 Thursday, November 10, 11 16

  17. 17 VirtualBox Provisioning cont... Install VirtualBox 4.1.0 http://www.virtualbox.org/wiki/Download_Old_Builds_4_1 Install Ruby Gems $ gem install veewee vagrant Define/Customize a new machine image $ vagrant basebox define MyServer CentOS-5.6-x86_64-netboot Build the machine image $ vagrant basebox build MyServer $ vagrant basebox export MyServer Thursday, November 10, 11 17

  18. 18 Thursday, November 10, 11 18

  19. 19 Thursday, November 10, 11 19

  20. 20 EC2/RackCloud Provisioning Install Ruby Gems (Bundler Issue! JSON Lock!) $ gem install chef knife-ec2 knife-rackspace Configure API Keys in ~/.chef/knife.rb knife[:aws_access_key_id] = "Your AWS Access Key ID" knife[:aws_secret_access_key] = "Your AWS Access Key" Customize the server image $ vim ~/.chef/bootstrap/centos56.rb Thursday, November 10, 11 20

  21. 21 Thursday, November 10, 11 21

  22. 22 EC2/RC Provisioning cont... Install Ruby Gems (Bundler Issue! JSON Lock!) $ gem install chef knife-ec2 knife-rackspace Configure API Keys in ~/.chef/knife.rb knife[:aws_access_key_id] = "Your AWS Access Key ID" knife[:aws_secret_access_key] = "Your AWS Access Key" Customize the server image $ vim ~/.chef/bootstrap/centos56.rb Create the machine image $ knife ec2 create -I ami-0a59bb63 -d centos-5.4 ... Thursday, November 10, 11 22

  23. 23 Login To Your New Server VirtualBox / Vagrant $ vagrant ssh [ssh vagrant@localhost -p 2222] EC2 $ ssh root@ec2-xxx-xxx-xxx-xxx.compute-1.amazonaws.com -i ec2-group-key.pem Rackspace $ ssh root@xxx-xxx-xxx-xxx.staticip.rackspace.com Questions? Thursday, November 10, 11 23

  24. 24 Configuring Your New Server Thursday, November 10, 11 24

  25. 25 What Is Chef? Configuration management for “Nodes” or servers It is a “Cookbook” full of configuration “Recipes” plus “Data Bags” Install “build” user. Set password. Configure ssh key. Configure github access. Cookbooks, Recipes, Data Bags stored upstream on OpsCode server Client downloads recipes and runs them on each server Configure things differently by “Environment”: production, staging, development Configure “Roles” or groups of recipes: app, db, caching, services, etc Manage Cookbooks, Recipes, Roles and Nodes from command line Thursday, November 10, 11 25

  26. 26 What Does A Data Bag Do? { "id": "build", "uid": 1000, "gid": 1000, "comment": "Build User", "shell": "/bin/bash", "password": "$1$31Pf4SgRy$edFhgUyhUBDE3%eUSD4rmk1", "ssh_keys": "ssh-rsa AAAABC2TbS43DAAABD4ER3DH4WT....default", "sudoers": "ALL=(ALL) ALL" } Thursday, November 10, 11 26

  27. 27 What Does A Recipe Do? home_dir = "/home/#{u['id']}" group u['id'] do gid u['gid'] end user u['id'] do uid u['uid'] gid u['gid'] shell u['shell'] password u['password'] home home_dir end directory "#{home_dir}/.ssh" do owner u['id'] group u['gid'] || u['id'] mode "0700" end template "#{home_dir}/.ssh/authorized_keys" do source "authorized_keys.erb" owner u['id'] group u['gid'] || u['id'] mode "0600" variables :ssh_keys => u['ssh_keys'] end Thursday, November 10, 11 27

  28. 28 What Does A Role Do? name "app" description "App role for all web servers." run_list "role[base]", "recipe[apache2]", "recipe[apache2::mod_ssl]", "recipe[mysql::client]", "recipe[passenger_apache2]", "recipe[passenger_apache2::mod_rails]", "recipe[sphinx]", "recipe[company::ssl]", "recipe[company::mainsite]", "recipe[company::mobilesite]" Thursday, November 10, 11 28

  29. 29 What Does An Environment Do? name "development" description "The development environment" default_attributes "company" => { "mainsite" => { "virtual_host" => "localhost" } } name "staging" description "The staging environment" default_attributes "company" => { "mainsite" => { "virtual_host" => "mainsite-staging.company.com" } } name "production" description "The production environment" default_attributes "company" => { "mainsite" => { "virtual_host" => "www.company.com" } } Thursday, November 10, 11 29

  30. 30 Manage Everything Via Terminal $ knife node list app1, ec2-claco, services2, staging-db, vagrant-claco-mainsite, .... $ knife cookbook list apache, xml, xslt, imagemagic, company::users, mysql, .... $ knife search node "chef_environment:production AND role:services" Node Name: services1 Environment: production FQDN: services1.company.com IP: 172.16.2.3 Run List: role[base], role[services] Roles: cache, queue, services, search, base Recipes: company::users, ntp, postfix, java, memcached Platform: redhat 5.6 $ knife ssh “name:app*” “pwd” -x build app1.company.com Mon Sep 12 10:07:51 CDT 2011 app2.company.com Mon Sep 12 10:07:51 CDT 2011 app3.company.com Mon Sep 12 10:07:51 CDT 2011 Thursday, November 10, 11 30

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Servers Kotlin Ryan Harter @rharter Ktor Ktor Easy to use, fun and asynchronous. Ktor

Servers Kotlin Ryan Harter @rharter Ktor Ktor Easy to use, fun and asynchronous. Ktor

Servers Kotlin Ryan Harter @rharter Ktor Ktor Easy to use, fun and asynchronous. Ktor Easy to use, fun and asynchronous. Composable, DSL based web services in Kotlin Ktor Application Ktor Application Tomcat Servlet Netty Jetty

1.53k views • 151 slides
Easy-to-Use Easy-to-Install Easy on the Budget orecx.com Easy-to-Use

Easy-to-Use Easy-to-Install Easy on the Budget orecx.com Easy-to-Use

Easy-to-Use Easy-to-Install Easy on the Budget orecx.com Easy-to-Use Easy-to-Install Easy on the Budget OrecX Call Recording The issue is simple: You want to comply with regulatory requirements and improve customer service by

204 views • 9 slides
Managing the Caveman/Cavewoman Brain in the 21st Century Bridging the Hearts and Minds of Youth

Managing the Caveman/Cavewoman Brain in the 21st Century Bridging the Hearts and Minds of Youth

Managing the Caveman/Cavewoman Brain in the 21st Century Bridging the Hearts and Minds of Youth Conference UCSD Center for Mindfulness, February 4, 2012 Rick Hanson, Ph.D. The Wellspring Institute for Neuroscience and Contemplative Wisdom

801 views • 52 slides
Managing the Caveman/Cavewoman Brain in the 21st Century Bridging the Hearts and Minds of Youth

Managing the Caveman/Cavewoman Brain in the 21st Century Bridging the Hearts and Minds of Youth

Managing the Caveman/Cavewoman Brain in the 21st Century Bridging the Hearts and Minds of Youth Conference UCSD Center for Mindfulness, February 4, 2012 Rick Hanson, Ph.D. The Wellspring Institute for Neuroscience and Contemplative Wisdom

684 views • 53 slides
@SusannahFox PewInternet.org E-patients.net Flickr: Caveman 92223 81% of healthy adults in U.S.

@SusannahFox PewInternet.org E-patients.net Flickr: Caveman 92223 81% of healthy adults in U.S.

@SusannahFox PewInternet.org E-patients.net Flickr: Caveman 92223 81% of healthy adults in U.S. go online vs. 62% of chronically ill 93% of chronically ill ask a health professional Fox and Purcell, when they need medical Chronic

172 views • 3 slides
TCP Servers: Offloading TCP Processing in Internet Servers. Design, Implementation, and

TCP Servers: Offloading TCP Processing in Internet Servers. Design, Implementation, and

TCP Servers: Offloading TCP Processing in Internet Servers. Design, Implementation, and Performance M. Rangarajan, A. Bohra, K. Banerjee, E.V. Carrera, R. Bianchini, L. Iftode, W. Zwaenepoel. Presented by: Thomas Repantis trep@cs.ucr.edu

510 views • 35 slides
L7: Web Servers Web Engineering 188.951 2VU SS20 Jrgen Cito L7: Webservers Overview of

L7: Web Servers Web Engineering 188.951 2VU SS20 Jrgen Cito L7: Webservers Overview of

L7: Web Servers Web Engineering 188.951 2VU SS20 Jrgen Cito L7: Webservers Overview of web servers (hardware and server software) Web servers as part of internet architecture Serving static resources over the filesystem

502 views • 13 slides
TAMING NG T THE C CAVEMAN: STRESS MANAGEMENT FOR THE NEW AGE Diana F. Hott, LCSW CEAP

TAMING NG T THE C CAVEMAN: STRESS MANAGEMENT FOR THE NEW AGE Diana F. Hott, LCSW CEAP

TAMING NG T THE C CAVEMAN: STRESS MANAGEMENT FOR THE NEW AGE Diana F. Hott, LCSW CEAP www.dianafhottlcsw.com (c) 2013 Diana F. Hott LCSW TAMING T THE C CAVEM EMAN (c) 2013 Diana F. Hott LCSW The physical and emotional reaction people

245 views • 13 slides
Services Stephen James Clients vs Servers Clients consume services Servers provide

Services Stephen James Clients vs Servers Clients consume services Servers provide

Services Stephen James Clients vs Servers Clients consume services Servers provide services However, there will typically be services running on both clients and servers What are protocols? Rules that define a common

524 views • 30 slides
Easy Flype & Easy HiFlype Peripheral Self-Expanding Stent System 20/07/2018 Easy Flype

Easy Flype & Easy HiFlype Peripheral Self-Expanding Stent System 20/07/2018 Easy Flype

Easy Flype & Easy HiFlype Peripheral Self-Expanding Stent System 20/07/2018 Easy Flype & Easy HiFlype Dedicated specific platforms in order to match perfectly the different needs of the Iliac and SFA artery stentings. Proven

377 views • 33 slides
Two days in The Life of The DNS Anycast Root Servers Ziqian Liu Beijing Jiaotong Univeristy

Two days in The Life of The DNS Anycast Root Servers Ziqian Liu Beijing Jiaotong Univeristy

Two days in The Life of The DNS Anycast Root Servers Ziqian Liu Beijing Jiaotong Univeristy Bradley Huffaker, Marina Fomenkov Nevil Brownlee, and kc claffy CAIDA PAM2007 Outline DNS root servers DNS anycast in root servers Data

289 views • 26 slides
Expandabee Easy Access | Easy Lift | Easy Bees Red B Where we left off Standalone

Expandabee Easy Access | Easy Lift | Easy Bees Red B Where we left off Standalone

Expandabee Easy Access | Easy Lift | Easy Bees Red B Where we left off Standalone expanding beehive boxes Access boxes without heavy lifting Reduces risk of back injury https://peapix.com/photos/25013 Customer Needs

256 views • 14 slides
Human Centric Human Centric Machine Learning Infrastructure Machine Learning Infrastructure @

Human Centric Human Centric Machine Learning Infrastructure Machine Learning Infrastructure @

Human Centric Human Centric Machine Learning Infrastructure Machine Learning Infrastructure @ Ville Tuulos QCon SF, November 2018 Meet Alex, a new chief data scientist at Caveman Cupcakes Meet Alex, a new chief data scientist at Caveman

1.15k views • 86 slides
IT452 Advanced Web and Internet Systems Set 10: Web Servers (operation, configuration, and

IT452 Advanced Web and Internet Systems Set 10: Web Servers (operation, configuration, and

IT452 Advanced Web and Internet Systems Set 10: Web Servers (operation, configuration, and security) (Chapters 21) Key Questions Popular web servers? What does a web server do? How can I control it? URL re-writing /

374 views • 8 slides
IT452 Advanced Web and Internet Systems Set 6: Web Servers (operation, configuration, and

IT452 Advanced Web and Internet Systems Set 6: Web Servers (operation, configuration, and

IT452 Advanced Web and Internet Systems Set 6: Web Servers (operation, configuration, and security) (Chapters 16 and 18) Key Questions Popular web servers? What does a web server do? How can I control it? URL re-writing /

326 views • 7 slides
CyberProbe: Towards Internet-Scale Active Detection of Malicious Servers a. nappa , z. xu, m.z.

CyberProbe: Towards Internet-Scale Active Detection of Malicious Servers a. nappa , z. xu, m.z.

CyberProbe: Towards Internet-Scale Active Detection of Malicious Servers a. nappa , z. xu, m.z. rafique, j.caballero, g.gu imdea software institute success lab, texas a&m univeristy Cybercriminals use geographically distributed servers to

652 views • 24 slides
MIKE PIROG Co-Founder, Tribune d.o pirog twitter @pirogcommamike email mike@kalamuna.com FAST

MIKE PIROG Co-Founder, Tribune d.o pirog twitter @pirogcommamike email mike@kalamuna.com FAST

MIKE PIROG Co-Founder, Tribune d.o pirog twitter @pirogcommamike email mike@kalamuna.com FAST LOCAL DEV + PANTHEON + DRUSH = KALABOX let's talk some history first @ Kalamuna LLC / 2013 / 04 / 06 we've got something really exciting... but

776 views • 23 slides
Vagrant Docker Gea-Suan Lin KKBOX Technologies Vagrant

Vagrant Docker Gea-Suan Lin KKBOX Technologies Vagrant

Vagrant Docker Gea-Suan Lin KKBOX Technologies Vagrant VAGRANTFILE_API_VERSION = "2" Vagrant.configure(VAGRANTFILE_API_VERSION) do |config| config.vm.box = "hashicorp/precise64"

708 views • 41 slides
Tools for the Vagabonding Samba Developer sambaXP 2015 Michael Adam Samba Team / Red Hat May

Tools for the Vagabonding Samba Developer sambaXP 2015 Michael Adam Samba Team / Red Hat May

Tools for the Vagabonding Samba Developer sambaXP 2015 Michael Adam Samba Team / Red Hat May 21, 2015 We use a lot of VMs and containers for testing and building Samba. The setup and maintenance of these machines requires a lot of work. How

351 views • 20 slides
T E S T I N G Y O U R L O C A L P K G S R C D E V E L O P M E N T W I N G C O M M A N D E R

T E S T I N G Y O U R L O C A L P K G S R C D E V E L O P M E N T W I N G C O M M A N D E R

PA C K E R , VA G R A N T, V I R T U A L B O X & C O T E S T I N G Y O U R L O C A L P K G S R C D E V E L O P M E N T W I N G C O M M A N D E R Thomas Merkel drscream@edgebsd.org 2017-07-01 A G E N D A who? why? what?

402 views • 22 slides
Microservice Deployment Software Engineering II Sharif University of Technology MohammadAmin

Microservice Deployment Software Engineering II Sharif University of Technology MohammadAmin

Microservice Deployment Software Engineering II Sharif University of Technology MohammadAmin Fazli Topics Continuous Integration & Microservices Continuous Delivery Deployment Artifacts Custom Images Environments

591 views • 39 slides
Icinga 2 Vro Kaplan @verosk http://inuits.eu/ Playground Vagrant VM

Icinga 2 Vro Kaplan @verosk http://inuits.eu/ Playground Vagrant VM

Whats new Icinga 2 Vro Kaplan @verosk http://inuits.eu/ Playground Vagrant VM http://docs.icinga.org/icinga2/latest/doc/module/icinga2/chapter/getting-started#vagrant Modules & features icinga2-enable-feature

635 views • 24 slides
Docker in the EGI Docker in the EGI Federated Cloud Federated Cloud Carlos Gimeno

Docker in the EGI Docker in the EGI Federated Cloud Federated Cloud Carlos Gimeno

Docker in the EGI Docker in the EGI Federated Cloud Federated Cloud Carlos Gimeno cgimeno@bifi.es Instituto de Biocomputacin y Fsica de Sistemas Complejos info@bifi.es http://bifi.es 0. Index Introduction What is Docker? A

401 views • 14 slides
VAGRANT UP AND RUNNING lastcallmedia.com allaboard@lastcallmedia.com Rob Bayliss @lastcallmedia

VAGRANT UP AND RUNNING lastcallmedia.com allaboard@lastcallmedia.com Rob Bayliss @lastcallmedia

VAGRANT UP AND RUNNING lastcallmedia.com allaboard@lastcallmedia.com Rob Bayliss @lastcallmedia ABOUT ME CTO at Last Call Media PHP/Drupal Developer Lead Architect Educator Open source advocate LAST CALL MEDIA VAGRANT?

527 views • 21 slides

More recommend