Introducing
Your new presentation assistant.
Refine, enhance, and tailor your content, source relevant images, and edit visuals quicker than ever before.
Trending searches
T
What is this presentation about
✩
★✩✩✩✩
sarcasm
1. SCM Capabilites
- When? Where? Who? With?
2. IaC notes
- And why this subject?
3. Related issues
- Deuce take it!!1
IMPORTANT
NOTICE
Topic may mislead
LETS GO
NEXT ONE:
Software Configuration Managment (SCM)
It's about this bunch of different things
Discover and observe
Configure all your inventory
Tell to engineers about everything
It gets painfully when someone wants revert previous configuration
Prevent unexpected troubles
Because i'ts a common, agentless tool?
or not?
You need only python package on your server*
*but there is various crutches for passing through
Your inventory is just a text file
[web]
a.webserver.com
b.webserver.com
[db]
c.behind.webserver.com
Everything can play own role... or more than one
Do your best and don't sink with spaces!*
*I'ts very uncommon for first time**, but when some time passes you will get it.
**like python
---
- hosts: webservers
remote_user: root
tasks:
- name: Apache is latest
yum: name=httpd state=latest
- name: Add config file
template: src=/srv/httpd.j2 dest=/etc/httpd.conf
If your preffered language can return JSON - you do.
Everything is gross and weird with cloud inventory.
May(will) piss off you
It won't preserve state of your infrastructure. Literally, you won't be able to interact with your infrastructure without
reloading inventory in memory.*
*ec2.py do, when this script is executable inventory
Your wont be able to preview changes on your infrastructure.*
*it will not work even with conditions!
*--check key will not be usefull there
*or use your best cruthes
State locking? Change previews? Others jobs that ansible should't do?
You still can use ansible for every routine, but when you do it, you will mix cutlets with flies
IaC
Manage infrastructure via source control
OR CAN I?
From AWS, Azure, Google Cloud to DigitalOcean and CloudStack
Terraform allows you to deal with existing infrastructure without any headache
Lock state of your infrastructure
Keep this away from unaware changes
You can preview your infrastructure before
executing
resource "aws_instance" "hello" {
ami = "ami-XXXXXXX"
instance_type = "t2.micro"
}
*Assuming that you have Amazon secrets
Execute
Terraform plan
The plan command lets you see what Terraform will
do before actually doing it.
To actually create the instance, run the “terraform apply” command:
provisioner "local-exec" {
command = "ansible-playbook -i \
'${aws_instance.hello.public_ip},' site.yml"
}
*or use packer and abandon ansible
It's still posible to do provision/configuration with/without a SCM
It's still possible to set up infrastructure with/without a IaC. And sometimes it's very good decision
Provocative topic sometimes summons listeners with tricky questions. Think about it carefully
Questions?