SlideShare una empresa de Scribd logo

OSDC 2014: Jonathan Clarke - Rudder

NETWAYS
NETWAYS

As a Configuration Management [CM] "champion", trying to gain traction in your environment can be challenging when the level of expertise necessary is in short supply. We built Rudder so that the CM champion would not need to clone themselves. Instead, he or she is able to use a tool to manage configuration data, expose key parameters to the rest of their team, reduce complexity of configuration changes, and put in place role-based workflow for change control. Rudder is an open source configuration management solution, using lightweight agents (based on CFEngine) controlled via a central management point. Using Rudder, I will show how this approach enables the team to fully participate in the practice of Configuration Management, keep track of changes and history, exploit change access / control, and facilitate knowledge sharing (sharing intentions in design via desired configuration state, maintaining a record of preferred configurations) without intervention of CM champion.

SoftwareTecnología
1 de 47
Descargar para leer sin conexión
Normation – CC-BY-SA normation.com Rudder A powerful and structured CFEngine framework Jonathan CLARKE – jcl@normation.com @jooooooon42 (that's 7 'o's)
Normation – CC-BY-SA normation.com 2 www.rudder.cm Who am I? ● Jonathan Clarke ● Title: Co-founder & Product lead at Normation ● Origins: Sysadmin, infrastructure management ● Now: Automation + “running a company”-stuff ● Contributor to free software: – Co-creator of Rudder – Contributor to CFEngine, OpenLDAP ● Co-organizer of events:
Normation – CC-BY-SA normation.com 3 www.rudder.cm Intro This presentation is about Lego Photo CC BY-NC-SA 2.0 from https://www.flickr.com/photos/dillpixel/
Normation – CC-BY-SA normation.com 4 www.rudder.cm Intro Reminder Photo CC BY-NC-SA 2.0 from https://www.flickr.com/photos/evaekeblad/ Photo CC BY-SA 2.0 from https://www.flickr.com/photos/georgivar/
Normation – CC-BY-SA normation.com 5 www.rudder.cm Background A bunch of ops consultants ● From “plain old” infrastructure to configuration management ● Multiple companies: small, large & huge ● 5-10 years of doing this We always got the same takeaways
Normation – CC-BY-SA normation.com 6 www.rudder.cm Takeaway #1: Automated configuration rocks! Automated configuration rocks! Scalable Manage 1 to > 100000 servers the same way Save time Deploy faster & be more responsive to changes Improve reliability Avoid manual errors, harmonize configurations The proper way to manage systems
Normation – CC-BY-SA normation.com 7 www.rudder.cm Takeaway #2: Getting everyone on board? Getting everyone on board for CM is hard Frustration “I can do it quicker by hand or with a shell script” Steep learning curve New concepts, non obvious syntaxes, paradigm, ... Lack of motivation “What do I have to gain from using this tool?”
Normation – CC-BY-SA normation.com 8 www.rudder.cm Feedback #2: CFEngine is hard! Getting started from lots of bricks is daunting. Photo CC BY-NC-SA 2.0 from https://www.flickr.com/photos/strutta/
Normation – CC-BY-SA normation.com 9 www.rudder.cm What can we do? So how come so many projects do work out?
Normation – CC-BY-SA normation.com 10 www.rudder.cm What can we do? Thanks to a hero! So how come so many projects do work out? Photo CC BY-NC-ND 2.0 from https://www.flickr.com/photos/mwboeckmann/
Normation – CC-BY-SA normation.com 11 www.rudder.cm What can we do? Poor configuration management hero...
Normation – CC-BY-SA normation.com 12 www.rudder.cm What can we do? Poor configuration management hero... Hey, I'm trying to do this thing in config management, but I can't it to work, can you help me?
Normation – CC-BY-SA normation.com 13 www.rudder.cm What can we do? Poor configuration management hero... Hi, this is the supervision team. I'm sorry to disturb you at night, but we've got this error in production, and I think it's related to a change in the CM tool, but I don't understand it. Can you help me?
Normation – CC-BY-SA normation.com 14 www.rudder.cm What can we do?
Normation – CC-BY-SA normation.com 15 www.rudder.cm What can we do? How can we help? This is clearly a problem.
Normation – CC-BY-SA normation.com 16 www.rudder.cm Steep learning curve New concepts, non obvious syntaxes, paradigm, ... Approach 1) Separate content and controls 2) Provide access to key parameters without having to edit {CFEngine,Puppet,Chef} code
Normation – CC-BY-SA normation.com 17 www.rudder.cm Lack of motivation “What do I have to gain from using this tool?” Approach 1) Show the benefits to all users 2) Provide nice reports showing what works, how many machines are impacted
Normation – CC-BY-SA normation.com 18 www.rudder.cm Frustration “I can do it quicker by hand or with a shell script” Approach 1) Make it easy and quick to achieve success 2) Provide ready-to-use configuration techniques and share in-house ones simply
Normation – CC-BY-SA normation.com 19 www.rudder.cm Why Rudder? Make configuration management easy and increase its adoption Extend benefits of configuration management to a wider population Managers Junior sysadmins Non experts Lower entry barrier to learn and use configuration management Easy to use Highly powerful
Normation – CC-BY-SA normation.com 20 www.rudder.cm Sane defaults, always configurable Philosophy Core principles Plug and play SmartEasy Extensible & Customizable Open source
Normation – CC-BY-SA normation.com 21 www.rudder.cm Key points Specifically designed for automation & compliance Pre-packaged for: Linux, UNIX, Windows, Android Open Source Simplified user experience via a Web UI Graphical reportingBased on CFEngine 3 (don't reinvent the wheel!) Vagrant config to test: https://github.com/normation/rudder-vagrant/
Normation – CC-BY-SA normation.com 22 www.rudder.cm What can we do? Right! Show me already!
Normation – CC-BY-SA normation.com 23 www.rudder.cm Overview Simplified configuration
Normation – CC-BY-SA normation.com 24 www.rudder.cm Overview Built-in reporting
Normation – CC-BY-SA normation.com 25 www.rudder.cm Overview Built-in reporting
Normation – CC-BY-SA normation.com 26 www.rudder.cm Overview Complete tracability
Normation – CC-BY-SA normation.com 27 www.rudder.cm Design choices Design choices
Normation – CC-BY-SA normation.com 28 www.rudder.cm Design choices: CFEngine #1: Why CFEngine?
Normation – CC-BY-SA normation.com 29 www.rudder.cm Design choices: CFEngine CFEngine rocks Multi-platform Linux, Android, BSD, AIX, HP-UX, Solaris, Windows... Open Source GPLv3 Small footprint, scalable A few MB of RAM, just seconds to run... Continuous checking Agent based approach, no push Resilient to errors Network outages, failures, unavailable resources...
Normation – CC-BY-SA normation.com 30 www.rudder.cm Design choices: CFEngine Continuous checking Every 5 minutes Multi-platform Linux, Unix, Windows, Android... Separate configuration from implementation Reporting Done after the checks, separate process High freqency, trust in compliance reporting Reuse implementations, less bugs, shared code... Clear separation of roles Cover as many systems as possible Avoid bottleneck Different report types
Normation – CC-BY-SA normation.com 31 www.rudder.cm Design choices: Network architecture #2: Network architecture?
Normation – CC-BY-SA normation.com 32 www.rudder.cm Design choices: Network architecture Rudder server Node Node Node TCP - port 5309 File metadata and files Authentication and encryption (SSL) TCP ports 80 and 514 HTTP and syslog Node Node Isolated networkRelay server Download info → Built upon CFEngine network architecture All connections go→ from nodes to server Pull-based approach→
Normation – CC-BY-SA normation.com 33 www.rudder.cm Design choices: Workflow #3: Typical usage
Normation – CC-BY-SA normation.com 34 www.rudder.cm Design choices: Workflow Management Define policy Changes (fixes, upgrades...) c c Community Expert Sysadmins Configure parameters Configuration agent Initial application Continuous verification REPORTING Technical abstraction (method vs parameters)
Normation – CC-BY-SA normation.com 35 www.rudder.cm Design choices: Central validation #4: Central validation
Normation – CC-BY-SA normation.com 36 www.rudder.cm Design choices: Central validation Validation workflow
Normation – CC-BY-SA normation.com 37 www.rudder.cm Design choices: Central validation Validation workflow ● States: ● Pending validation – Can be sent to: Pending deployment, Deployed, Cancelled. ● Pending deployment – The change was validated, but now require to be deployed. Can be sent to: Deployed, Cancelled. ● Deployed – The change is deployed. This is a final state, it can’t be moved anymore. ● Cancelled – The change was not approved. This is a final state, it can’t be moved anymore.
Normation – CC-BY-SA normation.com 38 www.rudder.cm Demonstration Demo!
Normation – CC-BY-SA normation.com 39 www.rudder.cm Extending & Customizing Extending & Customizing
Normation – CC-BY-SA normation.com 40 www.rudder.cm Extension Techniques Implemented in CFEngine syntax + metadata for web configuration Nodes Search criteria on inventory data Hardware/OS/Network/ Software/Node name/ ... Directives Rules Apply Directives to a Group Groups Sysadmins c c Manager or sysadmins Expert Community
Normation – CC-BY-SA normation.com 41 www.rudder.cm Extension Techniques Implemented in CFEngine syntax + metadata for web configuration Nodes Search criteria on inventory data Hardware/OS/Network/ Software/Node name/ ... Directives Rules Apply Directives to a Group Groups Sysadmins c c Manager or sysadmins Expert Community
Normation – CC-BY-SA normation.com 42 www.rudder.cm Extension Techniques Implemented in CFEngine syntax + metadata for web configuration Nodes Search criteria on inventory data Hardware/OS/Network/ Software/Node name/ ... Directives Rules Apply Directives to a Group Groups Sysadmins c c Manager or sysadmins Expert Community Write any configuration you like in a Technique and share them with co-workers by exposing a selection of parameters
Normation – CC-BY-SA normation.com 43 www.rudder.cm Result Example === 1000 words With ncf (see http://www.ncf.io)
Normation – CC-BY-SA normation.com 44 www.rudder.cm Result Example === 1000 words With ncf + Rudder variables
Normation – CC-BY-SA normation.com 45 www.rudder.cm Online documentation http://www.ncf.io/pages/reference.html
Normation – CC-BY-SA normation.com 46 www.rudder.cm Current status Project is now reliable & scalable But needs more Techniques Ohloh statistics: Source: http://www.ohloh.net/p/rudder-project h
Normation – CC-BY-SA normation.com Questions? Check it out on: http://www.rudder.cm/ Jonathan CLARKE – jcl@normation.com @jooooooon42 (that's 7 'o's)

Recomendados

Sistem pakar
Sistem pakarSistem pakar
Sistem pakarIkhsan Bz
 
Prototyping is an attitude
Prototyping is an attitudePrototyping is an attitude
Prototyping is an attitudeWith Company
 
50 Essential Content Marketing Hacks (Content Marketing World)
50 Essential Content Marketing Hacks (Content Marketing World)50 Essential Content Marketing Hacks (Content Marketing World)
50 Essential Content Marketing Hacks (Content Marketing World)Heinz Marketing Inc
 
Learn BEM: CSS Naming Convention
Learn BEM: CSS Naming ConventionLearn BEM: CSS Naming Convention
Learn BEM: CSS Naming ConventionIn a Rocket
 
10 Insightful Quotes On Designing A Better Customer Experience
10 Insightful Quotes On Designing A Better Customer Experience10 Insightful Quotes On Designing A Better Customer Experience
10 Insightful Quotes On Designing A Better Customer ExperienceYuan Wang
 
How to Build a Dynamic Social Media Plan
How to Build a Dynamic Social Media PlanHow to Build a Dynamic Social Media Plan
How to Build a Dynamic Social Media PlanPost Planner
 
OSDC 2015: Benoit Peccatte | Sharing IT automation benefits in a team with Ru...
OSDC 2015: Benoit Peccatte | Sharing IT automation benefits in a team with Ru...OSDC 2015: Benoit Peccatte | Sharing IT automation benefits in a team with Ru...
OSDC 2015: Benoit Peccatte | Sharing IT automation benefits in a team with Ru...NETWAYS
 
Rudder - Getting everyone on board the configuration management express!
Rudder - Getting everyone on board the configuration management express!Rudder - Getting everyone on board the configuration management express!
Rudder - Getting everyone on board the configuration management express!RUDDER
 

Recomendados

Sistem pakar
Sistem pakarSistem pakar
Sistem pakarIkhsan Bz
 
Prototyping is an attitude
Prototyping is an attitudePrototyping is an attitude
Prototyping is an attitudeWith Company
 
50 Essential Content Marketing Hacks (Content Marketing World)
50 Essential Content Marketing Hacks (Content Marketing World)50 Essential Content Marketing Hacks (Content Marketing World)
50 Essential Content Marketing Hacks (Content Marketing World)Heinz Marketing Inc
 
Learn BEM: CSS Naming Convention
Learn BEM: CSS Naming ConventionLearn BEM: CSS Naming Convention
Learn BEM: CSS Naming ConventionIn a Rocket
 
10 Insightful Quotes On Designing A Better Customer Experience
10 Insightful Quotes On Designing A Better Customer Experience10 Insightful Quotes On Designing A Better Customer Experience
10 Insightful Quotes On Designing A Better Customer ExperienceYuan Wang
 
How to Build a Dynamic Social Media Plan
How to Build a Dynamic Social Media PlanHow to Build a Dynamic Social Media Plan
How to Build a Dynamic Social Media PlanPost Planner
 
OSDC 2015: Benoit Peccatte | Sharing IT automation benefits in a team with Ru...
OSDC 2015: Benoit Peccatte | Sharing IT automation benefits in a team with Ru...OSDC 2015: Benoit Peccatte | Sharing IT automation benefits in a team with Ru...
OSDC 2015: Benoit Peccatte | Sharing IT automation benefits in a team with Ru...NETWAYS
 
Rudder - Getting everyone on board the configuration management express!
Rudder - Getting everyone on board the configuration management express!Rudder - Getting everyone on board the configuration management express!
Rudder - Getting everyone on board the configuration management express!RUDDER
 
CFEngine, 4 years later
CFEngine, 4 years laterCFEngine, 4 years later
CFEngine, 4 years laterRUDDER
 
Interfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersInterfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersJonathan Clarke
 
Supercharging Optimizely Performance by Moving Decisions to the Edge
Supercharging Optimizely Performance by Moving Decisions to the EdgeSupercharging Optimizely Performance by Moving Decisions to the Edge
Supercharging Optimizely Performance by Moving Decisions to the EdgeOptimizely
 
Building Microservices in the cloud at AutoScout24
Building Microservices in the cloud at AutoScout24Building Microservices in the cloud at AutoScout24
Building Microservices in the cloud at AutoScout24Christian Deger
 
Highway to heaven - Microservices Meetup Berlin
Highway to heaven - Microservices Meetup BerlinHighway to heaven - Microservices Meetup Berlin
Highway to heaven - Microservices Meetup BerlinChristian Deger
 
20160221 va interconnect_pub
20160221 va interconnect_pub20160221 va interconnect_pub
20160221 va interconnect_pubCanturk Isci
 
Highway to heaven - XConf Manchester 2015
Highway to heaven - XConf Manchester 2015Highway to heaven - XConf Manchester 2015
Highway to heaven - XConf Manchester 2015Christian Deger
 
Highway to heaven - Voxxed Days Belgrade
Highway to heaven - Voxxed Days BelgradeHighway to heaven - Voxxed Days Belgrade
Highway to heaven - Voxxed Days BelgradeChristian Deger
 
Web Systems Architecture by Moshe Kaplan
Web Systems Architecture by Moshe KaplanWeb Systems Architecture by Moshe Kaplan
Web Systems Architecture by Moshe KaplanMoshe Kaplan
 
Life B4 and After Scrum
Life B4 and After ScrumLife B4 and After Scrum
Life B4 and After ScrumMichel Goldenberg
 
Felix Müller: Microservices Integration: Challenges and Solutions - Camunda D...
Felix Müller: Microservices Integration: Challenges and Solutions - Camunda D...Felix Müller: Microservices Integration: Challenges and Solutions - Camunda D...
Felix Müller: Microservices Integration: Challenges and Solutions - Camunda D...camunda services GmbH
 
Angularjs practical project experiences with javascript development in a bank
Angularjs practical project experiences with javascript development in a bankAngularjs practical project experiences with javascript development in a bank
Angularjs practical project experiences with javascript development in a bankDavid Amend
 
Platform SDK Update
Platform SDK UpdatePlatform SDK Update
Platform SDK UpdateAdnan Begovic
 
Rudder 3.0 and beyond
Rudder 3.0 and beyondRudder 3.0 and beyond
Rudder 3.0 and beyondJonathan Clarke
 
Highway to heaven - Microservices Meetup Munich
Highway to heaven - Microservices Meetup MunichHighway to heaven - Microservices Meetup Munich
Highway to heaven - Microservices Meetup MunichChristian Deger
 
Agile software architecture
Agile software architectureAgile software architecture
Agile software architectureScott Hsieh
 
Sdc verifier main presentation (Structural Code Verifier)
Sdc verifier main presentation (Structural Code Verifier)Sdc verifier main presentation (Structural Code Verifier)
Sdc verifier main presentation (Structural Code Verifier)SDC Verifier
 
Optimizing Your CI Pipelines
Optimizing Your CI PipelinesOptimizing Your CI Pipelines
Optimizing Your CI PipelinesSebastian Witowski
 
Intro to Web Development from Bloc.io
Intro to Web Development from Bloc.ioIntro to Web Development from Bloc.io
Intro to Web Development from Bloc.ioDouglas Wright
 
Cloud-Native Builds & Deployments in Bitbucket Pipelines
Cloud-Native Builds & Deployments in Bitbucket PipelinesCloud-Native Builds & Deployments in Bitbucket Pipelines
Cloud-Native Builds & Deployments in Bitbucket PipelinesAtlassian
 
Test Automation Strategy for Frontend and Backend
Test Automation Strategy for Frontend and BackendTest Automation Strategy for Frontend and Backend
Test Automation Strategy for Frontend and BackendArshad QA
 
What is Binary Language? Computer Number Systems
What is Binary Language? Computer Number SystemsWhat is Binary Language? Computer Number Systems
What is Binary Language? Computer Number SystemsJheuzeDellosa
 

Más contenido relacionado

Similar a OSDC 2014: Jonathan Clarke - Rudder

CFEngine, 4 years later
CFEngine, 4 years laterCFEngine, 4 years later
CFEngine, 4 years laterRUDDER
 
Interfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersInterfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersJonathan Clarke
 
Supercharging Optimizely Performance by Moving Decisions to the Edge
Supercharging Optimizely Performance by Moving Decisions to the EdgeSupercharging Optimizely Performance by Moving Decisions to the Edge
Supercharging Optimizely Performance by Moving Decisions to the EdgeOptimizely
 
Building Microservices in the cloud at AutoScout24
Building Microservices in the cloud at AutoScout24Building Microservices in the cloud at AutoScout24
Building Microservices in the cloud at AutoScout24Christian Deger
 
Highway to heaven - Microservices Meetup Berlin
Highway to heaven - Microservices Meetup BerlinHighway to heaven - Microservices Meetup Berlin
Highway to heaven - Microservices Meetup BerlinChristian Deger
 
20160221 va interconnect_pub
20160221 va interconnect_pub20160221 va interconnect_pub
20160221 va interconnect_pubCanturk Isci
 
Highway to heaven - XConf Manchester 2015
Highway to heaven - XConf Manchester 2015Highway to heaven - XConf Manchester 2015
Highway to heaven - XConf Manchester 2015Christian Deger
 
Highway to heaven - Voxxed Days Belgrade
Highway to heaven - Voxxed Days BelgradeHighway to heaven - Voxxed Days Belgrade
Highway to heaven - Voxxed Days BelgradeChristian Deger
 
Web Systems Architecture by Moshe Kaplan
Web Systems Architecture by Moshe KaplanWeb Systems Architecture by Moshe Kaplan
Web Systems Architecture by Moshe KaplanMoshe Kaplan
 
Felix Müller: Microservices Integration: Challenges and Solutions - Camunda D...
Felix Müller: Microservices Integration: Challenges and Solutions - Camunda D...Felix Müller: Microservices Integration: Challenges and Solutions - Camunda D...
Felix Müller: Microservices Integration: Challenges and Solutions - Camunda D...camunda services GmbH
 
Angularjs practical project experiences with javascript development in a bank
Angularjs practical project experiences with javascript development in a bankAngularjs practical project experiences with javascript development in a bank
Angularjs practical project experiences with javascript development in a bankDavid Amend
 
Highway to heaven - Microservices Meetup Munich
Highway to heaven - Microservices Meetup MunichHighway to heaven - Microservices Meetup Munich
Highway to heaven - Microservices Meetup MunichChristian Deger
 
Agile software architecture
Agile software architectureAgile software architecture
Agile software architectureScott Hsieh
 
Sdc verifier main presentation (Structural Code Verifier)
Sdc verifier main presentation (Structural Code Verifier)Sdc verifier main presentation (Structural Code Verifier)
Sdc verifier main presentation (Structural Code Verifier)SDC Verifier
 
Intro to Web Development from Bloc.io
Intro to Web Development from Bloc.ioIntro to Web Development from Bloc.io
Intro to Web Development from Bloc.ioDouglas Wright
 
Cloud-Native Builds & Deployments in Bitbucket Pipelines
Cloud-Native Builds & Deployments in Bitbucket PipelinesCloud-Native Builds & Deployments in Bitbucket Pipelines
Cloud-Native Builds & Deployments in Bitbucket PipelinesAtlassian
 

Similar a OSDC 2014: Jonathan Clarke - Rudder (20)

CFEngine, 4 years later
CFEngine, 4 years laterCFEngine, 4 years later
CFEngine, 4 years later
 
Interfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersInterfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert users
 
Supercharging Optimizely Performance by Moving Decisions to the Edge
Supercharging Optimizely Performance by Moving Decisions to the EdgeSupercharging Optimizely Performance by Moving Decisions to the Edge
Supercharging Optimizely Performance by Moving Decisions to the Edge
 
Building Microservices in the cloud at AutoScout24
Building Microservices in the cloud at AutoScout24Building Microservices in the cloud at AutoScout24
Building Microservices in the cloud at AutoScout24
 
Highway to heaven - Microservices Meetup Berlin
Highway to heaven - Microservices Meetup BerlinHighway to heaven - Microservices Meetup Berlin
Highway to heaven - Microservices Meetup Berlin
 
20160221 va interconnect_pub
20160221 va interconnect_pub20160221 va interconnect_pub
20160221 va interconnect_pub
 
Highway to heaven - XConf Manchester 2015
Highway to heaven - XConf Manchester 2015Highway to heaven - XConf Manchester 2015
Highway to heaven - XConf Manchester 2015
 
Highway to heaven - Voxxed Days Belgrade
Highway to heaven - Voxxed Days BelgradeHighway to heaven - Voxxed Days Belgrade
Highway to heaven - Voxxed Days Belgrade
 
Web Systems Architecture by Moshe Kaplan
Web Systems Architecture by Moshe KaplanWeb Systems Architecture by Moshe Kaplan
Web Systems Architecture by Moshe Kaplan
 
Life B4 and After Scrum
Life B4 and After ScrumLife B4 and After Scrum
Life B4 and After Scrum
 
Felix Müller: Microservices Integration: Challenges and Solutions - Camunda D...
Felix Müller: Microservices Integration: Challenges and Solutions - Camunda D...Felix Müller: Microservices Integration: Challenges and Solutions - Camunda D...
Felix Müller: Microservices Integration: Challenges and Solutions - Camunda D...
 
Angularjs practical project experiences with javascript development in a bank
Angularjs practical project experiences with javascript development in a bankAngularjs practical project experiences with javascript development in a bank
Angularjs practical project experiences with javascript development in a bank
 
Platform SDK Update
Platform SDK UpdatePlatform SDK Update
Platform SDK Update
 
Rudder 3.0 and beyond
Rudder 3.0 and beyondRudder 3.0 and beyond
Rudder 3.0 and beyond
 
Highway to heaven - Microservices Meetup Munich
Highway to heaven - Microservices Meetup MunichHighway to heaven - Microservices Meetup Munich
Highway to heaven - Microservices Meetup Munich
 
Agile software architecture
Agile software architectureAgile software architecture
Agile software architecture
 
Sdc verifier main presentation (Structural Code Verifier)
Sdc verifier main presentation (Structural Code Verifier)Sdc verifier main presentation (Structural Code Verifier)
Sdc verifier main presentation (Structural Code Verifier)
 
Optimizing Your CI Pipelines
Optimizing Your CI PipelinesOptimizing Your CI Pipelines
Optimizing Your CI Pipelines
 
Intro to Web Development from Bloc.io
Intro to Web Development from Bloc.ioIntro to Web Development from Bloc.io
Intro to Web Development from Bloc.io
 
Cloud-Native Builds & Deployments in Bitbucket Pipelines
Cloud-Native Builds & Deployments in Bitbucket PipelinesCloud-Native Builds & Deployments in Bitbucket Pipelines
Cloud-Native Builds & Deployments in Bitbucket Pipelines
 

Último

Test Automation Strategy for Frontend and Backend
Test Automation Strategy for Frontend and BackendTest Automation Strategy for Frontend and Backend
Test Automation Strategy for Frontend and BackendArshad QA
 
What is Binary Language? Computer Number Systems
What is Binary Language? Computer Number SystemsWhat is Binary Language? Computer Number Systems
What is Binary Language? Computer Number SystemsJheuzeDellosa
 
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfLearn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfkalichargn70th171
 
Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...
Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...
Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...kellynguyen01
 
Cloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackCloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackVICTOR MAESTRE RAMIREZ
 
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...OnePlan Solutions
 
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer DataAdobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer DataBradBedford3
 
HR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comHR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comFatema Valibhai
 
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...ICS
 
SyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AI
SyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AISyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AI
SyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AIABDERRAOUF MEHENNI
 
The Ultimate Test Automation Guide_ Best Practices and Tips.pdf
The Ultimate Test Automation Guide_ Best Practices and Tips.pdfThe Ultimate Test Automation Guide_ Best Practices and Tips.pdf
The Ultimate Test Automation Guide_ Best Practices and Tips.pdfkalichargn70th171
 
Russian Call Girls in Karol Bagh Aasnvi ➡️ 8264348440 💋📞 Independent Escort S...
Russian Call Girls in Karol Bagh Aasnvi ➡️ 8264348440 💋📞 Independent Escort S...Russian Call Girls in Karol Bagh Aasnvi ➡️ 8264348440 💋📞 Independent Escort S...
Russian Call Girls in Karol Bagh Aasnvi ➡️ 8264348440 💋📞 Independent Escort S...soniya singh
 
Unlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language ModelsUnlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language Modelsaagamshah0812
 
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...gurkirankumar98700
 
5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdf5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdfWave PLM
 
Project Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationProject Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationkaushalgiri8080
 
Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...OnePlan Solutions
 
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdfThe Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdfkalichargn70th171
 
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsUnveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsAlberto González Trastoy
 

Último (20)

Test Automation Strategy for Frontend and Backend
Test Automation Strategy for Frontend and BackendTest Automation Strategy for Frontend and Backend
Test Automation Strategy for Frontend and Backend
 
What is Binary Language? Computer Number Systems
What is Binary Language? Computer Number SystemsWhat is Binary Language? Computer Number Systems
What is Binary Language? Computer Number Systems
 
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfLearn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf
 
Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...
Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...
Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...
 
Cloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackCloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStack
 
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
Tech Tuesday-Harness the Power of Effective Resource Planning with OnePlan’s ...
 
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer DataAdobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
 
HR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.comHR Software Buyers Guide in 2024 - HRSoftware.com
HR Software Buyers Guide in 2024 - HRSoftware.com
 
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...
 
SyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AI
SyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AISyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AI
SyndBuddy AI 2k Review 2024: Revolutionizing Content Syndication with AI
 
The Ultimate Test Automation Guide_ Best Practices and Tips.pdf
The Ultimate Test Automation Guide_ Best Practices and Tips.pdfThe Ultimate Test Automation Guide_ Best Practices and Tips.pdf
The Ultimate Test Automation Guide_ Best Practices and Tips.pdf
 
Exploring iOS App Development: Simplifying the Process
Exploring iOS App Development: Simplifying the ProcessExploring iOS App Development: Simplifying the Process
Exploring iOS App Development: Simplifying the Process
 
Russian Call Girls in Karol Bagh Aasnvi ➡️ 8264348440 💋📞 Independent Escort S...
Russian Call Girls in Karol Bagh Aasnvi ➡️ 8264348440 💋📞 Independent Escort S...Russian Call Girls in Karol Bagh Aasnvi ➡️ 8264348440 💋📞 Independent Escort S...
Russian Call Girls in Karol Bagh Aasnvi ➡️ 8264348440 💋📞 Independent Escort S...
 
Unlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language ModelsUnlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language Models
 
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
 
5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdf5 Signs You Need a Fashion PLM Software.pdf
5 Signs You Need a Fashion PLM Software.pdf
 
Project Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanationProject Based Learning (A.I).pptx detail explanation
Project Based Learning (A.I).pptx detail explanation
 
Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...Advancing Engineering with AI through the Next Generation of Strategic Projec...
Advancing Engineering with AI through the Next Generation of Strategic Projec...
 
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdfThe Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf
 
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsUnveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
 

OSDC 2014: Jonathan Clarke - Rudder

  • 1. Normation – CC-BY-SA normation.com Rudder A powerful and structured CFEngine framework Jonathan CLARKE – jcl@normation.com @jooooooon42 (that's 7 'o's)
  • 2. Normation – CC-BY-SA normation.com 2 www.rudder.cm Who am I? ● Jonathan Clarke ● Title: Co-founder & Product lead at Normation ● Origins: Sysadmin, infrastructure management ● Now: Automation + “running a company”-stuff ● Contributor to free software: – Co-creator of Rudder – Contributor to CFEngine, OpenLDAP ● Co-organizer of events:
  • 3. Normation – CC-BY-SA normation.com 3 www.rudder.cm Intro This presentation is about Lego Photo CC BY-NC-SA 2.0 from https://www.flickr.com/photos/dillpixel/
  • 4. Normation – CC-BY-SA normation.com 4 www.rudder.cm Intro Reminder Photo CC BY-NC-SA 2.0 from https://www.flickr.com/photos/evaekeblad/ Photo CC BY-SA 2.0 from https://www.flickr.com/photos/georgivar/
  • 5. Normation – CC-BY-SA normation.com 5 www.rudder.cm Background A bunch of ops consultants ● From “plain old” infrastructure to configuration management ● Multiple companies: small, large & huge ● 5-10 years of doing this We always got the same takeaways
  • 6. Normation – CC-BY-SA normation.com 6 www.rudder.cm Takeaway #1: Automated configuration rocks! Automated configuration rocks! Scalable Manage 1 to > 100000 servers the same way Save time Deploy faster & be more responsive to changes Improve reliability Avoid manual errors, harmonize configurations The proper way to manage systems
  • 7. Normation – CC-BY-SA normation.com 7 www.rudder.cm Takeaway #2: Getting everyone on board? Getting everyone on board for CM is hard Frustration “I can do it quicker by hand or with a shell script” Steep learning curve New concepts, non obvious syntaxes, paradigm, ... Lack of motivation “What do I have to gain from using this tool?”
  • 8. Normation – CC-BY-SA normation.com 8 www.rudder.cm Feedback #2: CFEngine is hard! Getting started from lots of bricks is daunting. Photo CC BY-NC-SA 2.0 from https://www.flickr.com/photos/strutta/
  • 9. Normation – CC-BY-SA normation.com 9 www.rudder.cm What can we do? So how come so many projects do work out?
  • 10. Normation – CC-BY-SA normation.com 10 www.rudder.cm What can we do? Thanks to a hero! So how come so many projects do work out? Photo CC BY-NC-ND 2.0 from https://www.flickr.com/photos/mwboeckmann/
  • 11. Normation – CC-BY-SA normation.com 11 www.rudder.cm What can we do? Poor configuration management hero...
  • 12. Normation – CC-BY-SA normation.com 12 www.rudder.cm What can we do? Poor configuration management hero... Hey, I'm trying to do this thing in config management, but I can't it to work, can you help me?
  • 13. Normation – CC-BY-SA normation.com 13 www.rudder.cm What can we do? Poor configuration management hero... Hi, this is the supervision team. I'm sorry to disturb you at night, but we've got this error in production, and I think it's related to a change in the CM tool, but I don't understand it. Can you help me?
  • 14. Normation – CC-BY-SA normation.com 14 www.rudder.cm What can we do?
  • 15. Normation – CC-BY-SA normation.com 15 www.rudder.cm What can we do? How can we help? This is clearly a problem.
  • 16. Normation – CC-BY-SA normation.com 16 www.rudder.cm Steep learning curve New concepts, non obvious syntaxes, paradigm, ... Approach 1) Separate content and controls 2) Provide access to key parameters without having to edit {CFEngine,Puppet,Chef} code
  • 17. Normation – CC-BY-SA normation.com 17 www.rudder.cm Lack of motivation “What do I have to gain from using this tool?” Approach 1) Show the benefits to all users 2) Provide nice reports showing what works, how many machines are impacted
  • 18. Normation – CC-BY-SA normation.com 18 www.rudder.cm Frustration “I can do it quicker by hand or with a shell script” Approach 1) Make it easy and quick to achieve success 2) Provide ready-to-use configuration techniques and share in-house ones simply
  • 19. Normation – CC-BY-SA normation.com 19 www.rudder.cm Why Rudder? Make configuration management easy and increase its adoption Extend benefits of configuration management to a wider population Managers Junior sysadmins Non experts Lower entry barrier to learn and use configuration management Easy to use Highly powerful
  • 20. Normation – CC-BY-SA normation.com 20 www.rudder.cm Sane defaults, always configurable Philosophy Core principles Plug and play SmartEasy Extensible & Customizable Open source
  • 21. Normation – CC-BY-SA normation.com 21 www.rudder.cm Key points Specifically designed for automation & compliance Pre-packaged for: Linux, UNIX, Windows, Android Open Source Simplified user experience via a Web UI Graphical reportingBased on CFEngine 3 (don't reinvent the wheel!) Vagrant config to test: https://github.com/normation/rudder-vagrant/
  • 22. Normation – CC-BY-SA normation.com 22 www.rudder.cm What can we do? Right! Show me already!
  • 23. Normation – CC-BY-SA normation.com 23 www.rudder.cm Overview Simplified configuration
  • 24. Normation – CC-BY-SA normation.com 24 www.rudder.cm Overview Built-in reporting
  • 25. Normation – CC-BY-SA normation.com 25 www.rudder.cm Overview Built-in reporting
  • 26. Normation – CC-BY-SA normation.com 26 www.rudder.cm Overview Complete tracability
  • 27. Normation – CC-BY-SA normation.com 27 www.rudder.cm Design choices Design choices
  • 28. Normation – CC-BY-SA normation.com 28 www.rudder.cm Design choices: CFEngine #1: Why CFEngine?
  • 29. Normation – CC-BY-SA normation.com 29 www.rudder.cm Design choices: CFEngine CFEngine rocks Multi-platform Linux, Android, BSD, AIX, HP-UX, Solaris, Windows... Open Source GPLv3 Small footprint, scalable A few MB of RAM, just seconds to run... Continuous checking Agent based approach, no push Resilient to errors Network outages, failures, unavailable resources...
  • 30. Normation – CC-BY-SA normation.com 30 www.rudder.cm Design choices: CFEngine Continuous checking Every 5 minutes Multi-platform Linux, Unix, Windows, Android... Separate configuration from implementation Reporting Done after the checks, separate process High freqency, trust in compliance reporting Reuse implementations, less bugs, shared code... Clear separation of roles Cover as many systems as possible Avoid bottleneck Different report types
  • 31. Normation – CC-BY-SA normation.com 31 www.rudder.cm Design choices: Network architecture #2: Network architecture?
  • 32. Normation – CC-BY-SA normation.com 32 www.rudder.cm Design choices: Network architecture Rudder server Node Node Node TCP - port 5309 File metadata and files Authentication and encryption (SSL) TCP ports 80 and 514 HTTP and syslog Node Node Isolated networkRelay server Download info → Built upon CFEngine network architecture All connections go→ from nodes to server Pull-based approach→
  • 33. Normation – CC-BY-SA normation.com 33 www.rudder.cm Design choices: Workflow #3: Typical usage
  • 34. Normation – CC-BY-SA normation.com 34 www.rudder.cm Design choices: Workflow Management Define policy Changes (fixes, upgrades...) c c Community Expert Sysadmins Configure parameters Configuration agent Initial application Continuous verification REPORTING Technical abstraction (method vs parameters)
  • 35. Normation – CC-BY-SA normation.com 35 www.rudder.cm Design choices: Central validation #4: Central validation
  • 36. Normation – CC-BY-SA normation.com 36 www.rudder.cm Design choices: Central validation Validation workflow
  • 37. Normation – CC-BY-SA normation.com 37 www.rudder.cm Design choices: Central validation Validation workflow ● States: ● Pending validation – Can be sent to: Pending deployment, Deployed, Cancelled. ● Pending deployment – The change was validated, but now require to be deployed. Can be sent to: Deployed, Cancelled. ● Deployed – The change is deployed. This is a final state, it can’t be moved anymore. ● Cancelled – The change was not approved. This is a final state, it can’t be moved anymore.
  • 38. Normation – CC-BY-SA normation.com 38 www.rudder.cm Demonstration Demo!
  • 39. Normation – CC-BY-SA normation.com 39 www.rudder.cm Extending & Customizing Extending & Customizing
  • 40. Normation – CC-BY-SA normation.com 40 www.rudder.cm Extension Techniques Implemented in CFEngine syntax + metadata for web configuration Nodes Search criteria on inventory data Hardware/OS/Network/ Software/Node name/ ... Directives Rules Apply Directives to a Group Groups Sysadmins c c Manager or sysadmins Expert Community
  • 41. Normation – CC-BY-SA normation.com 41 www.rudder.cm Extension Techniques Implemented in CFEngine syntax + metadata for web configuration Nodes Search criteria on inventory data Hardware/OS/Network/ Software/Node name/ ... Directives Rules Apply Directives to a Group Groups Sysadmins c c Manager or sysadmins Expert Community
  • 42. Normation – CC-BY-SA normation.com 42 www.rudder.cm Extension Techniques Implemented in CFEngine syntax + metadata for web configuration Nodes Search criteria on inventory data Hardware/OS/Network/ Software/Node name/ ... Directives Rules Apply Directives to a Group Groups Sysadmins c c Manager or sysadmins Expert Community Write any configuration you like in a Technique and share them with co-workers by exposing a selection of parameters
  • 43. Normation – CC-BY-SA normation.com 43 www.rudder.cm Result Example === 1000 words With ncf (see http://www.ncf.io)
  • 44. Normation – CC-BY-SA normation.com 44 www.rudder.cm Result Example === 1000 words With ncf + Rudder variables
  • 45. Normation – CC-BY-SA normation.com 45 www.rudder.cm Online documentation http://www.ncf.io/pages/reference.html
  • 46. Normation – CC-BY-SA normation.com 46 www.rudder.cm Current status Project is now reliable & scalable But needs more Techniques Ohloh statistics: Source: http://www.ohloh.net/p/rudder-project h
  • 47. Normation – CC-BY-SA normation.com Questions? Check it out on: http://www.rudder.cm/ Jonathan CLARKE – jcl@normation.com @jooooooon42 (that's 7 'o's)