Overhauling Dev Arch with Ansible Tower and Docker

Similar documents
Multi-Cloud and Application Centric Modeling, Deployment and Management with Cisco CloudCenter (CliQr)

Multi-Cloud and Application Centric Modeling, Deployment and Management with Cisco CloudCenter (CliQr)

Be smart. Think open source.

Beyond 1001 Dedicated Data Service Instances

EVERYTHING AS CODE A Journey into IT Automation and Standardization. Raphaël Pinson

Actifio Test Data Management

DevOps Course Content

Accelerate at DevOps Speed With Openshift v3. Alessandro Vozza & Samuel Terburg Red Hat

Application Centric Microservices Ken Owens, CTO Cisco Intercloud Services. Redhat Summit 2015

Elizabeth Lawler CEO & Co-Founder Conjur,

WHITE PAPER. RedHat OpenShift Container Platform. Benefits: Abstract. 1.1 Introduction

Automating Security Practices for the DevOps Revolution

CloudCenter for Developers

Build an open hybrid cloud and paint it red and blue

Red Hat OpenShift Roadmap Q4 CY16 and H1 CY17 Releases. Lutz Lange Solution

Advanced Continuous Delivery Strategies for Containerized Applications Using DC/OS

The Long Road from Capistrano to Kubernetes

Roles. Ecosystem Flow of Information between Roles Accountability

DESIGNING APPLICATIONS FOR CONTAINERIZATION AND THE CLOUD THE 12 FACTOR APPLICATION MANIFESTO

Orchestrate JBoss Middleware with Ansible Tower Red Hat Summit San Francisco

Docker and Security. September 28, 2017 VASCAN Michael Irwin

Nicman Group Test Data Management 2.0 Leveraging Copy Data Virtualization Technology in QA for SQuAD. November 2016

Automating the Software-Defined Data Center with vcloud Automation Center

Managing Change at the Speed of Business

Security as Code: The Time is Now. Dave Shackleford Founder, Voodoo Security Sr. Instructor, SANS

Title DC Automation: It s a MARVEL!

How to Enable Risk-Free Database Experiments. OakTable World: Sept 23 & 24, San Francisco

Building a Data-Friendly Platform for a Data- Driven Future

Jenkins: A complete solution. From Continuous Integration to Continuous Delivery For HSBC

OpenShift 3 Technical Architecture. Clayton Coleman, Dan McPherson Lead Engineers

Copyright 2012, Oracle and/or its affiliates. All rights reserved. Insert Information Protection Policy Classification from Slide 13

Red Hat Atomic Details Dockah, Dockah, Dockah! Containerization as a shift of paradigm for the GNU/Linux OS

DevOps and Continuous Delivery USE CASE

Fujitsu digital. Business Value of the Oracle Cloud HYBRID IT. Human Centric Innovation Co-creation for Success 2018 FUJITSU

AWS FREQUENTLY ASKED QUESTIONS (FAQ)

news Puppet Theatre Server Management for Dummies... the smarter way of information

Patching and Updating your VM SUSE Manager. Donald Vosburg, Sales Engineer, SUSE

AALOK INSTITUTE. DevOps Training

We are ready to serve Latest Testing Trends, Are you ready to learn?? New Batches Info

Automating the Software-Defined Data Center with vcloud Automation Center

CLOUD WORKLOAD SECURITY

Amir Zipory Senior Solutions Architect, Redhat Israel, Greece & Cyprus

Db2 for z/os Gets Agile

Running MarkLogic in Containers (Both Docker and Kubernetes)

Actifio Sky DB. Actifio s Solution for Oracle, Oracle EBS with standalone, RAC, ASM, EXADATA configurations

Cloud Adoption Made Easy.

Orchestrating the Continuous Delivery Process

OpenShift Roadmap Enterprise Kubernetes for Developers. Clayton Coleman, Architect, OpenShift

Deploying a Private OpenStack Cloud at Scale. Matt Fischer & Clayton O Neill

LNE. Vlaamse Milieuoverheid Flemish environmental government. Author: Patrik Uytterhoeven

Firefox Crash Reporting.

Industry-leading Application PaaS Platform

Extend EBS Using Applications Express

SANOFI Service Resolution Smartflow

Think Small to Scale Big

Automating the Software-Defined Data Center with vcloud Automation Center

A DEVELOPER S GUIDE TO XP EOL

Flip the Switch to Container-based Clouds

Actual Agility with SDN: Weaving SDN into Data Center Automation May 6, John Burke Principal Research Analyst & CIO

JBOSS MIDDLEWARE TO THE CLOUD. MICHAEL EPLEY Sr JBoss Solutions Architect, IC Specialist 2014 June

Developing and Testing Java Microservices on Docker. Todd Fasullo Dir. Engineering

CASE STUDY Application Migration and optimization on AWS

VMware Cloud Application Platform

Docker at Lyft Speeding up development Matthew #dockercon

AWS Workshop: Scaling Windows Kevin Epstein CTO & AWS Solutions Architect

WHITEPAPER. Embracing Containers & Microservices for future-proof application modernization

Logging, Monitoring, and Alerting

PayPal Delivers World Class Customer Service, Worldwide

Secure Kubernetes Container Workloads

CREATING A CLOUD STRONGHOLD: Strategies and Methods to Manage and Secure Your Cloud

PaaS Anywhere. Isaac Christoffersen Architect, Vizuri

What s New in Catalogic ECX 2.5

DevOps Anti-Patterns. Have the Ops team deal with it. Time to fire the Ops team! Let s hire a DevOps unit! COPYRIGHT 2019 MANICODE SECURITY

NetDevOps Style Configuration Management for the Network

Connect with Remedy - Remedy 9 Upgrade Best Practices Webinar Q&A

DEVOPSIFYING NETWORK SECURITY. An AlgoSec Technical Whitepaper

Agile CI/CD with Jenkins and/at ZeroStack. Kiran Bondalapati CTO, Co-Founder & Jenkins Admin ZeroStack, Inc. (

Continuous Delivery of Micro Applications with Jenkins, Docker & Kubernetes at Apollo

LA CISD Tech Day Presented by: Microsoft. Piyush Saggi Developer Solutions Specialist

Liquibase Version Control For Your Schema. Nathan Voxland April 3,

1Copyright 2012, Oracle and/or its affiliates. All rights reserved.

Evolution of the Data Center

Pipeline as Code for your IAC. Kris

PUBLIC AND HYBRID CLOUD: BREAKING DOWN BARRIERS

RHUG SPECIAL SATELLITE RED HAT OFFICE MONTREAL, FEBRUARY 16, 2017

NetDevOps Style Configuration Management for the Network

EPHEMERAL DEVOPS: ADVENTURES IN MANAGING SHORT-LIVED SYSTEMS

EM 12c: Broadest, Most Complete Range of Enterprise Services

PaaS Anywhere. Isaac Christoffersen Architect, Vizuri

ThinkPalm s BreakThrough DevOps Capabilities ThinkPalm

Cisco CloudCenter Use Case Summary

I keep hearing about DevOps What is it?

YOUR APPLICATION S JOURNEY TO THE CLOUD. What s the best way to get cloud native capabilities for your existing applications?

Servers & Developers. Julian Nadeau Production Engineer

Quick Prototyping+CI with LXC and Puppet

Linux System Management with Puppet, Gitlab, and R10k. Scott Nolin, SSEC Technical Computing 22 June 2017

Automation and Programmability using Cisco Open NXOS and DevOps Tools

Keeping Rails on the Tracks

Micro Focus Desktop Containers

Microservices and Container Development

Transcription:

Overhauling Dev Arch with Ansible Tower and Docker Scott Van Velsor, Bryan Shake, Khaled Awwad June 29 1130a #redhat #rhsummit

origins

the landscape that came before branch & path limits no automation confusion heroics endevor the devs subversion nexus hudson build on check-in semi-automated deployments environments built by hand heroics VB migration coordinator thick client the frame cleanest 42u racks ever dev arch hero

processes of the old world dev check-in update tool send email wait test send migrate email wait pm send approval email wait arch check tool migrate update tool deployed!! rinse & repeat how does this scale to multiple releases and more environments? how does this scale to a 100+ person development team? how is this even sane? what about coordinating deployments on both platforms? what about coordinating database changes? what about coordinating config & script changes? what about environment changes?

it was obvious that approach (combined with heroics) supported 25+ applications (4 websites) 5 major releases/yr + service packs + emergency 8 environments only 2 release paths to production many, many late nights our enterprise is not small

the architecture challenge platform and architecture transition 1. replace transactional mainframe CICS processing with an EAP tier 2. move all batch processing from COBOL batch on the mainframe to Spring Batch (Java) 3. move non-eap websites from WebSphere App Server to EAP 4. create a distinct service tier on EAP for all application consumption 5. move from DB2 to Oracle we did this while building the new infrastructure and transitioning data & components between data centers

path to automation

figuring out the plumbing goals + accommodate more environments, paths, & releases + 100% automated environment creation & maintenance + 100% coordination of code, config, database changes + consolidate/integrate authentication + containers (control) for all except perf & prod + eliminate the human factor tenants + if it can t be automated, redesign it + application/environment/enterprise complexity should never be a factor (see previous) + 100% automation, not 99% + reduce vendor/tech lock-in + it has to be manageable what we need + configuration repo CMDB, property files + an engine Ansible/Chef/Puppet + a platform Docker + many smart (*new*) people + time

keep hands off by applying more hands old gen team cm new gen team ansible automation infrastructure cmdb + team size grew (for now) + other operations teams shrank + people now touch things through Ansible Tower

the new landscape ** without the meltdowns

well tuned

the evolved state arch create env dba check-in model update ticket + oracle is not yet containerized + ansible tower controls everything + containers in preprod only + generally 200 350 containers in use

generic values the cmdb onion levels 0-2 - versioned - manually defined levels 3-4 - not versioned - automatically defined per environment these can differ between each install of a component within the environment regions types environments Environments component instance capabilities + version controlled and auditable + region/type overrides (versioned) + environment/component overrides + new version branching/insertion + version auto-inheritance (COW) + separate version for each area (prior slide) to allow independent mapping to each environment versioned areas regions: types: environments: components: prod, preprod, aws-east prd, cct, pdt, uat, pft, ops, srt, uat004, cct007, pft009, prd001 eap, apache, clamav + architecture + application (code/database) + application (configuration) + job schedule

integration API ansible tower environment status site user access & management site RESTful API (JSON) (Ruby / PostgreSQL) config changes db model changes app, build, checksum audit records app versions envs databases URLs and IP/Ports containers & VMs user access info deployments releases Infrastructure details

like a rollercoaster improvements looped continuously architecture specification versioned data 3 rd party components our business applications versioned coordinates compiled code complex business processing schedule versioned data architecture build & maintenance scripts/modules database objects, tables versioned coordinates change sets our application configuration versioned data templates

why ansible? what we liked + geared toward system admins & archs vs developers + YAML easy to learn & write playbooks + agent-less architecture, therefore nothing installed on target machines + ssh-based integration approach leverages solid security foundation + variable registration & reuse + excellent documentation the competition Chef what we had to live with + newer contender in the market place against Chef & Puppet which had more maturity + community still growing & issue reporting more challenging Puppet Salt

why containerize with docker? + prod runs on vms but that does not mean everything else needs to be on vms + our container granularity maps to our production vm granularity allowing us to run the same automation in all environments in the same way + the automation goes hand in hand with the containers treat them like cattle, not pets + control control control since we did not have control + environment/application isolation + infrastructure agnostic + more flexibility (see control x3) + docker is mature, right?? + there s nothing better than adding yet another thing to think about with security

bumps & triumphs

growing pains This did not happen without its major hurdles they were worth it. some of the not so small issues + environment instability - too many environments on an unsupported os led to many sleepless nights + config management keeping code and config in sync across all the different environments + chaos with deployments deploy everything everywhere at all times brought deployment infrastructure to a crawl + limited infrastructure & growing demands everything s critical and we could not support all the environment requests coming in + bottlenecks error handling, hung jobs, slow jobs

would we do it again? Yes, we would do it again without hesitation. It s not even a conversation. things to know before you start + select a strong, engaged team (they can be junior) + design, design, design, design, design review, plan, design, plan, plan, plan, design, design, design review, consider building + focus on security from the offset, don t try to layer in later (always true) + don t start with Docker on RHEL6 + look to openshift to simplify many things now that it leverages Docker + don t completely re-platform your system when doing this + get the devs and testers comfortable and excited at the onset so they understand there will be bumps along the way cost of not automating $$$ + sanity cost of automation it doesn t matter, just go do it

it s never done tasks that remain + implement a workflow process engine for release automation + further integrate jira ticketing (see previous) + automate and containerize oracle + cmdb more more more + full test suite automation (ops, perf, security, regression) + stop ssh ing into everything + containers for prod + eap 7 + standalone + ansible 2.x optimizing/rewriting scripts + automate what remains target a self service, on-demand model + high availability (scaling & replication) with openshift

find out more scott van velsor fscott.van.velsor.jr at accenturefederal.com bryan shake bryan.shake at accenturefederal.com khaled awwad khaled.t.awwad at accenturefederal.com #redhat #rhsummit

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback