ansible-app-platforme-2024-presentation-

rimorim 16 views 21 slides Aug 21, 2024
Slide 1
Slide 1 of 21
Slide 1
1
Slide 2
2
Slide 3
3
Slide 4
4
Slide 5
5
Slide 6
6
Slide 7
7
Slide 8
8
Slide 9
9
Slide 10
10
Slide 11
11
Slide 12
12
Slide 13
13
Slide 14
14
Slide 15
15
Slide 16
16
Slide 17
17
Slide 18
18
Slide 19
19
Slide 20
20
Slide 21
21

About This Presentation

ansibel

Size: 803.58 KB
Language: en
Added: Aug 21, 2024
Slides: 21 pages

Slide Content

Repetitive Jobs [Problem] Building VM templates ISO install and configuration Network setup Set up users/group, security, authentication/authorization Software install and configuration Building out clusters Cloning N number of VMs from X number of templates Hostname/network configuration Firewalling Software deployments Turn off monitoring/alerting Pull nodes out of Load Balanced Group Run DB migrations Deploy application code Restart web server Put nodes back in/turn monitoring back on Server maintenance SSH in to every server and restart a service Write complex scripts to log in to every server and update openssl

Solution for Problem is Configuration Tools Puppet great with Windows (as long as they’re not XP) amazing Enterprise support cryptic DSL ( imo ) Chef easy to learn if you’re a ruby developer! amazing wealth of cookbooks Almost too verbose SaltStack Ansible

Why Ansible ? Agentless! Uses SSH (with one python requirement) Easy-to-read Syntax as YAML file Push-Based Ansible Scales Down Built-in-Modules Full power at the CLI (open source!) Even more features available in enterprise (Tower)

How Ansible Works ?

Ansible Structure

Inventory: Example [production:children] webservers dbservers proxies [ webservers] foo.example.com http_port=80 bar.example.com http_port=8080 [dbservers] db[01:03].example.com [dbservers:vars] pgsql_bind_nic=eth1 [proxies] 192.168.1.1 $ ansible production –a “echo hello” –u joe – k $ ansible dbservers –a “service postgresl restart” –u joe –U root –k -K

Modules can be written in any language as long as they output JSON take parameters and conditions to define desired state handles processing of system resources, services, packages, files, etc. in idempotent fashion “seek to avoid changes to the system unless a change needs to be made” ansible comes preloaded with a plethora of modules tons of community pull requests

Playbooks More powerful configuration management Kept in source control, developed, validated Declare configurations of more complex mutli-system enviornments Arrange and run tasks synchronously or asynchronously

Playbooks: Example --- - hosts : all remote_user : vagrant sudo: true sudo_user: root vars_files: - roles/vars /webserver.encrypt vars: lifecycle: dev roles: - roles/debian - roles/vmware-tools - roles/local-users - roles/sudoers - roles/iptables - roles/clamav - roles/java-jdk-7 - roles/postgres - roles/apache - roles/tomcat-7 - { role: roles/ tc- native, when: native= = 'true' } - roles/ansible - roles/git - roles/ liquibase - roles/cleanup post_tasks : - name: Reboot the Server command : '/sbin/reboot' - name: Wait for Server to come back wait_for : host='{{inventory_hostname} } ’port =' 22’ sudo : no delegate_to : localhost - name: Wait for Services to start fully wait_for : port='{{item}}' delay='5' timeout='600' with_items : - '8009' #ajp - '8080' #tomcat - '80' #httpd

Tasks: Example module parameter iterator variable - name: Apache Tomcat | Install | Grab latest tomcat tarball get_url : url =' {{tomcat.base_url}} {{item.sub_url}}{{item.file}} ' dest ='/tmp/ {{item.file}} ' with_items: tomcat.files - name: Apache Tomcat | Install | Extract archive shell : tar -xvzf /tmp/ {{item.file}} -C /usr/local creates =/usr/local/ {{item.target}} with_items: tomcat.files - name: Apache Tomcat | Install | Give ownership of install to tomcat user file : path =/usr/local/ {{item.target}} state =directory owner = {{tomcat.user.name}} group = {{tomcat.user.group}} with_items: tomcat.files - name: Apache Tomcat | Install | Symlink install directory file : src ='/usr/local/ {{item.target}} ' path ='/usr/local/tomcat' state ='link' with_items: tomcat.files - name: Apache Tomcat | Configure | Overlay configuration template : src =‘ {{item.file}} ' dest =' {{item.target}} ' owner = {{tomcat.user.name}} group = {{tomcat.user.group}} with_items: tomcat.config_files

Variables: Simple YAML format Can create arrays and hashes Can substitute vars into vars Vars can be defined at many levels ( default, role ,playbook) Can test conditionals on vars and require them Can be filtered and manipulated with jinja2 Can be matched to regex!

Templates Templates are interpreted by jinja2 stub out files fill variables in differently depending on conditions Powerful conditionals Loops and iterators Replace a file completely every time? Yes. We configure for an end state.

Handlers Written just like a regular task Only run if triggered by the notify directive Indicates a change in the system state Any module can be used for the handler action Handler - name: Restart Tomcat service : name =tomcat state =restarted Task - name: Apache Tomcat | Configure | Overlay configuration template: src=‘{{item.file}}' dest='{{item.target}}’ with_items: tomcat.config_files notify: Restart Tomcat

Roles Break up configuration into repeatable chunks Reduce , reuse, recycle Clean, understandable structure Stack on top of each other Ansible Galaxy

Docker and Ansible

Docker Application Life Cycle with Ansible Write Ansible playbooks for creating Docker images. Run the playbooks to create Docker images on your local machine. Push Docker images up from your local machine to the registry. Write Ansible playbooks to pull Docker images down to remote hosts and start up Docker containers. Run Ansible playbooks to start containers.

Ansible Tower is a user friendly web-based Graphical User Interface (GUI) that lowers the entry barrier of using Ansible.

Ansible Tower useful features Easy to use GUI with push button execution Centralized job runs, playbook storage, logs... Schedule jobs Use playbooks from the server or from source control Graphical real time output and log history LDAP integration Role based access control Extensible with a fully documented REST API

Where do I go from here? Stop doing everything by hand! If you find yourself logging in to more than one VM to do the same task... If you have been meaning to get around to patching or updating a bunch of VMs... If you know all of the prompts of the OS installer by heart... If scp and vi are your favorite tools... If you dread the next release of your application If you wince every time your phone rings

Use Ansible Get more sleep Require less coffee
Tags
Categories
General
Download
Download Slideshow Get the original presentation file
Quick Actions
Statistics
  • Views 16
  • Slides 21
  • Age 466 days
Related Slideshows
Pray For The Peace Of Jerusalem and You Will Prosper 22
Pray For The Peace Of Jerusalem and You Will Prosper
RodolfoMoralesMarcuc
30 views
Don_t_Waste_Your_Life_God.....powerpoint 26
Don_t_Waste_Your_Life_God.....powerpoint
chalobrido8
32 views
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf 31
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf
JaiJai148317
30 views
Fertility awareness methods for women in the society 14
Fertility awareness methods for women in the society
Isaiah47
29 views
Chapter 5 Arithmetic Functions Computer Organisation and Architecture 35
Chapter 5 Arithmetic Functions Computer Organisation and Architecture
RitikSharma297999
26 views
syakira bhasa inggris (1) (1).pptx....... 5
syakira bhasa inggris (1) (1).pptx.......
ourcommunity56
28 views
View More in This Category