PageRenderTime 61ms CodeModel.GetById 31ms RepoModel.GetById 0ms app.codeStats 0ms

/slides.md

https://gitlab.com/cfedde/aghi_ansible
Markdown | 357 lines | 266 code | 91 blank | 0 comment | 0 complexity | 1c67637000d810344c91ca6eca13e8f7 MD5 | raw file
    

  1. # Who Am I?
    2. 

  2. * Chris Fedde
    3. 

  3. * chris@fedde.us
    4. 

  4. * System programmer
    5. 

  5. * System administrator
    6. 

  6. 

  7. # Who Am I?
    8. 

  8. * Chris Fedde
    9. 

  9. * DevOps
    10. 

  10. * Developer
    11. 

  11. * In an Operations team
    12. 

  12. 

  13. # Ground Rules 
    14. 

  14. * Open forum
    15. 

  15. * Ask, Interrupt, Comment, Kibitz
    16. 

  16. 

  17. # Ground Rules
    18. 

  18. * Tell me when I'm making a mistake
    19. 

  19. * You'll get extra credit!
    20. 

    21. 

  21. # Ground Rules
    22. 

  22. * Breaks every hour ( set timer )
    23. 

  23. * Afters 
    24. 

  24. * El Noa Noa
    25. 

  25. 

  26. # About You
    27. 

  27. * Who are you
    28. 

  28. * What brings you here
    29. 

  29. 

  30. # Assumptions
    31. 

  31. * You have a reasonable grasp of the linux/unix command line
    32. 

  32. * what is a pipe?
    33. 

  33. * how to navigate directories
    34. 

  34. * how to run command lines
    35. 

  35. 

  36. # Assumptions
    37. 

  37. * You have an ssh client
    38. 

  38. * with you today
    39. 

  39. * that can access the local network
    40. 

  40. 

  41. # Assumptions
    42. 

  42. * Pair Admin
    43. 

  43. * Like Pair Programming
    44. 

  44. * Solves the cross training problem
    45. 

  45. 

  46. 

  47. # Assumptions
    48. 

  48. * [DDG](https://duckduckgo.com/)
    49. 

  49. * [Ansible Documentation](http://docs.ansible.com/)
    50. 

  50. 

  51. # Availability
    52. 

  52. * This courseware is freely available
    53. 

  53. * [https://gitlab.com/cfedde/aghi_ansible](https://gitlab.com/cfedde/aghi_ansible)
    54. 

  54. 

  55. # License
    56. 

  56. * Many components I`ve used have their own copyright and license 
    57. 

  57. * All software used is free (lebre/gratis)
    58. 

  58. * This courseware is placed in the public domain.
    59. 

    60. 

  60. # Any questions before we get into it?
    61. 

    62. 

  62. # Manage a complex of servers
    63. 

  63. * Maybe a large number of servers
    64. 

  64. * With minimal personnel
    65. 

    66. 

  66. # Words
    67. 

  67. * Grouping words for a bunch of servers
    68. 

  68. * What to call a bunch of servers?
    69. 

    70. 

  70. # Words
    71. 

  71. What to call a bunch of servers?
    72. 

    73. 

  73. * Cluster
    74. 

  74. * Farm
    75. 

  75. * Pile
    76. 

  76. * Complex
    77. 

    78. 

  78. # Words
    79. 

  79. * "Server Complex"
    80. 

  80. * I like this term better
    81. 

  81. * "Administrative Domain"
    82. 

    83. 

  83. # "Server Complex"
    84. 

  84. ## "Administrative Domain"
    85. 

  85. * kinda like a broadcast domain
    86. 

  86. * from networking?
    87. 

  87. * does that help?
    88. 

  88. * No?
    89. 

    90. 

  90. # "Server Complex"
    91. 

  91. ## "Administrative Domain"
    92. 

  92. * Some number of manageable elements
    93. 

  93. * Supported by a common team of admins
    94. 

  94. * Shared access policies
    95. 

  95. * The machines where you change root password when someone leaves
    96. 

    97. 

  97. # Managing the server complex
    98. 

  98. * How did we get here
    99. 

  99. * Brand new fresh deployment
    100. 

  100. * Old stinky boxes with almost no conventions
    101. 

  101. * Applances
    102. 

  102. * Faberge Eggs
    103. 

    104. 

  104. # Thought Experiment
    105. 

  105. * The Heaping Pile of Servers
    106. 

  106. * Engineers
    107. 

  107. * No one has done any admin
    108. 

  108. * Everyone has root
    109. 

  109. * Engineering in Place (EIP)
    110. 

  110. * Discovery
    111. 

    112. 

  112. # Solving the Problem
    113. 

  113. * Discipline
    114. 

  114. * Tools
    115. 

  115. * Automation
    116. 

  116. * Conventions
    117. 

  117. * Contain Complexity
    118. 

  118. * Build on good solutions
    119. 

  119. * Build on good practice
    120. 

    121. 

  121. # Solving the Problem
    122. 

  122. * Tools everyone understands
    123. 

  123. * Best practices
    124. 

  124. * Revision Control 
    125. 

    126. 

  126. # Emulation
    127. 

    128. 

  128. [em-yuh-ley-shuh n]
    129. 

    130. 

  130. noun
    131. 

    132. 

  132. 1.  effort or desire to equal or excel others.
    133. 

  133. 2.  [Obsolete]. jealous rivalry.
    134. 

  134. 3.  [IT] virutal machines
    135. 

    136. 

  136. # Emulation
    137. 

    138. 

  138. Emulating a complex system using a simple analog.
    139. 

    140. 

    141. 

  141. # Emulation
    142. 

    143. 

  143. Don't try this in production.
    144. 

    145. 

    146. 

  146. # Emulation
    147. 

  147. * For purposes of Education Only
    148. 

  148. * "Reducto ad absurdum"
    149. 

  149. * What is the smallest possible environment that could possibly work?
    150. 

    151. 

  151. # Emulation
    152. 

  152. * Vagrant
    153. 

  153. * Docker
    154. 

    155. 

  155. # Emulation
    156. 

  156. * Vagrant Guests on my laptop
    157. 

  157. * Docker containers for "managed hosts"
    158. 

    159. 

  159. ( Demo 1 )
    160. 

    161. 

  161. # About Ansible
    162. 

  162. * The Name
    163. 

  163. * The Configuration Management Tool
    164. 

  164. ( ddg )
    165. 

    166. 

  166. # About Ansible
    167. 

  167. * Fictional "superluminal" radio
    168. 

  168. * Faster than light
    169. 

  169. * quantum entanglement
    170. 

  170. * bla bla bla
    171. 

    172. 

  172. # About Ansible
    173. 

  173. * Orson Scott Card
    174. 

  174. * Enders Game
    175. 

  175. * Block buster movie 2013
    176. 

  176. * Book 1977
    177. 

    178. 

  178. # About Ansible
    179. 

  179. * Ursula LeGuin
    180. 

  180. * Rocannan`s World 
    181. 

  181. * Book 1966
    182. 

  182. * Left Hand of Darkness 
    183. 

  183. * Short stories
    184. 

  184. 

  185. # About Ansible
    186. 

  186. * A tool for system configuration management
    187. 

  187. * Pythonic
    188. 

  188. 

  189. # About Ansible
    190. 

  190. ## Alternatives
    191. 

  191. * A bunch of scripts using scp and ssh in a loop
    192. 

  192. * A slightly smaller set of scripts using pscp and pssh 
    193. 

  193. 

  194. # About Ansible
    195. 

  195. ## Alternatives
    196. 

  196. * cf-engine
    197. 

  197. * puppet
    198. 

  198. * rdist
    199. 

  199. * chef
    200. 

  200. * salt stack
    201. 

  201. * re(x)
    202. 

  202. 

  203. # About Ansible
    204. 

  204. ## Alternatives
    205. 

  205. * docker
    206. 

  206. * Virtualization
    207. 

  207. * VMWare/VirtualBox/OpenStack/AWS/"other"
    208. 

  208. 

  209. # About Ansible
    210. 

  210. * Push vs pull
    211. 

  211. * "Masterless"
    212. 

  212. * ansible-pull
    213. 

  213. 

  214. # About Ansible
    215. 

  215. ## Requirements
    216. 

  216. * Manager 
    217. 

  217. * Where the ansible command line is run
    218. 

  218. 

  219. # About Ansible
    220. 

  220. ## Requirements
    221. 

  221. * Targets
    222. 

  222. * the managed hosts
    223. 

  223. 

  224. # About Ansible
    225. 

  225. ## Manager Requirements
    226. 

  226. * Modern Linux (about 2005 or so)
    227. 

  227. * Ansible package
    228. 

  228. * Package management
    229. 

  229. * Revision control (git)
    230. 

  230. 

  231. # About Ansible
    232. 

  232. ## Targets Requirements 
    233. 

  233. * The Managed Hosts
    234. 

  234. * Python 2.3 or better (a json module)
    235. 

  235. * sshd
    236. 

  236. * Some login user
    237. 

  237. * sudo/su if needed.
    238. 

  238. 

  239. # About Ansible
    240. 

  240. * Two was of using it
    241. 

  241. * ansible (adhoc)
    242. 

  242. 

  243. # About Ansible
    244. 

  244. * Two was of using it
    245. 

  245. * ansible-playbook (playbook)
    246. 

  246. 

  247. # About Ansible
    248. 

  248. * ad hoc.
    249. 

  249. * run a simple module "task" on some list of hosts
    250. 

  250. 

  251. # About Ansible
    252. 

  252. * ansible-playbook
    253. 

  253. * Run a set of related tasks over a lists of
    254. 

  254. 

  255. # About Ansible
    256. 

  256. * Inventory 
    257. 

  257. * Modules
    258. 

  258. * Playbooks
    259. 

  259. 

  260. # About Ansible
    261. 

  261. * Inventory 
    262. 

  262. * the list managed systems
    263. 

  263. * with grouping and so on
    264. 

  264. 

  265. # Inventory
    266. 

  266. * Can be plugged into your cloud service
    267. 

  267. * Or "just a file" with some structure.
    268. 

  268. ( Look at a simple file )
    269. 

  269. 

  270. # About Ansible
    271. 

  271. * [Modules](http://docs.ansible.com/ansible/modules_by_category.html)
    272. 

  272. * The things ansible can do
    273. 

  273. ( look at the list of modules )
    274. 

  274. 

  275. # About Ansible
    276. 

  276. * Playbooks
    277. 

  277. * instructions for ansible-playbook
    278. 

  278. * YAML format
    279. 

  279. 

  280. # Finish your environmnt
    281. 

  281. 

  282. Ask me for your own personal IP address
    283. 

  283. 

  284.   ssh vagrant@yourip
    285. 

  285.   cp -r /vagrant class
    286. 

  286.   cd class
    287. 

  287.   source environment
    288. 

  288. 

  289. # Emulated Network 
    290. 

  290. * Vagrant guest
    291. 

  291. * five target 'servers'.
    292. 

  292. 

  293. # Look at our environment
    294. 

  294. 

  295.    env | grep ANSIBLE
    296. 

  296. 

  297. # What are the names of your managed hosts?
    298. 

  298. 

  299.   cat etc/ansible/hosts
    300. 

  300. 

  301. Note the funny names for the hosts.  Those are actually the short names for 
    302. 

  302. docker containers. 
    303. 

  303. 

  304. # Count the number of files in /etc on the class servers
    305. 

  305. 

  306.    ansible class -m shell -a 'ls /etc | wc -l'
    307. 

  307. 

  308. # Add db and web and app groups to the hosts file
    309. 

  309. 

  310. Two nodes in db and two in web and an app group made by including the other two groups
    311. 

  311. 

  312.     vi etc/ansible/host
    313. 

  313. 

  314. When done it might look something like this.  Be suue 
    315. 

  315. 

  316.     localhost
    317. 

  317. 

  318.     [class]
    319. 

  319.     daa87bc9f63c
    320. 

  320.     e4d3a8708d36
    321. 

  321.     d17ad6801c24
    322. 

  322.     f463acd92e46
    323. 

  323.     0f3514a36b97
    324. 

  324. 

  325.     [db]
    326. 

  326.     daa87bc9f63c
    327. 

  327.     e4d3a8708d36
    328. 

  328. 

  329.     [web]
    330. 

  330.     d17ad6801c24
    331. 

  331.     f463acd92e46
    332. 

  332. 

  333.     [app:children]
    334. 

  334.     db
    335. 

  335.     web
    336. 

  336. 

  337. # Host Patterns
    338. 

  338. 

  339. Ansible supports a pretty complex host pattern language
    340. 

  340. 

  341.    ansible app -m ping
    342. 

  342. 

  343.    ansible class:\!db -m ping
    344. 

  344. 

  345.    ansible *e* -m shell uptime
    346. 

  346. 

  347. # What Facts do we have?
    348. 

  348. 

  349.     ansible class:\!app -m setup | less
    350. 

  350. 

  351. # Run as user root
    352. 

  352. 

  353.     ansible class -m script -a bin/i_am_root
    354. 

  354. 

  355. # A Playbook
    356. 

  356. * install and configure NTP
    357. 

  357. 

  358.