Puppet and AWS: Getting the Best of Both Worlds

WELCOME

Puppet and AWSGetting the Best of Both Worlds

Mike Ryan - Epitech BV23

August2013

CONTACT:mike@epitech.nlwww.epitech.nl

Saturday, August 24, 13

EPITECH BV

Hello, I’m Mike2

Sysadmin with a passion for automa2on

Londoner in Amsterdam

Epitech.nl -‐ sysadmin as a service

EPITECH BV

AWS - A very brief introduction

EC2 -‐ Elas2c Compute Cloud

AMI -‐ Amazon Machine Images

User Data

EPITECH BV

EC2 - Auto Scaling4

EPITECH BV

CloudFormation5

{ "AWSTemplateFormatVersion" : "2010-09-09", "Description" : "EC2 instance", "Resources" : { "MyEC2Instance" : { "Type" : "AWS::EC2::Instance", "Properties" : { "ImageId" : "ami-79fd7eee", "KeyName" : "my-ssh-key", } } }}

EPITECH BV

"Enabled" : "true", "Logging" : { "Bucket" : "webapplication.s3.amazonaws.com", "Prefix" : "webapp-logging/" } } } },

"asgMyAutoScalingGroup": { "Type": "AWS::AutoScaling::AutoScalingGroup", "Properties": { "AvailabilityZones": [ "us-east-1b", "us-east-1c" ], "Cooldown": "300", "DesiredCapacity": "1", "MaxSize": "1", "MinSize": "1", "LaunchConfigurationName": { "Ref": "lcMyLC" }, "LoadBalancerNames": [ { "Ref": "elbMyLB" } ] } }, "s3webapplication": { "Type": "AWS::S3::Bucket" }, "sgwebappsecuritygroup": { "Type": "AWS::EC2::SecurityGroup", "Properties": { "GroupDescription": "for web app", "SecurityGroupIngress": [

EPITECH BV

Bootstrapping an Infrastructure

www.infrastructures.org

EPITECH BV

CloudFormation or Puppet

EPITECH BV

Files, Services and Packages with cfn-init

"Metadata": { "AWS::CloudFormation::Init": { "config": { "sources" : { "/etc/puppet" : "http://example.com/puppet.tar.gz" }, "packages": { "yum": { "puppet-server": [], }, }, "services": { "sysvinit": { "puppetmaster": { "ensureRunning": "true", "enabled": "true"

EPITECH BV

Run a script at launch time with User Data

{ "AWSTemplateFormatVersion" : "2010-09-09", "Description" : "EC2 instance", "Resources" : { "PuppetMasterInstance": { "Type": "AWS::EC2::Instance", "Metadata": { }, "Properties": { "UserData": { "Fn::Base64": { "Fn::Join": [ "", [ "#!/bin/bash\n", "/opt/aws/bin/cfn-init --region ", "\n", "/usr/bin/puppet apply site.pp, "\n" ]...

EPITECH BV

cfn-create-stack

cfn-create-stack puppetmaster \--template-file=puppetmaster.json

http://aws.amazon.com/developertools/2555753788650372

http://aws.amazon.com/cli/

EPITECH BV

Auto Scale = Autosign

EPITECH BV

The Hostname Issuemike@ip-10-32-34-116:~$ hostname -fip-10-32-34-116.eu-west-1.compute.internal

EPITECH BV

User Data - Web Console

EPITECH BV

User Data - CloudFormation},"UserData": { "Fn::Base64": { "Fn::Join": [ "", [ “{\”role\”: \”web\”, ”, “\”env\”: \”staging\”} ” ] ] }}

EPITECH BV

include stdlibnode default { $userdata = parsejson($ec2_userdata) $role = userdata[‘role’] $environment = userdata[‘env’]

case $role { ‘web’: { include nginx } ‘db’: { include postgresql } }}

EPITECH BV

Vagrant -> EC2

EPITECH BV

Vagrant::Config.run do |config| config.vm.provision :puppet do |puppet| puppet.manifests_path = "../puppet/manifests" puppet.module_path = "../puppet/modules" puppet.manifest_file = "site.pp" puppet.options = "--verbose --debug" puppet.facter = { :ec2_userdata => { :role => "database", :env => "vagrant", }.to_json, :vagrant => "true" } endend

EPITECH BV

Decoupling

EPITECH BV

Broken Puppet Master =Broken Auto Scaling

EPITECH BV

#!/bin/bash

/usr/local/bin/update.sh/usr/bin/puppet apply site.pp

/etc/rc.local

EPITECH BV

But you lose...

Puppet Dashboard

Exported Resources

Stored configs

EPITECH BV

env.roledefs = { 'web': ['www1', 'www2', 'www3'], 'db': ['db1', 'db1']}

@roles('db', ‘web’)def run_puppet(): sudo('puppet apply site.pp')

$fab run_puppet #run puppet everywhere$fab run_puppet --roles db # role-specific

Triggering Puppet with Fabric

EPITECH BV

def configure_roles():

tags = EC2TagManager(AWS_KEY, AWS_SECRET, regions=['eu-west-1'])

roles = {}

for role in [‘db’, ‘web’]: roles[role] = tags.get_instances(role=role) return roles

Triggering Puppet with Fabric

https://github.com/mikery/fabric-ec2

THANK YOUBACK X

CONTACT:

Mike Ryan - Epitech BVmike@epitech.nl

mike@epitech.nlwww.epitech.nl

Puppet and AWS: Getting the Best of Both Worlds

Spiritual

Transcript of Puppet and AWS: Getting the Best of Both Worlds

State of Puppet 2013 - Puppet Camp DC

Software Engineering in the Cloud€¦ · • Design (Cloud components —AWS, Azure) • Software construction (Puppet) • Software testing (Nagios/Netdata) • Software maintenance

Puppet Keynote: Puppet Camp London

Dev to Delivery with Puppet, Vagrant and AWS

Puppet Dashboard Manual - Agrarixpub.agrarix.net/OpenSource/Puppet/dashboardmanual.pdf · Puppet Dashboard 1.2 Manual This is the manual for Puppet Dashboard 1.2. Overview Puppet

Mission to Mars: Exploring new worlds with AWS IoT - DEVOXX - 2016-11-10

Puppet Camp Sydney 2014 - Evolving Design Patterns in AWS

Building a deployment pipeline - CloudBees...ruby Developer QA - Jenkins Puppet Servers Puppet Puppet Integration tests Production - Jenkins Puppet Servers Puppet Puppet Trigger MCollective

The Road to the White House with Puppet & AWS

Manageable Puppet infrastructure - NETWAYS · Manageable Puppet infrastructure ~April ... Create roles module root@puppet# puppet module generate gerapeldoorn-role ... Retrieves the

State of Puppet - Puppet Camp Barcelona 2013

WP Puppet Theatre | Puppet Power: Connecting Generations ... › ... › uploads › 2018 › 01 › PP16-Program-LOW-… · WP Puppet Theatre | Puppet Power: Connecting Generations

Building a Hyper-Secure VPC on AWS with Puppet - PuppetConf 2013

Controlled Evolution with Puppet and AWS

Puppet Camp London 2015: Puppet Contained

Building On Puppet and Puppet Forge

Puppet on the AWS Cloud

AWS Innovate: Best of Both Worlds: Leveraging Hybrid IT with AWS- Dhruv Singhal

AWS - Infoblox · Automated IP and DNS provisioning of apps in AWS for faster time-to-market . Demo. Feature Spotlight: API Proxy AWS API Client (Eg: Ansible, Puppet, Chef scripts

AWS re:Invent 2016: Robots: The Fading Line Between Real and Virtual Worlds (IOT403)