DEVNET-1144 Deploying hybrid cloud applications with HashiCorp AtlasCisco DevNet
Physical, virtual, containers. Public cloud, private cloud, hybrid cloud. IaaS, PaaS, SaaS. These are the choices that we're faced with when architecting a datacenter of today. And the choice is not one or the other; it is often a combination of many of these. How do we remain in control of our datacenters? How do we deploy and configure software, manage change across disparate systems, and enforce policy/security? How do we do this in a way that operations engineers and developers alike can rejoice in the processes and workflow? In this talk, I will discuss the problems faced by the modern datacenter, and how automation, workflows, and collaboration can be used to tame the rising complexity curve.
How HashiCorp platform tools can make the difference in development and deplo...Dmytro Mykhailov
This is slides from my talk on Kharkiv IT Weekend on May 27, 2017.
Here is link to my blog where you can find more information about the approaches:
https://devraccoon.com/2017/05/30/hashicorp-tools-on-it-weekend-kharkiv/
Hashicorp: Delivering the Tao of DevOpsRamit Surana
HashiCorp is an open-source software company based in San Francisco, California that solves development, operations, and security challenges in infrastructure so organizations can focus on business-critical tasks. HashiCorp provides a set of open source tools and commercial product offerings.
My presentation on Apache Curator, Past, Present and Future at the Bay Area ZooKeeper User Group Meetup, November 6, 2014 - http://www.meetup.com/zookeeperusergroup/events/210813812
DEVNET-1144 Deploying hybrid cloud applications with HashiCorp AtlasCisco DevNet
Physical, virtual, containers. Public cloud, private cloud, hybrid cloud. IaaS, PaaS, SaaS. These are the choices that we're faced with when architecting a datacenter of today. And the choice is not one or the other; it is often a combination of many of these. How do we remain in control of our datacenters? How do we deploy and configure software, manage change across disparate systems, and enforce policy/security? How do we do this in a way that operations engineers and developers alike can rejoice in the processes and workflow? In this talk, I will discuss the problems faced by the modern datacenter, and how automation, workflows, and collaboration can be used to tame the rising complexity curve.
How HashiCorp platform tools can make the difference in development and deplo...Dmytro Mykhailov
This is slides from my talk on Kharkiv IT Weekend on May 27, 2017.
Here is link to my blog where you can find more information about the approaches:
https://devraccoon.com/2017/05/30/hashicorp-tools-on-it-weekend-kharkiv/
Hashicorp: Delivering the Tao of DevOpsRamit Surana
HashiCorp is an open-source software company based in San Francisco, California that solves development, operations, and security challenges in infrastructure so organizations can focus on business-critical tasks. HashiCorp provides a set of open source tools and commercial product offerings.
My presentation on Apache Curator, Past, Present and Future at the Bay Area ZooKeeper User Group Meetup, November 6, 2014 - http://www.meetup.com/zookeeperusergroup/events/210813812
No Docker? No Problem: Automating installation and config with AnsibleJeff Potts
In this talk I show how to bring stability and repeatability to your Alfresco installation by automating install and config management with Ansible.
This talk was originally given at Alfresco DevCon 2020 (virtual edition).
Monitor-Driven Development Using AnsibleItamar Hassin
Discusses an XP approach to writing Ansible scripts: Start with a failing test and write code around it to make it pass. Write monitoring code, let it drive your Ansible code to have a functioning server. I use ServerSpec and Cucumber as the monitoring code. Broader subject is that Ansible code should be treated as regular application code - use TDD, SCM, CI and pairing to create a single delivery team consisting of devs and sysadmins as a delivery team.
(Click 2nd slide for video) Deploy PHP apps faster in 2017. This talk focuses on how PHP developers can use simple Ansible scripts to rapidly configure new dev and production servers from scratch, and deploy their apps. No more "snowflake servers"!
This is a general introduction to DevOps essentials and Ansible, with a few extras for PHP developers, including some best practice tips and overview of two major Ansible-based PHP projects, Drupal-VM and Trellis (modern WordPress setup).
Ansible Tutorial For Beginners | What Is Ansible And How It Works? | Ansible ...Simplilearn
This presentation about Ansible will help you understand what is Ansible, why we need Ansible, Ansible architecture, working of Ansible, benefits by using Ansible and you will also see a demo on how to install HTTPD using Ansible. Ansible is an IT engine which automates orchestration, configuration management, and deployment. It is an open source configuration management tool that allows you to implement infrastructure as code. It can also be called as infrastructure as code automation engine that helps you automate provisioning software by applying configurations. Ansible has been included in Fedora distribution of Linux and is also available for Red Hat Enterprise Linux, CentOD, scientific Linux via extra packages for Enterprise Linux.
Below topics are explained in this Ansible presentation:
1. Why Ansible?
2. What is Ansible?
3. Ansible architecture
4. Working of Ansible
5. Benefits of Ansible
6. Demo: Install HTTPD
Why learn DevOps?
Simplilearn’s DevOps training course is designed to help you become a DevOps practitioner and apply the latest in DevOps methodology to automate your software development lifecycle right out of the class. You will master configuration management; continuous integration deployment, delivery and monitoring using DevOps tools such as Git, Docker, Jenkins, Puppet and Nagios in a practical, hands on and interactive approach. The Devops training course focuses heavily on the use of Docker containers, a technology that is revolutionizing the way apps are deployed in the cloud today and is a critical skillset to master in the cloud age.
After completing the DevOps training course you will achieve hands on expertise in various aspects of the DevOps delivery model. The practical learning outcomes of this Devops training course are:
An understanding of DevOps and the modern DevOps toolsets
The ability to automate all aspects of a modern code delivery and deployment pipeline using:
1. Source code management tools
2. Build tools
3. Test automation tools
4. Containerization through Docker
5. Configuration management tools
6. Monitoring tools
Who should take this course?
DevOps career opportunities are thriving worldwide. DevOps was featured as one of the 11 best jobs in America for 2017, according to CBS News, and data from Payscale.com shows that DevOps Managers earn as much as $122,234 per year, with DevOps engineers making as much as $151,461. DevOps jobs are the third-highest tech role ranked by employer demand on Indeed.com but have the second-highest talent deficit.
1. This DevOps training course will be of benefit the following professional roles:
2. Software Developers
3. Technical Project Managers
4. Architects
5. Operations Support
6. Deployment engineers
7. IT managers
8. Development managers
Learn more at https://www.simplilearn.com/cloud-computing/devops-practitioner-certification-training
Sydney based cloud consultancy Cloudten's Richard Tomkinson shows how masterless Puppet can be used in concert with AWS's services including Lambda to automate server builds and manage code deployments
Building a smarter application stack - service discovery and wiring for DockerTomas Doran
There are many advantages to a container based, microservices architecture - however, as always, there is no silver bullet. Any serious deployment will involve multiple host machines, and will have a pressing need to migrate containers between hosts at some point. In such a dynamic world hard coding IP addresses, or even host names is not a viable solution.
This talk will take a journey through how Yelp has solved the discovery problems using Airbnb’s SmartStack to dynamically discover service dependencies, and how this is helping unify our architecture, from traditional metal to EC2 ‘immutable’ SOA images, to Docker containers.
Infrastructure Automation with Chef & Ansiblewajrcs
What is Infrastructure and why you should automate it?
Typical Infrastructure
Benefits
CMS/ Automation
Chef / Terminologies / Disadvantages
Ansible / Disadvantages
Demo
Summary
Author: Waqar Alamgir; Twitter @wajrcs
Packer and TerraForm are fundamental components of Infrastructure as Code. I recently gave a talk at a DevOps meetup, which allowed me the opportunity to discuss the basics of these two tools, and how DevOps teams should be using them
No Docker? No Problem: Automating installation and config with AnsibleJeff Potts
In this talk I show how to bring stability and repeatability to your Alfresco installation by automating install and config management with Ansible.
This talk was originally given at Alfresco DevCon 2020 (virtual edition).
Monitor-Driven Development Using AnsibleItamar Hassin
Discusses an XP approach to writing Ansible scripts: Start with a failing test and write code around it to make it pass. Write monitoring code, let it drive your Ansible code to have a functioning server. I use ServerSpec and Cucumber as the monitoring code. Broader subject is that Ansible code should be treated as regular application code - use TDD, SCM, CI and pairing to create a single delivery team consisting of devs and sysadmins as a delivery team.
(Click 2nd slide for video) Deploy PHP apps faster in 2017. This talk focuses on how PHP developers can use simple Ansible scripts to rapidly configure new dev and production servers from scratch, and deploy their apps. No more "snowflake servers"!
This is a general introduction to DevOps essentials and Ansible, with a few extras for PHP developers, including some best practice tips and overview of two major Ansible-based PHP projects, Drupal-VM and Trellis (modern WordPress setup).
Ansible Tutorial For Beginners | What Is Ansible And How It Works? | Ansible ...Simplilearn
This presentation about Ansible will help you understand what is Ansible, why we need Ansible, Ansible architecture, working of Ansible, benefits by using Ansible and you will also see a demo on how to install HTTPD using Ansible. Ansible is an IT engine which automates orchestration, configuration management, and deployment. It is an open source configuration management tool that allows you to implement infrastructure as code. It can also be called as infrastructure as code automation engine that helps you automate provisioning software by applying configurations. Ansible has been included in Fedora distribution of Linux and is also available for Red Hat Enterprise Linux, CentOD, scientific Linux via extra packages for Enterprise Linux.
Below topics are explained in this Ansible presentation:
1. Why Ansible?
2. What is Ansible?
3. Ansible architecture
4. Working of Ansible
5. Benefits of Ansible
6. Demo: Install HTTPD
Why learn DevOps?
Simplilearn’s DevOps training course is designed to help you become a DevOps practitioner and apply the latest in DevOps methodology to automate your software development lifecycle right out of the class. You will master configuration management; continuous integration deployment, delivery and monitoring using DevOps tools such as Git, Docker, Jenkins, Puppet and Nagios in a practical, hands on and interactive approach. The Devops training course focuses heavily on the use of Docker containers, a technology that is revolutionizing the way apps are deployed in the cloud today and is a critical skillset to master in the cloud age.
After completing the DevOps training course you will achieve hands on expertise in various aspects of the DevOps delivery model. The practical learning outcomes of this Devops training course are:
An understanding of DevOps and the modern DevOps toolsets
The ability to automate all aspects of a modern code delivery and deployment pipeline using:
1. Source code management tools
2. Build tools
3. Test automation tools
4. Containerization through Docker
5. Configuration management tools
6. Monitoring tools
Who should take this course?
DevOps career opportunities are thriving worldwide. DevOps was featured as one of the 11 best jobs in America for 2017, according to CBS News, and data from Payscale.com shows that DevOps Managers earn as much as $122,234 per year, with DevOps engineers making as much as $151,461. DevOps jobs are the third-highest tech role ranked by employer demand on Indeed.com but have the second-highest talent deficit.
1. This DevOps training course will be of benefit the following professional roles:
2. Software Developers
3. Technical Project Managers
4. Architects
5. Operations Support
6. Deployment engineers
7. IT managers
8. Development managers
Learn more at https://www.simplilearn.com/cloud-computing/devops-practitioner-certification-training
Sydney based cloud consultancy Cloudten's Richard Tomkinson shows how masterless Puppet can be used in concert with AWS's services including Lambda to automate server builds and manage code deployments
Building a smarter application stack - service discovery and wiring for DockerTomas Doran
There are many advantages to a container based, microservices architecture - however, as always, there is no silver bullet. Any serious deployment will involve multiple host machines, and will have a pressing need to migrate containers between hosts at some point. In such a dynamic world hard coding IP addresses, or even host names is not a viable solution.
This talk will take a journey through how Yelp has solved the discovery problems using Airbnb’s SmartStack to dynamically discover service dependencies, and how this is helping unify our architecture, from traditional metal to EC2 ‘immutable’ SOA images, to Docker containers.
Infrastructure Automation with Chef & Ansiblewajrcs
What is Infrastructure and why you should automate it?
Typical Infrastructure
Benefits
CMS/ Automation
Chef / Terminologies / Disadvantages
Ansible / Disadvantages
Demo
Summary
Author: Waqar Alamgir; Twitter @wajrcs
Packer and TerraForm are fundamental components of Infrastructure as Code. I recently gave a talk at a DevOps meetup, which allowed me the opportunity to discuss the basics of these two tools, and how DevOps teams should be using them
Hitchhiker's guide to Cloud-Native Build Pipelines and Infrastructure as CodeRobert van Mölken
As more and more application deployments move to the cloud the scale and complexity becomes harder to manage. Instead of a handful of large instances, you might have many smaller instances, so there are many more things you need to provision. Because of this cloud vendors provide API abstraction of their compute, storage, network and other platform services. In this talk I present a guide to provision these services, such as a Kubernetes cluster, using infrastructure as code and deploy your applications through cloud-native build pipelines. Get to know the concepts behind these DevOps practices and come hear which tools to use like Terraform and Oracle Container Pipelines to automate these laborious tasks on the Oracle Cloud Infrastructure.
Industrializing the creation of machine images and Docker containers for clou...OW2
Hammr is an OW2 open source, command-line tool for creating consistent and repeatable machine images for different cloud or virtual environments, or migrating live systems from one environment to another. Agility and automation are key factors in today’s cloud era. It has never been easier to provision new instances on-demand with a few command lines. However, the actual machine images used to provision these instances, are typically still created and maintained by hand. Hammr helps organizations automate the creation of these images. This presentation will provide an overview of the hammr project, including a focus on Docker integration and how hammr can be used to quickly build and run Docker images, helping accelerate development and test processes among other benefits. The presentation will also help attendees understand how they can become involved in, and benefit from, the hammr project.
DevOpsDaysRiga 2018: Anton Babenko - What you see is what you get… for AWS in...DevOpsDays Riga
Get your AWS infrastructure implemented as code automatically from the visual diagram (cloudcraft.co)! Want to know how to do it? Anton Babenko, a long time developer, CTO, and tech-lead, will show you just in 5 minutes during his Ignite Talk @ DevOpsDays Riga event.
Packer is a tool for creating machine and container images (single static unit that contains a pre-configured operating system and installed software) for multiple platforms from a single source configuration.
Docker containers have been making inroads into Windows and Azure world. Docker has now replaced the traditional Azure IaaS & PaaS services, offering superior container versions which are more responsive, cost effective, and agile. In this session for Charlotte Azure User Group, we will take an in-depth look at the intersection of Docker and Azure, and how Docker is empowering next gen Azure services.
Here's the link to CAG meetup for the event - https://www.meetup.com/Charlotte-Microsoft-Azure/events/fpftgmyxjbjb/
TYPO3 CMS v8 in the cloud
This session will look into changes happening with TYPO3 CMS version 8 and how they relate to an improved integration with cloud infrastructure:
untangled file-handling for better support
untangled database abstraction layer to support different database backends
updated and now finely tuneable caching framework
composer changes for repeatable builds
possible pre-compilation for uid
Finally the session will also look into the practical example of deploying TYPO3 into the platform.sh cloud to kickstart the audience.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
JMeter webinar - integration with InfluxDB and GrafanaRTTS
Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application.
In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics.
Length: 30 minutes
Session Overview
-------------------------------------------
During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana:
- What out-of-the-box solutions are available for real-time monitoring JMeter tests?
- What are the benefits of integrating InfluxDB and Grafana into the load testing stack?
- Which features are provided by Grafana?
- Demonstration of InfluxDB and Grafana using a practice web application
To view the webinar recording, go to:
https://www.rttsweb.com/jmeter-integration-webinar
Generating a custom Ruby SDK for your web service or Rails API using Smithyg2nightmarescribd
Have you ever wanted a Ruby client API to communicate with your web service? Smithy is a protocol-agnostic language for defining services and SDKs. Smithy Ruby is an implementation of Smithy that generates a Ruby SDK using a Smithy model. In this talk, we will explore Smithy and Smithy Ruby to learn how to generate custom feature-rich SDKs that can communicate with any web service, such as a Rails JSON API.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Neuro-symbolic is not enough, we need neuro-*semantic*Frank van Harmelen
Neuro-symbolic (NeSy) AI is on the rise. However, simply machine learning on just any symbolic structure is not sufficient to really harvest the gains of NeSy. These will only be gained when the symbolic structures have an actual semantics. I give an operational definition of semantics as “predictable inference”.
All of this illustrated with link prediction over knowledge graphs, but the argument is general.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
5. Terraform Overview
What is Terraform?
Terraform is a tool for building, changing, and versioning infrastructure safely and efficiently.
It can be used across multiple providers such as Azure, AWS, Google Cloud, among many others.
6. So, how is this done?
Just define
components/resources in
configuration file
Tell it which
provider to use
Generate an
execution plan
prior to
deployment
And then
execute the
build
It’s done ….
7. Key features
Key features
of terraform are:
•Infrastructure as Code
•code-defined infrastructure is easier to read, maintain and share with
others.
•Execution Plans
•The execution plan shows exactly what will happen when you apply a
particular Terraform configuration.
•Helps avoids failed deployments.
•Resource Graph
• After infrastructure has been built by Terraform, visualize your resources
and gain insight into their dependencies.
•Change Automation
• helps avoid human error while changes are orchestrated.
8. Terraform vs. Other Software
Sounds good? Aren’t there other tool sets that do the same?
Sure, but the power comes by being able to use across multiple providers.
From a deployment perspective I could use
Resource Manager in Azure,
Cloud Formation in AWS, or
Cloud Deployment Manager in GCE
but they are all specific to their respective cloud. Terraform can be used across all three.
But let’s me add a note - terraform is not a configuration management tool such as Chef and Puppet. You should continue to use those
tools for their intended purpose by using provisioners once the resource has been created.
9. See In Real Time
Lab:
Deployment across Multiple Providers
Lets deploy together some simple resources across Microsoft’s Azure, Amazon’s AWS and Google’s Compute Engine using terraform.
10. Terraform Use Cases & Summary
Terraform’s flexibility and power means it will work across a very wide range of use cases.
Muti-cloud deployment:
Deploy application across multiple platforms for fault tolerance or disaster recovery.
While many infrastructure orchestration tools are cloud vendor specific, Terraform is cloud-agnostic.
Software demos:
Provide a sample Terraform configuration file to create, provision and bootstrap a demo on cloud providers like AWS to your end
users and clients, who could also quickly tweak resource parameters according to their needs.
Disposable environments:
SDLC process will create environments like QA, Staging, Load Testing, and Production. Some of these environments don’t always
have to be running.
Your Terraform-based infrastructure is code-based, you can easily build and destroy your infrastructure according to need
12. Packer is an open source tool for creating identical machine images for multiple platforms.
Packer is lightweight, runs on every major operating system.
Machine image formats include AMIs for EC2, VMDK/VMX files for VMware, OVF exports for VirtualBox, etc.
Packer only builds images. It does not attempt to manage them in any way.
Packer Overview
What is Packer?
14. ● Amazon EC2 (AMI)
● CloudStack
● OpenStack
● DigitalOcean
● Docker
● Google Compute Engine
● Parallels
● VirtualBox (OVF)
● VMware (VMX)
Supports Platform
You can add support to any platform by extending Packer using plugins.
15. Templates - Packer by HashiCorp
Templates are JSON files that configure the various components of Packer in order to create one or more machine
images.
Immutable Infrastructure with Packer
16. Demo: Packer custom AMI build
Templates - Packer by HashiCorp
* Workshop: Build a custom AWS-AMI using Packer from your workstation
{
"builders":[
{
"type":"amazon-ebs",
"region": "eu-west-1",
"access_key": “xxxxxxxxxxxxxxxxxx",
"secret_key": “xxxxxxxxxxxxxxxxxxxxxx",
"source_ami": "ami-f90a4880",
"instance_type": "t2.micro",
"ssh_username": "ubuntu",
"ami_name": "Packer_Demo-{{isotime | clean_ami_name}}",
"ami_description": "AMI designed by Packer",
"tags": {
"role": "AppBaseAMI"
},
"run_tags":{
"role": "buildSystem"
}
}
]
}
Execution step:
run this command “packer build -debug template.json”
17. Packer : One of its Use Case
- vim playbook.yml
{
"builders":[
{
………………
"ami_description": "AMI designed by Packer",
"tags": {
"role": "AppBaseAMI"
},
"run_tags":{
"role": "buildSystem"
}
}
],
"provisioners":[
{
"type": "shell",
"script": "ansible.sh"
},
{
"type": "ansible-local",
"playbook_file": "./playbook.yml"
}
]
}
- vim template.json
21. What about the passwords?
Everyone remembers the advice
“do not write passwords”
But we can’t depend on a human
being to configure a password
Need a “secure” mechanism to store and distribute passwords and other
secrets
22. So where can I put the secrets?
Remember
them
Code
Config
management
tools
Encryption
Vault
23. Hashicorp Vault
What is Vault?
Vault is a tool for securely accessing and managing secrets
Secret is anything that you want to tightly control access to, such as API keys, passwords, or certificates.
24. Why Hashicorp Vault ?
Take secret management to the next level
Automation friendly
Complete API access
Automatic rotation for several tools and platforms
Integrations with Terraform and Consul template
Secure
25. Automation friendly - App workflow
Vault provides a secure solution for sharing and distributing secrets
27. Summary
Very little effort to deploy & manage resources in Azure, AWS, and Google.
Not the only tool but it is powerful and simple
If you are looking to deploy resources across multiple providers, take advantage HashiCorp
Ecosystem:
Terraform – tool for creating, combining, and modifying infrastructure.
Packer – tool for creating images.
Vault - tool for managing secrets.
Consul – tool for service discovery, service registry, and health checks.
Vagrant – tool for managing dev environments
Change Automation
Complex changesets can be applied to your infrastructure with minimal human interaction. With the previously mentioned execution plan and resource graph, you know exactly what Terraform will change and in what order, avoiding many possible human errors.
Advantages of Using Packer
Super fast infrastructure deployment:
Packer images allow you to launch completely provisioned and configured machines in seconds. This benefits not only production, but development as well
Multi-provider portability
Packer creates identical images for multiple platforms
Improved stability
Packer installs and configures all the software for a machine at the time the image is built. If there are bugs in these scripts, they'll be caught early, rather later when a machine is launched.
Greater testability.
you can be confident that any other machines launched from that image will function properly.