Manish Pandit, profile picture
Uploaded byManish Pandit
PDF, PPTX1,629 views

Immutable AWS Deployments with Packer and Jenkins

This document discusses using Packer and Jenkins to create immutable AWS deployments. Packer is used to build machine images from the ground up with all necessary software and code pre-installed. Provisioners further configure and customize the images. Jenkins automates building the images with Packer whenever code is committed. The immutable images prevent drift and ensure consistency. The process allows fully automated deployments through launching instances from the pre-built images.

Embed presentation

Download as PDF, PPTX
Immutable AWS Deployments with Packer and Jenkins Scale by the Bay, 2017 Manish Pandit
About Manish Pandit Director of Platform Engineering @Marqeta Twitter : @lobster1234 Blog: lobster1234.github.io
Show of hands Deployments DevOps, CI/CD, Tooling,.. AWS (or something similar!)
Deployments The process of pushing code beyond the development environment Multi-step Usually (heavily) scripted Complete, or Partial
Complete Provisioning the stack from ground up Installation of O/S, Runtime, Application Server, Code, Agents, ... # mkfs –t ext4 /dev/sda0 # mkdir /apps # mount –t ext4 /dev/sda0 /apps
Partial Very common across the board In-place deployment “Saves time” Gives a false sense of automation
Typical Steps ~ scp builds/myService-1.0.2.war mpandit@prd.example.com:/usr/local/tomcat8/webapps ~ ssh mpandit@prd.example.com ~ sudo /usr/local/tomcat8/bin/catalina.sh restart
Typical Steps ~ ssh mpandit@prd.example.com ~ wget https://nx.example.com/com/foo/myService.war -O /usr/local/tomcat8/webapps ~ sudo /usr/local/tomcat8/catalina.sh restart
Automation? Script this all Run via a Jenkins job Fabric (Python), Capistrano, etc.
What could go wrong?
What could go wrong? Unpatched, outdated dependencies Inconsistent app behavior Changes outside of the deployment cycle Human Error(s) Does not scale
Immutability Build the entire runtime infrastructure from ground up Automate it!
Immutability Build the entire runtime infrastructure from ground up Automate it! Runtime Infrastructure = O/S + Libraries + App Server + Code + Agents
AWS AWS is collection of services for.. Compute Storage Databases Messaging + many, many more...
AWS AWS helps build architectures that are - Highly Available Fault Tolerant Scalable Cost-efficient
AMIs Templates to launch EC2 instances Specify O/S, Virtualization Type, Storage Type, Volume Attachments, etc. Can be shared within accounts, or made public Highest level of deployment abstraction
Customize AMIs Trim the fat Configure the libraries, tune the parameters Summary : Make infrastructure, not war* * Java Reference
Packer A tool from Hashicorp to create Machine Images Supports multiple providers Supports multiple provisioners
Install ~ packer -v 1.1.1 ~ Install via brew, or, Download the binary from the packer.io website
Credentials EC2 = Use IAM Role for Packer * Non-EC2 = Use AWS Credentials * Packer website has the IAM role details
Builders Define Machine Images for many platforms JSON-based Popular : AWS AMI, VMWare, Docker, Azure, GCP… Custom
AWS AMI Builder { "_comment":"Simple Packer Template using Amazon Linux 2017.09.0", "variables":{ "aws_access_key":"", "aws_secret_key":"" }, "builders":[ { "type":"amazon-ebs", "access_key":"{{user `aws_access_key`}}", "secret_key":"{{user `aws_secret_key`}}", "region":"us-east-1", "source_ami":"ami-8c1be5f6", "instance_type":"t2.micro", "ssh_username":"ec2-user", "ami_name":"ScaleByTheBay AMI" } ] }
Inspect ~ packer inspect packer.json Optional variables and their defaults: aws_access_key = aws_secret_key = Builders: amazon-ebs Provisioners: <No provisioners> Note: If your build names contain user variables or template functions such as 'timestamp', these are processed at build time, and therefore only show in their raw form here.
Build! ~ packer build packer.json amazon-ebs output will be in this color. ==> amazon-ebs: Prevalidating AMI Name: ScaleByTheBay AMI amazon-ebs: Found Image ID: ami-8c1be5f6 ==> amazon-ebs: Launching a source AWS instance... ==> amazon-ebs: Waiting for instance (i-09f4b837ed80a659f) to become ready... ==> amazon-ebs: Waiting for SSH to become available... ==> amazon-ebs: Stopping the source instance... ==> amazon-ebs: Creating the AMI: ScaleByTheBay AMI amazon-ebs: AMI: ami-5b18a121 ==> amazon-ebs: Waiting for AMI to become ready... ==> amazon-ebs: Terminating the source AWS instance... ==> Builds finished. The artifacts of successful builds are: --> amazon-ebs: AMIs were created: us-east-1: ami-5b18a121
Provisioners JSON based Install and configure packages and components +many, many more tasks Popular : Ansible, Chef, Puppet, Shell, ..
Make our AMI ...useful 1. Apply updates and patches 2. Install OpenJDK 8 3. Install Tomcat 8 4. Download the application artifact, the war 5. Configure Tomcat to run at startup
Let’s Provision our AMI "provisioners": [{ "type": "shell", "inline": [ "sudo yum update -y", "sudo yum install java-1.8.0 java-1.8.0-openjdk-devel tomcat8-webapps -y", "sudo yum remove java-1.7.0-openjdk -y", "sudo wget https://github.com/lobster1234/helloworld-api/files/953511/helloworld-api.war.gz -O /usr/share/tomcat8/webapps/helloworld-api.war.gz", "sudo gunzip /usr/share/tomcat8/webapps/helloworld-api.war.gz", "sudo chkconfig tomcat8 on" ] }]
{ "_comment":"Simple Packer Template using Amazon Linux 2017.09.0", "variables":{ "aws_access_key":"", "aws_secret_key":"" }, "builders":[ { "type":"amazon-ebs", "access_key":"{{user `aws_access_key`}}", "secret_key":"{{user `aws_secret_key`}}", "region":"us-east-1", "source_ami":"ami-8c1be5f6", "instance_type":"t2.micro", "ssh_username":"ec2-user", "ami_name":"ScaleByTheBay AMI with Tomcat8" } ], "provisioners": [{ "type": "shell", "inline": [ "sleep 30", "sudo yum update -y", "sudo yum install java-1.8.0 java-1.8.0-openjdk-devel tomcat8-webapps -y", "sudo yum remove java-1.7.0-openjdk -y", "sudo wget https://github.com/lobster1234/helloworld-api/files/953511/helloworld-api.war.gz -O /usr/share/tomcat8/webapps/helloworld- api.war.gz", "sudo gunzip /usr/share/tomcat8/webapps/helloworld-api.war.gz", "sudo chkconfig tomcat8 on" ] }] }
Build! ~ packer build packer.json .... ==> amazon-ebs: Connected to SSH! ==> amazon-ebs: Provisioning with shell script: /var/folders/vf/d0q4kjg964581kjjz4969dbny407x7/T/packer-shell539435218 amazon-ebs: Loaded plugins: priorities, update-motd, upgrade-helper amazon-ebs: Resolving Dependencies amazon-ebs: --> Running transaction check amazon-ebs: ---> Package amazon-ssm-agent.x86_64 0:2.1.4.0-1.amzn1 will be updated amazon-ebs: amazon-ebs: 2017-11-11 07:51:33 (64.0 MB/s) - ‘/usr/share/tomcat8/webapps/helloworld-api.war.gz’ saved [1918559/1918559] amazon-ebs: ==> amazon-ebs: Creating the AMI: ScaleByTheBay AMI with Tomcat8 amazon-ebs: AMI: ami-73ed5509 ==> amazon-ebs: Waiting for AMI to become ready... Build 'amazon-ebs' finished. ==> Builds finished. The artifacts of successful builds are: --> amazon-ebs: AMIs were created: us-east-1: ami-73ed5509
Launch the instance
Check it out
Verify Tomcat
Verify the API ~ curl -iv http://ec2-54-88-249-121.compute-1.amazonaws.com:8080/helloworld-api/hello * Trying 54.88.249.121... * TCP_NODELAY set * Connected to ec2-54-88-249-121.compute-1.amazonaws.com (54.88.249.121) port 8080 (#0) > GET /helloworld-api/hello HTTP/1.1 > Host: ec2-54-88-249-121.compute-1.amazonaws.com:8080 > User-Agent: curl/7.54.0 > Accept: */* > < HTTP/1.1 200 HTTP/1.1 200 < Content-Type: text/html;charset=utf-8 < Transfer-Encoding: chunked < Date: Sat, 11 Nov 2017 08:20:09 GMT < * Connection #0 to host ec2-54-88-249-121.compute-1.amazonaws.com left intact Hello World! ~
Automate this - Jenkins 1. git clone <repo> 2. mvn clean install test 3. mvn release:prepare release:perform 4. export version=1.0.2 5. packer build packer.json 6. Output this AMI ID to Terraform to launch an Autoscaling Group
Summary Do not release code - release runtime infrastructure Automate Everything Legendary = Disable ssh from your AMIs
Resources Packer - https://packer.io AWS EC2 - https://aws.amazon.com/documentation/ec2/ My Blog Post - https://tinyurl.com/packer-jenkins
Questions Manish Pandit @lobster1234 lobster1234.github.io Like what you saw? Come work with me @Marqeta!

More Related Content

PDF
AWS Lambda with Serverless Framework and Java
byManish Pandit
 
PDF
Infrastructure as Code: Manage your Architecture with Git
byDanilo Poccia
 
PDF
[AWS Dev Day] 앱 현대화 | AWS Fargate를 사용한 서버리스 컨테이너 활용 하기 - 삼성전자 개발자 포털 사례 - 정영준...
byAmazon Web Services Korea
 
PPTX
Automation with Packer and TerraForm
byWesley Charles Blake
 
PDF
Amazon EC2 Container Service Live Demo - Microservices Web Day
byAWS Germany
 
PPTX
Packer
byNitesh Saini
 
PDF
Spinnaker 파트 1
bySteven Shim
 
PDF
The AWS DevOps combo (January 2017)
byJulien SIMON
 
AWS Lambda with Serverless Framework and Java
byManish Pandit
 
Infrastructure as Code: Manage your Architecture with Git
byDanilo Poccia
 
[AWS Dev Day] 앱 현대화 | AWS Fargate를 사용한 서버리스 컨테이너 활용 하기 - 삼성전자 개발자 포털 사례 - 정영준...
byAmazon Web Services Korea
 
Automation with Packer and TerraForm
byWesley Charles Blake
 
Amazon EC2 Container Service Live Demo - Microservices Web Day
byAWS Germany
 
Packer
byNitesh Saini
 
Spinnaker 파트 1
bySteven Shim
 
The AWS DevOps combo (January 2017)
byJulien SIMON
 

What's hot

PDF
Fargate 를 이용한 ECS with VPC 1부
byHyun-Mook Choi
 
PDF
Infrastructure as code with Amazon Web Services
byJulien SIMON
 
PDF
Packer by HashiCorp
byŁukasz Cieśluk
 
PDF
Service Delivery Assembly Line with Vagrant, Packer, and Ansible
byIsaac Christoffersen
 
PDF
A Introduction of Packer
byFreyr Lin
 
PPTX
Learn you some Ansible for great good!
byDavid Lapsley
 
PDF
Deployment and Management on AWS:
 A Deep Dive on Options and Tools
byDanilo Poccia
 
PDF
A Hands-on Introduction on Terraform Best Concepts and Best Practices
byNebulaworks
 
PPTX
Packer, where DevOps begins
byJeff Hung
 
Fargate 를 이용한 ECS with VPC 1부
byHyun-Mook Choi
 
Infrastructure as code with Amazon Web Services
byJulien SIMON
 
Packer by HashiCorp
byŁukasz Cieśluk
 
Service Delivery Assembly Line with Vagrant, Packer, and Ansible
byIsaac Christoffersen
 
A Introduction of Packer
byFreyr Lin
 
Learn you some Ansible for great good!
byDavid Lapsley
 
Deployment and Management on AWS:
 A Deep Dive on Options and Tools
byDanilo Poccia
 
A Hands-on Introduction on Terraform Best Concepts and Best Practices
byNebulaworks
 
Packer, where DevOps begins
byJeff Hung
 

Similar to Immutable AWS Deployments with Packer and Jenkins

PPTX
Baking in the cloud with packer and puppet
byAlan Parkinson
 
PDF
EC2 AMI Factory with Chef, Berkshelf, and Packer
byGeorge Miranda
 
PDF
Chasing AMI - Building Amazon machine images with Puppet, Packer and Jenkins
byTomas Doran
 
PDF
Puppet Camp London 2014: Chasing AMI: baking Amazon machine images with Jenki...
byPuppet
 
PDF
OpenSource ToolChain for the Hybrid Cloud
byIsaac Christoffersen
 
PDF
India cloudsummit Bangalore - Advanced Container Use-cases on AWS Container S...
byMani Chandrasekaran
 
PPTX
Introduction to Packer and Suitcase: A Packer-based OS Image Build System
byHubSpot Product Team
 
PDF
AWS Black Belt Online Seminar 2018 re:Invent Recap: Compute, Container and Ne...
byAmazon Web Services Japan
 
PPTX
Scaling Your App With Docker Swarm using Terraform, Packer on Openstack
byBobby DeVeaux, DevOps Consultant
 
PPTX
AWS Services.pptx
byLearnTechnology2
 
PDF
Running Open Source Platforms on AWS (November 2016)
byJulien SIMON
 
PDF
Sun_AmazonEC2_GettingStartedGuide
byHiroshi Ono
 
PDF
Building a bakery of Windows servers with Packer - London WinOps
byRicard Clau
 
PDF
AWS + Puppet = Dynamic Scale
byShiva Narayanaswamy
 
PDF
Auto scaling with Ruby, AWS, Jenkins and Redis
byYi Hsuan (Jeddie) Chuang
 
PDF
Aws + Puppet = Dynamic Scale
byPuppet
 
PDF
Packer
byDiego Pacheco
 
PPTX
DevConfZA 2020 : Automating your cloud: What are the building blocks
byCobus Bernard
 
PDF
Build automated Machine Images using Packer
byMarek Piątek
 
PDF
20180724 AWS Black Belt Online Seminar Amazon Elastic Container Service for K...
byAmazon Web Services Japan
 
Baking in the cloud with packer and puppet
byAlan Parkinson
 
EC2 AMI Factory with Chef, Berkshelf, and Packer
byGeorge Miranda
 
Chasing AMI - Building Amazon machine images with Puppet, Packer and Jenkins
byTomas Doran
 
Puppet Camp London 2014: Chasing AMI: baking Amazon machine images with Jenki...
byPuppet
 
OpenSource ToolChain for the Hybrid Cloud
byIsaac Christoffersen
 
India cloudsummit Bangalore - Advanced Container Use-cases on AWS Container S...
byMani Chandrasekaran
 
Introduction to Packer and Suitcase: A Packer-based OS Image Build System
byHubSpot Product Team
 
AWS Black Belt Online Seminar 2018 re:Invent Recap: Compute, Container and Ne...
byAmazon Web Services Japan
 
Scaling Your App With Docker Swarm using Terraform, Packer on Openstack
byBobby DeVeaux, DevOps Consultant
 
AWS Services.pptx
byLearnTechnology2
 
Running Open Source Platforms on AWS (November 2016)
byJulien SIMON
 
Sun_AmazonEC2_GettingStartedGuide
byHiroshi Ono
 
Building a bakery of Windows servers with Packer - London WinOps
byRicard Clau
 
AWS + Puppet = Dynamic Scale
byShiva Narayanaswamy
 
Auto scaling with Ruby, AWS, Jenkins and Redis
byYi Hsuan (Jeddie) Chuang
 
Aws + Puppet = Dynamic Scale
byPuppet
 
Packer
byDiego Pacheco
 
DevConfZA 2020 : Automating your cloud: What are the building blocks
byCobus Bernard
 
Build automated Machine Images using Packer
byMarek Piątek
 
20180724 AWS Black Belt Online Seminar Amazon Elastic Container Service for K...
byAmazon Web Services Japan
 

More from Manish Pandit

PDF
Disaster recovery - What, Why, and How
byManish Pandit
 
PDF
Serverless Architectures on AWS in practice - OSCON 2018
byManish Pandit
 
PDF
Disaster Recovery and Reliability
byManish Pandit
 
PDF
OAuth2 primer
byManish Pandit
 
PDF
AWS Primer and Quickstart
byManish Pandit
 
PPTX
Securing your APIs with OAuth, OpenID, and OpenID Connect
byManish Pandit
 
PDF
Silicon Valley 2014 - API Antipatterns
byManish Pandit
 
PDF
Scalabay - API Design Antipatterns
byManish Pandit
 
PDF
OSCON 2014 - API Ecosystem with Scala, Scalatra, and Swagger at Netflix
byManish Pandit
 
PPTX
API Design Antipatterns - APICon SF
byManish Pandit
 
PPTX
Motivation : it Matters
byManish Pandit
 
PPTX
Building Apis in Scala with Playframework2
byManish Pandit
 
PPTX
Scala at Netflix
byManish Pandit
 
PPT
Introducing Scala to your Ruby/Java Shop : My experiences at IGN
byManish Pandit
 
PPT
Evolving IGN’s New APIs with Scala
byManish Pandit
 
PPTX
IGN's V3 API
byManish Pandit
 
PPTX
Java and the JVM
byManish Pandit
 
PPTX
Object Oriented Programming
byManish Pandit
 
PPTX
Silicon Valley Code Camp 2011: Play! as you REST
byManish Pandit
 
PPTX
Silicon Valley Code Camp: 2011 Introduction to MongoDB
byManish Pandit
 
Disaster recovery - What, Why, and How
byManish Pandit
 
Serverless Architectures on AWS in practice - OSCON 2018
byManish Pandit
 
Disaster Recovery and Reliability
byManish Pandit
 
OAuth2 primer
byManish Pandit
 
AWS Primer and Quickstart
byManish Pandit
 
Securing your APIs with OAuth, OpenID, and OpenID Connect
byManish Pandit
 
Silicon Valley 2014 - API Antipatterns
byManish Pandit
 
Scalabay - API Design Antipatterns
byManish Pandit
 
OSCON 2014 - API Ecosystem with Scala, Scalatra, and Swagger at Netflix
byManish Pandit
 
API Design Antipatterns - APICon SF
byManish Pandit
 
Motivation : it Matters
byManish Pandit
 
Building Apis in Scala with Playframework2
byManish Pandit
 
Scala at Netflix
byManish Pandit
 
Introducing Scala to your Ruby/Java Shop : My experiences at IGN
byManish Pandit
 
Evolving IGN’s New APIs with Scala
byManish Pandit
 
IGN's V3 API
byManish Pandit
 
Java and the JVM
byManish Pandit
 
Object Oriented Programming
byManish Pandit
 
Silicon Valley Code Camp 2011: Play! as you REST
byManish Pandit
 
Silicon Valley Code Camp: 2011 Introduction to MongoDB
byManish Pandit
 

Recently uploaded

PDF
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
PDF
Incident Response Planning with a Foundation Model
byKim Hammar
 
PPTX
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
PDF
Digit Expo 2025 - EICC Edinburgh 27th November
byRay Bugg
 
PDF
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
PDF
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
PPTX
Ethics in AI - Artificial Intelligence Fundamentals.pptx
byemenyiblessing
 
PDF
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
PDF
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
PPTX
RISE with SAP for Automotive - S4 HANA Value.pptx
byAmira Jemi
 
PPTX
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
PDF
Knowing and Doing: Knowledge graphs, AI, and work
bymarainglezakis1
 
PDF
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
PDF
AI Technology important knowledge ......
byutkarshj2007
 
PDF
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
PDF
Ransomware_Resilience_Strategic_Playbook.pdf
byAfonso Henrique Rodrigues Alves
 
PDF
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
PDF
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
PDF
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
PDF
December Patch Tuesday
byIvanti
 
How Mobile Apps Are Shaping the Future of Digital Innovation
byWilliam Taylor
 
Incident Response Planning with a Foundation Model
byKim Hammar
 
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
Digit Expo 2025 - EICC Edinburgh 27th November
byRay Bugg
 
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
Ethics in AI - Artificial Intelligence Fundamentals.pptx
byemenyiblessing
 
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
RISE with SAP for Automotive - S4 HANA Value.pptx
byAmira Jemi
 
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
Knowing and Doing: Knowledge graphs, AI, and work
bymarainglezakis1
 
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
AI Technology important knowledge ......
byutkarshj2007
 
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
Ransomware_Resilience_Strategic_Playbook.pdf
byAfonso Henrique Rodrigues Alves
 
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
December Patch Tuesday
byIvanti
 

Immutable AWS Deployments with Packer and Jenkins

  • 1.
    Immutable AWS Deployments withPacker and Jenkins Scale by the Bay, 2017 Manish Pandit
  • 2.
    About Manish Pandit Director ofPlatform Engineering @Marqeta Twitter : @lobster1234 Blog: lobster1234.github.io
  • 3.
    Show of hands Deployments DevOps,CI/CD, Tooling,.. AWS (or something similar!)
  • 4.
    Deployments The process ofpushing code beyond the development environment Multi-step Usually (heavily) scripted Complete, or Partial
  • 5.
    Complete Provisioning the stackfrom ground up Installation of O/S, Runtime, Application Server, Code, Agents, ... # mkfs –t ext4 /dev/sda0 # mkdir /apps # mount –t ext4 /dev/sda0 /apps
  • 6.
    Partial Very common acrossthe board In-place deployment “Saves time” Gives a false sense of automation
  • 7.
    Typical Steps ~ scpbuilds/myService-1.0.2.war mpandit@prd.example.com:/usr/local/tomcat8/webapps ~ ssh mpandit@prd.example.com ~ sudo /usr/local/tomcat8/bin/catalina.sh restart
  • 8.
    Typical Steps ~ sshmpandit@prd.example.com ~ wget https://nx.example.com/com/foo/myService.war -O /usr/local/tomcat8/webapps ~ sudo /usr/local/tomcat8/catalina.sh restart
  • 9.
    Automation? Script this all Runvia a Jenkins job Fabric (Python), Capistrano, etc.
  • 10.
  • 11.
    What could gowrong? Unpatched, outdated dependencies Inconsistent app behavior Changes outside of the deployment cycle Human Error(s) Does not scale
  • 12.
    Immutability Build the entireruntime infrastructure from ground up Automate it!
  • 13.
    Immutability Build the entireruntime infrastructure from ground up Automate it! Runtime Infrastructure = O/S + Libraries + App Server + Code + Agents
  • 14.
    AWS AWS is collectionof services for.. Compute Storage Databases Messaging + many, many more...
  • 15.
    AWS AWS helps buildarchitectures that are - Highly Available Fault Tolerant Scalable Cost-efficient
  • 16.
    AMIs Templates to launchEC2 instances Specify O/S, Virtualization Type, Storage Type, Volume Attachments, etc. Can be shared within accounts, or made public Highest level of deployment abstraction
  • 18.
    Customize AMIs Trim thefat Configure the libraries, tune the parameters Summary : Make infrastructure, not war* * Java Reference
  • 19.
    Packer A tool fromHashicorp to create Machine Images Supports multiple providers Supports multiple provisioners
  • 20.
    Install ~ packer -v 1.1.1 ~ Installvia brew, or, Download the binary from the packer.io website
  • 21.
    Credentials EC2 = UseIAM Role for Packer * Non-EC2 = Use AWS Credentials * Packer website has the IAM role details
  • 22.
    Builders Define Machine Imagesfor many platforms JSON-based Popular : AWS AMI, VMWare, Docker, Azure, GCP… Custom
  • 23.
    AWS AMI Builder { "_comment":"SimplePacker Template using Amazon Linux 2017.09.0", "variables":{ "aws_access_key":"", "aws_secret_key":"" }, "builders":[ { "type":"amazon-ebs", "access_key":"{{user `aws_access_key`}}", "secret_key":"{{user `aws_secret_key`}}", "region":"us-east-1", "source_ami":"ami-8c1be5f6", "instance_type":"t2.micro", "ssh_username":"ec2-user", "ami_name":"ScaleByTheBay AMI" } ] }
  • 24.
    Inspect ~ packer inspectpacker.json Optional variables and their defaults: aws_access_key = aws_secret_key = Builders: amazon-ebs Provisioners: <No provisioners> Note: If your build names contain user variables or template functions such as 'timestamp', these are processed at build time, and therefore only show in their raw form here.
  • 25.
    Build! ~ packer buildpacker.json amazon-ebs output will be in this color. ==> amazon-ebs: Prevalidating AMI Name: ScaleByTheBay AMI amazon-ebs: Found Image ID: ami-8c1be5f6 ==> amazon-ebs: Launching a source AWS instance... ==> amazon-ebs: Waiting for instance (i-09f4b837ed80a659f) to become ready... ==> amazon-ebs: Waiting for SSH to become available... ==> amazon-ebs: Stopping the source instance... ==> amazon-ebs: Creating the AMI: ScaleByTheBay AMI amazon-ebs: AMI: ami-5b18a121 ==> amazon-ebs: Waiting for AMI to become ready... ==> amazon-ebs: Terminating the source AWS instance... ==> Builds finished. The artifacts of successful builds are: --> amazon-ebs: AMIs were created: us-east-1: ami-5b18a121
  • 28.
    Provisioners JSON based Install andconfigure packages and components +many, many more tasks Popular : Ansible, Chef, Puppet, Shell, ..
  • 29.
    Make our AMI...useful 1. Apply updates and patches 2. Install OpenJDK 8 3. Install Tomcat 8 4. Download the application artifact, the war 5. Configure Tomcat to run at startup
  • 30.
    Let’s Provision ourAMI "provisioners": [{ "type": "shell", "inline": [ "sudo yum update -y", "sudo yum install java-1.8.0 java-1.8.0-openjdk-devel tomcat8-webapps -y", "sudo yum remove java-1.7.0-openjdk -y", "sudo wget https://github.com/lobster1234/helloworld-api/files/953511/helloworld-api.war.gz -O /usr/share/tomcat8/webapps/helloworld-api.war.gz", "sudo gunzip /usr/share/tomcat8/webapps/helloworld-api.war.gz", "sudo chkconfig tomcat8 on" ] }]
  • 31.
    { "_comment":"Simple Packer Templateusing Amazon Linux 2017.09.0", "variables":{ "aws_access_key":"", "aws_secret_key":"" }, "builders":[ { "type":"amazon-ebs", "access_key":"{{user `aws_access_key`}}", "secret_key":"{{user `aws_secret_key`}}", "region":"us-east-1", "source_ami":"ami-8c1be5f6", "instance_type":"t2.micro", "ssh_username":"ec2-user", "ami_name":"ScaleByTheBay AMI with Tomcat8" } ], "provisioners": [{ "type": "shell", "inline": [ "sleep 30", "sudo yum update -y", "sudo yum install java-1.8.0 java-1.8.0-openjdk-devel tomcat8-webapps -y", "sudo yum remove java-1.7.0-openjdk -y", "sudo wget https://github.com/lobster1234/helloworld-api/files/953511/helloworld-api.war.gz -O /usr/share/tomcat8/webapps/helloworld- api.war.gz", "sudo gunzip /usr/share/tomcat8/webapps/helloworld-api.war.gz", "sudo chkconfig tomcat8 on" ] }] }
  • 32.
    Build! ~ packer buildpacker.json .... ==> amazon-ebs: Connected to SSH! ==> amazon-ebs: Provisioning with shell script: /var/folders/vf/d0q4kjg964581kjjz4969dbny407x7/T/packer-shell539435218 amazon-ebs: Loaded plugins: priorities, update-motd, upgrade-helper amazon-ebs: Resolving Dependencies amazon-ebs: --> Running transaction check amazon-ebs: ---> Package amazon-ssm-agent.x86_64 0:2.1.4.0-1.amzn1 will be updated amazon-ebs: amazon-ebs: 2017-11-11 07:51:33 (64.0 MB/s) - ‘/usr/share/tomcat8/webapps/helloworld-api.war.gz’ saved [1918559/1918559] amazon-ebs: ==> amazon-ebs: Creating the AMI: ScaleByTheBay AMI with Tomcat8 amazon-ebs: AMI: ami-73ed5509 ==> amazon-ebs: Waiting for AMI to become ready... Build 'amazon-ebs' finished. ==> Builds finished. The artifacts of successful builds are: --> amazon-ebs: AMIs were created: us-east-1: ami-73ed5509
  • 34.
  • 35.
  • 36.
  • 37.
    Verify the API ~curl -iv http://ec2-54-88-249-121.compute-1.amazonaws.com:8080/helloworld-api/hello * Trying 54.88.249.121... * TCP_NODELAY set * Connected to ec2-54-88-249-121.compute-1.amazonaws.com (54.88.249.121) port 8080 (#0) > GET /helloworld-api/hello HTTP/1.1 > Host: ec2-54-88-249-121.compute-1.amazonaws.com:8080 > User-Agent: curl/7.54.0 > Accept: */* > < HTTP/1.1 200 HTTP/1.1 200 < Content-Type: text/html;charset=utf-8 < Transfer-Encoding: chunked < Date: Sat, 11 Nov 2017 08:20:09 GMT < * Connection #0 to host ec2-54-88-249-121.compute-1.amazonaws.com left intact Hello World! ~
  • 38.
    Automate this -Jenkins 1. git clone <repo> 2. mvn clean install test 3. mvn release:prepare release:perform 4. export version=1.0.2 5. packer build packer.json 6. Output this AMI ID to Terraform to launch an Autoscaling Group
  • 39.
    Summary Do not releasecode - release runtime infrastructure Automate Everything Legendary = Disable ssh from your AMIs
  • 40.
    Resources Packer - https://packer.io AWSEC2 - https://aws.amazon.com/documentation/ec2/ My Blog Post - https://tinyurl.com/packer-jenkins
  • 41.