SlideShare a Scribd company logo
Normation – Tous droits réservés
normation.com
Rudder 3.0 and beyond
Jonathan Clarke
jcl@normation.com
@jooooooon42 (7 'o's)
Nicolas CHARLES
nch@normation.com
@nico_charles
Normation – Tous droits réservés
normation.com
Who are we?
Jonathan Clarke
Origins: Sysadmin,
infrastructure management
jcl@normation.com
@jooooooon42 (7 'o's)
Co-founded and work at
Creators of and ncf.io
Nicolas CHARLES
Origins: Development
nch@normation.com
@nico_charles
Normation – Tous droits réservés
normation.com
This talk is about
Rudder
Overview & History
3.0 new features
Perspectives for 3.1
and beyond
Normation – Tous droits réservés
normation.com
Intro: Rudder overview
DesktopCloudDatacenter Smart infrastructureMobile
3. Universality – Lightweight & multi-platform agent technology
1. Simplification – Web interface, role separation
2. Compliance – Continuous checking
Normation – Tous droits réservés
normation.com
Intro: Rudder release history
2013 2014 2015
Jan Apr Jul Nov Dec March July Feb
2.5 2.6 2.7 2.8 2.9 2.10 2.11 3.0
Release history
Release schedule
Major version (2.x, 3.x) every 3 months
Minor versions (2.x.y) are strictly bug-fix only,
release when needed or at minimum every month
Normation – Tous droits réservés
normation.com
Rudder 3.0
Rudder 3.0
A major step forward
Normation – Tous droits réservés
normation.com
Rudder 3.0: Redesigned web interface
Redesigned web interface
✔ Avoid wasted space
✔ One click access to all screens
✔ Familiar Bootstrap menu bar
✔ Improved user experience
✔ Refresh data in all tables
Normation – Tous droits réservés
normation.com
Rudder 3.0: Redesigned web interface
Before
After
Normation – Tous droits réservés
normation.com
Rudder 3.0: Redesigned web interface
Wasted space
Wastedspace
Wastedspace
Useful content
Pre-3.0
Normation – Tous droits réservés
normation.com
Rudder 3.0: Redesigned web interface
Useful content
Now in 3.0
Normation – Tous droits réservés
normation.com
Rudder 3.0: Redesigned web interface
One click access to all pages
Pre 3.0: double menu
First click
Second click
Now in 3.0: one menu
Normation – Tous droits réservés
normation.com
Rudder 3.0: Redesigned web interface
Improved user experience
Pre 3.0: tabbed Directive page
Now in 3.0: one menu
Normation – Tous droits réservés
normation.com
Rudder 3.0: Redesigned web interface
As of 3.0: single page, improved layout
Always available
Save button
Normation – Tous droits réservés
normation.com
Rudder 3.0: Redesigned web interface
As of 3.0: single page, improved layout
Normation – Tous droits réservés
normation.com
Rudder 3.0: Status reporting
Status reporting
✔ Display an overview of all states for a Rule
✔ Proportional to number of nodes
✔ Proportional to number of configurations
✔ Drilldown by node or by component
✔ Display recent changes (repairs) over time
✔ List recent changes (repairs)
Normation – Tous droits réservés
normation.com
Rudder 3.0: Status reporting
Status reporting
Error
Unexpected
No response
Applying...
Success
Not
applicable
(eg SSH on
Windows)
Multi-colour progress bar displayed for each
rule and as a global overview
Normation – Tous droits réservés
normation.com
Rudder 3.0: Status reporting
Status reporting
Recent changesCompliance
Normation – Tous droits réservés
normation.com
Rudder 3.0: Status reporting
Overview + drilldown
Exhaustive
Focus on what is relevant
Normation – Tous droits réservés
normation.com
Rudder 3.0: Status reporting
History of changes on nodes
Keep an eye on what changed
Normation – Tous droits réservés
normation.com
Rudder 3.0: Status reporting
Overview: dashboard
Normation – Tous droits réservés
normation.com
Rudder 3.0: Status reporting
Reporting: behind the scenes
Two compliance modes
Full compliance
Changes only
Varies logs sent from nodes to server:
Explicit “success” message vs silence means OK + regular heartbeat
10:00 ComponentA Success
10:00 ComponentB Repaired
10:05 ComponentA Success
10:05 ComponentB Success
10:10 ComponentA Success
10:10 ComponentB Success
→ Saves a lot of bandwidth (syslog messages) + storage (DB)
10:00 ComponentB Repaired
10:10 Heartbeat I'm alive!
vs
Normation – Tous droits réservés
normation.com
Rudder 3.0: Technique editor
Create your own Techniques via a web interface
Technique editor
Normation – Tous droits réservés
normation.com
Rudder 3.0: Technique editor
Builds on the ncf framework and available methods
Technique editor
Example of a method
66generic methods as of today
Normation – Tous droits réservés
normation.com
Rudder 3.0: Node classification data
Insert external data to classify nodes on key=value pairs
Node classification data
1. Set key=value pairs for any nodes via the REST API
See REST API documentation on
http://www.rudder-project.org/rudder-api-doc/
Can be used to
integrate with any
third party CMDB,
inventory/asset
database, ...
Normation – Tous droits réservés
normation.com
Rudder 3.0: Node classification data
Insert external data to classify nodes on key=value pairs
Node classification data
1. Set key=value pairs for any nodes via the REST API
2. View, search and group in the web interface
Normation – Tous droits réservés
normation.com
Rudder 3.0: CLI
Wrapper for common commands
Command line interface
# rudder agent
Usage: rudder agent help
rudder agent <command> [parameters ...]
Run commands on agent.
Available commands:
disable forbid rudder-agent to be run by cron or service
enable re-enable a disabled rudder-agent
inventory force the agent to create and send a new inventory
reinit re-initialise the agent to make it be seen as a new
reset reset agent status and cache
run force run agent promises
update update promises on agent
version get the agent version
Normation – Tous droits réservés
normation.com
Rudder 3.0: CLI
Wrapper for common commands
Command line interface
# rudder server debug <node_IP>
# Starts a temporary cf-serverd process on a different port
# and uses a firewall rule to redirect traffic from that node
# to the temporary server, running in verbose mode
Normation – Tous droits réservés
normation.com
Rudder 3.0: CLI
Collect and centralise usage statistics to help development
Usage statistics (opt-in, anonymous)
"audit_log_enabled": "true",
"reportscleaner_frequency": "daily",
"os_name": "Debian",
"uuid": "9480df7a-249c-4972-9593-648a60f769a1",
"report_line_count": "16427",
"expected_report_count": "118",
"nodes_count": "3",
"parameter_count": "1",
"report_db_size": "8272 kB",
"rule_count": "10",
"reportscleaner_archive_ttl": "3",
"os_version": "7.4",
"installation_date": "2015-01-30 08:56:58.982185054 +0000",
"db_size": "16 MB",
"package_version": "rudder-server-root 3.0.0-wheezy0",
"report_count_last_day": "156",
"directive_count": "14",
"reportscleaner_delete_ttl": "90",
"agent_run_interval": "5",
"rudder_workflow_enabled": "false”
Sample statistics
Normation – Tous droits réservés
normation.com
What's new in Rudder 3.0
Performance improvement
Much faster interface
Super fast compliance
Tested with 5000+ nodes
Example: List nodes page for 2000 nodes
Rudder 2.11: 2 seconds
Rudder 3.0: 80 ms
Various other changes
Package (deb/rpm) for relay servers
{yum,apt-get} install rudder-server-relay
systemd support
ncf methods
Rudder Techniques
New OS support
RHEL/CentOS 7
Debian 8
Run frequency by node
Set run frequency from
5 minutes to 6 hours
on a global schedule
+ override by node
Normation – Tous droits réservés
normation.com
Rudder 3.1 and beyond
Rudder > 3.0
Perspectives for the future
Normation – Tous droits réservés
normation.com
Rudder roadmap
Rudder 3.1 with API focus in March 2015
Beyond:
● Tags everywhere
● RBAC authorisations
● Parameters by tags
● Check only mode
● Better forms for Directives
● Technique editor that exposes parameters
● Add extension points
● Plugins for third party tools
Normation – Tous droits réservés
normation.com
Rudder inside!
Questions?
Jonathan Clarke
jcl@normation.com
@jooooooon42 (7 'o's)
Nicolas CHARLES
nch@normation.com
@nico_charles

More Related Content

Similar to Rudder 3.0 and beyond

eMagic-Data Center Management System
eMagic-Data Center Management SystemeMagic-Data Center Management System
eMagic-Data Center Management System
Sandesh Sonar
 
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
QAware GmbH
 
network-management Web base.ppt
network-management Web base.pptnetwork-management Web base.ppt
network-management Web base.ppt
AssadLeo1
 

Similar to Rudder 3.0 and beyond (20)

Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?
 
Monitoring as an entry point for collaboration
Monitoring as an entry point for collaborationMonitoring as an entry point for collaboration
Monitoring as an entry point for collaboration
 
LISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF ExporterLISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
 
Introduction to architecture exploration
Introduction to architecture explorationIntroduction to architecture exploration
Introduction to architecture exploration
 
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
 
Tungsten Fabric Overview
Tungsten Fabric OverviewTungsten Fabric Overview
Tungsten Fabric Overview
 
eMagic-Data Center Management System
eMagic-Data Center Management SystemeMagic-Data Center Management System
eMagic-Data Center Management System
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentation
 
C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4
 
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentation
 
SolarWinds Scalability for the Enterprise
SolarWinds Scalability for the EnterpriseSolarWinds Scalability for the Enterprise
SolarWinds Scalability for the Enterprise
 
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
 
Network Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient networkNetwork Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient network
 
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek JanikPLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
 
network-management Web base.ppt
network-management Web base.pptnetwork-management Web base.ppt
network-management Web base.ppt
 
WebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & ImplementationWebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & Implementation
 
From nothing to Prometheus : one year after
From nothing to Prometheus : one year afterFrom nothing to Prometheus : one year after
From nothing to Prometheus : one year after
 
Introduction To Cloud Computing
Introduction To Cloud ComputingIntroduction To Cloud Computing
Introduction To Cloud Computing
 
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
 

More from Jonathan Clarke

Interfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersInterfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert users
Jonathan Clarke
 
Automating security policies (compliance) with Rudder
Automating security policies (compliance) with RudderAutomating security policies (compliance) with Rudder
Automating security policies (compliance) with Rudder
Jonathan Clarke
 
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
A tale of Disaster Recovery (Cfengine everyday, practices and tools)A tale of Disaster Recovery (Cfengine everyday, practices and tools)
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
Jonathan Clarke
 
LDAP Synchronization Connector presentation at LDAPCon 2009
LDAP Synchronization Connector presentation at LDAPCon 2009LDAP Synchronization Connector presentation at LDAPCon 2009
LDAP Synchronization Connector presentation at LDAPCon 2009
Jonathan Clarke
 

More from Jonathan Clarke (10)

Interfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersInterfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert users
 
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
 
What is new in CFEngine 3.6
What is new in CFEngine 3.6What is new in CFEngine 3.6
What is new in CFEngine 3.6
 
Automating security policies (compliance) with Rudder
Automating security policies (compliance) with RudderAutomating security policies (compliance) with Rudder
Automating security policies (compliance) with Rudder
 
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéalOpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
 
Configuration management: automating and rationalizing server setup with CFEn...
Configuration management: automating and rationalizing server setup with CFEn...Configuration management: automating and rationalizing server setup with CFEn...
Configuration management: automating and rationalizing server setup with CFEn...
 
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
A tale of Disaster Recovery (Cfengine everyday, practices and tools)A tale of Disaster Recovery (Cfengine everyday, practices and tools)
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
 
LSC - Synchronizing identities @ Loadays 2010
LSC - Synchronizing identities @ Loadays 2010LSC - Synchronizing identities @ Loadays 2010
LSC - Synchronizing identities @ Loadays 2010
 
LDAP Synchronization Connector presentation at LDAPCon 2009
LDAP Synchronization Connector presentation at LDAPCon 2009LDAP Synchronization Connector presentation at LDAPCon 2009
LDAP Synchronization Connector presentation at LDAPCon 2009
 
LDAP Synchronization Connector (LSC)
LDAP Synchronization Connector (LSC)LDAP Synchronization Connector (LSC)
LDAP Synchronization Connector (LSC)
 

Recently uploaded

Recently uploaded (20)

Speed Wins: From Kafka to APIs in Minutes
Speed Wins: From Kafka to APIs in MinutesSpeed Wins: From Kafka to APIs in Minutes
Speed Wins: From Kafka to APIs in Minutes
 
Buy Epson EcoTank L3210 Colour Printer Online.pptx
Buy Epson EcoTank L3210 Colour Printer Online.pptxBuy Epson EcoTank L3210 Colour Printer Online.pptx
Buy Epson EcoTank L3210 Colour Printer Online.pptx
 
Optimizing NoSQL Performance Through Observability
Optimizing NoSQL Performance Through ObservabilityOptimizing NoSQL Performance Through Observability
Optimizing NoSQL Performance Through Observability
 
IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx
IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptxIOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx
IOS-PENTESTING-BEGINNERS-PRACTICAL-GUIDE-.pptx
 
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdf
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdfThe Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdf
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdf
 
Free and Effective: Making Flows Publicly Accessible, Yumi Ibrahimzade
Free and Effective: Making Flows Publicly Accessible, Yumi IbrahimzadeFree and Effective: Making Flows Publicly Accessible, Yumi Ibrahimzade
Free and Effective: Making Flows Publicly Accessible, Yumi Ibrahimzade
 
Introduction to Open Source RAG and RAG Evaluation
Introduction to Open Source RAG and RAG EvaluationIntroduction to Open Source RAG and RAG Evaluation
Introduction to Open Source RAG and RAG Evaluation
 
Designing for Hardware Accessibility at Comcast
Designing for Hardware Accessibility at ComcastDesigning for Hardware Accessibility at Comcast
Designing for Hardware Accessibility at Comcast
 
Top 10 Symfony Development Companies 2024
Top 10 Symfony Development Companies 2024Top 10 Symfony Development Companies 2024
Top 10 Symfony Development Companies 2024
 
Connecting the Dots in Product Design at KAYAK
Connecting the Dots in Product Design at KAYAKConnecting the Dots in Product Design at KAYAK
Connecting the Dots in Product Design at KAYAK
 
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdfHow Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
 
PLAI - Acceleration Program for Generative A.I. Startups
PLAI - Acceleration Program for Generative A.I. StartupsPLAI - Acceleration Program for Generative A.I. Startups
PLAI - Acceleration Program for Generative A.I. Startups
 
Strategic AI Integration in Engineering Teams
Strategic AI Integration in Engineering TeamsStrategic AI Integration in Engineering Teams
Strategic AI Integration in Engineering Teams
 
Syngulon - Selection technology May 2024.pdf
Syngulon - Selection technology May 2024.pdfSyngulon - Selection technology May 2024.pdf
Syngulon - Selection technology May 2024.pdf
 
Where to Learn More About FDO _ Richard at FIDO Alliance.pdf
Where to Learn More About FDO _ Richard at FIDO Alliance.pdfWhere to Learn More About FDO _ Richard at FIDO Alliance.pdf
Where to Learn More About FDO _ Richard at FIDO Alliance.pdf
 
ASRock Industrial FDO Solutions in Action for Industrial Edge AI _ Kenny at A...
ASRock Industrial FDO Solutions in Action for Industrial Edge AI _ Kenny at A...ASRock Industrial FDO Solutions in Action for Industrial Edge AI _ Kenny at A...
ASRock Industrial FDO Solutions in Action for Industrial Edge AI _ Kenny at A...
 
Buy Epson EcoTank L3210 Colour Printer Online.pdf
Buy Epson EcoTank L3210 Colour Printer Online.pdfBuy Epson EcoTank L3210 Colour Printer Online.pdf
Buy Epson EcoTank L3210 Colour Printer Online.pdf
 
Powerful Start- the Key to Project Success, Barbara Laskowska
Powerful Start- the Key to Project Success, Barbara LaskowskaPowerful Start- the Key to Project Success, Barbara Laskowska
Powerful Start- the Key to Project Success, Barbara Laskowska
 
What's New in Teams Calling, Meetings and Devices April 2024
What's New in Teams Calling, Meetings and Devices April 2024What's New in Teams Calling, Meetings and Devices April 2024
What's New in Teams Calling, Meetings and Devices April 2024
 
SOQL 201 for Admins & Developers: Slice & Dice Your Org’s Data With Aggregate...
SOQL 201 for Admins & Developers: Slice & Dice Your Org’s Data With Aggregate...SOQL 201 for Admins & Developers: Slice & Dice Your Org’s Data With Aggregate...
SOQL 201 for Admins & Developers: Slice & Dice Your Org’s Data With Aggregate...
 

Rudder 3.0 and beyond

  • 1. Normation – Tous droits réservés normation.com Rudder 3.0 and beyond Jonathan Clarke jcl@normation.com @jooooooon42 (7 'o's) Nicolas CHARLES nch@normation.com @nico_charles
  • 2. Normation – Tous droits réservés normation.com Who are we? Jonathan Clarke Origins: Sysadmin, infrastructure management jcl@normation.com @jooooooon42 (7 'o's) Co-founded and work at Creators of and ncf.io Nicolas CHARLES Origins: Development nch@normation.com @nico_charles
  • 3. Normation – Tous droits réservés normation.com This talk is about Rudder Overview & History 3.0 new features Perspectives for 3.1 and beyond
  • 4. Normation – Tous droits réservés normation.com Intro: Rudder overview DesktopCloudDatacenter Smart infrastructureMobile 3. Universality – Lightweight & multi-platform agent technology 1. Simplification – Web interface, role separation 2. Compliance – Continuous checking
  • 5. Normation – Tous droits réservés normation.com Intro: Rudder release history 2013 2014 2015 Jan Apr Jul Nov Dec March July Feb 2.5 2.6 2.7 2.8 2.9 2.10 2.11 3.0 Release history Release schedule Major version (2.x, 3.x) every 3 months Minor versions (2.x.y) are strictly bug-fix only, release when needed or at minimum every month
  • 6. Normation – Tous droits réservés normation.com Rudder 3.0 Rudder 3.0 A major step forward
  • 7. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Redesigned web interface ✔ Avoid wasted space ✔ One click access to all screens ✔ Familiar Bootstrap menu bar ✔ Improved user experience ✔ Refresh data in all tables
  • 8. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Before After
  • 9. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Wasted space Wastedspace Wastedspace Useful content Pre-3.0
  • 10. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Useful content Now in 3.0
  • 11. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface One click access to all pages Pre 3.0: double menu First click Second click Now in 3.0: one menu
  • 12. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Improved user experience Pre 3.0: tabbed Directive page Now in 3.0: one menu
  • 13. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface As of 3.0: single page, improved layout Always available Save button
  • 14. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface As of 3.0: single page, improved layout
  • 15. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting ✔ Display an overview of all states for a Rule ✔ Proportional to number of nodes ✔ Proportional to number of configurations ✔ Drilldown by node or by component ✔ Display recent changes (repairs) over time ✔ List recent changes (repairs)
  • 16. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting Error Unexpected No response Applying... Success Not applicable (eg SSH on Windows) Multi-colour progress bar displayed for each rule and as a global overview
  • 17. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting Recent changesCompliance
  • 18. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Overview + drilldown Exhaustive Focus on what is relevant
  • 19. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting History of changes on nodes Keep an eye on what changed
  • 20. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Overview: dashboard
  • 21. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Reporting: behind the scenes Two compliance modes Full compliance Changes only Varies logs sent from nodes to server: Explicit “success” message vs silence means OK + regular heartbeat 10:00 ComponentA Success 10:00 ComponentB Repaired 10:05 ComponentA Success 10:05 ComponentB Success 10:10 ComponentA Success 10:10 ComponentB Success → Saves a lot of bandwidth (syslog messages) + storage (DB) 10:00 ComponentB Repaired 10:10 Heartbeat I'm alive! vs
  • 22. Normation – Tous droits réservés normation.com Rudder 3.0: Technique editor Create your own Techniques via a web interface Technique editor
  • 23. Normation – Tous droits réservés normation.com Rudder 3.0: Technique editor Builds on the ncf framework and available methods Technique editor Example of a method 66generic methods as of today
  • 24. Normation – Tous droits réservés normation.com Rudder 3.0: Node classification data Insert external data to classify nodes on key=value pairs Node classification data 1. Set key=value pairs for any nodes via the REST API See REST API documentation on http://www.rudder-project.org/rudder-api-doc/ Can be used to integrate with any third party CMDB, inventory/asset database, ...
  • 25. Normation – Tous droits réservés normation.com Rudder 3.0: Node classification data Insert external data to classify nodes on key=value pairs Node classification data 1. Set key=value pairs for any nodes via the REST API 2. View, search and group in the web interface
  • 26. Normation – Tous droits réservés normation.com Rudder 3.0: CLI Wrapper for common commands Command line interface # rudder agent Usage: rudder agent help rudder agent <command> [parameters ...] Run commands on agent. Available commands: disable forbid rudder-agent to be run by cron or service enable re-enable a disabled rudder-agent inventory force the agent to create and send a new inventory reinit re-initialise the agent to make it be seen as a new reset reset agent status and cache run force run agent promises update update promises on agent version get the agent version
  • 27. Normation – Tous droits réservés normation.com Rudder 3.0: CLI Wrapper for common commands Command line interface # rudder server debug <node_IP> # Starts a temporary cf-serverd process on a different port # and uses a firewall rule to redirect traffic from that node # to the temporary server, running in verbose mode
  • 28. Normation – Tous droits réservés normation.com Rudder 3.0: CLI Collect and centralise usage statistics to help development Usage statistics (opt-in, anonymous) "audit_log_enabled": "true", "reportscleaner_frequency": "daily", "os_name": "Debian", "uuid": "9480df7a-249c-4972-9593-648a60f769a1", "report_line_count": "16427", "expected_report_count": "118", "nodes_count": "3", "parameter_count": "1", "report_db_size": "8272 kB", "rule_count": "10", "reportscleaner_archive_ttl": "3", "os_version": "7.4", "installation_date": "2015-01-30 08:56:58.982185054 +0000", "db_size": "16 MB", "package_version": "rudder-server-root 3.0.0-wheezy0", "report_count_last_day": "156", "directive_count": "14", "reportscleaner_delete_ttl": "90", "agent_run_interval": "5", "rudder_workflow_enabled": "false” Sample statistics
  • 29. Normation – Tous droits réservés normation.com What's new in Rudder 3.0 Performance improvement Much faster interface Super fast compliance Tested with 5000+ nodes Example: List nodes page for 2000 nodes Rudder 2.11: 2 seconds Rudder 3.0: 80 ms Various other changes Package (deb/rpm) for relay servers {yum,apt-get} install rudder-server-relay systemd support ncf methods Rudder Techniques New OS support RHEL/CentOS 7 Debian 8 Run frequency by node Set run frequency from 5 minutes to 6 hours on a global schedule + override by node
  • 30. Normation – Tous droits réservés normation.com Rudder 3.1 and beyond Rudder > 3.0 Perspectives for the future
  • 31. Normation – Tous droits réservés normation.com Rudder roadmap Rudder 3.1 with API focus in March 2015 Beyond: ● Tags everywhere ● RBAC authorisations ● Parameters by tags ● Check only mode ● Better forms for Directives ● Technique editor that exposes parameters ● Add extension points ● Plugins for third party tools
  • 32. Normation – Tous droits réservés normation.com Rudder inside! Questions? Jonathan Clarke jcl@normation.com @jooooooon42 (7 'o's) Nicolas CHARLES nch@normation.com @nico_charles