SlideShare a Scribd company logo

Rudder 3.0 and beyond

Jonathan Clarke
Jonathan Clarke

This document summarizes a presentation about Rudder 3.0 and the future of Rudder. Some key highlights of Rudder 3.0 include a redesigned web interface with improved performance, new status reporting features, a technique editor, and support for classifying nodes with external data. The presentation outlines future plans for Rudder 3.1 and beyond, which include improvements to the API, role-based access controls, parameterization by tags, and additional extension points.

1 of 32
Download to read offline
Normation – Tous droits réservés normation.com Rudder 3.0 and beyond Jonathan Clarke jcl@normation.com @jooooooon42 (7 'o's) Nicolas CHARLES nch@normation.com @nico_charles
Normation – Tous droits réservés normation.com Who are we? Jonathan Clarke Origins: Sysadmin, infrastructure management jcl@normation.com @jooooooon42 (7 'o's) Co-founded and work at Creators of and ncf.io Nicolas CHARLES Origins: Development nch@normation.com @nico_charles
Normation – Tous droits réservés normation.com This talk is about Rudder Overview & History 3.0 new features Perspectives for 3.1 and beyond
Normation – Tous droits réservés normation.com Intro: Rudder overview DesktopCloudDatacenter Smart infrastructureMobile 3. Universality – Lightweight & multi-platform agent technology 1. Simplification – Web interface, role separation 2. Compliance – Continuous checking
Normation – Tous droits réservés normation.com Intro: Rudder release history 2013 2014 2015 Jan Apr Jul Nov Dec March July Feb 2.5 2.6 2.7 2.8 2.9 2.10 2.11 3.0 Release history Release schedule Major version (2.x, 3.x) every 3 months Minor versions (2.x.y) are strictly bug-fix only, release when needed or at minimum every month
Normation – Tous droits réservés normation.com Rudder 3.0 Rudder 3.0 A major step forward
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Redesigned web interface ✔ Avoid wasted space ✔ One click access to all screens ✔ Familiar Bootstrap menu bar ✔ Improved user experience ✔ Refresh data in all tables
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Before After
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Wasted space Wastedspace Wastedspace Useful content Pre-3.0
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Useful content Now in 3.0
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface One click access to all pages Pre 3.0: double menu First click Second click Now in 3.0: one menu
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Improved user experience Pre 3.0: tabbed Directive page Now in 3.0: one menu
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface As of 3.0: single page, improved layout Always available Save button
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface As of 3.0: single page, improved layout
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting ✔ Display an overview of all states for a Rule ✔ Proportional to number of nodes ✔ Proportional to number of configurations ✔ Drilldown by node or by component ✔ Display recent changes (repairs) over time ✔ List recent changes (repairs)
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting Error Unexpected No response Applying... Success Not applicable (eg SSH on Windows) Multi-colour progress bar displayed for each rule and as a global overview
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting Recent changesCompliance
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Overview + drilldown Exhaustive Focus on what is relevant
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting History of changes on nodes Keep an eye on what changed
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Overview: dashboard
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Reporting: behind the scenes Two compliance modes Full compliance Changes only Varies logs sent from nodes to server: Explicit “success” message vs silence means OK + regular heartbeat 10:00 ComponentA Success 10:00 ComponentB Repaired 10:05 ComponentA Success 10:05 ComponentB Success 10:10 ComponentA Success 10:10 ComponentB Success → Saves a lot of bandwidth (syslog messages) + storage (DB) 10:00 ComponentB Repaired 10:10 Heartbeat I'm alive! vs
Normation – Tous droits réservés normation.com Rudder 3.0: Technique editor Create your own Techniques via a web interface Technique editor
Normation – Tous droits réservés normation.com Rudder 3.0: Technique editor Builds on the ncf framework and available methods Technique editor Example of a method 66generic methods as of today
Normation – Tous droits réservés normation.com Rudder 3.0: Node classification data Insert external data to classify nodes on key=value pairs Node classification data 1. Set key=value pairs for any nodes via the REST API See REST API documentation on http://www.rudder-project.org/rudder-api-doc/ Can be used to integrate with any third party CMDB, inventory/asset database, ...
Normation – Tous droits réservés normation.com Rudder 3.0: Node classification data Insert external data to classify nodes on key=value pairs Node classification data 1. Set key=value pairs for any nodes via the REST API 2. View, search and group in the web interface
Normation – Tous droits réservés normation.com Rudder 3.0: CLI Wrapper for common commands Command line interface # rudder agent Usage: rudder agent help rudder agent <command> [parameters ...] Run commands on agent. Available commands: disable forbid rudder-agent to be run by cron or service enable re-enable a disabled rudder-agent inventory force the agent to create and send a new inventory reinit re-initialise the agent to make it be seen as a new reset reset agent status and cache run force run agent promises update update promises on agent version get the agent version
Normation – Tous droits réservés normation.com Rudder 3.0: CLI Wrapper for common commands Command line interface # rudder server debug <node_IP> # Starts a temporary cf-serverd process on a different port # and uses a firewall rule to redirect traffic from that node # to the temporary server, running in verbose mode
Normation – Tous droits réservés normation.com Rudder 3.0: CLI Collect and centralise usage statistics to help development Usage statistics (opt-in, anonymous) "audit_log_enabled": "true", "reportscleaner_frequency": "daily", "os_name": "Debian", "uuid": "9480df7a-249c-4972-9593-648a60f769a1", "report_line_count": "16427", "expected_report_count": "118", "nodes_count": "3", "parameter_count": "1", "report_db_size": "8272 kB", "rule_count": "10", "reportscleaner_archive_ttl": "3", "os_version": "7.4", "installation_date": "2015-01-30 08:56:58.982185054 +0000", "db_size": "16 MB", "package_version": "rudder-server-root 3.0.0-wheezy0", "report_count_last_day": "156", "directive_count": "14", "reportscleaner_delete_ttl": "90", "agent_run_interval": "5", "rudder_workflow_enabled": "false” Sample statistics
Normation – Tous droits réservés normation.com What's new in Rudder 3.0 Performance improvement Much faster interface Super fast compliance Tested with 5000+ nodes Example: List nodes page for 2000 nodes Rudder 2.11: 2 seconds Rudder 3.0: 80 ms Various other changes Package (deb/rpm) for relay servers {yum,apt-get} install rudder-server-relay systemd support ncf methods Rudder Techniques New OS support RHEL/CentOS 7 Debian 8 Run frequency by node Set run frequency from 5 minutes to 6 hours on a global schedule + override by node
Normation – Tous droits réservés normation.com Rudder 3.1 and beyond Rudder > 3.0 Perspectives for the future
Normation – Tous droits réservés normation.com Rudder roadmap Rudder 3.1 with API focus in March 2015 Beyond: ● Tags everywhere ● RBAC authorisations ● Parameters by tags ● Check only mode ● Better forms for Directives ● Technique editor that exposes parameters ● Add extension points ● Plugins for third party tools
Normation – Tous droits réservés normation.com Rudder inside! Questions? Jonathan Clarke jcl@normation.com @jooooooon42 (7 'o's) Nicolas CHARLES nch@normation.com @nico_charles

Recommended

Snort
SnortSnort
Snort
bala150985
 
Webserver Architecture Example
Webserver Architecture ExampleWebserver Architecture Example
Webserver Architecture Example
Ohio University
 
Rudder: what's new and what's next? Roadmap, vision and thoughts
Rudder: what's new and what's next? Roadmap, vision and thoughtsRudder: what's new and what's next? Roadmap, vision and thoughts
Rudder: what's new and what's next? Roadmap, vision and thoughts
RUDDER
 
Aeronautics presentation
Aeronautics presentationAeronautics presentation
Aeronautics presentation
Becky Blaisdell
 
Aircrafts
AircraftsAircrafts
Aircrafts
Nikhilesh Vaidya
 
Basics of Flight and Aerodynamics (Groups B/D)
Basics of Flight and Aerodynamics (Groups B/D)Basics of Flight and Aerodynamics (Groups B/D)
Basics of Flight and Aerodynamics (Groups B/D)
Logan Nielsen
 
Basic aircraft structure
Basic aircraft structureBasic aircraft structure
Basic aircraft structure
jignesh prajapati
 
Ship Rudders
Ship RuddersShip Rudders
Ship Rudders
Cyril Sudip
 

Recommended

Snort
SnortSnort
Snort
bala150985
 
Webserver Architecture Example
Webserver Architecture ExampleWebserver Architecture Example
Webserver Architecture Example
Ohio University
 
Rudder: what's new and what's next? Roadmap, vision and thoughts
Rudder: what's new and what's next? Roadmap, vision and thoughtsRudder: what's new and what's next? Roadmap, vision and thoughts
Rudder: what's new and what's next? Roadmap, vision and thoughts
RUDDER
 
Aeronautics presentation
Aeronautics presentationAeronautics presentation
Aeronautics presentation
Becky Blaisdell
 
Aircrafts
AircraftsAircrafts
Aircrafts
Nikhilesh Vaidya
 
Basics of Flight and Aerodynamics (Groups B/D)
Basics of Flight and Aerodynamics (Groups B/D)Basics of Flight and Aerodynamics (Groups B/D)
Basics of Flight and Aerodynamics (Groups B/D)
Logan Nielsen
 
Basic aircraft structure
Basic aircraft structureBasic aircraft structure
Basic aircraft structure
jignesh prajapati
 
Ship Rudders
Ship RuddersShip Rudders
Ship Rudders
Cyril Sudip
 
Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?
RUDDER
 
Monitoring as an entry point for collaboration
Monitoring as an entry point for collaborationMonitoring as an entry point for collaboration
Monitoring as an entry point for collaboration
Julien Pivotto
 
LISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF ExporterLISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
Ivan Babrou
 
Introduction to architecture exploration
Introduction to architecture explorationIntroduction to architecture exploration
Introduction to architecture exploration
Deepak Shankar
 
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
Amazon Web Services
 
Tungsten Fabric Overview
Tungsten Fabric OverviewTungsten Fabric Overview
Tungsten Fabric Overview
Michelle Holley
 
eMagic-Data Center Management System
eMagic-Data Center Management SystemeMagic-Data Center Management System
eMagic-Data Center Management SystemSandesh Sonar
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentation
Andrew Wesbecher
 
C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4
halgig
 
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
QAware GmbH
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentation
Forward Networks
 
SolarWinds Scalability for the Enterprise
SolarWinds Scalability for the EnterpriseSolarWinds Scalability for the Enterprise
SolarWinds Scalability for the Enterprise
SolarWinds
 
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Amazon Web Services
 
Network Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient networkNetwork Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient network
Cloudflare
 
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek JanikPLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PROIDEA
 
network-management Web base.ppt
network-management Web base.pptnetwork-management Web base.ppt
network-management Web base.ppt
AssadLeo1
 
WebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & ImplementationWebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & Implementation
Amir Zmora
 
From nothing to Prometheus : one year after
From nothing to Prometheus : one year afterFrom nothing to Prometheus : one year after
From nothing to Prometheus : one year after
Antoine Leroyer
 
Introduction To Cloud Computing
Introduction To Cloud ComputingIntroduction To Cloud Computing
Introduction To Cloud ComputingRinat Shagisultanov
 
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
NETWAYS
 
Interfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersInterfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert users
Jonathan Clarke
 
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Jonathan Clarke
 

More Related Content

Similar to Rudder 3.0 and beyond

Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?
RUDDER
 
Monitoring as an entry point for collaboration
Monitoring as an entry point for collaborationMonitoring as an entry point for collaboration
Monitoring as an entry point for collaboration
Julien Pivotto
 
LISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF ExporterLISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
Ivan Babrou
 
Introduction to architecture exploration
Introduction to architecture explorationIntroduction to architecture exploration
Introduction to architecture exploration
Deepak Shankar
 
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
Amazon Web Services
 
Tungsten Fabric Overview
Tungsten Fabric OverviewTungsten Fabric Overview
Tungsten Fabric Overview
Michelle Holley
 
eMagic-Data Center Management System
eMagic-Data Center Management SystemeMagic-Data Center Management System
eMagic-Data Center Management SystemSandesh Sonar
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentation
Andrew Wesbecher
 
C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4
halgig
 
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
QAware GmbH
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentation
Forward Networks
 
SolarWinds Scalability for the Enterprise
SolarWinds Scalability for the EnterpriseSolarWinds Scalability for the Enterprise
SolarWinds Scalability for the Enterprise
SolarWinds
 
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Amazon Web Services
 
Network Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient networkNetwork Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient network
Cloudflare
 
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek JanikPLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PROIDEA
 
network-management Web base.ppt
network-management Web base.pptnetwork-management Web base.ppt
network-management Web base.ppt
AssadLeo1
 
WebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & ImplementationWebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & Implementation
Amir Zmora
 
From nothing to Prometheus : one year after
From nothing to Prometheus : one year afterFrom nothing to Prometheus : one year after
From nothing to Prometheus : one year after
Antoine Leroyer
 
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
NETWAYS
 

Similar to Rudder 3.0 and beyond (20)

Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?
 
Monitoring as an entry point for collaboration
Monitoring as an entry point for collaborationMonitoring as an entry point for collaboration
Monitoring as an entry point for collaboration
 
LISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF ExporterLISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
 
Introduction to architecture exploration
Introduction to architecture explorationIntroduction to architecture exploration
Introduction to architecture exploration
 
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
 
Tungsten Fabric Overview
Tungsten Fabric OverviewTungsten Fabric Overview
Tungsten Fabric Overview
 
eMagic-Data Center Management System
eMagic-Data Center Management SystemeMagic-Data Center Management System
eMagic-Data Center Management System
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentation
 
C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4
 
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentation
 
SolarWinds Scalability for the Enterprise
SolarWinds Scalability for the EnterpriseSolarWinds Scalability for the Enterprise
SolarWinds Scalability for the Enterprise
 
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
 
Network Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient networkNetwork Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient network
 
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek JanikPLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
 
network-management Web base.ppt
network-management Web base.pptnetwork-management Web base.ppt
network-management Web base.ppt
 
WebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & ImplementationWebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & Implementation
 
From nothing to Prometheus : one year after
From nothing to Prometheus : one year afterFrom nothing to Prometheus : one year after
From nothing to Prometheus : one year after
 
Introduction To Cloud Computing
Introduction To Cloud ComputingIntroduction To Cloud Computing
Introduction To Cloud Computing
 
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
 

More from Jonathan Clarke

Interfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersInterfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert users
Jonathan Clarke
 
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Jonathan Clarke
 
What is new in CFEngine 3.6
What is new in CFEngine 3.6What is new in CFEngine 3.6
What is new in CFEngine 3.6
Jonathan Clarke
 
Automating security policies (compliance) with Rudder
Automating security policies (compliance) with RudderAutomating security policies (compliance) with Rudder
Automating security policies (compliance) with RudderJonathan Clarke
 
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéalOpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
Jonathan Clarke
 
Configuration management: automating and rationalizing server setup with CFEn...
Configuration management: automating and rationalizing server setup with CFEn...Configuration management: automating and rationalizing server setup with CFEn...
Configuration management: automating and rationalizing server setup with CFEn...
Jonathan Clarke
 
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
A tale of Disaster Recovery (Cfengine everyday, practices and tools)A tale of Disaster Recovery (Cfengine everyday, practices and tools)
A tale of Disaster Recovery (Cfengine everyday, practices and tools)Jonathan Clarke
 
LSC - Synchronizing identities @ Loadays 2010
LSC - Synchronizing identities @ Loadays 2010LSC - Synchronizing identities @ Loadays 2010
LSC - Synchronizing identities @ Loadays 2010
Jonathan Clarke
 
LDAP Synchronization Connector presentation at LDAPCon 2009
LDAP Synchronization Connector presentation at LDAPCon 2009LDAP Synchronization Connector presentation at LDAPCon 2009
LDAP Synchronization Connector presentation at LDAPCon 2009Jonathan Clarke
 
LDAP Synchronization Connector (LSC)
LDAP Synchronization Connector (LSC)LDAP Synchronization Connector (LSC)
LDAP Synchronization Connector (LSC)
Jonathan Clarke
 

More from Jonathan Clarke (10)

Interfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersInterfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert users
 
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
 
What is new in CFEngine 3.6
What is new in CFEngine 3.6What is new in CFEngine 3.6
What is new in CFEngine 3.6
 
Automating security policies (compliance) with Rudder
Automating security policies (compliance) with RudderAutomating security policies (compliance) with Rudder
Automating security policies (compliance) with Rudder
 
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéalOpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
 
Configuration management: automating and rationalizing server setup with CFEn...
Configuration management: automating and rationalizing server setup with CFEn...Configuration management: automating and rationalizing server setup with CFEn...
Configuration management: automating and rationalizing server setup with CFEn...
 
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
A tale of Disaster Recovery (Cfengine everyday, practices and tools)A tale of Disaster Recovery (Cfengine everyday, practices and tools)
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
 
LSC - Synchronizing identities @ Loadays 2010
LSC - Synchronizing identities @ Loadays 2010LSC - Synchronizing identities @ Loadays 2010
LSC - Synchronizing identities @ Loadays 2010
 
LDAP Synchronization Connector presentation at LDAPCon 2009
LDAP Synchronization Connector presentation at LDAPCon 2009LDAP Synchronization Connector presentation at LDAPCon 2009
LDAP Synchronization Connector presentation at LDAPCon 2009
 
LDAP Synchronization Connector (LSC)
LDAP Synchronization Connector (LSC)LDAP Synchronization Connector (LSC)
LDAP Synchronization Connector (LSC)
 

Recently uploaded

Monitoring Java Application Security with JDK Tools and JFR Events
Monitoring Java Application Security with JDK Tools and JFR EventsMonitoring Java Application Security with JDK Tools and JFR Events
Monitoring Java Application Security with JDK Tools and JFR Events
Ana-Maria Mihalceanu
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish Caching
Thijs Feryn
 
Assure Contact Center Experiences for Your Customers With ThousandEyes
Assure Contact Center Experiences for Your Customers With ThousandEyesAssure Contact Center Experiences for Your Customers With ThousandEyes
Assure Contact Center Experiences for Your Customers With ThousandEyes
ThousandEyes
 
How world-class product teams are winning in the AI era by CEO and Founder, P...
How world-class product teams are winning in the AI era by CEO and Founder, P...How world-class product teams are winning in the AI era by CEO and Founder, P...
How world-class product teams are winning in the AI era by CEO and Founder, P...
Product School
 
Introduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - CybersecurityIntroduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - Cybersecurity
mikeeftimakis1
 
A tale of scale & speed: How the US Navy is enabling software delivery from l...
A tale of scale & speed: How the US Navy is enabling software delivery from l...A tale of scale & speed: How the US Navy is enabling software delivery from l...
A tale of scale & speed: How the US Navy is enabling software delivery from l...
sonjaschweigert1
 
Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?
Nexer Digital
 
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Thierry Lestable
 
DevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA ConnectDevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA Connect
Kari Kakkonen
 
Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
ThousandEyes
 
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdfSmart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
91mobiles
 
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Product School
 
Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........
Alison B. Lowndes
 
The Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and SalesThe Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and Sales
Laura Byrne
 
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdfFIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
OnBoard
 
UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3
DianaGray10
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
DianaGray10
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance
 
By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024
Pierluigi Pugliese
 

Recently uploaded (20)

Monitoring Java Application Security with JDK Tools and JFR Events
Monitoring Java Application Security with JDK Tools and JFR EventsMonitoring Java Application Security with JDK Tools and JFR Events
Monitoring Java Application Security with JDK Tools and JFR Events
 
Accelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish CachingAccelerate your Kubernetes clusters with Varnish Caching
Accelerate your Kubernetes clusters with Varnish Caching
 
Assure Contact Center Experiences for Your Customers With ThousandEyes
Assure Contact Center Experiences for Your Customers With ThousandEyesAssure Contact Center Experiences for Your Customers With ThousandEyes
Assure Contact Center Experiences for Your Customers With ThousandEyes
 
How world-class product teams are winning in the AI era by CEO and Founder, P...
How world-class product teams are winning in the AI era by CEO and Founder, P...How world-class product teams are winning in the AI era by CEO and Founder, P...
How world-class product teams are winning in the AI era by CEO and Founder, P...
 
Introduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - CybersecurityIntroduction to CHERI technology - Cybersecurity
Introduction to CHERI technology - Cybersecurity
 
A tale of scale & speed: How the US Navy is enabling software delivery from l...
A tale of scale & speed: How the US Navy is enabling software delivery from l...A tale of scale & speed: How the US Navy is enabling software delivery from l...
A tale of scale & speed: How the US Navy is enabling software delivery from l...
 
Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?Elizabeth Buie - Older adults: Are we really designing for our future selves?
Elizabeth Buie - Older adults: Are we really designing for our future selves?
 
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...
 
DevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA ConnectDevOps and Testing slides at DASA Connect
DevOps and Testing slides at DASA Connect
 
Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
 
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdfSmart TV Buyer Insights Survey 2024 by 91mobiles.pdf
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf
 
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
 
Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........
 
The Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and SalesThe Art of the Pitch: WordPress Relationships and Sales
The Art of the Pitch: WordPress Relationships and Sales
 
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdfFIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
 
UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
 
By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024
 

Rudder 3.0 and beyond

  • 1. Normation – Tous droits réservés normation.com Rudder 3.0 and beyond Jonathan Clarke jcl@normation.com @jooooooon42 (7 'o's) Nicolas CHARLES nch@normation.com @nico_charles
  • 2. Normation – Tous droits réservés normation.com Who are we? Jonathan Clarke Origins: Sysadmin, infrastructure management jcl@normation.com @jooooooon42 (7 'o's) Co-founded and work at Creators of and ncf.io Nicolas CHARLES Origins: Development nch@normation.com @nico_charles
  • 3. Normation – Tous droits réservés normation.com This talk is about Rudder Overview & History 3.0 new features Perspectives for 3.1 and beyond
  • 4. Normation – Tous droits réservés normation.com Intro: Rudder overview DesktopCloudDatacenter Smart infrastructureMobile 3. Universality – Lightweight & multi-platform agent technology 1. Simplification – Web interface, role separation 2. Compliance – Continuous checking
  • 5. Normation – Tous droits réservés normation.com Intro: Rudder release history 2013 2014 2015 Jan Apr Jul Nov Dec March July Feb 2.5 2.6 2.7 2.8 2.9 2.10 2.11 3.0 Release history Release schedule Major version (2.x, 3.x) every 3 months Minor versions (2.x.y) are strictly bug-fix only, release when needed or at minimum every month
  • 6. Normation – Tous droits réservés normation.com Rudder 3.0 Rudder 3.0 A major step forward
  • 7. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Redesigned web interface ✔ Avoid wasted space ✔ One click access to all screens ✔ Familiar Bootstrap menu bar ✔ Improved user experience ✔ Refresh data in all tables
  • 8. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Before After
  • 9. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Wasted space Wastedspace Wastedspace Useful content Pre-3.0
  • 10. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Useful content Now in 3.0
  • 11. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface One click access to all pages Pre 3.0: double menu First click Second click Now in 3.0: one menu
  • 12. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Improved user experience Pre 3.0: tabbed Directive page Now in 3.0: one menu
  • 13. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface As of 3.0: single page, improved layout Always available Save button
  • 14. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface As of 3.0: single page, improved layout
  • 15. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting ✔ Display an overview of all states for a Rule ✔ Proportional to number of nodes ✔ Proportional to number of configurations ✔ Drilldown by node or by component ✔ Display recent changes (repairs) over time ✔ List recent changes (repairs)
  • 16. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting Error Unexpected No response Applying... Success Not applicable (eg SSH on Windows) Multi-colour progress bar displayed for each rule and as a global overview
  • 17. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting Recent changesCompliance
  • 18. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Overview + drilldown Exhaustive Focus on what is relevant
  • 19. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting History of changes on nodes Keep an eye on what changed
  • 20. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Overview: dashboard
  • 21. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Reporting: behind the scenes Two compliance modes Full compliance Changes only Varies logs sent from nodes to server: Explicit “success” message vs silence means OK + regular heartbeat 10:00 ComponentA Success 10:00 ComponentB Repaired 10:05 ComponentA Success 10:05 ComponentB Success 10:10 ComponentA Success 10:10 ComponentB Success → Saves a lot of bandwidth (syslog messages) + storage (DB) 10:00 ComponentB Repaired 10:10 Heartbeat I'm alive! vs
  • 22. Normation – Tous droits réservés normation.com Rudder 3.0: Technique editor Create your own Techniques via a web interface Technique editor
  • 23. Normation – Tous droits réservés normation.com Rudder 3.0: Technique editor Builds on the ncf framework and available methods Technique editor Example of a method 66generic methods as of today
  • 24. Normation – Tous droits réservés normation.com Rudder 3.0: Node classification data Insert external data to classify nodes on key=value pairs Node classification data 1. Set key=value pairs for any nodes via the REST API See REST API documentation on http://www.rudder-project.org/rudder-api-doc/ Can be used to integrate with any third party CMDB, inventory/asset database, ...
  • 25. Normation – Tous droits réservés normation.com Rudder 3.0: Node classification data Insert external data to classify nodes on key=value pairs Node classification data 1. Set key=value pairs for any nodes via the REST API 2. View, search and group in the web interface
  • 26. Normation – Tous droits réservés normation.com Rudder 3.0: CLI Wrapper for common commands Command line interface # rudder agent Usage: rudder agent help rudder agent <command> [parameters ...] Run commands on agent. Available commands: disable forbid rudder-agent to be run by cron or service enable re-enable a disabled rudder-agent inventory force the agent to create and send a new inventory reinit re-initialise the agent to make it be seen as a new reset reset agent status and cache run force run agent promises update update promises on agent version get the agent version
  • 27. Normation – Tous droits réservés normation.com Rudder 3.0: CLI Wrapper for common commands Command line interface # rudder server debug <node_IP> # Starts a temporary cf-serverd process on a different port # and uses a firewall rule to redirect traffic from that node # to the temporary server, running in verbose mode
  • 28. Normation – Tous droits réservés normation.com Rudder 3.0: CLI Collect and centralise usage statistics to help development Usage statistics (opt-in, anonymous) "audit_log_enabled": "true", "reportscleaner_frequency": "daily", "os_name": "Debian", "uuid": "9480df7a-249c-4972-9593-648a60f769a1", "report_line_count": "16427", "expected_report_count": "118", "nodes_count": "3", "parameter_count": "1", "report_db_size": "8272 kB", "rule_count": "10", "reportscleaner_archive_ttl": "3", "os_version": "7.4", "installation_date": "2015-01-30 08:56:58.982185054 +0000", "db_size": "16 MB", "package_version": "rudder-server-root 3.0.0-wheezy0", "report_count_last_day": "156", "directive_count": "14", "reportscleaner_delete_ttl": "90", "agent_run_interval": "5", "rudder_workflow_enabled": "false” Sample statistics
  • 29. Normation – Tous droits réservés normation.com What's new in Rudder 3.0 Performance improvement Much faster interface Super fast compliance Tested with 5000+ nodes Example: List nodes page for 2000 nodes Rudder 2.11: 2 seconds Rudder 3.0: 80 ms Various other changes Package (deb/rpm) for relay servers {yum,apt-get} install rudder-server-relay systemd support ncf methods Rudder Techniques New OS support RHEL/CentOS 7 Debian 8 Run frequency by node Set run frequency from 5 minutes to 6 hours on a global schedule + override by node
  • 30. Normation – Tous droits réservés normation.com Rudder 3.1 and beyond Rudder > 3.0 Perspectives for the future
  • 31. Normation – Tous droits réservés normation.com Rudder roadmap Rudder 3.1 with API focus in March 2015 Beyond: ● Tags everywhere ● RBAC authorisations ● Parameters by tags ● Check only mode ● Better forms for Directives ● Technique editor that exposes parameters ● Add extension points ● Plugins for third party tools
  • 32. Normation – Tous droits réservés normation.com Rudder inside! Questions? Jonathan Clarke jcl@normation.com @jooooooon42 (7 'o's) Nicolas CHARLES nch@normation.com @nico_charles