Are you still using CFEngine2? Learn why and how to upgrade to CFEngine3. These slides accompanied our webinar "Upgrading From CFEngine2 To CFEngine3" where we covered the improvements and changes made from CFEngine 2 to CFEngine 3, discussed the proper use of the conversion tool that has been available in the past, and provided a thorough explanation of the proper migration procedure. We also showed examples of policy conversion from CFEngine 2 to CFEngine 3. A recording of the webinar can found at http://youtu.be/OSTtcg-OQxc
The Top 5 Practices of a Highly Successful ChangeMan ZMF AdministratorSerena Software
ChangeMan ZMF is the most comprehensive and fully integrated solution for software change, configuration, and release management on z/OS. It can scale to manage hundreds of enterprise applications ensuring the right software change gets deployed to the right environment in a secure and reliable way. ChangeMan ZMF's flexibility and rich functionality can be a challenge for the novice ChangeMan Administrator. Join us as Tom Mavor, Sr Serena Consultant and long time ChangeMan ZMF expert, shares the top 5 essential practices for every ChangeMan ZMF administrator.
What's the deal with Apple's Low Latency HLS (ALHLS)?Zac Shenker
Talk from San Francisco Video Technology Meetup on June 27th 2019. This talk covers an overview of the recently announced specification by Apple at WWDC on Low Latency Live Streaming with HLS.
In this session, you'll learn how to discover devices into Network Configuration Manager using device templates, proper ways of adding credentials, configuration backup's and its importance, and disaster recovery.
Upgrading Your System: A Telco User PerspectivOPNFV
The presentation gives an overview about upgrade scenarios in an openstack/OPNFV based telco environment. The upgrade scenarios cover all layers of upgrade, i.e. hardware, base software on compute and control nodes, OpenStack services, SDN components, applications, both stateful and stateless. It shows OpenStack's role in such upgrade scenarios and the need of automation when doing such upgrades in a telco network.
Deprecated Removed Features in cPanel & WHMHTS Hosting
Certain features are often removed from cPanel & WHM in order to ensure the best user experience. The “deprecated” features are those that are no longer recommended and usually are planned to be removed from cPanel & WHM. The “removed” features refer to those features that have been removed from the codebase of cPanel & WHM.
The Top 5 Practices of a Highly Successful ChangeMan ZMF AdministratorSerena Software
ChangeMan ZMF is the most comprehensive and fully integrated solution for software change, configuration, and release management on z/OS. It can scale to manage hundreds of enterprise applications ensuring the right software change gets deployed to the right environment in a secure and reliable way. ChangeMan ZMF's flexibility and rich functionality can be a challenge for the novice ChangeMan Administrator. Join us as Tom Mavor, Sr Serena Consultant and long time ChangeMan ZMF expert, shares the top 5 essential practices for every ChangeMan ZMF administrator.
What's the deal with Apple's Low Latency HLS (ALHLS)?Zac Shenker
Talk from San Francisco Video Technology Meetup on June 27th 2019. This talk covers an overview of the recently announced specification by Apple at WWDC on Low Latency Live Streaming with HLS.
In this session, you'll learn how to discover devices into Network Configuration Manager using device templates, proper ways of adding credentials, configuration backup's and its importance, and disaster recovery.
Upgrading Your System: A Telco User PerspectivOPNFV
The presentation gives an overview about upgrade scenarios in an openstack/OPNFV based telco environment. The upgrade scenarios cover all layers of upgrade, i.e. hardware, base software on compute and control nodes, OpenStack services, SDN components, applications, both stateful and stateless. It shows OpenStack's role in such upgrade scenarios and the need of automation when doing such upgrades in a telco network.
Deprecated Removed Features in cPanel & WHMHTS Hosting
Certain features are often removed from cPanel & WHM in order to ensure the best user experience. The “deprecated” features are those that are no longer recommended and usually are planned to be removed from cPanel & WHM. The “removed” features refer to those features that have been removed from the codebase of cPanel & WHM.
Nagios Conference 2012 - Scott Wilkerson - Passive Monitoring Solutions For R...Nagios
Scott Wilkerson presentation on using Nagios to monitor remote networks (NRDS & Reflector).
The presentation was given during the Nagios World Conference North America held Sept 25-28th, 2012 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/nwcna
Nagios Conference 2014 - Jim Prins - Passive Monitoring with NagiosNagios
Jim Prins's presentation on Passive Monitoring with Nagios.
The presentation was given during the Nagios World Conference North America held Oct 13th - Oct 16th, 2014 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/conference
This presentation includes:
- ZMF 7.1.3 First Impressions
- New, competitive migration utility
- Looking at what’s hot for 7.2
- Share in Boston and xChange in Miami Beach
- Important changes at Serena
XPDDS18: Real Time in XEN on ARM - Andrii Anisov, EPAM Systems Inc.The Linux Foundation
Currently, several initiatives promote XEN hypervisor into the automotive area as a base of complex virtualized systems. To support those initiatives and plunge into the automotive world XEN should fit at least two requirements: it should be appropriately certified and to be able to host a security domain. Leaving behind certification topic, here we focus on security domain hosting capability of XEN. Particularly on keeping RT guarantees for the specific domain.
This talk is a presentation of the investigation on a XEN hypervisor applicability to building a multi-OS system with real-time guarantees being kept for one of the hosted OSes.
During this presentation following topics would be outlined:
- experimental setup
- experimental use-cases and their motivation
- received results and discovered issues
- solutions and mitigation measures for discovered issues
XPDDS17: Shared Virtual Memory Virtualization Implementation on Xen - Yi Liu,...The Linux Foundation
Shared Virtual Memory (SVM) is a VT-d feature that allows sharing application address space with the I/O device. The feature works with the PCI sig Process Address Space ID (PASID). With SVM, programmer gets a consistent view of memory across host application and device, avoids pining or copying overheads. We have been working on supporting SVM in Xen to enable SVM usage in guest if a SVM capable device is assigned. e.g. assign IGD to a guest, applications like OpenCL would benefit if SVM is supported in guest. SVM virtualization requires exposing a virtual VT-d to guest. In this discussion, Yi would update the latest SVM virtualization implementation and foresee the future work about supporting SVM and IOVA a single virtual VT-d.
Nagios Conference 2011 - Mike Weber - Training: Reducing Nagios Server Load ...Nagios
Mike Weber's training class on using mod-german to reduce the load on a Nagios monitoring server. The training session was held during the Nagios World Conference North America held Sept 27-29th, 2011 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/nwcna
In this session, you'll learn how to discover devices into Network Configuration Manager using device templates, proper ways of adding credentials, configuration backup's and its importance, and disaster recovery.
BKK16-504 Running Linux in EL2 VirtualizationLinaro
Running Linux in EL2 offers potentially important performance benefits for running VMs at the cost of more complicated low-level code paths in the kernel and worse performance for userspace applications. This talk explores the required actions taken so far, an analysis of the benefits, and discusses challenges with upstreaming this approach.
This talk will explain the reasoning behind the release cycle changes, and how overcoming the challenges faced in the previous practice of automated testing has introduced new benefits and wider acceptance from the wider community.
Nagios Conference 2011 - Mike Guthrie - Distributed Monitoring With NagiosNagios
Mike Guthrie's presentation on distributed monitoring solutions for Nagios. The presentation was given during the Nagios World Conference North America held Sept 27-29th, 2011 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/nwcna
This is the document which explain the step by step procedure to upgrade PowerVC from 1.3.0.2 to 1.3.2.0. I've added useful information in the documents.
Cfengine presentation at the RMLL 2010 in Bordeaux. This presentation focuses on the reasons for configuration management, and how Cfengine addresses this need.
Learn how to avoid downtime by tracking system drifts, how to increase the robustness and security of your system, and make sure you adhere to compliance standards using CFEngine. This slide deck accompanied our "Getting Started with CFEngine" webinar, where we covered how to achieve all those benefits using CFEngine policies, promises, and sketches. Use the examples in these slides to start your own CFEngine implementation. A recording of the webinar can be found at http://www.youtube.com/watch?v=riMkdQKBI0M&feature=share&list=UUAiKge7NwhuWi-KNKt3U4HA
Nagios Conference 2012 - Scott Wilkerson - Passive Monitoring Solutions For R...Nagios
Scott Wilkerson presentation on using Nagios to monitor remote networks (NRDS & Reflector).
The presentation was given during the Nagios World Conference North America held Sept 25-28th, 2012 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/nwcna
Nagios Conference 2014 - Jim Prins - Passive Monitoring with NagiosNagios
Jim Prins's presentation on Passive Monitoring with Nagios.
The presentation was given during the Nagios World Conference North America held Oct 13th - Oct 16th, 2014 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/conference
This presentation includes:
- ZMF 7.1.3 First Impressions
- New, competitive migration utility
- Looking at what’s hot for 7.2
- Share in Boston and xChange in Miami Beach
- Important changes at Serena
XPDDS18: Real Time in XEN on ARM - Andrii Anisov, EPAM Systems Inc.The Linux Foundation
Currently, several initiatives promote XEN hypervisor into the automotive area as a base of complex virtualized systems. To support those initiatives and plunge into the automotive world XEN should fit at least two requirements: it should be appropriately certified and to be able to host a security domain. Leaving behind certification topic, here we focus on security domain hosting capability of XEN. Particularly on keeping RT guarantees for the specific domain.
This talk is a presentation of the investigation on a XEN hypervisor applicability to building a multi-OS system with real-time guarantees being kept for one of the hosted OSes.
During this presentation following topics would be outlined:
- experimental setup
- experimental use-cases and their motivation
- received results and discovered issues
- solutions and mitigation measures for discovered issues
XPDDS17: Shared Virtual Memory Virtualization Implementation on Xen - Yi Liu,...The Linux Foundation
Shared Virtual Memory (SVM) is a VT-d feature that allows sharing application address space with the I/O device. The feature works with the PCI sig Process Address Space ID (PASID). With SVM, programmer gets a consistent view of memory across host application and device, avoids pining or copying overheads. We have been working on supporting SVM in Xen to enable SVM usage in guest if a SVM capable device is assigned. e.g. assign IGD to a guest, applications like OpenCL would benefit if SVM is supported in guest. SVM virtualization requires exposing a virtual VT-d to guest. In this discussion, Yi would update the latest SVM virtualization implementation and foresee the future work about supporting SVM and IOVA a single virtual VT-d.
Nagios Conference 2011 - Mike Weber - Training: Reducing Nagios Server Load ...Nagios
Mike Weber's training class on using mod-german to reduce the load on a Nagios monitoring server. The training session was held during the Nagios World Conference North America held Sept 27-29th, 2011 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/nwcna
In this session, you'll learn how to discover devices into Network Configuration Manager using device templates, proper ways of adding credentials, configuration backup's and its importance, and disaster recovery.
BKK16-504 Running Linux in EL2 VirtualizationLinaro
Running Linux in EL2 offers potentially important performance benefits for running VMs at the cost of more complicated low-level code paths in the kernel and worse performance for userspace applications. This talk explores the required actions taken so far, an analysis of the benefits, and discusses challenges with upstreaming this approach.
This talk will explain the reasoning behind the release cycle changes, and how overcoming the challenges faced in the previous practice of automated testing has introduced new benefits and wider acceptance from the wider community.
Nagios Conference 2011 - Mike Guthrie - Distributed Monitoring With NagiosNagios
Mike Guthrie's presentation on distributed monitoring solutions for Nagios. The presentation was given during the Nagios World Conference North America held Sept 27-29th, 2011 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/nwcna
This is the document which explain the step by step procedure to upgrade PowerVC from 1.3.0.2 to 1.3.2.0. I've added useful information in the documents.
Cfengine presentation at the RMLL 2010 in Bordeaux. This presentation focuses on the reasons for configuration management, and how Cfengine addresses this need.
Learn how to avoid downtime by tracking system drifts, how to increase the robustness and security of your system, and make sure you adhere to compliance standards using CFEngine. This slide deck accompanied our "Getting Started with CFEngine" webinar, where we covered how to achieve all those benefits using CFEngine policies, promises, and sketches. Use the examples in these slides to start your own CFEngine implementation. A recording of the webinar can be found at http://www.youtube.com/watch?v=riMkdQKBI0M&feature=share&list=UUAiKge7NwhuWi-KNKt3U4HA
Getting Started With CFEngine - Updated VersionCFEngine
Learn how to avoid downtime by tracking system drifts, how to increase the robustness and security of your system, and make sure you adhere to compliance standards using CFEngine. This slide deck accompanied our "Getting Started with CFEngine" webinar, where we covered how to achieve all those benefits using CFEngine policies, promises, and sketches. Use the examples in these slides to start your own CFEngine implementation. A recording of the webinar can be found at http://youtu.be/i82tPVpQcfc
Symfony Camp 2013 UA.
Continuous Integration and Automated Deployments for Symfony-based projects
P.S. Original PPTX presentation contains a lot of notes
Setting up your Multi Engine Environment - Apache Railo and ColdFusionGavin Pickin
Presented at cf.Objective() May 2014.
More info and resources related to presentation available here
http://www.gpickin.com/cfo2014/
Description of Target Audience
Are you a developer looking to setup Multiple CFML Engines in your Development or Server Environment, and after reading all of the different blogs out there, just want a walk through, to help clear things up, well, this session is for you.
Assumed Knowledge
None required, although basic installation / configuration or a web server and cfml engine would be easier to follow along.
Objective of the Topic
To give the audience all the knowledge and resources they need to be able to go home and install their own multiple cfml engine environment.
This topic will help walk the audience through dos and don'ts, and with a step by step on how to get Apache, Railo and Coldfusion to all play nicely together. There are many blogs out there showing users how to set up one engine, or another, but this session will help clear up the process. We will install Apache and connect to Coldfusion, Railo and a Railo Cluster, and install a small App to help manage the Websites, Apache, and Connectors, to save you diving into the CONF files continuously.
Why am I qualified to Present
I have been programming Coldfusion for over 14 years, and having been Team Lead and responsible for Server Install, Maint and Configuration for the last 13 years at 2 companies, I have been involved with the day to day coding in Coldfusion, but also the one in the firing line if Coldfusion server is not performing as required.
Recently my team and I have undertaken a migration Project of 100+ CFML websites (varying types and age), in which testing multiple CFML engines was required, I setup our Dev Staging and Production servers, as well as our Local Developer environments.
I built a couple of tools to help manage the setup, which I will share with the audience.
What Will the Audience Learn
- Basic Apache Config
- How to Install Coldfusion and extract the Connector
- How to Install Railo (instances) and extract the Connector
- How to Setup and Connect to a Railo Cluster
- How to edit the Apache and Tomcat Conf files to make them easier to maintain
- How to use my small App to Manage the Apache / Tomcat configurations
Video and slides synchronized, mp3 and slide download available at URL https://bit.ly/2y2yPiS.
Colin McCabe talks about the ongoing effort to replace the use of Zookeeper in Kafka: why they want to do it and how it will work. He discusses the limitations they have found and how Kafka benefits both in terms of stability and scalability by bringing consensus in house. He talks about their progress, what work is remaining, and how contributors can help. Filmed at qconsf.com.
Colin McCabe is a Kafka committer at Confluent, working on the scalability and extensibility of Kafka. Previously, he worked on the Hadoop Distributed Filesystem and the Ceph Filesystem.
The CFEngine Roadshow @ITGilde.
Live and interactive demonstration of the configuration and deployment of Webservices like Jenkins and Hudson on real VM's.
The attendees will deploy their own Webservices on their prepared VM's.
В продолжение темы непрерывной интеграции, Макс расскажет о своем подходе организации непрерывной интеграции и деплоймента в Symfony проектах. Рассказ включает следующие темы:
- Управления зависимостями
- Процесс и инструменты для сборки
- Сервера непрерывной интеграции и в частности Jenkins, плагины к нему, jobs
- Процесс разработки в git
- Процесс выгрузки релиза
- Миграция БД
- Откат релиза
Brad wood - 5 CommandBox Modules You Should Be Using [Into The Box 2020]Ortus Solutions, Corp
CommandBox has a lot of features out of the box so to speak, but it can also be extended via a modular architecture. We'll cover the top 5 modules you need to be using in order to increase your productivity and get the most out of CommandBox. Most of these you can install while you watch the session to start playing with.
An Introduction to eBPF (and cBPF). Topics covered include history, implementation, program types & maps. Also gives a brief introduction to XDP and DPDK
Development of a Cisco ACI device package for NGINX as a Load-BalancerFabrice Servais
This presentation summarises the development of a Cisco ACI device package for NGINX as a Load-Balancer, made as a proof-of-concept during an internship at Cisco.
Want to see the device package and its source code? Check out these Github repositories:
https://github.com/FServais/NGINX-Device-Package
https://github.com/FServais/NGINX-Agent
Similar to Upgrading from CFEngine2 to CFEngine3 - Webinar Slides (20)
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdfPeter Spielvogel
Building better applications for business users with SAP Fiori.
• What is SAP Fiori and why it matters to you
• How a better user experience drives measurable business benefits
• How to get started with SAP Fiori today
• How SAP Fiori elements accelerates application development
• How SAP Build Code includes SAP Fiori tools and other generative artificial intelligence capabilities
• How SAP Fiori paves the way for using AI in SAP apps
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
2. Agenda
• The Benefits of Upgrading
• What’s New in CFEngine 3
• Promise Theory and How It Drives CFEngine 3
• Planning your Upgrade
• Policy Conversion Methods
• System Upgrade Methods
• Q&A
3. Why Upgrade?
•
Simplifies and extends CFEngine 2
•
More consistent in syntax and behavior
•
Does not require "under the hood" programming to
extend the language – up to 10x less code
•
Does not hard-code configuration details
•
Enables greater agility; 5 minute update default
•
Provides tools for debugging and testing
•
Adds native support and integration
4. What’s new in CFEngine 3?
• Native Support and Integration
• Standard Integration
• Package Management
• Enhanced Service Management
• Database
• Virtualization
• Enterprise Extensions
• Windows support
• LDAP and Active Directory
• Design Center
• GUI Reporting
5. What’s New in CFEngine 3?
• Language Enhancements
• Bodies and Bundles
body common control
{
bundlesequence => { "test" };
}
bundle agent test
{
reports:
cfengine_3::
"Hello world!";
}
6. What’s New in CFEngine 3?
• Language Enhancements
• Standard Library
/var/cfengine/inputs/cfengine_stdlib.cf
• Arrays and Lists
• Pattern matching and Iteration
• Comments and Handles
7. CFEngine Enterprise - Mission Portal GUI
• Features
• Auditing and Compliance
• Monitoring
• Reporting
• REST API
• Design Center
• Inventory management
8. Promise Theory and CFEngine 3
• Promise Theory
Voluntary cooperation between individual, autonomous
actors or agents who publish their intentions to one
another in the form of promises
-- Mark Burgess
9. Promise Theory - Basic Concepts
• Promise Theory: Applied
• Promises are fundamental statements
Set perms on /etc/passwd
Use latest Apache Package
• A policy is a collection of promises
• Desired state is maintained through policies
• Updates are pulled autonomously
10. Notable Differences – CFEngine 3
• Connections
• Trust relationships are established by design
• Bootstrapping – The process of binding a client to the
hub or policy server
• Key exchange – managed by CF3
• Policy Organization
• Policies and bundle references are located on all
bootstrapped systems
• Managed by the promises.cf
12. CFEngine 2 Upgrade Preparation
• Identify peer systems
• Consult documentation
• From Policy Server command line:
cfshow -s
IP + 192.168.1.101 192.168.1.101 [Tue Jan 23 16:13] not seen for (6.42) hrs
IP - 192.168.1.101 192.168.1.101 [Tue Jan 23 16:13] not seen for (6.42) hrs
cat <path>/cfrun.hosts
• When all else fails, scripting is your friend
13. CFEngine 2 Upgrade Preparation
• Catalog Existing Policies
• Where are they?
• Source control?
• Local inputs?
• Local hosts?
14. CFEngine 2 Policy Conversion
• Methods
• Functional translation
• What problem does it solve?
• Direct translation
• Line for line
• Be flexible!
• Let the policy be your guide
15. CFEngine 2 Policy Conversion
• Functional Translation Method
• Holistic viewpoint – the Big Picture approach
• Opportunity for improvement
• Recommended conversion strategy
16. CFEngine 2 Policy Conversion
• Direct Translation Method
• Direct language translation
• Translation guide:
http://cfengine.com/manuals/cf3-upgrade.html
• Time consuming
• Missed opportunities
17. CFEngine 2 Policy Conversion: CF2 Processes Policy
processes:
"inetd"
signal=hup
"bootp"
signal=kill
exclude=rpc.bootparamd
"cfservd"
restart "/usr/local/sbin/cfservd"
useshell=false
# matches=>6 warn number of matches is greater than or equal to 6
# matches=1 warn if not exactly 1 matching process
# matches=<2 warn if there are less than or equal to 2 matching processes
18. CFEngine 2 Direct Conversion: CF3 Processes Policy
processes:
"inetd"
signals => { "hup" };
"bootp"
signals => { "kill" },
process_select => exclude_procs(".*rpc.bootparamd.*");
"cf-serverd"
restart_class => "start_cfserverd";
# process_count => check_range(cfserv,6,inf); warn number of matches is >= equal to 6
# process_count => check_range(cfserv,1,1); warn if not exactly 1 matching process
# process_count => check_range(cfserv,0,2); warn if there are =< to 2 matching processes
commands:
start_cfserverd::
"/usr/local/sbin/cf-serverd";
reports:
cfserv_out_of_range::
"cf-serverd is out of control!!";
22. CFEngine 2 Policy Conversion
• Tips and Tricks
• Install CFEngine 3 in a test environment
• Safety first
• Start small
• How would you eat an elephant?
• Focus on the similarities
• The language may be different, but the core concepts remain
23. CFEngine 2 Policy Conversion
• Tips and Tricks
• Convert CF2 policies to bundles; not standalone files
• CFEngine 3 is a different animal
• Client connection and control activities: Handled
• Part of the initial bootstrap process
• The promises.cf file controls automated activity
• Bundles referenced in the bundlesequence stanza
• Input bundle files are referenced in the inputs stanza
24. CFEngine Conversion Tool
•
Learning tool or killer utility?
• Learning tool
• Requires cleanup; but helpful in learning the language
• Location: https://github.com/cfengine/cf22cf3
• Zip file containing code:
https://github.com/cfengine/cf22cf3/archive/master.zip
• May also clone via HTTPS, SSH, or Subversion.
25. CFEngine Conversion Tool - Setup
• Pre-requisite and Download Instructions
• This example uses the CentOS 5 distribution
• Pre-requisite work:
yum groupinstall "Development tools"
yum install db4-devel
yum install openssl-devel
• Download from GIT:
https://github.com/cfengine/cf22cf3|
• Download cf22cf3-master.zip, or if you have a
GIT/SVN repo set up locally, clone it
26. CFEngine Conversion Tool - Setup
• Manual Compilation
• Create a compilation area on a local system
mkdir /sandbox
• Copy zip to compilation area and unpack
cp cf22cf3-master.zip /sandbox
cd /sandbox
unzip cf22cf3-master.zip
cd cf22cf3-master
chmod 755 configure
28. CFEngine Conversion Tool - Usage
• Usage
Cfengine Conversion Utility
1.0.0
Free Software Foundation 1994Donated by Mark Burgess, Oslo University College, Norway
Options:
--file
--variables
--server
--bundle
(-f)
(-v)
(-s)
(-b)
Debug levels: 1=parsing, 2=running, 3=summary, 4=expression eval
Bug reports to bug-cfengine@cfengine.org
General help to help-cfengine@cfengine.org
Info & fixes at http://www.cfengine.org
29. CFEngine Conversion Tool - Example
• Convert CFE2 policy file to a CFE3 bundle :
• Create a CFEngine 2 policy file in /tmp
( We’ll use the policy example in slide 21: cf2_file_op.cf )
• Convert to a bundle and pipe the bundle to stdout
cfconvert -f /tmp/cf2_file_op.cf
-b
• Convert to a bundle and pipe to a file
( Save the converted file as cf3_file_op.cf )
cfconvert -f /tmp/cf2_file_op.cf -b > /tmp/cf3_file_op.cf
30. CFEngine 2 Upgrade Plan
• In Place Upgrade Overview
• CF2 and CF3 designed to be interoperable
• Replace CF2 Policies at your pace
32. CFEngine Upgrade Plan
•
In Place Upgrade Steps
•
Backup CFEngine 2 policies and inputs repo
•
Install the CFEngine 3 software on a local host
rpm -ivh cfengine-community-3.2.1-.el5.x86_64.rpm
•
Copy newly installed /var/cfengine/inputs files to your CF2 master
update repository
•
Remove any rules to reinstall CFEngine 2 or add cfexecd or cfagent
to crontabs
•
Remove cfexecd from start up processes
chkconfig cfexecd off
chkconfig --del cfexecd
33. CFEngine Upgrade Plan
•
In Place Upgrade Steps
•
Change directory to the inputs directory
cd /var/cfengine/inputs
•
Edit the update.cf file to point to your CF2 master update repository
•
Set the email options for the executor in promises.cf.
•
As root, run:
cf-agent --bootstrap
•
If all went well, you are now running CFEngine 3. To bootstrap to a
policy server, run:
cf-agent --bootstrap <policy server IP>
34. CFEngine Upgrade Plan
•
In Place Upgrade Steps
•
Remove all rules or policies that are capable of activating
CFEngine 2 components
•
Convert cfservd.conf into a server bundle
•
Place a reference to this bundle in promises.cf
•
Remove all rules to run cfservd
•
Replace them with rules to run cf-serverd
•
Add converted CFEngine 2 policies or create new
CFEngine 3 policies
35. CFEngine 2 Upgrade Plan
• Replacement Model
• CFEngine 3 installed on separate server
• Converted hosts bootstrap to new server
36. CFEngine Upgrade Plan
•
Replacement Method
•
Install CFEngine 3 as a new policy server
•
Select a CFEngine 2 host
•
Stop all CFEngine 2 processes or daemons on host
•
Convert policies, move them to the new policy server
•
Remove CFEngine 2 application from the host
•
Remove or move CFEngine 2 file system on the hosts
•
Install CFEngine 3 on the host
•
Bootstrap host to the policy server
37. CFEngine Upgrade Plan
•
Considerations: In Place vs. Replacement
•
Complexity of environment
•
Uptime Requirements or SLA
•
Effort and resources
•
Conversion effort: One time vs ongoing
39. Next Steps
• Learn More check out our documentation
• Read Learning CFEngine 3 by Diego Zamboni
• Join the conversation on our community help forum
https://groups.google.com/forum/?fromgroups&hl=en#!forum/help-cfengine
Editor's Notes
Why this makes CFEngine better than other tools in the market?GPS analogy, or mashed potatoes analogy
Why this makes CFEngine better than other tools in the market?GPS analogy, or mashed potatoes analogy