SlideShare a Scribd company logo

Achieving Infrastructure Portability with Chef

Matt Ray, profile picture
Matt Ray

The document discusses the benefits and challenges of using cloud infrastructures and emphasizes the importance of Chef for infrastructure portability. Chef allows for programmatic provisioning and configuration of various cloud resources, enabling management simplification through a code-based approach. Key features include resource collections, recipes, cookbooks, and community collaboration to support diverse environments and configurations.

TechnologySelf Improvement
1 of 52
Downloaded 64 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
Achieving Infrastructure Portability with Chef CloudOpen 2012 Matt Ray matt@opscode.com IRC/Twitter/GitHub: mattray www.opscode.com
Data Centers...
To the Cloud!
Why the Cloud? • Instant infrastructure • Unlimited capacity • Autoscaling • No commitment • Immediate replacement
Cloud Differentiation • Each cloud defines themselves against Amazon • Entry into the market is easier • Not a lot of price competition • Feature parity is growing
The Dark Side of the Cloud
Why not the Cloud? • Reliability • Performance • Security • Price
Data Gravity
Know our escape plan for every infrastructure provider
Why Chef?
See Node Application Server
See Nodes Application Server Application Database
See Nodes Grow Application Server Application Databases
See Nodes Grow Application Servers Application Databases
See Nodes Grow Load Balancer Application Servers Application Databases
See Nodes Grow Load Balancers Application Servers Application Databases
See Nodes Grow Load Balancers Application Servers Application Database Cache Application Databases
Tied together with Config Load Balancers Application Servers Application Database Cache Application Databases
Infrastructure is a Snowflake Load Balancers Application Servers Application Database Cache Floating IP? Application Databases
Evolving Complexity Load Balancers ApplicationCache Application Servers NoSQL Database Cache Database Slaves Database
Complexity Grows Quickly DC2 DC1 DC3
And it Continues to Evolve That's great and all, but tell me about Chef! http://www.flickr.com/photos/16339684@N00/2681435235/
Chef is Infrastructure as Code • Programmatically provision and configure • Treat like any other code base • Reconstruct business from code repository, data backup, and bare metal resources. http://www.flickr.com/photos/louisb/4555295187/
Nodes • Chef-Client generates configurations directly on nodes from their run list • Reduce management complexity through abstraction • Store the configuration of your programs in version control http://www.flickr.com/photos/ssoosay/5126146763/
Collections of Resources • Networking • Routes • Users • Files • Groups • Directories • Tasks • Symlinks • Packages • Mounts • Software • Services • Configurations • Other Stuff http://www.flickr.com/photos/stevekeys/3123167585/
Declarative Interface to Resources • Define policy • Say what, not how • Pull not Push http://www.flickr.com/photos/bixentro/2591838509/
Ruby! extra_packages = case node['platform'] when "ubuntu","debian" %w{ ruby1.8 ruby1.8-dev rdoc1.8 ri1.8 libopenssl-ruby } end extra_packages.each do |pkg| package pkg do action :install end end
Recipes and Cookbooks • Recipes are collections of Resources • Cookbooks contain recipes, templates, files, custom resources, etc • Code re-use and modularity • Hundreds already on Community.opscode.com http://www.flickr.com/photos/shutterhacks/4474421855/
Search • Search for nodes with Roles • Find configuration data • IP addresses • Hostnames • FQDNs http://www.flickr.com/photos/kathycsus/2686772625
Pass Results to Templates pool_members = search("node","role:webserver”) template "/etc/haproxy/haproxy.cfg" do source "haproxy-app_lb.cfg.erb" owner "root" group "root" mode 0644 variables :pool_members => pool_members.uniq notifies :restart, "service[haproxy]" end
Pass Results to Templates # Set up application listeners here. listen application 0.0.0.0:80 balance roundrobin <% @pool_members.each do |member| -%> server <%= member[:hostname] %> <%= member[:ipaddress] %>:> weight 1 maxconn 1 check <% end -%> <% if node["haproxy"]["enable_admin"] -%> listen admin 0.0.0.0:22002 mode http stats uri / <% end -%>
So when this Graphite Nagios Jboss App Memcache Postgres Slaves Postgres Master
Becomes this Graphite Nagios Jboss App Memcache Postgres Slaves Postgres Master
Updates can be automatic Graphite Nagios Jboss App Memcache Postgres Slaves Postgres Master
Count the resources • Load balancer config Graphite Nagios • Nagios host ping • Nagios host ssh Jboss App • Nagios host HTTP • Nagios host app health Memcache • Graphite CPU • Graphite Memory Postgres Slaves • Graphite Disk • Graphite SNMP • Memcache firewall • 12+ resource changes for 1 node addition • Postgres firewall Postgres authZ config
Build anything • Simple internal applications • Complex external applications • Workstations • Hadoop clusters • IaaS infrastructure • PaaS infrastructure • SaaS applications • Storage systems • You name it http://www.flickr.com/photos/hyku/245010680/
And manage it simply • Automatically reconfigure everything • Linux, Windows, Unixes, BSDs • Load balancers • Metrics collection systems • Monitoring systems • Cloud migrations become trivial http://www.flickr.com/photos/helico/404640681/
knife
knife with the Chef Server • knife node • create/delete/edit • list • knife cookbook ... • knife role ... • knife environment ...
knife bootstrap knife bootstrap SERVER -r 'role[webserver]' -i ~/.ssh/id_rsa • SSH to the machine given existing credentials • Install the Chef Client • Register with the Chef Server • Run the initial Run List • Now managed with Chef!
knife ec2 $ knife ec2 Available ec2 subcommands: (for details, knife SUB-COMMAND -- help) ** EC2 COMMANDS ** knife ec2 flavor list (options) knife ec2 instance data (options) knife ec2 server create (options) knife ec2 server delete SERVER [SERVER] (options) knife ec2 server list (options) $ knife ec2 server create -S keypair -i ~/.ssh/id_rsa -x ubuntu -I ami-4721882e -f m1.small -r 'role[webserver]'
knife openstack $ knife openstack Available openstack subcommands: (for details, knife SUB- COMMAND --help) ** OPENSTACK COMMANDS ** knife openstack flavor list (options) knife openstack image list (options) knife openstack server create (options) knife openstack server delete SERVER [SERVER] (options) knife openstack server list (options) $ knife openstack server create -S keypair -i ~/.ssh/id_rsa -x ubuntu -I 1231 -f standard.small -r 'role[webserver]'
Chef for Infrastructure Portability • knife ec2 • knife cloudstack • knife rackspace • knife openstack • knife hp • knife vsphere • knife google • ... and many • knife azure others
The Chef Community • Apache License, Version 2.0 • 850+ Individual contributors • 150+ Corporate contributors • HP, Dell, Rackspace, VMware, Joyent, Calxeda, Heroku, SUSE and many more • 550+ cookbooks • http://community.opscode.com
Desktop, Virtualization, Private & Public Clouds • Vagrant • AWS • VMware • Rackspace • CloudStack • HP • Eucalyptus • Google • OpenStack • Azure • bare metal • many others
Desktop, Virtualization, Private & Public Clouds • Vagrant • AWS • VMware • Rackspace • CloudStack • HP • Eucalyptus • Google • OpenStack • Azure • bare metal • many others
Tale of the Tape • Artur Bergman, CEO at Fastly • It's All About Speed • http://youtu.be/qRnTejOMbZU • Jason Stowe, CEO at Cycle Computing • CycleCloud + Chef = 50,000-core Utility Supercomputer for Science • http://youtu.be/cEaQB6e7G0Q
Chef and Abstractions • Resources and Providers • Cookbooks (may) normalize deployment • Knife treats APIs the same • Chef strives to not be opinionated
Environments • Lock down versions of cookbooks • stable releases vs. development • Enforce attributes for deployment • Ports, addresses, etc. • Different run lists based on environment • Debugging enabled?
Environments • Use the same infrastructure code for wherever you deploy • Development, QA, Pre-Production, Prod • Role-based Access Controls to restrict the promotion of deployment code
TL;DL • Every infrastructure is a unique snowflake • Understand the costs associated with the features of your platform(s) of choice. • Chef enables Infrastructure Portability • "Data Gravity" is the primary concern
Thanks! Matt Ray matt@opscode.com IRC/Twitter/GitHub: mattray www.opscode.com

More Related Content

PDF
Chef for OpenStack - OpenStack Fall 2012 Summit
Matt Ray
 
PDF
TXLF: Chef- Software Defined Infrastructure Today & Tomorrow
Matt Ray
 
PDF
SCALE12X Build a Cloud Day: Chef: The Swiss Army Knife of Cloud Infrastructure
Matt Ray
 
PDF
Australian OpenStack User Group August 2012: Chef for OpenStack
Matt Ray
 
KEY
Novalug 07142012
Mandi Walls
 
PDF
OSDC 2013 | Introduction into Chef by Andy Hawkins
NETWAYS
 
PDF
Boston/NYC Chef for OpenStack Hack Days
Matt Ray
 
PDF
Chef for OpenStack: Grizzly Roadmap
Matt Ray
 
Chef for OpenStack - OpenStack Fall 2012 Summit
Matt Ray
 
TXLF: Chef- Software Defined Infrastructure Today & Tomorrow
Matt Ray
 
SCALE12X Build a Cloud Day: Chef: The Swiss Army Knife of Cloud Infrastructure
Matt Ray
 
Australian OpenStack User Group August 2012: Chef for OpenStack
Matt Ray
 
Novalug 07142012
Mandi Walls
 
OSDC 2013 | Introduction into Chef by Andy Hawkins
NETWAYS
 
Boston/NYC Chef for OpenStack Hack Days
Matt Ray
 
Chef for OpenStack: Grizzly Roadmap
Matt Ray
 

What's hot (20)

PDF
YARN
Alex Moundalexis
 
PDF
Chef for OpenStack December 2012
Matt Ray
 
PDF
Chef Fundamentals Training Series Module 1: Overview of Chef
Chef Software, Inc.
 
PDF
Play Framework: Intro & High-Level Overview
Josh Padnick
 
PPTX
Chef fundamentals
Ygor Nascimento
 
PDF
Chef vs Puppet vs Ansible vs SaltStack | Configuration Management Tools Compa...
Edureka!
 
PPTX
Structor - Automated Building of Virtual Hadoop Clusters
Owen O'Malley
 
PDF
24HOP Introduction to Linux for SQL Server DBAs
Kellyn Pot'Vin-Gorman
 
PDF
Automated Deployment and Configuration Engines. Ansible
Alberto Molina Coballes
 
PPTX
Sergey Dzyuban "To Build My Own Cloud with Blackjack…"
Fwdays
 
PDF
AWS Developer Fundamentals
Josh Padnick
 
PDF
Integrated Cache on Netscaler
Mark Hillick
 
PPTX
Corley scalability
Corley S.r.l.
 
PPTX
Docker, Mesos, Spark
Qiang Wang
 
PDF
#WeSpeakLinux Session
Kellyn Pot'Vin-Gorman
 
KEY
London devops logging
Tomas Doran
 
PPTX
HadoopCon- Trend Micro SPN Hadoop Overview
Yafang Chang
 
PPT
Overview of chef ( Infrastructure as a Code )
Pravin Mishra
 
ODP
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...
Timofey Turenko
 
PDF
HadoopCon2015 Multi-Cluster Live Synchronization with Kerberos Federated Hadoop
Yafang Chang
 
YARN
Alex Moundalexis
 
Chef for OpenStack December 2012
Matt Ray
 
Chef Fundamentals Training Series Module 1: Overview of Chef
Chef Software, Inc.
 
Play Framework: Intro & High-Level Overview
Josh Padnick
 
Chef fundamentals
Ygor Nascimento
 
Chef vs Puppet vs Ansible vs SaltStack | Configuration Management Tools Compa...
Edureka!
 
Structor - Automated Building of Virtual Hadoop Clusters
Owen O'Malley
 
24HOP Introduction to Linux for SQL Server DBAs
Kellyn Pot'Vin-Gorman
 
Automated Deployment and Configuration Engines. Ansible
Alberto Molina Coballes
 
Sergey Dzyuban "To Build My Own Cloud with Blackjack…"
Fwdays
 
AWS Developer Fundamentals
Josh Padnick
 
Integrated Cache on Netscaler
Mark Hillick
 
Corley scalability
Corley S.r.l.
 
Docker, Mesos, Spark
Qiang Wang
 
#WeSpeakLinux Session
Kellyn Pot'Vin-Gorman
 
London devops logging
Tomas Doran
 
HadoopCon- Trend Micro SPN Hadoop Overview
Yafang Chang
 
Overview of chef ( Infrastructure as a Code )
Pravin Mishra
 
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...
Timofey Turenko
 
HadoopCon2015 Multi-Cluster Live Synchronization with Kerberos Federated Hadoop
Yafang Chang
 
Ad

Similar to Achieving Infrastructure Portability with Chef (20)

PDF
OpenStack Deployments with Chef
Matt Ray
 
PDF
Chef for OpenStack- Fall 2012.pdf
OpenStack Foundation
 
PDF
SCALE 10x Build a Cloud Day
Chef Software, Inc.
 
PDF
Chef For OpenStack Overview
OpenStack Foundation
 
PDF
IBM InterConnect 2015 - IIB in the Cloud
Andrew Coleman
 
PDF
201304 chef for open stack overview
OpenStack Foundation
 
PDF
201304 chef for open stack overview
OpenStack Foundation
 
PDF
Chef for OpenStack: OpenStack Spring Summit 2013
Matt Ray
 
PPTX
Why Kubernetes as a container orchestrator is a right choice for running spar...
DataWorks Summit
 
PDF
Webinar - DreamObjects/Ceph Case Study
Ceph Community
 
PDF
MariaDB on Docker
MariaDB plc
 
PDF
TechBeats #2
applausepoland
 
PDF
SCALE12X: Chef for OpenStack
Matt Ray
 
PDF
Getting Started with MariaDB with Docker
MariaDB plc
 
PDF
Velocity 2011 Chef OpenStack Workshop
Chef Software, Inc.
 
PDF
Java Night 2010 SteamCannon
marekgoldmann
 
PPTX
Docker Seattle Meetup April 2015 - The Docker Orchestration Ecosystem on Azure
Patrick Chanezon
 
PPTX
Spark volume requirements 2018
Rachit Arora
 
PPTX
Docker New York Meetup May 2015 - The Docker Orchestration Ecosystem on Azure
Patrick Chanezon
 
PPTX
Habitat talk at CodeMonsters Sofia, Bulgaria Nov 27 2018
Mandi Walls
 
OpenStack Deployments with Chef
Matt Ray
 
Chef for OpenStack- Fall 2012.pdf
OpenStack Foundation
 
SCALE 10x Build a Cloud Day
Chef Software, Inc.
 
Chef For OpenStack Overview
OpenStack Foundation
 
IBM InterConnect 2015 - IIB in the Cloud
Andrew Coleman
 
201304 chef for open stack overview
OpenStack Foundation
 
201304 chef for open stack overview
OpenStack Foundation
 
Chef for OpenStack: OpenStack Spring Summit 2013
Matt Ray
 
Why Kubernetes as a container orchestrator is a right choice for running spar...
DataWorks Summit
 
Webinar - DreamObjects/Ceph Case Study
Ceph Community
 
MariaDB on Docker
MariaDB plc
 
TechBeats #2
applausepoland
 
SCALE12X: Chef for OpenStack
Matt Ray
 
Getting Started with MariaDB with Docker
MariaDB plc
 
Velocity 2011 Chef OpenStack Workshop
Chef Software, Inc.
 
Java Night 2010 SteamCannon
marekgoldmann
 
Docker Seattle Meetup April 2015 - The Docker Orchestration Ecosystem on Azure
Patrick Chanezon
 
Spark volume requirements 2018
Rachit Arora
 
Docker New York Meetup May 2015 - The Docker Orchestration Ecosystem on Azure
Patrick Chanezon
 
Habitat talk at CodeMonsters Sofia, Bulgaria Nov 27 2018
Mandi Walls
 
Ad

More from Matt Ray (20)

PDF
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Matt Ray
 
PDF
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
Matt Ray
 
PDF
SCaLE 20X: Kubernetes Cloud Cost Monitoring with OpenCost & Optimization Stra...
Matt Ray
 
PDF
HashiTalks 2020 - Chef Tools & Terraform: Better Together
Matt Ray
 
PDF
EmacsConf 2019: Interactive Remote Debugging and Development with TRAMP Mode
Matt Ray
 
PDF
Wellington DevOps: Bringing Your Applications into the Future with Habitat
Matt Ray
 
PDF
DevOps Days Singapore 2018 Ignite - Bringing Your Applications into the Futur...
Matt Ray
 
PDF
Cloud Expo Asia 20181010 - Bringing Your Applications into the Future with Ha...
Matt Ray
 
PDF
Compliance as Code Everywhere
Matt Ray
 
PDF
DevOpsDays Jakarta: State of DevOps 2018
Matt Ray
 
PDF
DevOps Talks Melbourne 2018: Whales, Cats and Kubernetes
Matt Ray
 
PDF
Infrastructure and Compliance Delight with Chef Automate
Matt Ray
 
PDF
Cooking Up Windows with Chef Automate
Matt Ray
 
PDF
DevOpsDays Singapore - Continuous Auditing with Compliance as Code
Matt Ray
 
PDF
DevOpsDays Singapore Habitat Ignite
Matt Ray
 
PDF
Chef Automate - Azure Sydney User Group
Matt Ray
 
PDF
Automating Compliance with InSpec - AWS North Sydney
Matt Ray
 
PDF
Automating Applications with Habitat - Sydney Cloud Native Meetup
Matt Ray
 
PDF
Automating AWS Compliance with InSpec
Matt Ray
 
PDF
Chef Automate - Infracoders Canberra August 8, 2017
Matt Ray
 
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Matt Ray
 
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
Matt Ray
 
SCaLE 20X: Kubernetes Cloud Cost Monitoring with OpenCost & Optimization Stra...
Matt Ray
 
HashiTalks 2020 - Chef Tools & Terraform: Better Together
Matt Ray
 
EmacsConf 2019: Interactive Remote Debugging and Development with TRAMP Mode
Matt Ray
 
Wellington DevOps: Bringing Your Applications into the Future with Habitat
Matt Ray
 
DevOps Days Singapore 2018 Ignite - Bringing Your Applications into the Futur...
Matt Ray
 
Cloud Expo Asia 20181010 - Bringing Your Applications into the Future with Ha...
Matt Ray
 
Compliance as Code Everywhere
Matt Ray
 
DevOpsDays Jakarta: State of DevOps 2018
Matt Ray
 
DevOps Talks Melbourne 2018: Whales, Cats and Kubernetes
Matt Ray
 
Infrastructure and Compliance Delight with Chef Automate
Matt Ray
 
Cooking Up Windows with Chef Automate
Matt Ray
 
DevOpsDays Singapore - Continuous Auditing with Compliance as Code
Matt Ray
 
DevOpsDays Singapore Habitat Ignite
Matt Ray
 
Chef Automate - Azure Sydney User Group
Matt Ray
 
Automating Compliance with InSpec - AWS North Sydney
Matt Ray
 
Automating Applications with Habitat - Sydney Cloud Native Meetup
Matt Ray
 
Automating AWS Compliance with InSpec
Matt Ray
 
Chef Automate - Infracoders Canberra August 8, 2017
Matt Ray
 

Recently uploaded (20)

PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PDF
Modernizing your data center with Dell and AMD
Principled Technologies
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
Modernizing your data center with Dell and AMD
Principled Technologies
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 

Achieving Infrastructure Portability with Chef

  • 1. Achieving Infrastructure Portability with Chef CloudOpen 2012 Matt Ray matt@opscode.com IRC/Twitter/GitHub: mattray www.opscode.com
  • 4. Why the Cloud? • Instant infrastructure • Unlimited capacity • Autoscaling • No commitment • Immediate replacement
  • 5. Cloud Differentiation • Each cloud defines themselves against Amazon • Entry into the market is easier • Not a lot of price competition • Feature parity is growing
  • 6. The Dark Side of the Cloud
  • 7. Why not the Cloud? • Reliability • Performance • Security • Price
  • 9. Know our escape plan for every infrastructure provider
  • 13. See Nodes Grow Application Server Application Databases
  • 14. See Nodes Grow Application Servers Application Databases
  • 15. See Nodes Grow Load Balancer Application Servers Application Databases
  • 16. See Nodes Grow Load Balancers Application Servers Application Databases
  • 17. See Nodes Grow Load Balancers Application Servers Application Database Cache Application Databases
  • 18. Tied together with Config Load Balancers Application Servers Application Database Cache Application Databases
  • 19. Infrastructure is a Snowflake Load Balancers Application Servers Application Database Cache Floating IP? Application Databases
  • 20. Evolving Complexity Load Balancers ApplicationCache Application Servers NoSQL Database Cache Database Slaves Database
  • 22. And it Continues to Evolve That's great and all, but tell me about Chef! http://www.flickr.com/photos/16339684@N00/2681435235/
  • 23. Chef is Infrastructure as Code • Programmatically provision and configure • Treat like any other code base • Reconstruct business from code repository, data backup, and bare metal resources. http://www.flickr.com/photos/louisb/4555295187/
  • 24. Nodes • Chef-Client generates configurations directly on nodes from their run list • Reduce management complexity through abstraction • Store the configuration of your programs in version control http://www.flickr.com/photos/ssoosay/5126146763/
  • 25. Collections of Resources • Networking • Routes • Users • Files • Groups • Directories • Tasks • Symlinks • Packages • Mounts • Software • Services • Configurations • Other Stuff http://www.flickr.com/photos/stevekeys/3123167585/
  • 26. Declarative Interface to Resources • Define policy • Say what, not how • Pull not Push http://www.flickr.com/photos/bixentro/2591838509/
  • 27. Ruby! extra_packages = case node['platform'] when "ubuntu","debian" %w{ ruby1.8 ruby1.8-dev rdoc1.8 ri1.8 libopenssl-ruby } end extra_packages.each do |pkg| package pkg do action :install end end
  • 28. Recipes and Cookbooks • Recipes are collections of Resources • Cookbooks contain recipes, templates, files, custom resources, etc • Code re-use and modularity • Hundreds already on Community.opscode.com http://www.flickr.com/photos/shutterhacks/4474421855/
  • 29. Search • Search for nodes with Roles • Find configuration data • IP addresses • Hostnames • FQDNs http://www.flickr.com/photos/kathycsus/2686772625
  • 30. Pass Results to Templates pool_members = search("node","role:webserver”) template "/etc/haproxy/haproxy.cfg" do source "haproxy-app_lb.cfg.erb" owner "root" group "root" mode 0644 variables :pool_members => pool_members.uniq notifies :restart, "service[haproxy]" end
  • 31. Pass Results to Templates # Set up application listeners here. listen application 0.0.0.0:80 balance roundrobin <% @pool_members.each do |member| -%> server <%= member[:hostname] %> <%= member[:ipaddress] %>:> weight 1 maxconn 1 check <% end -%> <% if node["haproxy"]["enable_admin"] -%> listen admin 0.0.0.0:22002 mode http stats uri / <% end -%>
  • 32. So when this Graphite Nagios Jboss App Memcache Postgres Slaves Postgres Master
  • 33. Becomes this Graphite Nagios Jboss App Memcache Postgres Slaves Postgres Master
  • 34. Updates can be automatic Graphite Nagios Jboss App Memcache Postgres Slaves Postgres Master
  • 35. Count the resources • Load balancer config Graphite Nagios • Nagios host ping • Nagios host ssh Jboss App • Nagios host HTTP • Nagios host app health Memcache • Graphite CPU • Graphite Memory Postgres Slaves • Graphite Disk • Graphite SNMP • Memcache firewall • 12+ resource changes for 1 node addition • Postgres firewall Postgres authZ config
  • 36. Build anything • Simple internal applications • Complex external applications • Workstations • Hadoop clusters • IaaS infrastructure • PaaS infrastructure • SaaS applications • Storage systems • You name it http://www.flickr.com/photos/hyku/245010680/
  • 37. And manage it simply • Automatically reconfigure everything • Linux, Windows, Unixes, BSDs • Load balancers • Metrics collection systems • Monitoring systems • Cloud migrations become trivial http://www.flickr.com/photos/helico/404640681/
  • 38. knife
  • 39. knife with the Chef Server • knife node • create/delete/edit • list • knife cookbook ... • knife role ... • knife environment ...
  • 40. knife bootstrap knife bootstrap SERVER -r 'role[webserver]' -i ~/.ssh/id_rsa • SSH to the machine given existing credentials • Install the Chef Client • Register with the Chef Server • Run the initial Run List • Now managed with Chef!
  • 41. knife ec2 $ knife ec2 Available ec2 subcommands: (for details, knife SUB-COMMAND -- help) ** EC2 COMMANDS ** knife ec2 flavor list (options) knife ec2 instance data (options) knife ec2 server create (options) knife ec2 server delete SERVER [SERVER] (options) knife ec2 server list (options) $ knife ec2 server create -S keypair -i ~/.ssh/id_rsa -x ubuntu -I ami-4721882e -f m1.small -r 'role[webserver]'
  • 42. knife openstack $ knife openstack Available openstack subcommands: (for details, knife SUB- COMMAND --help) ** OPENSTACK COMMANDS ** knife openstack flavor list (options) knife openstack image list (options) knife openstack server create (options) knife openstack server delete SERVER [SERVER] (options) knife openstack server list (options) $ knife openstack server create -S keypair -i ~/.ssh/id_rsa -x ubuntu -I 1231 -f standard.small -r 'role[webserver]'
  • 43. Chef for Infrastructure Portability • knife ec2 • knife cloudstack • knife rackspace • knife openstack • knife hp • knife vsphere • knife google • ... and many • knife azure others
  • 44. The Chef Community • Apache License, Version 2.0 • 850+ Individual contributors • 150+ Corporate contributors • HP, Dell, Rackspace, VMware, Joyent, Calxeda, Heroku, SUSE and many more • 550+ cookbooks • http://community.opscode.com
  • 45. Desktop, Virtualization, Private & Public Clouds • Vagrant • AWS • VMware • Rackspace • CloudStack • HP • Eucalyptus • Google • OpenStack • Azure • bare metal • many others
  • 46. Desktop, Virtualization, Private & Public Clouds • Vagrant • AWS • VMware • Rackspace • CloudStack • HP • Eucalyptus • Google • OpenStack • Azure • bare metal • many others
  • 47. Tale of the Tape • Artur Bergman, CEO at Fastly • It's All About Speed • http://youtu.be/qRnTejOMbZU • Jason Stowe, CEO at Cycle Computing • CycleCloud + Chef = 50,000-core Utility Supercomputer for Science • http://youtu.be/cEaQB6e7G0Q
  • 48. Chef and Abstractions • Resources and Providers • Cookbooks (may) normalize deployment • Knife treats APIs the same • Chef strives to not be opinionated
  • 49. Environments • Lock down versions of cookbooks • stable releases vs. development • Enforce attributes for deployment • Ports, addresses, etc. • Different run lists based on environment • Debugging enabled?
  • 50. Environments • Use the same infrastructure code for wherever you deploy • Development, QA, Pre-Production, Prod • Role-based Access Controls to restrict the promotion of deployment code
  • 51. TL;DL • Every infrastructure is a unique snowflake • Understand the costs associated with the features of your platform(s) of choice. • Chef enables Infrastructure Portability • "Data Gravity" is the primary concern
  • 52. Thanks! Matt Ray matt@opscode.com IRC/Twitter/GitHub: mattray www.opscode.com