SlideShare a Scribd company logo

3 Years of Puppet at Cisco: The Secrets to Our Success - PuppetConf 2013

Puppet, profile picture
Puppet

The document outlines Cisco's success with Puppet over three years, detailing team members' roles and experiences. It describes various phases of development, highlighting the evolution of technologies used, deployment processes, and improvements made over time. Key tools mentioned include Director, RPMs, monitoring solutions, and the open-source community's role in enhancing operational efficiency.

TechnologyEducation
1 of 45
Downloaded 48 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
Cisco Confidential© 2010 Cisco and/or its affiliates. All rights reserved. 1 3 Years of Puppet at Cisco: The Secrets to Our Success PuppetConf 2013 Keith Chambers & Ryan Uber
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2 •  Worked at Cisco for 13 years -  7 years in Technical Assistance Center (support) -  2 years in Product Marketing -  4 years as WebEx Social Platform Architect •  Passionate about technology •  Passionate about people •  Always looking to raise the bar
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3 •  Worked at Cisco for 3 years -  Software Engineer -  Has played a critical role in our success •  Work at a managed host provider for 5 years -  Designed and implemented most of the infrastructure -  Supported everything he built •  Puppet user for 6 years
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4 •  Overview •  Experience •  Plumbing •  History & Evolution •  Secrets to our success
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6 •  Enterprise Social Media -  Create content -  Communities -  Follow -  Like -  Activity feed -  Recommendations •  On-premise deployment model •  Later added cloud hosted
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7 Persistence •  Traditional tiered web service •  Large number of services -  App Server -  Worker -  OpenFire -  RabbitMQ -  Memcached -  MongoDB -  Oracle -  Solr Caching Application Web Server Worker
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8 •  Virtual appliance delivery model •  Roles based architecture -  1 service per VM -  25 VM deployments are common •  Director provides system wide: -  Configuration -  Software maintenance -  Diagnostics and logging -  Health monitoring •  Everything works out of the box Oracle OS MongoDB OS Solr OS Worker OS Memcached OS App OS RabbitMQ OS OpenFire OS Virtualized Compute & Storage Director OS
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10 1.  Customer downloads a single OVA from Cisco
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11 1.  Customer downloads a single OVA from Cisco 2.  Customer deploys the Director VM from the OVA by selecting the Director configuration option
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13 1.  Customer downloads a single OVA from Cisco 2.  Customer deploys the Director VM from the OVA by selecting the Director configuration option 3.  Customer configures Director VM network settings
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14 1.  Customer downloads a single OVA from Cisco 2.  Customer deploys the Director VM from the OVA by selecting the Director configuration option 3.  Customer configures Director VM network settings 4.  Customer browses to the Director UI and configures system settings and defines the topology
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17 1.  Customer downloads a single OVA from Cisco 2.  Customer deploys the Director VM from the OVA by selecting the Director configuration option 3.  Customer configures Director VM network settings 4.  Customer browses to the Director UI and configures system settings and defines the topology 5.  Customer deploy all VMs defined in the topology from the OVA by selecting the appropriate configuration
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18 1.  Customer downloads a single OVA from Cisco 2.  Customer deploys the Director VM from the OVA by selecting the Director configuration option 3.  Customer configures Director VM network settings 4.  Customer browses to the Director UI and configures system settings and defines the topology 5.  Customer deploy all VMs defined in the topology from the OVA by selecting the appropriate configuration •  System handles all other setup and configuration
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19 1.  Customer download a single release image from file from Cisco
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20 1.  Customer download a single release image from file from Cisco 2.  Customer uploads the release image to the Director
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22 1.  Customer download a single release image from file from Cisco 2.  Customer uploads the release image to the Director 3.  Customer clicks upgrade
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23 1.  Customer download a single release image from file from Cisco 2.  Customer uploads the release image to the Director 3.  Customer clicks upgrade •  System handles the upgrade
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27 OVF OS Bootstrap Config Network Settings Director FQDN Glue Code
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29 •  Package everything as an RPM •  RPMs distributed from Director via Yum •  Controller is a Puppet Master Director OS Analytics Store OS Puppet Master Yum
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30 •  Versioned build artifact containing: -  All RPMs for all roles -  All Puppet modules •  Upgrade mechanics: -  New image uploaded to Director -  Old image unmounted and new image mounted -  Director calls Puppet run for all hosts -  On success the updated version is stored in on VM file system -  Salt used to fetch version number from all VMs
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 31 Director OS Analytics Store QUAD OS JSON Store QUAD OS RDBMS Store QUAD OS Graph Store QUAD OS Rsyslog •  Rsyslog -  High performance -  Reliable -  Part of CentOS 6 Rsyslogx Rsyslogx Rsyslogx Rsyslogx
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 32 Director OS Analytics Store OS BSON Store OS RDBMS Store OS Social Graph OS monit monit monit monit Nagios •  Nagios: -  Reliable -  Extremely flexible -  Available in EPEL •  Monit -  Reliable -  Flexible and extensible -  Enables self healing -  HTTP API -  Available in EPEL
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33 Director OS Analytics Store OS BSON Store OS RDBMS Store OS Social Graph OS Graphite collectd collectd collectd collectd •  Graphite: -  Reliable -  Extremely flexible -  Available in EPEL •  Collectd -  Reliable -  100+ plugins -  Extensible -  In EPEL
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 34
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35 Phase 1 Mid 2010 •  20GB VM •  CentOS 5 •  deployer.zip •  Monitoring 1.0 •  100% proprietary •  Time to market focused •  No DevOps tooling experience in the team
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 36 Phase 1 Mid 2010 •  20GB VM •  CentOS 5 •  deployer.zip •  Monitoring 1.0 •  100% proprietary •  Time to market focused •  No DevOps tooling experience in the team Phase 2 Early 2011 •  RPM + Yum •  Puppet •  Release Image •  Reduce VM footprint •  Major pushback on Puppet •  Your team matters
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 37 Phase 1 Mid 2010 •  20GB VM •  CentOS 5 •  deployer.zip •  Monitoring 1.0 •  100% proprietary •  Time to market focused •  No DevOps tooling experience in the team Phase 2 Early 2011 •  RPM + Yum •  Puppet •  Release Image •  Reduce VM footprint •  Major pushback on Puppet •  Your team matters Phase 3 Mid 2011 •  Director REST API •  OVF Properties •  Unified Logging w/ Rsyslog + Scribe •  Rsyslog was resisted due to name association with syslog
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 38 Phase 1 Mid 2010 •  20GB VM •  CentOS 5 •  deployer.zip •  Monitoring 1.0 •  100% proprietary •  Time to market focused •  No DevOps tooling experience in the team Phase 2 Early 2011 •  RPM + Yum •  Puppet •  Release Image •  Reduce VM footprint •  Major pushback on Puppet •  Your team matters Phase 3 Mid 2011 •  Director REST API •  OVF Properties •  Unified Logging w/ Rsyslog + Scribe •  Rsyslog was resisted due to name association with syslog Phase 4 Early 2012 •  CentOS 6 upgrade •  Monit •  Salt •  Remove Scribe •  Maintain fewer libraries •  Further reduce VM footprint •  Started replacing Monitoring 1.0 •  Salt proved buggy
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 39 Phase 1 Mid 2010 •  20GB VM •  CentOS 5 •  deployer.zip •  Monitoring 1.0 •  100% proprietary •  Time to market focused •  No DevOps tooling experience in the team Phase 2 Early 2011 •  RPM + Yum •  Puppet •  Release Image •  Reduce VM footprint •  Major pushback on Puppet •  Your team matters Phase 3 Mid 2011 •  Director REST API •  OVF Properties •  Unified Logging w/ Rsyslog + Scribe •  Rsyslog was resisted due to name association with syslog Phase 4 Early 2012 •  CentOS 6 upgrade •  Monit •  Salt •  Remove Scribe •  Maintain fewer libraries •  Further reduce VM footprint •  Started replacing Monitoring 1.0 •  Salt proved buggy Phase 5 Late 2012 •  Replaced Monitoring 1.0 with Nagios, Collectd, Graphite •  Last minute decision to go with Graphite •  Puppet code spaghetti •  VM tampering undercutting upgrade reliability •  Other Cisco groups want to reuse our code
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 40 Phase 1 Mid 2010 •  20GB VM •  CentOS 5 •  deployer.zip •  Monitoring 1.0 •  100% proprietary •  Time to market focused •  No DevOps tooling experience in the team Phase 2 Early 2011 •  RPM + Yum •  Puppet •  Release Image •  Reduce VM footprint •  Major pushback on Puppet •  Your team matters Phase 3 Mid 2011 •  Director REST API •  OVF Properties •  Unified Logging w/ Rsyslog + Scribe •  Rsyslog was resisted due to name association with syslog Phase 4 Early 2012 •  CentOS 6 upgrade •  Monit •  Salt •  Remove Scribe •  Maintain fewer libraries •  Further reduce VM footprint •  Started replacing Monitoring 1.0 •  Salt proved buggy Phase 5 Late 2012 •  Replaced Monitoring 1.0 with Nagios, Collectd, Graphite •  Last minute decision to go with Graphite •  Puppet code spaghetti •  VM tampering undercutting upgrade reliability •  Other Cisco groups want to reuse our code Phase 6 Started 2012 •  Generic programmable Controller •  Deploy VMs via IaaS API •  Orchestrate deploy and upgrade with Fabric •  Baked VM images •  Hiera for module parameters
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 41
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 42 Keep it simple •  80/20 rule •  Build only what you need •  What works is boring Learn and adapt •  Don’t fall in love with what you’ve built Unix tool chain pattern •  Loosely couple with best of bread tools •  End-to-end solutions lock you in
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 43 •  Excellent at configuration management •  Bulletproof reliability •  Long term investment protection •  Vibrant community and ecosystem •  Commitment to open source
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 44 •  Alex Honor of DTO Solutions and Simplify Ops -  Insightful program leadership -  Walking encyclopedia of proven patterns -  Always there when I’m in a jam
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 45

More Related Content

PPTX
Exploring the Final Frontier of Data Center Orchestration: Network Elements -...
Puppet
 
PDF
Cisco Automation with Puppet and onePK - PuppetConf 2013
Puppet
 
PDF
Automating with NX-OS: Let's Get Started!
Cisco DevNet
 
PPTX
Device Programmability with Cisco Plug-n-Play Solution
Cisco DevNet
 
PDF
Configuration Management Tools on NX-OS
Cisco DevNet
 
PPTX
OpenStack Enabling DevOps
Cisco DevNet
 
PPTX
NetDevOps for the Network Dude: How to get started with API's, Ansible and Py...
Cisco DevNet
 
PPTX
UCS Management APIs A Technical Deep Dive
Cisco DevNet
 
Exploring the Final Frontier of Data Center Orchestration: Network Elements -...
Puppet
 
Cisco Automation with Puppet and onePK - PuppetConf 2013
Puppet
 
Automating with NX-OS: Let's Get Started!
Cisco DevNet
 
Device Programmability with Cisco Plug-n-Play Solution
Cisco DevNet
 
Configuration Management Tools on NX-OS
Cisco DevNet
 
OpenStack Enabling DevOps
Cisco DevNet
 
NetDevOps for the Network Dude: How to get started with API's, Ansible and Py...
Cisco DevNet
 
UCS Management APIs A Technical Deep Dive
Cisco DevNet
 

What's hot (20)

PPTX
OpenStack and the Transformation of the Data Center - Lew Tucker
Lew Tucker
 
PDF
TechWiseTV Workshop: Catalyst Switching Programmability
Robb Boyd
 
PPTX
Rome 2017: Building advanced voice assistants and chat bots
Cisco DevNet
 
PPTX
FIWARE Lab architecture, an open point to start the installation of a new region
Fernando Lopez Aguilar
 
PPTX
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
Cisco DevNet
 
PDF
TechWiseTV Workshop: Digital Building Switches
Robb Boyd
 
PDF
Présentation cisco aci in action fundamentals - fcouderc - v6
Dig-IT
 
PPTX
Building a WiFi Hotspot with NodeJS: Cisco Meraki - ExCap API
Cisco DevNet
 
PPT
Chapter 2 overview
ali raza
 
PDF
Ocs F5 Bigip Bestpractices
Thiago Gutierri
 
PDF
PLNOG16: Automatyzacja kreaowania usług operatorskich w separacji od rodzaju ...
PROIDEA
 
PPTX
Cisco Spark & Tropo API Workshop
Cisco DevNet
 
PDF
How to build a Neutron Plugin (stadium edition)
Salvatore Orlando
 
PPTX
How APIs are Transforming Cisco Solutions and Catalyzing an Innovation Ecosystem
Cisco DevNet
 
PPTX
Process for joining to the FIWARE Lab
Fernando Lopez Aguilar
 
PPTX
How to Build Advanced Voice Assistants and Chatbots
Cisco DevNet
 
PDF
DevNetCreate - ACI and Kubernetes Integration
Hank Preston
 
PDF
Accelerate the SDN with Intel ONP
Odinot Stanislas
 
PDF
NCS: NEtwork Control System Hands-on Labs
Cisco Canada
 
PPTX
Introduction to Beryllium release of OpenDaylight
SDN Hub
 
OpenStack and the Transformation of the Data Center - Lew Tucker
Lew Tucker
 
TechWiseTV Workshop: Catalyst Switching Programmability
Robb Boyd
 
Rome 2017: Building advanced voice assistants and chat bots
Cisco DevNet
 
FIWARE Lab architecture, an open point to start the installation of a new region
Fernando Lopez Aguilar
 
Open Device Programmability: Hands-on Intro to RESTCONF (and a bit of NETCONF)
Cisco DevNet
 
TechWiseTV Workshop: Digital Building Switches
Robb Boyd
 
Présentation cisco aci in action fundamentals - fcouderc - v6
Dig-IT
 
Building a WiFi Hotspot with NodeJS: Cisco Meraki - ExCap API
Cisco DevNet
 
Chapter 2 overview
ali raza
 
Ocs F5 Bigip Bestpractices
Thiago Gutierri
 
PLNOG16: Automatyzacja kreaowania usług operatorskich w separacji od rodzaju ...
PROIDEA
 
Cisco Spark & Tropo API Workshop
Cisco DevNet
 
How to build a Neutron Plugin (stadium edition)
Salvatore Orlando
 
How APIs are Transforming Cisco Solutions and Catalyzing an Innovation Ecosystem
Cisco DevNet
 
Process for joining to the FIWARE Lab
Fernando Lopez Aguilar
 
How to Build Advanced Voice Assistants and Chatbots
Cisco DevNet
 
DevNetCreate - ACI and Kubernetes Integration
Hank Preston
 
Accelerate the SDN with Intel ONP
Odinot Stanislas
 
NCS: NEtwork Control System Hands-on Labs
Cisco Canada
 
Introduction to Beryllium release of OpenDaylight
SDN Hub
 
Ad

Similar to 3 Years of Puppet at Cisco: The Secrets to Our Success - PuppetConf 2013 (20)

PPTX
Considerations for Operating An OpenStack Cloud
Mark Voelker
 
PPTX
Foreman-and-Puppet-for-Openstack-Audo-Deployment
yating yang
 
PPTX
Puppet for Production in WebEx - PuppetConf 2013
Puppet
 
PPTX
Considerations for Operating an OpenStack Cloud
All Things Open
 
PDF
Presentation cloupia product overview and demo
xKinAnx
 
PDF
Presentation cloud orchestration solution overview
xKinAnx
 
PDF
Cisco UCS Director for the Public Sector
Amy Blanchard
 
PDF
Presentation ciac
xKinAnx
 
PDF
Presentation deploying cloud based services
xKinAnx
 
PDF
Presentation cloud, the whole offer
xKinAnx
 
PPTX
Cisco Evolving virtual switching to applications & cloud
solarisyougood
 
PPTX
Cisco cloupia bdm presentation
xKinAnx
 
PPTX
TechWiseTV Workshop: Open NX-OS and Devops with Puppet Labs
Robb Boyd
 
PPTX
Cisco UCS - CA World 2013
Ranjit Nayak
 
PPTX
Cisco Security portfolio update
Atanas Gergiminov
 
PDF
OpenStack Benelux Conference 2014 | Openstack Iaas and the Future of Applicat...
Guston Remie
 
PDF
Cisco ONE Enterprise Cloud (UCSD) Hands-on Lab
Cisco Canada
 
PDF
Cisco Connect Ottawa 2018 dev net
Cisco Canada
 
PDF
Puppet devops wdec
Wojciech Dec
 
PDF
Cisco Data Center Orchestration Solution
Cisco Canada
 
Considerations for Operating An OpenStack Cloud
Mark Voelker
 
Foreman-and-Puppet-for-Openstack-Audo-Deployment
yating yang
 
Puppet for Production in WebEx - PuppetConf 2013
Puppet
 
Considerations for Operating an OpenStack Cloud
All Things Open
 
Presentation cloupia product overview and demo
xKinAnx
 
Presentation cloud orchestration solution overview
xKinAnx
 
Cisco UCS Director for the Public Sector
Amy Blanchard
 
Presentation ciac
xKinAnx
 
Presentation deploying cloud based services
xKinAnx
 
Presentation cloud, the whole offer
xKinAnx
 
Cisco Evolving virtual switching to applications & cloud
solarisyougood
 
Cisco cloupia bdm presentation
xKinAnx
 
TechWiseTV Workshop: Open NX-OS and Devops with Puppet Labs
Robb Boyd
 
Cisco UCS - CA World 2013
Ranjit Nayak
 
Cisco Security portfolio update
Atanas Gergiminov
 
OpenStack Benelux Conference 2014 | Openstack Iaas and the Future of Applicat...
Guston Remie
 
Cisco ONE Enterprise Cloud (UCSD) Hands-on Lab
Cisco Canada
 
Cisco Connect Ottawa 2018 dev net
Cisco Canada
 
Puppet devops wdec
Wojciech Dec
 
Cisco Data Center Orchestration Solution
Cisco Canada
 
Ad

More from Puppet (20)

PPTX
Puppet Community Day: Planning the Future Together
Puppet
 
PPTX
The Evolution of Puppet: Key Changes and Modernization Tips
Puppet
 
PPTX
Can You Help Me Upgrade to Puppet 8? Tips, Tools & Best Practices for Your Up...
Puppet
 
PPTX
Bolt Dynamic Inventory: Making Puppet Easier
Puppet
 
PPTX
Customizing Reporting with the Puppet Report Processor
Puppet
 
PPTX
Puppet at ConfigMgmtCamp 2025 Sponsor Deck
Puppet
 
PPTX
The State of Puppet in 2025: A Presentation from Developer Relations Lead Dav...
Puppet
 
PPTX
Let Red be Red and Green be Green: The Automated Workflow Restarter in GitHub...
Puppet
 
PDF
Puppet camp2021 testing modules and controlrepo
Puppet
 
PPTX
Puppetcamp r10kyaml
Puppet
 
PDF
2021 04-15 operational verification (with notes)
Puppet
 
PPTX
Puppet camp vscode
Puppet
 
PDF
Modules of the twenties
Puppet
 
PDF
Applying Roles and Profiles method to compliance code
Puppet
 
PPTX
KGI compliance as-code approach
Puppet
 
PDF
Enforce compliance policy with model-driven automation
Puppet
 
PDF
Keynote: Puppet camp compliance
Puppet
 
PPTX
Automating it management with Puppet + ServiceNow
Puppet
 
PPTX
Puppet: The best way to harden Windows
Puppet
 
PPTX
Simplified Patch Management with Puppet - Oct. 2020
Puppet
 
Puppet Community Day: Planning the Future Together
Puppet
 
The Evolution of Puppet: Key Changes and Modernization Tips
Puppet
 
Can You Help Me Upgrade to Puppet 8? Tips, Tools & Best Practices for Your Up...
Puppet
 
Bolt Dynamic Inventory: Making Puppet Easier
Puppet
 
Customizing Reporting with the Puppet Report Processor
Puppet
 
Puppet at ConfigMgmtCamp 2025 Sponsor Deck
Puppet
 
The State of Puppet in 2025: A Presentation from Developer Relations Lead Dav...
Puppet
 
Let Red be Red and Green be Green: The Automated Workflow Restarter in GitHub...
Puppet
 
Puppet camp2021 testing modules and controlrepo
Puppet
 
Puppetcamp r10kyaml
Puppet
 
2021 04-15 operational verification (with notes)
Puppet
 
Puppet camp vscode
Puppet
 
Modules of the twenties
Puppet
 
Applying Roles and Profiles method to compliance code
Puppet
 
KGI compliance as-code approach
Puppet
 
Enforce compliance policy with model-driven automation
Puppet
 
Keynote: Puppet camp compliance
Puppet
 
Automating it management with Puppet + ServiceNow
Puppet
 
Puppet: The best way to harden Windows
Puppet
 
Simplified Patch Management with Puppet - Oct. 2020
Puppet
 

Recently uploaded (20)

PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
Approach and Philosophy of On baking technology
30anthuong17
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Cloud computing and distributed systems.
kkkkkhan
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 

3 Years of Puppet at Cisco: The Secrets to Our Success - PuppetConf 2013

  • 1. Cisco Confidential© 2010 Cisco and/or its affiliates. All rights reserved. 1 3 Years of Puppet at Cisco: The Secrets to Our Success PuppetConf 2013 Keith Chambers & Ryan Uber
  • 2. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 2 •  Worked at Cisco for 13 years -  7 years in Technical Assistance Center (support) -  2 years in Product Marketing -  4 years as WebEx Social Platform Architect •  Passionate about technology •  Passionate about people •  Always looking to raise the bar
  • 3. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3 •  Worked at Cisco for 3 years -  Software Engineer -  Has played a critical role in our success •  Work at a managed host provider for 5 years -  Designed and implemented most of the infrastructure -  Supported everything he built •  Puppet user for 6 years
  • 4. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4 •  Overview •  Experience •  Plumbing •  History & Evolution •  Secrets to our success
  • 5. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
  • 6. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6 •  Enterprise Social Media -  Create content -  Communities -  Follow -  Like -  Activity feed -  Recommendations •  On-premise deployment model •  Later added cloud hosted
  • 7. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7 Persistence •  Traditional tiered web service •  Large number of services -  App Server -  Worker -  OpenFire -  RabbitMQ -  Memcached -  MongoDB -  Oracle -  Solr Caching Application Web Server Worker
  • 8. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8 •  Virtual appliance delivery model •  Roles based architecture -  1 service per VM -  25 VM deployments are common •  Director provides system wide: -  Configuration -  Software maintenance -  Diagnostics and logging -  Health monitoring •  Everything works out of the box Oracle OS MongoDB OS Solr OS Worker OS Memcached OS App OS RabbitMQ OS OpenFire OS Virtualized Compute & Storage Director OS
  • 9. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
  • 10. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10 1.  Customer downloads a single OVA from Cisco
  • 11. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11 1.  Customer downloads a single OVA from Cisco 2.  Customer deploys the Director VM from the OVA by selecting the Director configuration option
  • 12. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
  • 13. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13 1.  Customer downloads a single OVA from Cisco 2.  Customer deploys the Director VM from the OVA by selecting the Director configuration option 3.  Customer configures Director VM network settings
  • 14. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14 1.  Customer downloads a single OVA from Cisco 2.  Customer deploys the Director VM from the OVA by selecting the Director configuration option 3.  Customer configures Director VM network settings 4.  Customer browses to the Director UI and configures system settings and defines the topology
  • 15. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
  • 16. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16
  • 17. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17 1.  Customer downloads a single OVA from Cisco 2.  Customer deploys the Director VM from the OVA by selecting the Director configuration option 3.  Customer configures Director VM network settings 4.  Customer browses to the Director UI and configures system settings and defines the topology 5.  Customer deploy all VMs defined in the topology from the OVA by selecting the appropriate configuration
  • 18. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18 1.  Customer downloads a single OVA from Cisco 2.  Customer deploys the Director VM from the OVA by selecting the Director configuration option 3.  Customer configures Director VM network settings 4.  Customer browses to the Director UI and configures system settings and defines the topology 5.  Customer deploy all VMs defined in the topology from the OVA by selecting the appropriate configuration •  System handles all other setup and configuration
  • 19. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19 1.  Customer download a single release image from file from Cisco
  • 20. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20 1.  Customer download a single release image from file from Cisco 2.  Customer uploads the release image to the Director
  • 21. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21
  • 22. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22 1.  Customer download a single release image from file from Cisco 2.  Customer uploads the release image to the Director 3.  Customer clicks upgrade
  • 23. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23 1.  Customer download a single release image from file from Cisco 2.  Customer uploads the release image to the Director 3.  Customer clicks upgrade •  System handles the upgrade
  • 24. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24
  • 25. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25
  • 26. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26
  • 27. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27 OVF OS Bootstrap Config Network Settings Director FQDN Glue Code
  • 28. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28
  • 29. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 29 •  Package everything as an RPM •  RPMs distributed from Director via Yum •  Controller is a Puppet Master Director OS Analytics Store OS Puppet Master Yum
  • 30. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30 •  Versioned build artifact containing: -  All RPMs for all roles -  All Puppet modules •  Upgrade mechanics: -  New image uploaded to Director -  Old image unmounted and new image mounted -  Director calls Puppet run for all hosts -  On success the updated version is stored in on VM file system -  Salt used to fetch version number from all VMs
  • 31. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 31 Director OS Analytics Store QUAD OS JSON Store QUAD OS RDBMS Store QUAD OS Graph Store QUAD OS Rsyslog •  Rsyslog -  High performance -  Reliable -  Part of CentOS 6 Rsyslogx Rsyslogx Rsyslogx Rsyslogx
  • 32. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 32 Director OS Analytics Store OS BSON Store OS RDBMS Store OS Social Graph OS monit monit monit monit Nagios •  Nagios: -  Reliable -  Extremely flexible -  Available in EPEL •  Monit -  Reliable -  Flexible and extensible -  Enables self healing -  HTTP API -  Available in EPEL
  • 33. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33 Director OS Analytics Store OS BSON Store OS RDBMS Store OS Social Graph OS Graphite collectd collectd collectd collectd •  Graphite: -  Reliable -  Extremely flexible -  Available in EPEL •  Collectd -  Reliable -  100+ plugins -  Extensible -  In EPEL
  • 34. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 34
  • 35. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35 Phase 1 Mid 2010 •  20GB VM •  CentOS 5 •  deployer.zip •  Monitoring 1.0 •  100% proprietary •  Time to market focused •  No DevOps tooling experience in the team
  • 36. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 36 Phase 1 Mid 2010 •  20GB VM •  CentOS 5 •  deployer.zip •  Monitoring 1.0 •  100% proprietary •  Time to market focused •  No DevOps tooling experience in the team Phase 2 Early 2011 •  RPM + Yum •  Puppet •  Release Image •  Reduce VM footprint •  Major pushback on Puppet •  Your team matters
  • 37. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 37 Phase 1 Mid 2010 •  20GB VM •  CentOS 5 •  deployer.zip •  Monitoring 1.0 •  100% proprietary •  Time to market focused •  No DevOps tooling experience in the team Phase 2 Early 2011 •  RPM + Yum •  Puppet •  Release Image •  Reduce VM footprint •  Major pushback on Puppet •  Your team matters Phase 3 Mid 2011 •  Director REST API •  OVF Properties •  Unified Logging w/ Rsyslog + Scribe •  Rsyslog was resisted due to name association with syslog
  • 38. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 38 Phase 1 Mid 2010 •  20GB VM •  CentOS 5 •  deployer.zip •  Monitoring 1.0 •  100% proprietary •  Time to market focused •  No DevOps tooling experience in the team Phase 2 Early 2011 •  RPM + Yum •  Puppet •  Release Image •  Reduce VM footprint •  Major pushback on Puppet •  Your team matters Phase 3 Mid 2011 •  Director REST API •  OVF Properties •  Unified Logging w/ Rsyslog + Scribe •  Rsyslog was resisted due to name association with syslog Phase 4 Early 2012 •  CentOS 6 upgrade •  Monit •  Salt •  Remove Scribe •  Maintain fewer libraries •  Further reduce VM footprint •  Started replacing Monitoring 1.0 •  Salt proved buggy
  • 39. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 39 Phase 1 Mid 2010 •  20GB VM •  CentOS 5 •  deployer.zip •  Monitoring 1.0 •  100% proprietary •  Time to market focused •  No DevOps tooling experience in the team Phase 2 Early 2011 •  RPM + Yum •  Puppet •  Release Image •  Reduce VM footprint •  Major pushback on Puppet •  Your team matters Phase 3 Mid 2011 •  Director REST API •  OVF Properties •  Unified Logging w/ Rsyslog + Scribe •  Rsyslog was resisted due to name association with syslog Phase 4 Early 2012 •  CentOS 6 upgrade •  Monit •  Salt •  Remove Scribe •  Maintain fewer libraries •  Further reduce VM footprint •  Started replacing Monitoring 1.0 •  Salt proved buggy Phase 5 Late 2012 •  Replaced Monitoring 1.0 with Nagios, Collectd, Graphite •  Last minute decision to go with Graphite •  Puppet code spaghetti •  VM tampering undercutting upgrade reliability •  Other Cisco groups want to reuse our code
  • 40. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 40 Phase 1 Mid 2010 •  20GB VM •  CentOS 5 •  deployer.zip •  Monitoring 1.0 •  100% proprietary •  Time to market focused •  No DevOps tooling experience in the team Phase 2 Early 2011 •  RPM + Yum •  Puppet •  Release Image •  Reduce VM footprint •  Major pushback on Puppet •  Your team matters Phase 3 Mid 2011 •  Director REST API •  OVF Properties •  Unified Logging w/ Rsyslog + Scribe •  Rsyslog was resisted due to name association with syslog Phase 4 Early 2012 •  CentOS 6 upgrade •  Monit •  Salt •  Remove Scribe •  Maintain fewer libraries •  Further reduce VM footprint •  Started replacing Monitoring 1.0 •  Salt proved buggy Phase 5 Late 2012 •  Replaced Monitoring 1.0 with Nagios, Collectd, Graphite •  Last minute decision to go with Graphite •  Puppet code spaghetti •  VM tampering undercutting upgrade reliability •  Other Cisco groups want to reuse our code Phase 6 Started 2012 •  Generic programmable Controller •  Deploy VMs via IaaS API •  Orchestrate deploy and upgrade with Fabric •  Baked VM images •  Hiera for module parameters
  • 41. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 41
  • 42. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 42 Keep it simple •  80/20 rule •  Build only what you need •  What works is boring Learn and adapt •  Don’t fall in love with what you’ve built Unix tool chain pattern •  Loosely couple with best of bread tools •  End-to-end solutions lock you in
  • 43. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 43 •  Excellent at configuration management •  Bulletproof reliability •  Long term investment protection •  Vibrant community and ecosystem •  Commitment to open source
  • 44. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 44 •  Alex Honor of DTO Solutions and Simplify Ops -  Insightful program leadership -  Walking encyclopedia of proven patterns -  Always there when I’m in a jam
  • 45. © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 45