Infrastructure as Code: Manage your Architecture with Git
11 likes3,325 views
The document discusses infrastructure as code (IaC), focusing on using tools like AWS CloudFormation and Elastic Beanstalk for automating the management of cloud resources. It highlights concepts like version control, testing, and deploying applications, while also illustrating how to create and manage AWS resources through JSON-formatted templates. Additionally, it covers configuration management and the use of Git in managing infrastructure code.
![{
"AWSTemplateFormatVersion": "2010-09-09",
"Description": "Infrastructure as Code - CloudFormation Demo",
"Parameters": {
"InstanceType": {
"Type": "String",
"AllowedValues": [
"t2.micro", "t2.small", “t2.medium", "m3.medium", "m3.large", "m3.xlarge", “m3.2xlarge”, "c3.large", “c3.xlarge",
"c3.2xlarge", "c3.4xlarge", “c3.8xlarge", "r3.large", "r3.xlarge", "r3.2xlarge", "r3.4xlarge", "r3.8xlarge",
"i2.xlarge", "i2.2xlarge", "i2.4xlarge", "i2.8xlarge"
],
"ConstraintDescription": "must be a valid EC2 instance type.",
"Default": "t2.micro",
"Description": "WebServer EC2 instance type"
},
"KeyName": {
"Type": "AWS::EC2::KeyPair::KeyName",
"ConstraintDescription": "must be the name of an existing EC2 KeyPair.",
"Description": "Name of an existing EC2 KeyPair to enable SSH access to the instances",
"Default": "danilop-keypair-eu-central-1"
},
"SSHLocation": {
"Type": "String",
"AllowedPattern": "(d{1,3}).(d{1,3}).(d{1,3}).(d{1,3})/(d{1,2})",
"ConstraintDescription": "must be a valid IP CIDR range of the form x.x.x.x/x.",
"Default": "0.0.0.0/0",
"Description": "The IP address range that can be used to SSH to the EC2 instances",
"MaxLength": "18",
"MinLength": "9"
}
},
"Resources": {
"ElasticLoadBalancer": {
"Type": "AWS::ElasticLoadBalancing::LoadBalancer",
"Properties": {
"AvailabilityZones": { "Fn::GetAZs": “" },
"CrossZone": "true",
"HealthCheck": { "HealthyThreshold": "2", "Interval": "10", "Target": "HTTP:80/", "Timeout": “5", "UnhealthyThreshold": “3" },
"Listeners": [ { "InstancePort": "80", "LoadBalancerPort": "80", "Protocol": “HTTP" } ],
"Tags": [ { "Key" : "Name", "Value" : “CFDemo" } ]
}
},
"InstanceSecurityGroup": {
"Type": "AWS::EC2::SecurityGroup",
"Properties": {
"GroupDescription": "Enable SSH access and HTTP access on the inbound port",
"SecurityGroupIngress": [
{
"FromPort": "80",
"IpProtocol": "tcp",
"SourceSecurityGroupName": { "Fn::GetAtt": [ "ElasticLoadBalancer", “SourceSecurityGroup.GroupName" ] },
"SourceSecurityGroupOwnerId": {"Fn::GetAtt": [ "ElasticLoadBalancer", “SourceSecurityGroup.OwnerAlias" ] },
"ToPort": "80"
},
{
"CidrIp": { "Ref": “SSHLocation" }, "FromPort": "22", "IpProtocol": "tcp", "ToPort": "22"
}
]
}
},
"LaunchConfig": {
"Type": "AWS::AutoScaling::LaunchConfiguration",
"Properties": {
"ImageId": "ami-a88bb6b5",
"InstanceType": { "Ref": “InstanceType" },
"KeyName": { "Ref": “KeyName" },
"SecurityGroups": [ { "Ref": “InstanceSecurityGroup" } ]
}
},
"WebServerGroup": {
"Type": "AWS::AutoScaling::AutoScalingGroup",
"Properties": {
"AvailabilityZones": { "Fn::GetAZs": “" },
"LaunchConfigurationName": { "Ref": “LaunchConfig" },
"LoadBalancerNames": [ { "Ref": “ElasticLoadBalancer" } ],
"MinSize": "1",
"MaxSize": "4",
"DesiredCapacity": "1",
"Tags": [ { "Key" : "Name", "Value" : "CFDemo", "PropagateAtLaunch" : true } ]
}
}
},
"Outputs": {
"URL": {
"Description": "URL of the website",
"Value": { "Fn::Join": [ "", [ "http://", { "Fn::GetAtt": [ "ElasticLoadBalancer", "DNSName" ] } ] ] }
}
}
}
CloudFormation
Template
JSON Syntax
Parameters
Mappings
Resources
Outputs](https://image.slidesharecdn.com/20150409-gitmerge-infrastructureascode-150409110916-conversion-gate01/85/Infrastructure-as-Code-Manage-your-Architecture-with-Git-29-320.jpg)
!["AWS::CloudFormation::Init"
:
{
"config"
:
{
"packages"
:
{
"yum"
:
{
"mysql"
:
[],
"mysql-‐server"
:
[],
"httpd"
:
[],
"php"
:
[],
"php-‐mysql"
:
[]
}},
"sources"
:
{
"/var/www/html"
:
"https://my-‐builds.s3.amazonaws.com/build-‐v4.zip"
}}}](https://image.slidesharecdn.com/20150409-gitmerge-infrastructureascode-150409110916-conversion-gate01/85/Infrastructure-as-Code-Manage-your-Architecture-with-Git-31-320.jpg)
Infrastructure as Code: Manage your Architecture with Git
- 1. Infrastructure as Code: Manage your Architecture with Git Danilo Poccia ‒ AWS Technical Evangelist @danilop danilop
- 3. Adrian Cockcroft, Technology Fellow at Battery Ventures http://www.slideshare.net/adriancockcroft/goto-berlin
- 4. “A single website may now handle as much traffic as the entire Internet did less than a decade ago.” What is Reactive Programming? Kevin Webber
- 6. Writing Code to Manage Configurations and Automate Provisioning of Infrastructure
- 7. Manage IT Infrastructure using Tools and Practices from Software Development
- 8. Infrastructure as Code Version Control
- 11. Infrastructure as Code Small Deployments
- 12. Infrastructure as Code Design Patterns
- 14. Application Code Infrastructure Code Cloud Infrastructure CI Continuous Integration Build + Deploy
- 17. AWS Elastic Beastalk An Easy-to-Use Service for Deploying and Scaling Web Applications and Services
- 24. Application Code Infrastructure Code AWS Elastic Beanstalk Application Test Environment Production Environment develop branch master branch git commit + eb deploy
- 25. <demo> … </demo>
- 27. AWS CloudFormation Create and Manage a Collection of Related AWS Resources
- 29. { "AWSTemplateFormatVersion": "2010-09-09", "Description": "Infrastructure as Code - CloudFormation Demo", "Parameters": { "InstanceType": { "Type": "String", "AllowedValues": [ "t2.micro", "t2.small", “t2.medium", "m3.medium", "m3.large", "m3.xlarge", “m3.2xlarge”, "c3.large", “c3.xlarge", "c3.2xlarge", "c3.4xlarge", “c3.8xlarge", "r3.large", "r3.xlarge", "r3.2xlarge", "r3.4xlarge", "r3.8xlarge", "i2.xlarge", "i2.2xlarge", "i2.4xlarge", "i2.8xlarge" ], "ConstraintDescription": "must be a valid EC2 instance type.", "Default": "t2.micro", "Description": "WebServer EC2 instance type" }, "KeyName": { "Type": "AWS::EC2::KeyPair::KeyName", "ConstraintDescription": "must be the name of an existing EC2 KeyPair.", "Description": "Name of an existing EC2 KeyPair to enable SSH access to the instances", "Default": "danilop-keypair-eu-central-1" }, "SSHLocation": { "Type": "String", "AllowedPattern": "(d{1,3}).(d{1,3}).(d{1,3}).(d{1,3})/(d{1,2})", "ConstraintDescription": "must be a valid IP CIDR range of the form x.x.x.x/x.", "Default": "0.0.0.0/0", "Description": "The IP address range that can be used to SSH to the EC2 instances", "MaxLength": "18", "MinLength": "9" } }, "Resources": { "ElasticLoadBalancer": { "Type": "AWS::ElasticLoadBalancing::LoadBalancer", "Properties": { "AvailabilityZones": { "Fn::GetAZs": “" }, "CrossZone": "true", "HealthCheck": { "HealthyThreshold": "2", "Interval": "10", "Target": "HTTP:80/", "Timeout": “5", "UnhealthyThreshold": “3" }, "Listeners": [ { "InstancePort": "80", "LoadBalancerPort": "80", "Protocol": “HTTP" } ], "Tags": [ { "Key" : "Name", "Value" : “CFDemo" } ] } }, "InstanceSecurityGroup": { "Type": "AWS::EC2::SecurityGroup", "Properties": { "GroupDescription": "Enable SSH access and HTTP access on the inbound port", "SecurityGroupIngress": [ { "FromPort": "80", "IpProtocol": "tcp", "SourceSecurityGroupName": { "Fn::GetAtt": [ "ElasticLoadBalancer", “SourceSecurityGroup.GroupName" ] }, "SourceSecurityGroupOwnerId": {"Fn::GetAtt": [ "ElasticLoadBalancer", “SourceSecurityGroup.OwnerAlias" ] }, "ToPort": "80" }, { "CidrIp": { "Ref": “SSHLocation" }, "FromPort": "22", "IpProtocol": "tcp", "ToPort": "22" } ] } }, "LaunchConfig": { "Type": "AWS::AutoScaling::LaunchConfiguration", "Properties": { "ImageId": "ami-a88bb6b5", "InstanceType": { "Ref": “InstanceType" }, "KeyName": { "Ref": “KeyName" }, "SecurityGroups": [ { "Ref": “InstanceSecurityGroup" } ] } }, "WebServerGroup": { "Type": "AWS::AutoScaling::AutoScalingGroup", "Properties": { "AvailabilityZones": { "Fn::GetAZs": “" }, "LaunchConfigurationName": { "Ref": “LaunchConfig" }, "LoadBalancerNames": [ { "Ref": “ElasticLoadBalancer" } ], "MinSize": "1", "MaxSize": "4", "DesiredCapacity": "1", "Tags": [ { "Key" : "Name", "Value" : "CFDemo", "PropagateAtLaunch" : true } ] } } }, "Outputs": { "URL": { "Description": "URL of the website", "Value": { "Fn::Join": [ "", [ "http://", { "Fn::GetAtt": [ "ElasticLoadBalancer", "DNSName" ] } ] ] } } } } CloudFormation Template JSON Syntax Parameters Mappings Resources Outputs
- 30. { "Description" : "Create RDS with username and password", "Resources" : { "MyDB" : { "Type" : "AWS::RDS::DBInstance", "Properties" : { "AllocatedStorage" : "500", "DBInstanceClass" : "db.t2.micro", "Engine" : "MySQL", "EngineVersion" : "5.6", "MasterUsername" : "MyName", "MasterUserPassword" : "MyPassword" } }}}
- 31. "AWS::CloudFormation::Init" : { "config" : { "packages" : { "yum" : { "mysql" : [], "mysql-‐server" : [], "httpd" : [], "php" : [], "php-‐mysql" : [] }}, "sources" : { "/var/www/html" : "https://my-‐builds.s3.amazonaws.com/build-‐v4.zip" }}}
- 33. Template Same for Multiple Stacks (different environments)
- 34. Parameters Specific for a Stack (configuration management)
- 35. CloudFormer Template Creation Tool (from existing AWS resources)
- 39. <demo> … </demo>
- 40. http://aws.amazon.com/solutions/case-‐studies/ Who is using Amazon CloudFormation?
- 42. Application + Infrastructure Data + Code
- 44. Configuration Management Use a different repository + git submodule add ? Any (better) idea from the Git Community?
- 45. @danilop danilop