Upload
buinhan
View
237
Download
7
Embed Size (px)
Citation preview
Cloud Forms Orchestration-Ansible Automation
Walter BrunelliSolution Architect InfrastructureRH Forum Zürich, 13. September 2016
CLOUD FORMS
Orchestration of - container infrastructure- virtual infrastructure - private & public cloud
IT ON THE PATH TO HYBRID ENVIRONMENTS
3
COMPLEXITY IS GOING THROUGH THE ROOF
4
CONTAINERS
100x
10x1x 10x
SOFTWARE-DEFINED NETWORKING
SOFTWARE-DEFINED STORAGE
10x
6
WHAT IS NEEDED?
Unified managementComprehensive insightFull operational control
… a.k.a. Cloud Management Platform
TYPICAL CLOUD FORMS ARCHITECTURE
11
CLOUD FORMS DELIVERS
VISIBILITYAND
ANALYTICS
COMPLIANCEAND
GOVERNANCE
INTEGRATIONOF OTHER
MANAGEMENTPRODUCTS
UNIFIEDMANAGEMENT
ANDOPERATIONS
COMPLETELIFE-CYCLE
MANAGEMENT
KEY BENEFITS AND USE-CASES● Self-Service Portal with Approval Process: Provisioning & Retirement of VMs● Cost allocation & Chargeback● Reporting : Management and User reporting● Relationship View, Monitoring, Capacity Planning● Smart-State-Analysis: Tracks changes of your VM in time, Find a specific user in your IT environment,
compare 2 VMs, Check if your environment is compliant, Enforce compliance, Build a new VM with newversion of Apps
● V2V-Migrations (Eg. VMWare to RHEV, VMWare to Cloud, Azure to Google). MOD1 to MOD2 migrations● Integrates with Satellite, SCCM, Ansible-Tower
Orchestration of :● Public Cloud Providers : Azure/Amazon/Google, Private Cloud : RH OpenStack● Virtualized Environment :VMWarer, RHEV, Hyper-V ; OS Images as Templates : Linux, Windows● Container Environment via Openshift or Kubernates
TRUSTED BY COMPANIES WORLDWIDE,RECOGNIZED AS A LEADER
15
CUSTOMERS COMMUNITY AWARDS
HOW TO START WITH CLOUD FORMS
● Web: redhat.com/cloudforms● Youtube : Nice CloudForms videos● Ask our sales for an evaluation subscription● We / our partners help you with the first setup● CloudForms already included in your RH-OpenStack or
OpenShift subscription
Automation withAnsible &Ansible Tower
Walter BrunelliSolution Architect Infrastructure2016
WHY IS AUTOMATION SO IMPORTANT?
• Stability• Jobs are always executed the exactly same way
• Time saving • By delegating jobs to operations
• Compliance• Stick to company / ITIL processes
• Auditing
WHY WAS ANSIBLE CREATED ?
• Open Source Project started in 2012 by Michael De Haan(Cobbler author)
• Because existing Configuration Management projects werenot good enough
• Target : Allow task execution • On specific hosts & in a specific order
• Without an agent on target nodes
WHAT IS ANSIBLE ?A radical simple IT AUTOMATION engine for repeating jobs! Eg.
• Multi-host Software-Deployment
• Configuration-Management
• Deployment
How ?• Agentless and with Playbooks
For whom?• Operators, Administrators, Developers
Products• Ansible Core + Ansible Tower
Nr 1 OpenSource Automation Project
PRINCIPLES OF ANSIBLE
Ansible’s Capabilities and Use-Cases Deploy, Configure, Manage :
• Linux (RHEL, CentOS, Ubuntu, Debian, BSD, MacOS.) & Unix (Solaris, AIX, HP-UX)
• Windows (via winrm/PowerShell-Remoting)
• Cloud (Amazon, Azure, Centurylink, CloudStack, DigitalOcean, Eucalyptus, Rackspace, GoogleCloud, OpenStack)
• Container Environment (Kubernetes, Docker)
• Virtualized Environment (VMWare, RHEV, XEN)
• Middleware (RabbitMQ, JBoss, etc.)
• Network Devices, Firewalls, LoadBalancer (Cisco, Juniper, F5, Arista, A10, OpenSwitch)
• Big Data and Analytics Environments (Hadoop, Riak, Aerospike)
• Databases (MySql, MariaDB, MSSQL, Postgres, MongoDB, HANA, Vertica)
• Monitoring & Notification (IRC, Mail, Slack, Telegram, SMS, etc.)
Ansible Core
WHAT IS ANSIBLE CORE ?
• Community version of Ansible
• No support
• Important Features missing (Auditing, JobScheduling, Role Based Access Control)
• Not ideal for Production Environment
ARCHITECTURE
EXECUTION EXAMPLE
LOOK HOW EASY ANSIBLE ISHand made Shell Script :
Ansible Playbook :
EXECUTE A PLAYBOOK
Ansible Tower
ADVANTAGES OF ANSIBLE TOWER• Web UI
• Integrates with LDAP, AD,IDM + GitHUB/Galaxy
• Inventory Integration : CMDB, Cloud
• Compliance : Reporting+Auditing (Every job is logged and can be traced)
• Role Based Access Control
• Separation of rights / Delegation of tasks, Eg. Recurring jobs to Operating
• Monitoring : Sends Alarm if a job fails or a config is found wrong
• Job Scheduling
• Multi-Organization
• REST API : All functionalities available over the API
Ansible Tower Use-Cases
Almost every repeatable and programmable Process :
•Automated Application and Service Deployment
•Automated Add/Removal of customers/users in your environment
•Automated patching of servers
•Rolling updates of your IT environemnt
•Run jobs on a weekly/monthly/yearly basis
TOWER Editions
Good Links to start with Ansible• Documentation / Get started
docs.ansible.com
docs.ansible.com/intro_getting_started.html
• Playbooks :
galaxy.ansible.com
github.com/ansible
● Ask for Evaluation subscription on ansible.com/tower-trial
● As a download : for 3 month and up to 10 nodes● As a vagrant demo● Amazon EC2
● We or our partner help you with the first setup
Thank you !Walter BrunelliSolution Architect Infrastructure