2016-02-09 - Breakfast Seminar - Redpill Linpro - Chef at Aptoma - Håkon Drange

Håkon Drange
Head of Infrastructure Operations
Chef @ Aptoma
Redpill Linpro breakfast seminar
February 9th 2016

● Håkon Drange
Introduction

● SaaS provider of tools for online news media.
● 15 employees (80% tech staff)
About Aptoma

Vision:
To help the new media with tools that shapes effective,
flexible and profitable news organisations.
About Aptoma

The main services we provide
About Aptoma

Good looking editions on mobile devices for “+” subscriptions
DrMobile

Easy and flexible front page editing
DrFront

Efficient article production to any output channel
DrPublish

Video encoding, playback API’s and CDN distribution
DrVideo

Flexible search API for all your media content
DrLib

● All tools delivered as SaaS
● The customer builds their business logic and
presentation on top of our APIs
About Aptoma

Internal PaaS project started in 2011
Aptoma Media Platform (AMP)

Vendor agnostic
● Cloud providers
● VMware
● KVM
● Physical hardware

SaaS
Dr*
PaaS (AMP)
Chef
AWS Cloudformation
IaaS
AWS EC2
IBM Softlayer - Zetta - Dell Poweredge

Consistent and predictable platform for the developers
● Same Ubuntu
● Munin, Nagios, New Relic, log shipping, SSH access,
NTP, firewall, swap, etc.
● Same Apache+PHP
● Same MySQL
● Same MongoDB
● etc.
.. Achieved with Chef.

Primary vendor is AWS
Primary region eu-central-1 (Frankfurt)
Secondary region eu-west-1 (Dublin)
IaaS/PaaS providers

Chef is a configuration management and automation
platform from Opscode.
Chef

Can be used in multiple ways:
● Chef Server mode
● Chef Solo mode
○ With Vagrant
Chef

Building blocks:
● Cookbooks contains recipes
○ Write your own cookbook or leverage community
cookboks from the Supermarket
○ Or a combination, with wrapper cookbooks
Chef

Building blocks:
● Cookbooks contains recipes
● A role consists of one or more re-usable recipes
● chef-client on the node (server)
Chef

Add common bootstrap role first to configure OS platform
Chef

Then add server role
● apache-server
● nginx-server
● varnish-server
● mysql-server
● mongodb-server
Chef

Then add service role for service specific config.
Chef

service-drfront-web
● Adds Apache virtualhosts
● memcached on port 11211
● Ruby gems
● Specific Node.js version
Chef

Base role common-bootstrap on all manually provisioned
servers
Chef

Base role common-bootstrap on all manually provisioned
servers
knife bootstrap --bootstrap-version 11.18.12 <hostname> --hint ec2 --environment
production-v2 -x tech --sudo -r “role[common-bootstrap],role[apache-server],role
[service-drfront-web]”
Chef

Base role common-bootstrap-cloud on all automatically
provisioned servers with AWS Cloudformation
Chef

“Provision and manage AWS infrastructure as code”
https://aws.amazon.com/cloudformation/
AWS Cloudformation

{
"Description" : "Create an EC2 instance running the Amazon Linux 32 bit AMI.",
"Parameters" : {
"KeyPair" : {
"Description" : "The EC2 Key Pair to allow SSH access to the instance",
"Type" : "String"
}
},
"Resources" : {
"Ec2Instance" : {
"Type" : "AWS::EC2::Instance",
"Properties" : {
"KeyName" : { "Ref" : "KeyPair" },
"ImageId" : "ami-3b355a52"
}
}
},
"Outputs" : {
"InstanceId" : {
"Description" : "The InstanceId of the newly created EC2 instance",
"Value" : {
"Ref" : "Ec2Instance"
}
}
},
"AWSTemplateFormatVersion" : "2010-09-09"
}
AWS Cloudformation

1. Develop a template
2. Define stack specific parameter values
AWS Cloudformation

1. Develop a template
2. Parameterize input values
3. Define resources
a. Launch Configuration for an Auto Scaling Group
b. Instance type, storage configuration
c. OS via AMI ID
d. Elastic Load Balancer to attach to (optional)
4. Scaling thresholds
5. .. etc
AWS Cloudformation

Now you can create a new stack (a collection of resources)
AWS Cloudformation

Everything gets provisioned automatically
AWS Cloudformation

Consistent and predictable configuration
AWS Cloudformation

Provision stack via AWS Console or API
AWS Cloudformation

So how do we kick off the Chef node bootstrap process?
AWS Cloudformation + Chef

In Cloudformation Launch Configuration user-data:
● Download and install publicly available dependencies
"apt-get update; apt-get upgrade -yn",
"apt-get install -y libffi-dev libssl-dev python-setuptools munin-noden",
"easy_install pipn",
"pip install pyopenssl ndg-httpsclient pyasn1 requests s3cmd boto3 awsclin",
"easy_install https://s3.amazonaws.com/cloudformation-examples/aws-cfn-bootstrap-latest.
tar.gzn",

In Cloudformation Launch Configuration user-data:
● Download and install private stuff from S3
○ Aptoma Chef bootstrap validator key
○ amp-aws-auto-bootstrap-v1.1.0.py bootstrap script
○ chef-client installer
● If all OK, Cloudformation signal OK to the
Auto Scaling Group

The ASG should now have instances attached to a load
balancer
ELB instance health check /status fails because no
application is deployed

What about application deployments?

We use AWS CodeDeploy.
AWS CodeDeploy

CodeDeploy is a deployment tool from AWS.
AWS CodeDeploy

Nice integration with Auto Scaling
AWS CodeDeploy

A framework, not a complete tool
AWS CodeDeploy

1. Provision servers manually or with Cloudformation
2. Use the same Chef cookbooks for any IaaS
3. Leverage Auto Scaling with Cloudformation and
CodeDeploy
Summary

We achieve:
● Automated, repeatable infrastructure with re-usable
code
● Predictable and scalable setup
● Easy and efficient for developers to set up new services
Summary

Email: haakon@aptoma.com
Twitter: @haakond
Slides: http://apto.ma/slides20160209hd
WWW: http://aptoma.com/
Thanks

● https://docs.chef.io/_images/chef_run.png
● http://docs.aws.amazon.com/gettingstarted/latest/wah-linux/images/architecture_linux.png
● http://media.amazonwebservices.com/architecturecenter/AWS_ac_ra_web_01.pdf
● https://aws.amazon.com/cloudformation/details/
● http://docs.aws.amazon.com/codedeploy/latest/userguide/deployment-steps.html
● https://www.chef.io/
● http://www.aptoma.com/
● http://southparkstudios.mtvnimages.com/shared/characters/adults/chef.png
● http://s3.amazonaws.com/opscode-corpsite/assets/121/pic-chef-logo.png
References

2016-02-09 - Breakfast Seminar - Redpill Linpro - Chef at Aptoma - Håkon Drange

More Related Content

2016-02-09 - Breakfast Seminar - Redpill Linpro - Chef at Aptoma - Håkon Drange