(ARC307) Infrastructure as Code

http://arc307.stelligent.com © 2015, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

David Winter, AWS

Paul Duvall, CTO, Stelligent

Soofi Safavi, CTO, Radian

David Shurtliff, AWS

October 2015

Infrastructure as Code

Enabling Your Enterprise

ARC307

http://arc307.stelligent.com


Why is this important to you?

Structure Speed Health Security


Key Takeaways

How to code

infrastructureYou can code

everything

You can start this at

your Enterprise


Build and Operate Infrastructure as Software

Application

Source code

Interpreter

Desired application state

Infrastructure

JSON

AWS Service API

Desired infrastructure state


Infrastructure as Code:

Techniques, practices, and tools from software

development applied to creating reusable, maintainable,

extensible, and testable infrastructure.


Reusable – Multiple Environments

Development

IaC Template



Development

Production

IaC Template



Development

Production

Forensics Analysis

IaC Template


Maintainable– Integrate in CI/CD Pipelines

App Developers

IaC Template

Story

App Source

Code



App Developers

IaC Template

Story

AWS CodeCommit

Source Control

App Source

Code



AWS

CloudFormation

App Developers

AWS CodePipeline

IaC Template

Story

AWS CodeCommit

Source Control

AWS CodeDeploy

App Source

Code



AWS

CloudFormation

App Developers

AWS CodePipeline

Dev

Staging

Prod

IaC Template

Story

AWS CodeCommit

Source Control

AWS CodeDeploy

App Source

Code


Extensible – AWS Lambda Custom Resources

IaC Template



IaC Template

AWS Lambda



Cross-stack reference: VPC

Cross-stack reference:

Security Group

Cross-stack reference:

Subnet

Look up AMI ID

Utility function – e.g., string

reversal

IaC Template


Testable – Blue/Green Deployments

ExampleApp V1

IaC Template


Testable – Blue/Green Deployments

AWS CodeDeployExampleApp V1

ExampleApp V2

IaC Template


How Do I Get Started?


One-Click

Deployments

AWS as a sole

focus

Focusing on

Enterprises


Paul Duvall, Co-Founder, [email protected]

@paulduvall


Live Demo


https://github.com/stelligent/dromedary/


https://github.com/stelligent/dromedary


Dromedary Architecture



Dromedary Architecture and Code

pipeline.json

dromedary_spec.rb

nginx_spec.rb

nodejs_spec.rb

install_dromedary.rb

code_deploy.rbapp-instance.json

jenkins-

instance.json

jobdsl.groovy



Other Infrastructure as Code Approaches



From Concept to Production: A 6-part Heuristic

Document Test Code

Version Continuous Monitor



Dromedary – Deployment Results



Blue/Green Deployments with Dromedary

v 1.1 v 1.2



Customer Success Story - Intro

Customer Success Story

• Radian

• Loan Data Repository

• Partnering with Stelligent

• Moving Radian to IaC in less than 1 year


Radian LDR Architecture


Dromedary – SSL change



Who Is Radian?● Promote and preserve the tradition of homeownership while

protecting lenders from default-related losses on residential first

mortgages

● Facilitate the sale of low-downpayment mortgages in the

secondary market

● Help clients and investors expertly and prudently manage risk in

any market condition


Why We Adopted Infrastructure as Code

Quality Agility Efficiency


Benefits We Have Observed


3 Dimensions of IaC Adoption

Enterprises Need to Consider


Scope and Timing


Cultural Shift


Limitation of Enterprise Applications


Executive Advice


Consider your first launch


Don’t underestimate the impact of people


IaC-able?


Dromedary – SSL Deployment



ARC307 Summary


What Can You Do Now?

• Go attend more sessions about infrastructure as code

• Talk to AWS partners and your AWS team about IaC

• Look at the tools and services AWS tech partners offer


What Can You Do Later?

• Build an AWS CloudFormation template

• Write shell script using the AWS CLI

• Start committing automated tests and code

• Start small and build up your complexity of code and

workflow


Coleman Rule #17

“The only people that are not making mistakes, are those

that are not doing anything.”

https://www.kcoleman.me/coleman-laws/


Thank you!

ARC307


Remember to complete

your evaluations!

(ARC307) Infrastructure as Code

Technology

Transcript of (ARC307) Infrastructure as Code