automating aws with ansible

AUTOMAT ING

AWS WITH ANS IBLE

C H R I S C U N D I L L

CONTENTS• AWS Overview• Ansible Overview• DevOps 101• Ansible Automation at DVLA• Demo: VED Calc Service

IDENTITY CRISIS

IDENTITY CRISIS

AWS OVERVIEW• AWS are a true cloud provider, arguably the defacto cloud• Commodity cloud provider• Private clouds• Scalable!

–“Every day, Amazon adds enough new server capacity to support all of Amazon’s global infrastructure when it was a $7 billion annual revenue enterprise,” James Hamilton, Distinguished Engineer at Amazon, who described the AWS infrastructure at the Re:Invent conference last fall. “There’s a lot of scale. That volume allows us to reinvest deeply into the platform and keep innovating.”

AWS

OVER

VIEW

AWS OVERVIEW

ANSIBLE OVERVIEW

• Ansible is a radically simple IT automation engine that automates

– cloud provisioning– configuration management– application deployment– intra-service orchestration– and many other IT needs…

ANSIBLE OVERVIEW

• No agents• No additional custom security infrastructure, so it's

easy to deploy very simple language (YAML, in the form of Ansible Playbooks) • Describe your automation jobs in a way that

approaches plain English• Python over SSH

DEVOPS 101• Fusion of development and operations• Name coined from the devopsdays conference started

in 2009 in Belgium• Jez Humble:

– ”a cross-disciplinary community of practice dedicated to the study of building, evolving and operating rapidly-changing resilient systems at scale.”

DEVOPS 101

DEVOPS 101• Culture shift

– increased collaboration between the roles of development and operations

–attitude of shared responsibility– valuable organizational shift is to support autonomous

teams

DEVOPS 101

ANSIBLE AUTOMATIONPlatfor

m

• Manages fixed VPCs, common network services and platform services

• Core CIS team responsible

Projects

• Manages project-specific network services

• Manages project-specific apps

Roles

• Re-usable Anisble tasks, e.g.

• ec2-build-launch• ec2-buld-ami• ec2-asg• iptables

ANSIBLE AUTOMATION• Platform, Project, Roles approach

– consolidated and standardised technology– secure– scalable– maintainability– flexibility

DEMO: VED CALC SERVICE• New service for Vehicle Excise Duty Calculation (April

2017)– Java– Dropwizard & Drools

DEMO: VED CALC SERVICE

DEMO: VED CALC SERVICE• Ansible provisioning, configuration & deployment

Init Subnets Security Groups

Launch AMI Box

Configure AMI Box Capture AMI Terminate AMI

Box

Create ELB

Create Launch Config

Update Auto-

Scaling Group