1 © Copyright 2015 EMC Corporation. All rights reserved.

CLOUD AND DEVOPS - THE REALITY MATCHING IDEAL PROCESSES TO REAL WORLD CONSTRAINTS

2 © Copyright 2015 EMC Corporation. All rights reserved.

Duncan McIntyre Advisory Consultant Applications Workgroup duncan.mcintyre@emc.com

3 © Copyright 2015 EMC Corporation. All rights reserved.

•  Implementing cloud-native apps and environments •  Migrating legacy applications

•  Integrating diverse backend systems

•  Building Big Data solutions

HELPING TO TRANSFORM IT

4 © Copyright 2015 EMC Corporation. All rights reserved.

•  A Friction-free Environment –  Easily deploy, scale and manage apps and services –  Self-service provisioning for developers –  Continuous integration and deployment

•  Enables Agile processes

•  Supports service orchestration –  Microservice architecture –  Asynchronous design

THE CLOUD VISION

5 © Copyright 2015 EMC Corporation. All rights reserved.

THE CLOUD VISION - PROCESSES

Cloud Foundry

DEV INT QA PROD

HEAD-3 HEAD HEAD-1 HEAD-2

Continuous Integration / Deployment

Services

Git

Artifactory

6 © Copyright 2015 EMC Corporation. All rights reserved.

THE CLOUD VISION - PEOPLE

ProdMgr UX DEV QA DBA

PaaS Network

Storage

Sysadmin

Monitoring

ProdMgr UX DEV QA DBA

Business focused product teams

Platform team

7 © Copyright 2015 EMC Corporation. All rights reserved.

•  Varied industries –  Banks –  Government –  Manufacturing –  Automotive

•  Common requirements/challenges –  Security –  Isolation –  Manual QA –  Slow release cycles –  Significant rollout risk –  Widely separated teams

REAL CUSTOMERS

Things People Processes Security

8 © Copyright 2015 EMC Corporation. All rights reserved.

REAL THINGS

I just pushed my bug fix.

I’m going home.

The pumps just stopped working!

Continuous Delivery

9 © Copyright 2015 EMC Corporation. All rights reserved.

REAL PEOPLE

ProdMgr

Android

Embedded

QA

DBA

Firewall

Apache

Proxy

VPN

Windows

Linux

Location Time zone Language

Security

Passwords

Power

Cabling

HVAC Web

Backend

iOS

Windows

10 © Copyright 2015 EMC Corporation. All rights reserved.

REAL QA - PEOPLE AND THINGS

When will I get my test results from

INT?

No test-drives today it’s snowing.

(Things need people to test them)

11 © Copyright 2015 EMC Corporation. All rights reserved.

REAL PROCESSES

Looks like that code change has hit production!

I’ve got the FSA on line 2 for you.

(Because the test passes doesn’t mean it’s correct)

12 © Copyright 2015 EMC Corporation. All rights reserved.

REALITY - SECURITY

We need to expose the new API to the

Internet. !!!!!

13 © Copyright 2015 EMC Corporation. All rights reserved.

•  Segregated environments by VLAN –  Lots of hardware

•  Locked-down services –  No self-service

•  Tiered security –  Firewalls everywhere

•  Restricted access –  Only the Release Manager can push an app

•  ...

•  ...

THE CLOUD REALITY

14 © Copyright 2015 EMC Corporation. All rights reserved.

DON’T PANIC!

15 © Copyright 2015 EMC Corporation. All rights reserved.

•  Be flexible and pragmatic –  One size does not fit all (PCF/Docker/containers/vRA/Hybrid....) –  Improve cooperation between teams

•  Continually revisit assumptions –  We don’t have all the answers! –  But we do have some new features coming up.... –  You won’t get it right first time

•  Automate as much as possible –  It’s easier to change a script than a manual process

•  Architect for change –  Decompose into microservices –  Mock, mock and mock again

(SOME) LESSONS LEARNED

16 © Copyright 2015 EMC Corporation. All rights reserved.

•  Empower people •  Make it testable and repeatable •  Never stop learning

SUMMARY

18 © Copyright 2015 EMC Corporation. All rights reserved.

MULTI-TENANCY Single PCF Foundation for all environments

INT QA

u-service

Traffic egress from PCF is secured by Application Security Groups

GoRouters

Proxy

Traffic to micro-services protected by firewall, proxy and ASG

app

Back-end systems and persistent data in different tier behind firewall

Proxy DEV PROD

Shared ephemeral data services

Finance

HR

Finance

HR

Finance

HR

Finance

HR

SQL SQL SQL SQL

19 © Copyright 2015 EMC Corporation. All rights reserved.

SPLIT SERVICES Front end PCF

DEV INT QA PROD

Finance

HR

Finance

HR

Finance

HR

Finance

HR

SQL SQL SQL SQL

Apps

Microservices

Backend PCF

DEV INT QA PROD

20 © Copyright 2015 EMC Corporation. All rights reserved.

Cloud Foundry Cloud Foundry Cloud Foundry Cloud Foundry

SEGREGATED ENVIRONMENTS

DEV INT QA PROD

2.0

1.1

1.2

1.1 1.1 1.1

1.2

Load Balancer Load Balancer Load Balancer Load Balancer Tier1

Tier2

Tier3

21 © Copyright 2015 EMC Corporation. All rights reserved.

REALITY - SECURITY

Oops. The new test suite just dropped

the production database.

!!!!!****!!!!!!

(Isolated environments)

22 © Copyright 2015 EMC Corporation. All rights reserved.

•  Continuous until where?

•  Signed-off dependencies –  JARs need security vetting –  What about licences?

•  Manual staging –  Synchronise with external dependencies e.g. services

•  How do bits get into the environment?

•  ....

•  ....

THE CLOUD REALITY - PROCESSES