Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Introduction pratique à CoreOS et Terraform

Introduction pratique à CoreOS et Terraform

Présentation par la pratique de CoreOS et Terraform, du point de vue développeur.
HumanTalks Grenoble du 08/11/2016

Yves Brissaud

November 08, 2016
Tweet

More Decks by Yves Brissaud

Other Decks in Programming

Transcript

  1. Yves.Brissaud @sogilis.com
 @SquareScale.com @_crev_
 eunomie Introduction Pratique
 à CoreOS et

    Terraform Pour les développeurs Human Talks Grenoble
 08/11/2016
  2. $ curl -L -O https://artifacts.elastic.co/ downloads/elasticsearch/ elasticsearch-5.0.0.tar.gz $ tar -xvf

    elasticsearch-5.0.0.tar.gz $ cd elasticsearch-5.0.0/bin $ ./elasticsearch https://www.elastic.co/guide/en/elasticsearch/reference/current/_installation.html
  3. $ curl -L -O https://artifacts.elastic.co/ downloads/elasticsearch/ elasticsearch-5.0.0.tar.gz $ tar -xvf

    elasticsearch-5.0.0.tar.gz $ cd elasticsearch-5.0.0/bin $ ./elasticsearch https://www.elastic.co/guide/en/elasticsearch/reference/current/_installation.html ❓ Où ?
  4. $ curl -L -O https://artifacts.elastic.co/ downloads/elasticsearch/ elasticsearch-5.0.0.tar.gz $ tar -xvf

    elasticsearch-5.0.0.tar.gz $ cd elasticsearch-5.0.0/bin $ ./elasticsearch https://www.elastic.co/guide/en/elasticsearch/reference/current/_installation.html ❓ ❓ Répétabilité ?
  5. $ curl -L -O https://artifacts.elastic.co/ downloads/elasticsearch/ elasticsearch-5.0.0.tar.gz $ tar -xvf

    elasticsearch-5.0.0.tar.gz $ cd elasticsearch-5.0.0/bin $ ./elasticsearch https://www.elastic.co/guide/en/elasticsearch/reference/current/_installation.html ❓ ❓ ❓ Scale ?
  6. $ curl -L -O https://artifacts.elastic.co/ downloads/elasticsearch/ elasticsearch-5.0.0.tar.gz $ tar -xvf

    elasticsearch-5.0.0.tar.gz $ cd elasticsearch-5.0.0/bin $ ./elasticsearch https://www.elastic.co/guide/en/elasticsearch/reference/current/_installation.html ❓ ❓ ❓ ❓ Documentation ?
  7. (/ resource "aws_instance" "elasticsearch" { instance_type = "t2.micro" } Instance

    Amazon Web Service (EC2)
 Taille : t2.micro -> 1 vCPU, 1Go RAM
  8. (/ resource "aws_instance" "elasticsearch" { instance_type = "t2.micro" ami =

    "ami-7ddc960e" associate_public_ip_address = true }
  9. (/ resource "aws_instance" "elasticsearch" { instance_type = "t2.micro" ami =

    "ami-7ddc960e" associate_public_ip_address = true subnet_id = "subnet-6f6f2919" } Réseau local
  10. (/ resource "aws_instance" "elasticsearch" { instance_type = "t2.micro" ami =

    "ami-7ddc960e" associate_public_ip_address = true subnet_id = "subnet-6f6f2919" vpc_security_group_ids = ["${aws_security_group.base_sg.id}"] } ± Firewall
  11. (/ resource "aws_instance" "elasticsearch" { instance_type = "t2.micro" ami =

    "ami-7ddc960e" associate_public_ip_address = true subnet_id = "subnet-6f6f2919" vpc_security_group_ids = ["${aws_security_group.base_sg.id}"] } Port 22 + Ping + sortie
  12. (/ resource "aws_instance" "elasticsearch" { instance_type = "t2.micro" ami =

    "ami-7ddc960e" associate_public_ip_address = true subnet_id = "subnet-6f6f2919" vpc_security_group_ids = ["${aws_security_group.base_sg.id}"] key_name = "${aws_key_pair.admin_key.key_name}" } Clé SSH
  13. (/ resource "aws_instance" "elasticsearch" { instance_type = "t2.micro" ami =

    "ami-7ddc960e" associate_public_ip_address = true subnet_id = "subnet-6f6f2919" vpc_security_group_ids = ["${aws_security_group.base_sg.id}"] key_name = "${aws_key_pair.admin_key.key_name}" }
  14. CoreOS - Terraform resource "aws_instance" "elasticsearch" { instance_type = "t2.micro"

    ami = "ami-7ddc960e" associate_public_ip_address = true subnet_id = "subnet-6f6f2919" vpc_security_group_ids = ["${aws_security_group.base_sg.id}"] key_name = "${aws_key_pair.admin_key.key_name}" }
  15. CoreOS - Terraform resource "aws_instance" "elasticsearch" { instance_type = "t2.micro"

    ami = "ami-7ddc960e" associate_public_ip_address = true subnet_id = "subnet-6f6f2919" vpc_security_group_ids = ["${aws_security_group.base_sg.id}"] key_name = "${aws_key_pair.admin_key.key_name}" user_data = "${file("cloud-config/elasticsearch.yml")}" }
  16. CoreOS - Terraform #cloud-config
 coreos:
 units:
 - name: elasticsearch.service
 command:

    start
 content: |
 [Unit]
 Description=Elastic Search
 After=docker.service
 Requires=docker.service
  17. CoreOS - Terraform #cloud-config
 coreos:
 units:
 - name: elasticsearch.service
 command:

    start
 content: |
 [Unit]
 Description=Elastic Search
 After=docker.service
 Requires=docker.service
 [Service]
 Restart=always
  18. CoreOS - Terraform #cloud-config
 coreos:
 units:
 - name: elasticsearch.service
 command:

    start
 content: |
 [Unit]
 Description=Elastic Search
 After=docker.service
 Requires=docker.service
 [Service]
 Restart=always
 ExecStartPre=-/usr/bin/docker kill elasticsearch
 ExecStartPre=-/usr/bin/docker pull elasticsearch:2.4

  19. CoreOS - Terraform #cloud-config
 coreos:
 units:
 - name: elasticsearch.service
 command:

    start
 content: |
 [Unit]
 Description=Elastic Search
 After=docker.service
 Requires=docker.service
 [Service]
 Restart=always
 ExecStartPre=-/usr/bin/docker kill elasticsearch
 ExecStartPre=-/usr/bin/docker pull elasticsearch:2.4
 ExecStart=/usr/bin/docker run --rm --hostname elasticsearch
 --name elasticsearch -p 9200:9200 elasticsearch:2.4

  20. CoreOS - Terraform #cloud-config
 coreos:
 units:
 - name: elasticsearch.service
 command:

    start
 content: |
 [Unit]
 Description=Elastic Search
 After=docker.service
 Requires=docker.service
 [Service]
 Restart=always
 ExecStartPre=-/usr/bin/docker kill elasticsearch
 ExecStartPre=-/usr/bin/docker pull elasticsearch:2.4
 ExecStart=/usr/bin/docker run --rm --hostname elasticsearch
 --name elasticsearch -p 9200:9200 elasticsearch:2.4
 ExecStop=/usr/bin/docker stop elasticsearch
  21. CoreOS - Terraform resource "aws_instance" "elasticsearch" { instance_type = "t2.micro"

    ami = "ami-7ddc960e" associate_public_ip_address = true subnet_id = "subnet-6f6f2919" vpc_security_group_ids = ["${aws_security_group.base_sg.id}"]
 key_name = "${aws_key_pair.admin_key.key_name}" user_data = "${file("cloud-config/elasticsearch.yml")}" }
  22. CoreOS - Terraform resource "aws_instance" "elasticsearch" { instance_type = "t2.micro"

    ami = "ami-7ddc960e" associate_public_ip_address = true subnet_id = "subnet-6f6f2919" vpc_security_group_ids = ["${aws_security_group.base_sg.id}",
 "${aws_security_group.elasticsearch_sg.id}"] key_name = "${aws_key_pair.admin_key.key_name}" user_data = "${file("cloud-config/elasticsearch.yml")}" } Port 9200
  23. resource "aws_instance" "elasticsearch" {
 instance_type = "t2.micro"
 ami = "ami-7ddc960e"


    associate_public_ip_address = true
 subnet_id = "subnet-6f6f2919"
 vpc_security_group_ids =
 ["${aws_security_group.base_sg.id}",
 "${aws_security_group.elasticsearch_sg.id}"]
 key_name =
 "${aws_key_pair.admin_key.key_name}"
 user_data =
 "${file("cloud-config/elasticsearch.yml")}"
 }
 resource "aws_security_group" "base_sg" {
 name = "base_sg"
 vpc_id = "vpc-b89ee9dc"
 ingress {
 from_port = 22
 to_port = 22
 protocol = "tcp"
 cidr_blocks = ["0.0.0.0/0"]
 }
 ingress {
 from_port = 8
 to_port = -1
 protocol = "icmp"
 cidr_blocks = ["0.0.0.0/0"]
 }
 egress {
 from_port = 0
 to_port = 0
 protocol = "-1"
 cidr_blocks = ["0.0.0.0/0"]
 }
 }
 resource "aws_security_group" "elasticsearch_sg" {
 name = "elasticsearch_sg"
 vpc_id = "vpc-b89ee9dc"
 ingress {
 from_port = 9200
 to_port = 9200
 protocol = "tcp"
 cidr_blocks = ["0.0.0.0/0"]
 }
 } #cloud-config
 coreos:
 units:
 - name: elasticsearch.service
 command: start
 content: |
 [Unit]
 Description=Elastic Search
 After=docker.service
 Requires=docker.service
 [Service]
 Restart=always
 ExecStartPre=-/usr/bin/docker kill elasticsearch
 ExecStartPre=-/usr/bin/docker pull elasticsearch:2.4
 ExecStart=/usr/bin/docker run --rm -- hostname elasticsearch --name elasticsearch -p 9200:9200 elasticsearch:2.4
 ExecStop=/usr/bin/docker stop elasticsearch variable "aws_access_key" {}
 variable "aws_secret_key" {}
 variable "aws_region" {
 default = "eu-west-1"
 }
 provider "aws" {
 access_key = "${var.aws_access_key}"
 secret_key = "${var.aws_secret_key}"
 region = "${var.aws_region}"
 }
  24. #cloud-config
 coreos:
 units:
 - name: elasticsearch.service
 command: start
 content: |


    [Unit]
 Description=Elastic Search
 After=docker.service
 Requires=docker.service
 [Service]
 Restart=always
 ExecStartPre=-/usr/bin/docker kill elasticsearch
 ExecStartPre=-/usr/bin/docker pull elasticsearch:2.4
 ExecStart=/usr/bin/docker run --rm -- hostname elasticsearch --name elasticsearch -p 9200:9200 elasticsearch:2.4
 ExecStop=/usr/bin/docker stop elasticsearch variable "aws_access_key" {}
 variable "aws_secret_key" {}
 variable "aws_region" {
 default = "eu-west-1"
 }
 provider "aws" {
 access_key = "${var.aws_access_key}"
 secret_key = "${var.aws_secret_key}"
 region = "${var.aws_region}"
 } ❓ resource "aws_instance" "elasticsearch" {
 instance_type = "t2.micro"
 ami = "ami-7ddc960e"
 associate_public_ip_address = true
 subnet_id = "subnet-6f6f2919"
 vpc_security_group_ids =
 ["${aws_security_group.base_sg.id}",
 "${aws_security_group.elasticsearch_sg.id}"]
 key_name =
 "${aws_key_pair.admin_key.key_name}"
 user_data =
 "${file("cloud-config/elasticsearch.yml")}"
 }
 resource "aws_security_group" "base_sg" {
 name = "base_sg"
 vpc_id = "vpc-b89ee9dc"
 ingress {
 from_port = 22
 to_port = 22
 protocol = "tcp"
 cidr_blocks = ["0.0.0.0/0"]
 }
 ingress {
 from_port = 8
 to_port = -1
 protocol = "icmp"
 cidr_blocks = ["0.0.0.0/0"]
 }
 egress {
 from_port = 0
 to_port = 0
 protocol = "-1"
 cidr_blocks = ["0.0.0.0/0"]
 }
 }
 resource "aws_security_group" "elasticsearch_sg" {
 name = "elasticsearch_sg"
 vpc_id = "vpc-b89ee9dc"
 ingress {
 from_port = 9200
 to_port = 9200
 protocol = "tcp"
 cidr_blocks = ["0.0.0.0/0"]
 }
 }