Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Ansibleで構成管理。〜たったひとつの冴えたやりかた〜

Sponsored · Ship Features Fearlessly Turn features on and off without deploys. Used by thousands of Ruby developers.
Avatar for Tomohiko Isobe Tomohiko Isobe
January 09, 2018
Technology
12
19k

 Ansibleで構成管理。〜たったひとつの冴えたやりかた〜

https://ljstudy.connpass.com/event/71037/
でのLT資料です。

Avatar for Tomohiko Isobe

Tomohiko Isobe

January 09, 2018
Tweet

More Decks by Tomohiko Isobe

See All by Tomohiko Isobe
今さらだけど、group_varsとhost_varsについて一言言いたい
Avatar for Tomohiko Isobe isobetomohiko
2
1.6k
Ansible-Vaultはこう使え!
Avatar for Tomohiko Isobe isobetomohiko
1
430
あえて、AnsibleでRDSを構築してみる
Avatar for Tomohiko Isobe isobetomohiko
0
310

Other Decks in Technology

See All in Technology
3分でわかる!新機能 AWS Transform custom
Avatar for sato4mi sato4mi
1
270
Amazon Bedrock AgentCore EvaluationsでAIエージェントを評価してみよう!
Avatar for Yudai Jinno yuu551
0
190
DEVCON 14 Report at AAMSX RU65: V9968, MSX0tab5, MSXDIY etc
Avatar for Akira Tsukamoto mcd500
0
230
サイボウズ 開発本部採用ピッチ / Cybozu Engineer Recruit
Avatar for Cybozu cybozuinsideout
PRO
10
72k
オープンウェイトのLLMリランカーを契約書で評価する / searchtechjp
Avatar for Sansan R&D sansan_randd
3
450
エンジニアとマネジメントの距離/Engineering and Management
Avatar for 小田中育生 ikuodanaka
3
680
セキュリティ はじめの一歩
Avatar for nikinusu nikinusu
0
1.2k
Sansan Engineering Unit 紹介資料
Avatar for Sansan, Inc. sansan33
PRO
1
3.8k
変化するコーディングエージェントとの現実的な付き合い方 〜Cursor安定択説と、ツールに依存しない「資産」〜
Avatar for empitsu empitsu
3
670
Amazon ElastiCacheのコスト最適化を考える/Elasticache Cost Optimization
Avatar for quiver quiver
0
300
生成AI時代にこそ求められるSRE / SRE for Gen AI era
Avatar for ymotongpoo ymotongpoo
3
300
Tebiki Engineering Team Deck
Avatar for Tebiki, Inc. tebiki
0
23k

Featured

See All Featured
Sam Torres - BigQuery for SEOs
Avatar for Tech SEO Connect techseoconnect
PRO
0
170
Building the Perfect Custom Keyboard
Avatar for Naoto Takai takai
2
680
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
Avatar for Sam Stephenson sstephenson
162
16k
Git: the NoSQL Database
Avatar for Brandon Keepers bkeepers
PRO
432
66k
Why Our Code Smells
Avatar for Brandon Keepers bkeepers
PRO
340
58k
職位にかかわらず全員がリーダーシップを発揮するチーム作り / Building a team where everyone can demonstrate leadership regardless of position
Avatar for MADOX madoxten
55
49k
DBのスキルで生き残る技術 - AI時代におけるテーブル設計の勘所
Avatar for soudai sone soudai
PRO
61
49k
Site-Speed That Sticks
Avatar for Harry Roberts csswizardry
13
1k
Rebuilding a faster, lazier Slack
Avatar for samanthasiow samanthasiow
85
9.4k
svc-hook: hooking system calls on ARM64 by binary rewriting
Avatar for Akira Moroo retrage
1
86
The browser strikes back
Avatar for Jono Alderson jonoalderson
0
350
Marketing to machines
Avatar for Jono Alderson jonoalderson
1
4.6k

Transcript

  1. AnsibleͰߏ੒؅ཧɻ ʙͨͬͨͻͱͭͷࡓ͑ͨ΍Γ͔ͨʙ 2018.1.9 ৽ఆ൪ʂAnsible ͱZabbixͰ࣮ݱ͢Δ࣍ੈ୅ӡ༻؅ཧ ү෦ஐ඙

  2. Who am I ? • ү෦ ஐ඙ (Tomohiko Isobe) •

    Infrastructure EngineerˏΫϦχΧϧɾϓϥοτϑΥʔϜג ࣜձࣾ(2017.10-) • ౡࠜݝग़਎ • Job Hopperʢݱࡏ8ࣾ໨…ʣ • Favorites: ࢙੻ɾઓ੻Ί͙ΓɺϑΝϛϨε https://clipla.jp

  3. Ansible࢖ͬͯ·͢ΑͶ

  4. ͜Μͳײ͡?

  5. Infrastructure as Code !

  6. None

  7. ͦΕͬͯ ʮߏஙखॱʯͷ؅ཧͰ͸ʁ

  8. αʔόͷʮߏ੒ʯΛ ؅ཧ͍ͨ͠

  9. ʮߏ੒؅ཧʯͱݴ͑͹

  10. ͔ͭͯɺ͜ͷੈʹ͸ ʮύϥϝʔλγʔτʯ ͳΔ΋ͷ͕͋ͬͨ

  11. ͜Μͳͷ

  12. ೔ʑͷӡ༻

  13. ύϥϝʔλγʔτɺ ߋ৽͠ͱ͖·ͨ͠❤

  14. ͋Δ೔ͷ͜ͱ

  15. None

  16. αʔόͷઃఆ͕ɺ ύϥϝʔλγʔτͱҧ͏…

  17. ͪΌΜͱαʔόೖͬ ͯ֬ೝ͠·ͨ͠ʁ

  18. Ͳ͏͢Δ͔

  19. ΩϥοͱͻΒΊ͍ͨ

  20. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  21. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  22. Playbookͱม਺Λ෼͚Δ

  23. Playbookͱม਺Λ෼͚Δ • Roleʹม਺͸ॻ͔ͳ͍ʂ • ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ͚ͩม਺ ʹʂ

  24. Roleʹม਺͸ॻ͔ͳ͍ʂ • Role͸ࡉ͔͘෼ׂͨ͠ํ͕൚༻ੑ͕ߴ·Δ • ͍͍ͪͪશ෦ͷRoleͷmain.ymlݟͯΒΜͳ͍

  25. Roleʹม਺͸ॻ͔ͳ͍ʂ • Role͸ࡉ͔͘෼ׂͨ͠ํ͕൚༻ੑ͕ߴ·Δ • ͍͍ͪͪશ෦ͷRoleͷmain.ymlݟͯΒΜͳ͍

  26. Roleʹม਺͸ॻ͔ͳ͍ʂ • Role͸ࡉ͔͘෼ׂͨ͠ํ͕൚༻ੑ͕ߴ·Δ • ͍͍ͪͪશ෦ͷRoleͷmain.ymlݟͯΒΜͳ͍ →

  27. Roleʹม਺͸ॻ͔ͳ͍ʂ • Role͸ࡉ͔͘෼ׂͨ͠ํ͕൚༻ੑ͕ߴ·Δ • ͍͍ͪͪશ෦ͷRoleͷmain.ymlݟͯΒΜͳ͍ → มߋָ͕

  28. ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ֊૚తʹॻ͚ͳ͍ͷͰɺม਺΍άϧʔϓ͕૿͑ ΔͱಡΈͮΒ͍

  29. ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ֊૚తʹॻ͚ͳ͍ͷͰɺม਺΍άϧʔϓ͕૿͑ ΔͱಡΈͮΒ͍

  30. ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ֊૚తʹॻ͚ͳ͍ͷͰɺม਺΍άϧʔϓ͕૿͑ ΔͱಡΈͮΒ͍ ͭΒ͍ʜ

  31. ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ ͚ͩม਺ʹʂ • Roleͱ߹Θͤͯ൚༻ੑ͕޲্

  32. ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ ͚ͩม਺ʹʂ • Roleͱ߹Θͤͯ൚༻ੑ͕޲্ logrotateͷtemplate(ൈਮ)

  33. ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ ͚ͩม਺ʹʂ • Roleͱ߹Θͤͯ൚༻ੑ͕޲্ logrotateͷtemplate(ൈਮ) logrotateͷvars

  34. Playbookͱม਺Λ෼͚Δ • Roleʹม਺͸ॻ͔ͳ͍ʂ • ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ͚ͩม਺ ʹʂ

  35. Playbookͱม਺Λ෼͚Δ • Roleʹม਺͸ॻ͔ͳ͍ʂ • ΠϯϕϯτϦϑΝΠϧʹ΋ॻ͔ͳ͍ʂ • ςϯϓϨʔτͷύϥϝʔλ΋Ͱ͖Δ͚ͩม਺ ʹʂ →ɹgroup_vars,host_varsʹॻ͘ʂ

  36. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  37. hash_behaviour = merge

  38. hash_behaviour = merge • ม਺ͷϚʔδϙϦγʔ • ansible.cfgͷ[defaults]Ͱઃఆ • σϑΥϧτ͸”replace”

  39. hash_behaviour = merge • σϑΥϧτ(replace)ͷڍಈ + group_vars ༏ઌ౓ɿ௿ host_vars ༏ઌ౓ɿߴ

  40. hash_behaviour = merge • σϑΥϧτ(replace)ͷڍಈ + group_vars ༏ઌ౓ɿ௿ host_vars ༏ઌ౓ɿߴ

    → key2͕ফ͑ͨ

  41. hash_behaviour = merge • hash_behaviour=mergeͷڍಈ + group_vars ༏ઌ౓ɿ௿ host_vars ༏ઌ౓ɿߴ

  42. hash_behaviour = merge • hash_behaviour=mergeͷڍಈ + → group_vars ༏ઌ౓ɿ௿ host_vars

    ༏ઌ౓ɿߴ key1͸্ॻ͖ key3͕௥Ճ

  43. hash_behaviour = merge • γʔέϯε(Ϧετ)͸ཁૉ͕શ෦্ॻ͖͞Εͯ ͠·͏ͷͰ஫ҙ + group_vars ༏ઌ౓ɿ௿ host_vars

    ༏ઌ౓ɿߴ

  44. hash_behaviour = merge • γʔέϯε(Ϧετ)͸ཁૉ͕શ෦্ॻ͖͞Εͯ ͠·͏ͷͰ஫ҙ + → group_vars ༏ઌ౓ɿ௿

    host_vars ༏ઌ౓ɿߴ list͝ͱ্ॻ͖

  45. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ

  46. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ group_vars/all.yml(શαʔόڞ௨)

  47. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ group_vars/all.yml(શαʔόڞ௨) group_vars/webservers.yml(webαʔόڞ௨) +

  48. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ group_vars/all.yml(શαʔόڞ௨) group_vars/webservers.yml(webαʔόڞ௨) host_vars/web01.yml(web01ݻ༗ઃఆ) + +

  49. hash_behaviour = merge • ม਺ͷޮ཰తͳ؅ཧ͕Մೳ group_vars/all.yml(શαʔόڞ௨) group_vars/webservers.yml(webαʔόڞ௨) host_vars/web01.yml(web01ݻ༗ઃఆ) ࠷ऴతʹweb01ʹద༻͞ΕΔม਺ →

    + +

  50. hash_behaviour = merge • ΍Γ͗͢஫ҙ • ༧ظͤ͵্ॻ͖ • ෳ਺group_varsͷద༻ॱ •

    ม਺͕෼ࢄ͞Εͯ͠·͏

  51. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  52. ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  53. ม਺,FactҰཡΛग़ྗͯ͠؅ཧ • merge͞Εͨม਺Λग़ྗ • Fact ?

  54. merge͞Εͨม਺Λग़ྗ • templateϞδϡʔϧͰɺlocalhostʹશม਺Λग़ ྗ͢Δ • શม਺Λ”my_vars(೚ҙ)”ҎԼͷ֊૚ߏ଄ʹ͢ Δʢॏཁʂʣ • {{ hostvars[inventory_hostname]["my_vars"]

    | to_nice_yaml | indent(2, True) }}

  55. merge͞Εͨม਺Λग़ྗ • Playbook ESZSVOͰ΋ग़ྗ

  56. merge͞Εͨม਺Λग़ྗ • template

  57. merge͞Εͨม਺Λग़ྗ • ͜Μͳײ͡

  58. Fact ? • SetupϞδϡʔϧʹΑΓऩू͞ΕΔର৅ϗετ ͷ؀ڥ৘ใ • ansible_*ͱͯ͠ࢀরՄೳ

  59. ͔ͤͬ͘ͳΜͰFact΋ग़ྗ͠·͔͢ • ྫ͑͹ɺΧʔωϧͷόʔδϣϯͳΒ {{ hostvars[inventory_hostname] [ansible_kernel] }} • ͍ͬͺ͍͋ΔͷͰ؅ཧ͍ͨ͠৘ใΛ͓޷ΈͰ

  60. ͔ͤͬ͘ͳΜͰFact΋ग़ྗ͠·͔͢ • ͜Μͳײ͡

  61. ࠓͷαʔόͷߏ੒ɺ ͜͏ͳͬͯ·͢❤

  62. ύϥϝʔλγʔτײʂ

  63. ͜ΕΛgitͰ؅ཧ͢Ε͹

  64. ߏ੒؅ཧʂ

  65. ·ͱΊ

  66. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ

  67. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ →ߏஙखॱͱύϥϝʔλΛ෼ׂ

  68. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ →ߏஙखॱͱύϥϝʔλΛ෼ׂ

    →ύϥϝʔλΛޮ཰తʹ؅ཧ

  69. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ ≒

    ύϥϝʔλγʔτ →ߏஙखॱͱύϥϝʔλΛ෼ׂ →ύϥϝʔλΛޮ཰తʹ؅ཧ

  70. ࡓ͑ͨ΍Γ͔ͨ • Playbookͱม਺Λ෼͚Δ • hash_behaviour = merge • ม਺,FactҰཡΛग़ྗͯ͠؅ཧ ≒

    ύϥϝʔλγʔτˠgit؅ཧ →ߏஙखॱͱύϥϝʔλΛ෼ׂ →ύϥϝʔλΛޮ཰తʹ؅ཧ

  71. એ఻ • ଞʹ΋Ansibleωλॻ͍ͯ·͢ • https://qiita.com/isobecky74

  72. Thank you !