SlideShare une entreprise Scribd logo

Rudder 3.0 and beyond

Jonathan Clarke
Jonathan Clarke

This document summarizes a presentation about Rudder 3.0 and the future of Rudder. Some key highlights of Rudder 3.0 include a redesigned web interface with improved performance, new status reporting features, a technique editor, and support for classifying nodes with external data. The presentation outlines future plans for Rudder 3.1 and beyond, which include improvements to the API, role-based access controls, parameterization by tags, and additional extension points.

Technologie
1  sur  32
Télécharger pour lire hors ligne
Normation – Tous droits réservés normation.com Rudder 3.0 and beyond Jonathan Clarke jcl@normation.com @jooooooon42 (7 'o's) Nicolas CHARLES nch@normation.com @nico_charles
Normation – Tous droits réservés normation.com Who are we? Jonathan Clarke Origins: Sysadmin, infrastructure management jcl@normation.com @jooooooon42 (7 'o's) Co-founded and work at Creators of and ncf.io Nicolas CHARLES Origins: Development nch@normation.com @nico_charles
Normation – Tous droits réservés normation.com This talk is about Rudder Overview & History 3.0 new features Perspectives for 3.1 and beyond
Normation – Tous droits réservés normation.com Intro: Rudder overview DesktopCloudDatacenter Smart infrastructureMobile 3. Universality – Lightweight & multi-platform agent technology 1. Simplification – Web interface, role separation 2. Compliance – Continuous checking
Normation – Tous droits réservés normation.com Intro: Rudder release history 2013 2014 2015 Jan Apr Jul Nov Dec March July Feb 2.5 2.6 2.7 2.8 2.9 2.10 2.11 3.0 Release history Release schedule Major version (2.x, 3.x) every 3 months Minor versions (2.x.y) are strictly bug-fix only, release when needed or at minimum every month
Normation – Tous droits réservés normation.com Rudder 3.0 Rudder 3.0 A major step forward
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Redesigned web interface ✔ Avoid wasted space ✔ One click access to all screens ✔ Familiar Bootstrap menu bar ✔ Improved user experience ✔ Refresh data in all tables
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Before After
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Wasted space Wastedspace Wastedspace Useful content Pre-3.0
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Useful content Now in 3.0
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface One click access to all pages Pre 3.0: double menu First click Second click Now in 3.0: one menu
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Improved user experience Pre 3.0: tabbed Directive page Now in 3.0: one menu
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface As of 3.0: single page, improved layout Always available Save button
Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface As of 3.0: single page, improved layout
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting ✔ Display an overview of all states for a Rule ✔ Proportional to number of nodes ✔ Proportional to number of configurations ✔ Drilldown by node or by component ✔ Display recent changes (repairs) over time ✔ List recent changes (repairs)
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting Error Unexpected No response Applying... Success Not applicable (eg SSH on Windows) Multi-colour progress bar displayed for each rule and as a global overview
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting Recent changesCompliance
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Overview + drilldown Exhaustive Focus on what is relevant
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting History of changes on nodes Keep an eye on what changed
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Overview: dashboard
Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Reporting: behind the scenes Two compliance modes Full compliance Changes only Varies logs sent from nodes to server: Explicit “success” message vs silence means OK + regular heartbeat 10:00 ComponentA Success 10:00 ComponentB Repaired 10:05 ComponentA Success 10:05 ComponentB Success 10:10 ComponentA Success 10:10 ComponentB Success → Saves a lot of bandwidth (syslog messages) + storage (DB) 10:00 ComponentB Repaired 10:10 Heartbeat I'm alive! vs
Normation – Tous droits réservés normation.com Rudder 3.0: Technique editor Create your own Techniques via a web interface Technique editor
Normation – Tous droits réservés normation.com Rudder 3.0: Technique editor Builds on the ncf framework and available methods Technique editor Example of a method 66generic methods as of today
Normation – Tous droits réservés normation.com Rudder 3.0: Node classification data Insert external data to classify nodes on key=value pairs Node classification data 1. Set key=value pairs for any nodes via the REST API See REST API documentation on http://www.rudder-project.org/rudder-api-doc/ Can be used to integrate with any third party CMDB, inventory/asset database, ...
Normation – Tous droits réservés normation.com Rudder 3.0: Node classification data Insert external data to classify nodes on key=value pairs Node classification data 1. Set key=value pairs for any nodes via the REST API 2. View, search and group in the web interface
Normation – Tous droits réservés normation.com Rudder 3.0: CLI Wrapper for common commands Command line interface # rudder agent Usage: rudder agent help rudder agent <command> [parameters ...] Run commands on agent. Available commands: disable forbid rudder-agent to be run by cron or service enable re-enable a disabled rudder-agent inventory force the agent to create and send a new inventory reinit re-initialise the agent to make it be seen as a new reset reset agent status and cache run force run agent promises update update promises on agent version get the agent version
Normation – Tous droits réservés normation.com Rudder 3.0: CLI Wrapper for common commands Command line interface # rudder server debug <node_IP> # Starts a temporary cf-serverd process on a different port # and uses a firewall rule to redirect traffic from that node # to the temporary server, running in verbose mode
Normation – Tous droits réservés normation.com Rudder 3.0: CLI Collect and centralise usage statistics to help development Usage statistics (opt-in, anonymous) "audit_log_enabled": "true", "reportscleaner_frequency": "daily", "os_name": "Debian", "uuid": "9480df7a-249c-4972-9593-648a60f769a1", "report_line_count": "16427", "expected_report_count": "118", "nodes_count": "3", "parameter_count": "1", "report_db_size": "8272 kB", "rule_count": "10", "reportscleaner_archive_ttl": "3", "os_version": "7.4", "installation_date": "2015-01-30 08:56:58.982185054 +0000", "db_size": "16 MB", "package_version": "rudder-server-root 3.0.0-wheezy0", "report_count_last_day": "156", "directive_count": "14", "reportscleaner_delete_ttl": "90", "agent_run_interval": "5", "rudder_workflow_enabled": "false” Sample statistics
Normation – Tous droits réservés normation.com What's new in Rudder 3.0 Performance improvement Much faster interface Super fast compliance Tested with 5000+ nodes Example: List nodes page for 2000 nodes Rudder 2.11: 2 seconds Rudder 3.0: 80 ms Various other changes Package (deb/rpm) for relay servers {yum,apt-get} install rudder-server-relay systemd support ncf methods Rudder Techniques New OS support RHEL/CentOS 7 Debian 8 Run frequency by node Set run frequency from 5 minutes to 6 hours on a global schedule + override by node
Normation – Tous droits réservés normation.com Rudder 3.1 and beyond Rudder > 3.0 Perspectives for the future
Normation – Tous droits réservés normation.com Rudder roadmap Rudder 3.1 with API focus in March 2015 Beyond: ● Tags everywhere ● RBAC authorisations ● Parameters by tags ● Check only mode ● Better forms for Directives ● Technique editor that exposes parameters ● Add extension points ● Plugins for third party tools
Normation – Tous droits réservés normation.com Rudder inside! Questions? Jonathan Clarke jcl@normation.com @jooooooon42 (7 'o's) Nicolas CHARLES nch@normation.com @nico_charles

Recommandé

Snort
SnortSnort
Snortbala150985
 
Webserver Architecture Example
Webserver Architecture ExampleWebserver Architecture Example
Webserver Architecture ExampleOhio University
 
Rudder: what's new and what's next? Roadmap, vision and thoughts
Rudder: what's new and what's next? Roadmap, vision and thoughtsRudder: what's new and what's next? Roadmap, vision and thoughts
Rudder: what's new and what's next? Roadmap, vision and thoughtsRUDDER
 
Aeronautics presentation
Aeronautics presentationAeronautics presentation
Aeronautics presentationBecky Blaisdell
 
Aircrafts
AircraftsAircrafts
AircraftsNikhilesh Vaidya
 
Basics of Flight and Aerodynamics (Groups B/D)
Basics of Flight and Aerodynamics (Groups B/D)Basics of Flight and Aerodynamics (Groups B/D)
Basics of Flight and Aerodynamics (Groups B/D)Logan Nielsen
 
Basic aircraft structure
Basic aircraft structureBasic aircraft structure
Basic aircraft structurejignesh prajapati
 
Ship Rudders
Ship RuddersShip Rudders
Ship RuddersCyril Sudip
 

Recommandé

Snort
SnortSnort
Snortbala150985
 
Webserver Architecture Example
Webserver Architecture ExampleWebserver Architecture Example
Webserver Architecture ExampleOhio University
 
Rudder: what's new and what's next? Roadmap, vision and thoughts
Rudder: what's new and what's next? Roadmap, vision and thoughtsRudder: what's new and what's next? Roadmap, vision and thoughts
Rudder: what's new and what's next? Roadmap, vision and thoughtsRUDDER
 
Aeronautics presentation
Aeronautics presentationAeronautics presentation
Aeronautics presentationBecky Blaisdell
 
Aircrafts
AircraftsAircrafts
AircraftsNikhilesh Vaidya
 
Basics of Flight and Aerodynamics (Groups B/D)
Basics of Flight and Aerodynamics (Groups B/D)Basics of Flight and Aerodynamics (Groups B/D)
Basics of Flight and Aerodynamics (Groups B/D)Logan Nielsen
 
Basic aircraft structure
Basic aircraft structureBasic aircraft structure
Basic aircraft structurejignesh prajapati
 
Ship Rudders
Ship RuddersShip Rudders
Ship RuddersCyril Sudip
 
Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?RUDDER
 
Monitoring as an entry point for collaboration
Monitoring as an entry point for collaborationMonitoring as an entry point for collaboration
Monitoring as an entry point for collaborationJulien Pivotto
 
LISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF ExporterLISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF ExporterIvan Babrou
 
Introduction to architecture exploration
Introduction to architecture explorationIntroduction to architecture exploration
Introduction to architecture explorationDeepak Shankar
 
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...Amazon Web Services
 
Tungsten Fabric Overview
Tungsten Fabric OverviewTungsten Fabric Overview
Tungsten Fabric OverviewMichelle Holley
 
eMagic-Data Center Management System
eMagic-Data Center Management SystemeMagic-Data Center Management System
eMagic-Data Center Management SystemSandesh Sonar
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationAndrew Wesbecher
 
C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4halgig
 
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)QAware GmbH
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks
 
SolarWinds Scalability for the Enterprise
SolarWinds Scalability for the EnterpriseSolarWinds Scalability for the Enterprise
SolarWinds Scalability for the EnterpriseSolarWinds
 
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...Amazon Web Services
 
Network Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient networkNetwork Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient networkCloudflare
 
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek JanikPLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek JanikPROIDEA
 
network-management Web base.ppt
network-management Web base.pptnetwork-management Web base.ppt
network-management Web base.pptAssadLeo1
 
WebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & ImplementationWebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & ImplementationAmir Zmora
 
From nothing to Prometheus : one year after
From nothing to Prometheus : one year afterFrom nothing to Prometheus : one year after
From nothing to Prometheus : one year afterAntoine Leroyer
 
Introduction To Cloud Computing
Introduction To Cloud ComputingIntroduction To Cloud Computing
Introduction To Cloud ComputingRinat Shagisultanov
 
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...NETWAYS
 
Interfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersInterfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersJonathan Clarke
 
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...Jonathan Clarke
 

Contenu connexe

Similaire à Rudder 3.0 and beyond

Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?RUDDER
 
Monitoring as an entry point for collaboration
Monitoring as an entry point for collaborationMonitoring as an entry point for collaboration
Monitoring as an entry point for collaborationJulien Pivotto
 
LISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF ExporterLISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF ExporterIvan Babrou
 
Introduction to architecture exploration
Introduction to architecture explorationIntroduction to architecture exploration
Introduction to architecture explorationDeepak Shankar
 
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...Amazon Web Services
 
Tungsten Fabric Overview
Tungsten Fabric OverviewTungsten Fabric Overview
Tungsten Fabric OverviewMichelle Holley
 
eMagic-Data Center Management System
eMagic-Data Center Management SystemeMagic-Data Center Management System
eMagic-Data Center Management SystemSandesh Sonar
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationAndrew Wesbecher
 
C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4halgig
 
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)QAware GmbH
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks
 
SolarWinds Scalability for the Enterprise
SolarWinds Scalability for the EnterpriseSolarWinds Scalability for the Enterprise
SolarWinds Scalability for the EnterpriseSolarWinds
 
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...Amazon Web Services
 
Network Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient networkNetwork Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient networkCloudflare
 
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek JanikPLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek JanikPROIDEA
 
network-management Web base.ppt
network-management Web base.pptnetwork-management Web base.ppt
network-management Web base.pptAssadLeo1
 
WebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & ImplementationWebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & ImplementationAmir Zmora
 
From nothing to Prometheus : one year after
From nothing to Prometheus : one year afterFrom nothing to Prometheus : one year after
From nothing to Prometheus : one year afterAntoine Leroyer
 
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...NETWAYS
 

Similaire à Rudder 3.0 and beyond (20)

Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?Rudder 3.0 - what's new ?
Rudder 3.0 - what's new ?
 
Monitoring as an entry point for collaboration
Monitoring as an entry point for collaborationMonitoring as an entry point for collaboration
Monitoring as an entry point for collaboration
 
LISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF ExporterLISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
LISA18: Hidden Linux Metrics with Prometheus eBPF Exporter
 
Introduction to architecture exploration
Introduction to architecture explorationIntroduction to architecture exploration
Introduction to architecture exploration
 
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
AWS re:Invent 2016: Amazon CloudFront Flash Talks: Best Practices on Configur...
 
Tungsten Fabric Overview
Tungsten Fabric OverviewTungsten Fabric Overview
Tungsten Fabric Overview
 
eMagic-Data Center Management System
eMagic-Data Center Management SystemeMagic-Data Center Management System
eMagic-Data Center Management System
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentation
 
C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4C Cure Users Group Presentation Final 4
C Cure Users Group Presentation Final 4
 
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)
 
Forward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentationForward Networks - Networking Field Day 13 presentation
Forward Networks - Networking Field Day 13 presentation
 
SolarWinds Scalability for the Enterprise
SolarWinds Scalability for the EnterpriseSolarWinds Scalability for the Enterprise
SolarWinds Scalability for the Enterprise
 
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
Monitoring as Code: Getting to Monitoring-Driven Development - DEV314 - re:In...
 
Network Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient networkNetwork Automation with Salt and NAPALM: a self-resilient network
Network Automation with Salt and NAPALM: a self-resilient network
 
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek JanikPLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
PLNOG14: Czy można żyć bez systemu ochrony przed atakami DDoS - Marek Janik
 
network-management Web base.ppt
network-management Web base.pptnetwork-management Web base.ppt
network-management Web base.ppt
 
WebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & ImplementationWebRTC Webinar & Q&A - Sumilcast Standards & Implementation
WebRTC Webinar & Q&A - Sumilcast Standards & Implementation
 
From nothing to Prometheus : one year after
From nothing to Prometheus : one year afterFrom nothing to Prometheus : one year after
From nothing to Prometheus : one year after
 
Introduction To Cloud Computing
Introduction To Cloud ComputingIntroduction To Cloud Computing
Introduction To Cloud Computing
 
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
stackconf 2023 | Infrastructure-From-Code and the end of Microservices by Ala...
 

Plus de Jonathan Clarke

Interfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersInterfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersJonathan Clarke
 
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...Jonathan Clarke
 
What is new in CFEngine 3.6
What is new in CFEngine 3.6What is new in CFEngine 3.6
What is new in CFEngine 3.6Jonathan Clarke
 
Automating security policies (compliance) with Rudder
Automating security policies (compliance) with RudderAutomating security policies (compliance) with Rudder
Automating security policies (compliance) with RudderJonathan Clarke
 
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéalOpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéalJonathan Clarke
 
Configuration management: automating and rationalizing server setup with CFEn...
Configuration management: automating and rationalizing server setup with CFEn...Configuration management: automating and rationalizing server setup with CFEn...
Configuration management: automating and rationalizing server setup with CFEn...Jonathan Clarke
 
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
A tale of Disaster Recovery (Cfengine everyday, practices and tools)A tale of Disaster Recovery (Cfengine everyday, practices and tools)
A tale of Disaster Recovery (Cfengine everyday, practices and tools)Jonathan Clarke
 
LSC - Synchronizing identities @ Loadays 2010
LSC - Synchronizing identities @ Loadays 2010LSC - Synchronizing identities @ Loadays 2010
LSC - Synchronizing identities @ Loadays 2010Jonathan Clarke
 
LDAP Synchronization Connector presentation at LDAPCon 2009
LDAP Synchronization Connector presentation at LDAPCon 2009LDAP Synchronization Connector presentation at LDAPCon 2009
LDAP Synchronization Connector presentation at LDAPCon 2009Jonathan Clarke
 
LDAP Synchronization Connector (LSC)
LDAP Synchronization Connector (LSC)LDAP Synchronization Connector (LSC)
LDAP Synchronization Connector (LSC)Jonathan Clarke
 

Plus de Jonathan Clarke (10)

Interfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert usersInterfacing infrastructure-as-code with non-expert users
Interfacing infrastructure-as-code with non-expert users
 
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...Sharing automation - why we need a language like ncf for this (Ignite @ devop...
Sharing automation - why we need a language like ncf for this (Ignite @ devop...
 
What is new in CFEngine 3.6
What is new in CFEngine 3.6What is new in CFEngine 3.6
What is new in CFEngine 3.6
 
Automating security policies (compliance) with Rudder
Automating security policies (compliance) with RudderAutomating security policies (compliance) with Rudder
Automating security policies (compliance) with Rudder
 
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéalOpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
OpenLDAP - Astuces pour en faire l'annuaire d'entreprise idéal
 
Configuration management: automating and rationalizing server setup with CFEn...
Configuration management: automating and rationalizing server setup with CFEn...Configuration management: automating and rationalizing server setup with CFEn...
Configuration management: automating and rationalizing server setup with CFEn...
 
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
A tale of Disaster Recovery (Cfengine everyday, practices and tools)A tale of Disaster Recovery (Cfengine everyday, practices and tools)
A tale of Disaster Recovery (Cfengine everyday, practices and tools)
 
LSC - Synchronizing identities @ Loadays 2010
LSC - Synchronizing identities @ Loadays 2010LSC - Synchronizing identities @ Loadays 2010
LSC - Synchronizing identities @ Loadays 2010
 
LDAP Synchronization Connector presentation at LDAPCon 2009
LDAP Synchronization Connector presentation at LDAPCon 2009LDAP Synchronization Connector presentation at LDAPCon 2009
LDAP Synchronization Connector presentation at LDAPCon 2009
 
LDAP Synchronization Connector (LSC)
LDAP Synchronization Connector (LSC)LDAP Synchronization Connector (LSC)
LDAP Synchronization Connector (LSC)
 

Dernier

Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024The Digital Insurer
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?Igalia
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobeapidays
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMESafe Software
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingEdi Saputra
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...DianaGray10
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...apidays
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProduct Anonymous
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...apidays
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processorsdebabhi2
 
Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024The Digital Insurer
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsJoaquim Jorge
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUK Journal
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 

Dernier (20)

Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 

Rudder 3.0 and beyond

  • 1. Normation – Tous droits réservés normation.com Rudder 3.0 and beyond Jonathan Clarke jcl@normation.com @jooooooon42 (7 'o's) Nicolas CHARLES nch@normation.com @nico_charles
  • 2. Normation – Tous droits réservés normation.com Who are we? Jonathan Clarke Origins: Sysadmin, infrastructure management jcl@normation.com @jooooooon42 (7 'o's) Co-founded and work at Creators of and ncf.io Nicolas CHARLES Origins: Development nch@normation.com @nico_charles
  • 3. Normation – Tous droits réservés normation.com This talk is about Rudder Overview & History 3.0 new features Perspectives for 3.1 and beyond
  • 4. Normation – Tous droits réservés normation.com Intro: Rudder overview DesktopCloudDatacenter Smart infrastructureMobile 3. Universality – Lightweight & multi-platform agent technology 1. Simplification – Web interface, role separation 2. Compliance – Continuous checking
  • 5. Normation – Tous droits réservés normation.com Intro: Rudder release history 2013 2014 2015 Jan Apr Jul Nov Dec March July Feb 2.5 2.6 2.7 2.8 2.9 2.10 2.11 3.0 Release history Release schedule Major version (2.x, 3.x) every 3 months Minor versions (2.x.y) are strictly bug-fix only, release when needed or at minimum every month
  • 6. Normation – Tous droits réservés normation.com Rudder 3.0 Rudder 3.0 A major step forward
  • 7. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Redesigned web interface ✔ Avoid wasted space ✔ One click access to all screens ✔ Familiar Bootstrap menu bar ✔ Improved user experience ✔ Refresh data in all tables
  • 8. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Before After
  • 9. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Wasted space Wastedspace Wastedspace Useful content Pre-3.0
  • 10. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Useful content Now in 3.0
  • 11. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface One click access to all pages Pre 3.0: double menu First click Second click Now in 3.0: one menu
  • 12. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface Improved user experience Pre 3.0: tabbed Directive page Now in 3.0: one menu
  • 13. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface As of 3.0: single page, improved layout Always available Save button
  • 14. Normation – Tous droits réservés normation.com Rudder 3.0: Redesigned web interface As of 3.0: single page, improved layout
  • 15. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting ✔ Display an overview of all states for a Rule ✔ Proportional to number of nodes ✔ Proportional to number of configurations ✔ Drilldown by node or by component ✔ Display recent changes (repairs) over time ✔ List recent changes (repairs)
  • 16. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting Error Unexpected No response Applying... Success Not applicable (eg SSH on Windows) Multi-colour progress bar displayed for each rule and as a global overview
  • 17. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Status reporting Recent changesCompliance
  • 18. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Overview + drilldown Exhaustive Focus on what is relevant
  • 19. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting History of changes on nodes Keep an eye on what changed
  • 20. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Overview: dashboard
  • 21. Normation – Tous droits réservés normation.com Rudder 3.0: Status reporting Reporting: behind the scenes Two compliance modes Full compliance Changes only Varies logs sent from nodes to server: Explicit “success” message vs silence means OK + regular heartbeat 10:00 ComponentA Success 10:00 ComponentB Repaired 10:05 ComponentA Success 10:05 ComponentB Success 10:10 ComponentA Success 10:10 ComponentB Success → Saves a lot of bandwidth (syslog messages) + storage (DB) 10:00 ComponentB Repaired 10:10 Heartbeat I'm alive! vs
  • 22. Normation – Tous droits réservés normation.com Rudder 3.0: Technique editor Create your own Techniques via a web interface Technique editor
  • 23. Normation – Tous droits réservés normation.com Rudder 3.0: Technique editor Builds on the ncf framework and available methods Technique editor Example of a method 66generic methods as of today
  • 24. Normation – Tous droits réservés normation.com Rudder 3.0: Node classification data Insert external data to classify nodes on key=value pairs Node classification data 1. Set key=value pairs for any nodes via the REST API See REST API documentation on http://www.rudder-project.org/rudder-api-doc/ Can be used to integrate with any third party CMDB, inventory/asset database, ...
  • 25. Normation – Tous droits réservés normation.com Rudder 3.0: Node classification data Insert external data to classify nodes on key=value pairs Node classification data 1. Set key=value pairs for any nodes via the REST API 2. View, search and group in the web interface
  • 26. Normation – Tous droits réservés normation.com Rudder 3.0: CLI Wrapper for common commands Command line interface # rudder agent Usage: rudder agent help rudder agent <command> [parameters ...] Run commands on agent. Available commands: disable forbid rudder-agent to be run by cron or service enable re-enable a disabled rudder-agent inventory force the agent to create and send a new inventory reinit re-initialise the agent to make it be seen as a new reset reset agent status and cache run force run agent promises update update promises on agent version get the agent version
  • 27. Normation – Tous droits réservés normation.com Rudder 3.0: CLI Wrapper for common commands Command line interface # rudder server debug <node_IP> # Starts a temporary cf-serverd process on a different port # and uses a firewall rule to redirect traffic from that node # to the temporary server, running in verbose mode
  • 28. Normation – Tous droits réservés normation.com Rudder 3.0: CLI Collect and centralise usage statistics to help development Usage statistics (opt-in, anonymous) "audit_log_enabled": "true", "reportscleaner_frequency": "daily", "os_name": "Debian", "uuid": "9480df7a-249c-4972-9593-648a60f769a1", "report_line_count": "16427", "expected_report_count": "118", "nodes_count": "3", "parameter_count": "1", "report_db_size": "8272 kB", "rule_count": "10", "reportscleaner_archive_ttl": "3", "os_version": "7.4", "installation_date": "2015-01-30 08:56:58.982185054 +0000", "db_size": "16 MB", "package_version": "rudder-server-root 3.0.0-wheezy0", "report_count_last_day": "156", "directive_count": "14", "reportscleaner_delete_ttl": "90", "agent_run_interval": "5", "rudder_workflow_enabled": "false” Sample statistics
  • 29. Normation – Tous droits réservés normation.com What's new in Rudder 3.0 Performance improvement Much faster interface Super fast compliance Tested with 5000+ nodes Example: List nodes page for 2000 nodes Rudder 2.11: 2 seconds Rudder 3.0: 80 ms Various other changes Package (deb/rpm) for relay servers {yum,apt-get} install rudder-server-relay systemd support ncf methods Rudder Techniques New OS support RHEL/CentOS 7 Debian 8 Run frequency by node Set run frequency from 5 minutes to 6 hours on a global schedule + override by node
  • 30. Normation – Tous droits réservés normation.com Rudder 3.1 and beyond Rudder > 3.0 Perspectives for the future
  • 31. Normation – Tous droits réservés normation.com Rudder roadmap Rudder 3.1 with API focus in March 2015 Beyond: ● Tags everywhere ● RBAC authorisations ● Parameters by tags ● Check only mode ● Better forms for Directives ● Technique editor that exposes parameters ● Add extension points ● Plugins for third party tools
  • 32. Normation – Tous droits réservés normation.com Rudder inside! Questions? Jonathan Clarke jcl@normation.com @jooooooon42 (7 'o's) Nicolas CHARLES nch@normation.com @nico_charles