Embed Size (px)
Citation preview
Date:
Presenter:
Docker and the Enterprise DevOps Journey
6/9/2016
Aater Suleman
Achievements
About Flux7
Aater Suleman Co-Founder & CEO Flux7 Faculty, UT Austin
Flux7: Cloud and DevOps Solutions
Founded in 2013Team of 35+Headquartered in Austin,
Texas
AWS DevOps, Healthcare, and Life Sciences Competencies
TechTarget’s “Impact Best AWS Consulting Partner” two years in a row (2015 & 2016)
Partner Recognition Award at AWS reInvent 2015
Customers featured on stage at AWS re:Invent three years in a row
Docker Foundation and authorized consulting partner
150+ happy customers
★ Frontend HTML/JS developers
★ Backend developers★ Operations folks ★ Business:
Managers/executives
Quick Poll
HOW MANY?
★ Enterprise (> 1B in cap)
★ Mid-tier ★ SMBs
HOW MANY?
POP
Purpose: To demonstrate the role of Docker in the enterprise journey to DevOps
Outcomes:- What role does Docker play in the journey?- What does a journey to DevOps look like?
Plan:- Why DevOps- Where does Docker fit in- Journey to DevOps Using Docker - case studies- Where do you get started?
Why DevOps
Release faster to meet demands
Build for multiple platforms
Better UserExperience
Pressure to deliver technology
Technology Delivery
CodeInfrastructure
Server Configuratio
ns
Security Rules
The four key components:
High developer productivity
Increasing speed, maintaining quality
Fast infrastructure provisioning
Repeatable configurations
Automated security and
policy enforcements
Requirements
Bottlenecks and Roadblocks
Interdependencies Poor communication
Example: Common Bottleneck
Submit Ticket
Review
Ticket
Email back
Implement
Change
Update
Ticket
ReviewChange
Close Ticket
Example: Common Bottleneck
Submit Ticket
Review
Ticket
Email back
Implement
Change
Update
Ticket
ReviewChange
Close Ticket
UpdateTicket
Fast Technology Delivery requires ...
Decoupling - Self service provisioning- Automated code deployments
Streamlining - Infrastructure as code- Configuration management
Eliminating Bottlenecks
Edit Template
Version control
Is there an easy button?
Press button on service
catalog
Email back
Email back
Yes
NoDeploy
Review
Eliminating Bottlenecks
Edit Template
Version control
Is there an easy button?
Press button on service
catalog
Email back
Email back
Yes
NoDeploy
Review
More
Fast & non-ambiguous
✓ Run and orchestrate containers
✓ Provides a layer of abstraction between infrastructure and application
Where Does Docker Fit InApp Container (App, Assets, App config)
Config Docker engine
By providing developers with:○ Control over configuration via Dockerfiles ○ End-to-end ownership of application and its
configuration ○ Control networking and provisioning○ An easy path to request infrastructure
By providing operations with:○ Focus on building a robust infrastructure to run the
containers rather than collecting and implementing requirements
By providing Information Security with: ○ Immutable containers ○ Smaller and more consistent perimeter○ Automated analysis at build time
Docker Enables the DevOps Journey
A more productive and autonomous Dev team
An operations team more focused on the health of the production environment and creating self-service portals
An information security team focused on building rules for automated analysis
The Enterprise Journey to DevOps
Docker’s role
Journey to DevOpsCase Studies
RentACenter
Lengthy deployment cycles; non-scalable infrastructure; numerous manual steps involved in provisioning new servers; manual process to prepare the OS and server images.
The company had a young DevOps department with no technologists, and needed help and guidance in improving their development and IT processes.
Business Challenge
Fortune 500 retail
organization
RAC (Virtual Acceptance Now)
The solution that Flux7 implemented
for us ensures agility in our IT operations and development
efforts, enabling us to focus on giving our customers a high-quality experience.
A DevOps-based streamlined infrastructure that included a high degree of automation that met security and uptime requirements.
RAC’s initial project has served as a proof of concept around which they have extended their infrastructure and DevOps culture.
Presentation at AWS Chicago Summit 2016: https://www.youtube.com/watch?v=JVzrGr4Fkzc
Outcome
Architecture Diagram
Prod
Security
ApacheApacheWeb
RDS
CloudFormationS3
Jump
LogManager
Jenkins
Threat Manager
HQ
Note: All tiers are designed for automated multi-AZ failover
ApacheApacheApp
Shared SVC
ApacheApacheWAF
F1000 Financial Company
New business opportunities and a need for increased agility helped drive a decision to migrate on-premise infrastructure to AWS.
The company needed to ensure development was able to deliver high quality, secure solutions against tight deadlines.
Business Challenge
Fortune 1000 retail
point of sale organization
F1000 Financial Company
Docker based automation tamed the project’s complex microservices, provides highly available, portable environments to improve agility and increase fidelity of new releases. Unique build - deploy system uses Docker for CI/CD, enables self-service IT for dev teams.
Security is extended by making sensitive configuration data available based on role, while ensuring development meets security processes and controls.
Outcome
Invent & Simplify Award
re:Invent 2015APN Summit
Code Deploy
CI
Docker Registry
Deploy
Jenkins
Code + Dockerfile Jenkins
On-premise
AWS
Trigger docker pull
S3
Docker build
Artifacts +Dockerfile Imag
e
For isolated pre-commit dev testing
Servers
Servers
Large Healthcare Startup
SaaS product for patient engagement
Requires HIPAA compliance
Competitive landscape requires fast technology delivery
Concurrent switch to a microservices architecture
Business Challenge
✓ Microservices developed to run inside Docker containers
✓ Auto-scaling, self-healing Docker cluster created in Amazon Web Services
✓ CI/CD of containers setup via Jenkins
Solution
Large Healthcare Company
Code Promotion
DevPass/Fail + URL
Pass/Fail
Test traffic
Master DB
Dev/test Cluster
Prod Cluster
1
2
6
7
8
9
5
3
10
14
12
15
code/config
metadata
13
1. Commit code to feature branch
2. Receive hook, build container and push to Artifactory
3. Create new ECS service4. Receive URL of new
service5. Create/deploy new
nginx.conf file6. Trigger testing 7. Run integration tests 8. Report pass/fail 9. Notify Developer of results
10.Merge to master with a release tag
11.Receive hook, build container and push to Artifactory
12.Create new ECS service13.Receive URL14.Create/deploy new
nginx.conf file15.Update master DB to tell
universal login a new version is available
11
ECS
ECS4
✓ Faster code delivery
✓ Developers autonomous to not just update but also create new services
✓ New infrastructure provisioned via automation and self-service
✓ Infrastructure changes not automated reviewed in the form of CloudFormation template “pull requests”
Outcomes
Large Healthcare Company
How to get started
DevOps
Journey to DevOps
Build POC(s)
Build COE*Launch COE
COE Helps Dev and IT
COE Trains IT and Dev Teams
The No
Exploration
COE Learns, Iterates, and Trains
Closed Open-source model
Assess, Attune, KT
Engage
Summit
Propel
*COE -Center of Excellence
Tip
Measurement is key
Provides results, motivation, and helps in ROI analysis
5 Key DevOps KPIs
Deployment frequency
Deployment latency -
committed code to deployment
Percentage of deployments
that cause failure
Recovery time - Time from failure
detection to service getting back up
Employee Satisfaction
7 Steps to Jumpstart DevOps + Docker
1. Interview development teams in your company to find the one which is most blocked by infrastructure
2. Schedule a Docker 101 training for this team
3. Schedule a Workshop for this team to learn how to containerize an actual app
4. Turn it into Hackathon for the developer to containerize their app (2-weeks)
Phase 1
7 Steps to Jumpstart DevOps + Docker
5. Schedule a session with Enterprise Architects to solidify a Docker-at-scale strategya. Tip: Start simple, you can change it later easily
6. Schedule a session with Information Security to learn Docker and build security policies for Docker
7. Schedule a workshop for operations team to learn about monitoring, logging, backups, and DR of Docker setups
Phase 2
Thank YouAater SulemanCEOFlux7.comAustin, Texaswww.flux7.com
@flux7Labs
@FutureChips
