|
Ithaqua posted:This is not a good practice, IMO. You should be building a set of binaries, testing them against a dev/integration environment, then promoting those binaries to the next environment in the release path. There are tools out there to help you manage releases like this. Overextending the build process to deploy software is really painful and inflexible. Vulture Culture fucked around with this message at 20:12 on Mar 11, 2015 |
# ¿ Mar 11, 2015 20:09 |
|
|
# ¿ Apr 29, 2024 09:02 |
|
You also need to consider what it means to reproduce a deployment. Reproducing a deploy from a week ago might be a reasonable use case if you have a really nasty regression on a public system. On the other hand, how often are you going to be deploying months-old code where it's worth it to invest that time up front to make it work, as opposed to when (if) it comes up?
|
# ¿ May 28, 2015 08:09 |
|
syphon posted:Tools like Chef have done a really good job of mitigating this problem. Your cookbooks have 'defaults' which can be overridden per environment. This answers minato's stated problem of "configuration drift" across environments. Then, you can enforce versioning of your cookbooks in order to create reproducible deployments. https://www.youtube.com/watch?v=Dq_vGxd-jps
|
# ¿ May 28, 2015 20:27 |
|
Bhodi posted:An issue I keep coming across is an elephants all the way down problem of then having to have an associated prod/dev/test/whatever for your all your management code / servers when you use puppet/chef/ansible/whatever.
|
# ¿ May 29, 2015 07:39 |
|
Bhodi posted:In your example it would be having recipes for setting up your Postgres, rabbit mq, bookshelf, all the components of chef. And because presumably you need to be able to test upgrades and patches while your dev instance is supporting other people's work in dev, you need a separate entire instance for your own testing of those scripts. Maybe chef can bootstrap itself with its own files, I don't know, but you need those too. At some point you have to evaluate if it's all useful and just compromise, as was brought up in the cloud thread, but it's obnoxious to deal with when your systems can't manage themselves.
|
# ¿ May 29, 2015 15:19 |
|
Plorkyeran posted:FWIW this is all trivially doable with Jenkins (to the extent that anything involving Jenkins can be said to be trivial), but I can definitely see the value in a tool that actually points you in the right direction rather than basically requiring a knowledgeable consultant to end up with anything remotely sane.
|
# ¿ Jun 4, 2015 20:17 |
|
Plorkyeran posted:okay? teamcity is p. good and handles artifact deps really nicely
|
# ¿ Jun 4, 2015 23:05 |
|
TheresNoThyme posted:Anyone have experience using devops tools to stand up and support an internal cloud?
|
# ¿ Jul 6, 2015 18:36 |
|
minato posted:Definitely. OpenStack is (mostly) fine to use, but only a masochist would want to manage it.
|
# ¿ Jul 6, 2015 20:22 |
|
Alternatively, https://vaultproject.io/
|
# ¿ Jul 13, 2015 16:22 |
|
Sedro posted:Has anyone used TeamCity + Vagrant? I basically want TC to 'vagrant up' then run its build agent inside the VM. I could use a different build agent for each build but that immediately puts me into their enterprise pricing tier. If you need dynamic agent support, you might consider having it spin up EC2 instances; that's directly integrated into the product. Vulture Culture fucked around with this message at 18:15 on Oct 21, 2015 |
# ¿ Oct 21, 2015 18:13 |
|
Sagacity posted:What do you guys consider the most painless way of deploying docker containers to AWS? They have something called ECS and Elastic Beanstalk which seems nice, but is it actually good to use when you just want to automate everything or should I look at a different automation layer like (random selection) Convox or Rancher? It takes less than 15 minutes to get set up on though, so you might as well just give it a shot. If you're not tied down to AWS, Google Container Engine is a pretty well-flushed out container grid.
|
# ¿ Jan 8, 2016 00:21 |
|
Sagacity posted:AFAICT that'll mainly leave me with AWS, Google or Azure, since other options require me to do a lot of the infra management myself. Do you guys have a preference for one of these three managed options?
|
# ¿ Jan 8, 2016 18:49 |
|
wins32767 posted:Any advice on hiring a devops person as a manager who has done related work (development, systems administration) but not the devops role specifically?
|
# ¿ Jan 14, 2016 02:26 |
|
minato posted:I think it's totally possible for there to be a DevOps role, because someone has to ensure the teams are adhering to the DevOps principles. I don't think it's enough for the managers to walk in and pronounce that "We're doing DevOps now. Dev, talk to Ops more often, and vice-versa." Someone has to keep the ball from getting dropped. Are Devs just as much on the on-call hook as Ops when prod falls over? Is Ops getting invited to Dev's design/architecture meetings? Is there shared ownership of the build-test-deploy pipeline, and who is responsible for maintaining and developing that? minato posted:In the same way that there's a ScrumMaster who (amongst other things) is responsible for keeping the team aligned to Agile principles, there can be a "DevOpsMaster" who has a good understanding of the principles and the mandate to enforce them. It's not a given that this person would necessarily be a manager; in some companies, managers are more concerned with developing their reports' abilities than with deciding how they do their job.
|
# ¿ Jan 14, 2016 04:20 |
|
wins32767 posted:Ok, so let me change the conversation a bit here. What's the kind of skills that a small but very rapidly growing company should look for in their first hire in a role that needs to handle some operations work? There isn't enough work for a full time operations position, nor will there be for at least a year, but I want to lay a good foundation.
|
# ¿ Jan 14, 2016 05:15 |
|
Erwin posted:Right, the term is Thought Leader.
|
# ¿ Jan 14, 2016 16:53 |
|
It's probably not a zero-effort thing to get the app working as a 12-factor app, but it's not exactly an ordeal either
|
# ¿ Jan 20, 2016 03:33 |
|
Ben Grahams Ghost posted:I'm hoping this is the best place for this question. I'm trying to setup a small cluster to get a better handle on ELK and automation/management (using Ansible/etc). Right now I'm just running VMs on VMWare Player, and I have baby's first two machine cluster up and running.
|
# ¿ Jan 25, 2016 06:41 |
|
TeamCity is a great build server but nothing is very good at handling the deploy end of CD without a ton of duct tape and glue. That said, I've almost never run into weird operational problems with it, unlike Jenkins.
|
# ¿ Feb 2, 2016 16:45 |
|
Ithaqua posted:That's why the deployment piece is being foisted off onto configuration management systems for the most part. Overextending a build system to do deployments sucks. Plus builds pushing bits encourages building per environment instead of promoting changes from one environment to the next. The product I'm managing is sitting somewhere between 3,000 and 4,000 service instances now, and there's nothing yet that operates at that scale and is understandable by normal humans. Vulture Culture fucked around with this message at 21:45 on Feb 2, 2016 |
# ¿ Feb 2, 2016 21:41 |
|
the talent deficit posted:if deploy is your problem (and not building) i would encourage you to look elsewhere. aws codedeploy is pretty good if you are on aws
|
# ¿ Feb 4, 2016 03:08 |
|
YO MAMA HEAD posted:I only really focus on devopsy stuff for a few days a month (or when something breaks) but I was surprised I hadn't heard anything at all about Otto. Has anyone checked it out? On the dev side I like the idea of a simpler Appfile but I didn't understand provisioning—if we need a dev box with requirements that are in any way out of the ordinary (SoX for audio processing), how do we make that happen?
|
# ¿ Feb 5, 2016 21:47 |
|
Sedro posted:I'm looking to separate my build server from my deployment. Currently TeamCity builds a feature branch then runs a shell script to start an environment locally (passing in the branch name). Instead I want to push the artifact to a QA server and deal with it there. A web interface to manage those environments would be nice too. What should I be looking for (besides a proper devops engineer)?
|
# ¿ Feb 9, 2016 23:08 |
|
Erwin posted:Anybody know when Policyfiles are going to be considered not experimental/ready for use in ChefDK? I'm trying to improve my cookbook workflow but I don't want to get too invested in Berkshelf if it's going away soon.
|
# ¿ Feb 10, 2016 00:03 |
|
It's a really very valuable tool for resolving dependency chains in test suites, especially if you're targeting local forks of things, but the "conventional wisdom" in Chef is based around things that work for teams of 20 Chef-focused engineers and are absolutely irrelevant for small teams. We're in the process of rapidly using Chef to manage less and less things anyway, so it's becoming less relevant to us in any case. CM systems like Chef and Puppet are the God Object development anti-pattern applied to infrastructures. Abstractions aren't ever as fixed as you think they are, and we just spend more time unspinning and respinning balls of yarn than we do getting work done with the tool. As we move towards considerably-less-mutable infrastructures, idempotence is just another added cost. I'm feeling much less stressed with a big pile of Dockerfiles, honestly. Vulture Culture fucked around with this message at 19:28 on Feb 10, 2016 |
# ¿ Feb 10, 2016 19:26 |
|
wwb posted:SSH from windows is pretty easy these days.
|
# ¿ Mar 26, 2016 01:00 |
|
Rocko Bonaparte posted:Is there anything out there that spells out how to do a gated check-in between git, Gerrit, and TeamCity? I want to have a pushed commit stage in Gerrit for review, but I want TeamCity to then turn around and run the built-in tests. I'd prefer that the report somehow show up in Gerrit. The reviewer can then see how well the change worked against the repository's tests before possibly reviewing broken code.
|
# ¿ Jul 23, 2016 13:22 |
|
revmoo posted:I'm quite happy with my deployment methodology and I'm not interested in changing it. I would definitely like to explore Docker for infrastructure management but I couldn't imagine using it to deploy code.
|
# ¿ Sep 28, 2016 18:19 |
|
the talent deficit posted:i think blue/green encourages/enables some really harmful practices like treating your standby environment as a staging/integration environment and relaxing requirements on api compatibility. i think in the small (like using blue/green for a particular subsystem like a database or an application group) blue/green can be okay but if you can do blue/green in the small you can probably just do gradual replacement where you can have multiple versions deployed simultaneously without impacting users. basically, i think if you have a healthy blue/green procedure you don't need it, and if you need it you probably have a hard time deploying regularly
|
# ¿ Oct 24, 2016 16:57 |
|
Mr. Crow posted:Anyone have experience setting up teamcity in a docker container behind a reverse proxy which is also in a container (nginx)? This is one of those applications I would generally file under "do not Dockerize" unless you have a mandate to run it on Kubernetes or ECS or something.
|
# ¿ Oct 25, 2016 19:58 |
|
Sedro posted:I run teamcity in a docker container. There's nothing to it. Are you having a specific problem?
|
# ¿ Oct 26, 2016 05:31 |
|
smackfu posted:Does anyone here work somewhere that forces all commits to master to go through a pull request (which has to build green before merging)? Is it good or does it just add more annoying process? Currently we just do something like "mvn install && git push" which runs all our integration tests before pushing which is pretty good at keeping the build green. But it does require discipline. Integration tests as a gate for merge are bad on big codebases, though. They take a long time. You should have enough unit test coverage to handle most of the clear and obvious build-breaking bugs, and run your integration tests overnight. (This guidance varies if you happen to be doing continuous delivery.)
|
# ¿ Mar 31, 2017 20:49 |
|
the talent deficit posted:do people complaining about waiting on integration tests not do code review? we don't merge anything in less than 12 hours (unless it's a critical fix) because all prs have to go through extensive code review. that always takes longer than running integration tests
|
# ¿ Apr 1, 2017 04:04 |
|
fletcher posted:We use the ELK stack for logging and I ran out of disk space for elasticsearch way sooner than I thought I would. How can I tell which log entries (i.e. by hostname or something) are consuming the most disk space?
|
# ¿ Jun 2, 2017 03:20 |
|
fletcher posted:This is gonna be a dumb question as I am a total newbie to the whole ELK stack but how do I see what my index template for logstash-* is?
|
# ¿ Jun 7, 2017 15:14 |
|
necrobobsledder posted:It's fine to Dockerize a database as long as you don't expect it to last a long, long time with its data or have a solid grasp on the data volume's lifecycle (see: Postgres K8s operator), but for most people in production with big ol' clusters and such that doesn't apply. I use Docker containers for launching temporary databases in CI builds and to compare / contrast different configuration settings for different use cases.
|
# ¿ Jun 8, 2017 18:03 |
|
You can update mappings on multiple indexes by specifying a wildcard. https://www.elastic.co/guide/en/elasticsearch/reference/current/indices-put-mapping.html#_multi_index
|
# ¿ Jun 8, 2017 20:14 |
|
If you're an early-stage startup you can also get up to $100,000 in free money from AWS! (Most of the other big players offer similar startup programs if you've got the backing of a major fund.)
|
# ¿ Jul 5, 2017 03:40 |
|
|
# ¿ Apr 29, 2024 09:02 |
|
NihilCredo posted:I'm looking for a Docker container (or Compose) to integrate in my own solutions that will create a SSL termination proxy using Let's Encrypt. Nothing fancy like subdomains or anything, I'd just like it to be as idiot-proof as one can hope for. I think you want Caddy
|
# ¿ Jul 6, 2017 18:08 |