Abstract image of a woman sitting on books and studying on a laptop

20170831 - Greg Palmier: Terraform & AWS at Tempus

Download as PDF, PPTX
D
DevOps Chicago

Terraform is used at Tempus to define AWS infrastructure as code using modules and blueprints. Common utilities like a shared VPC are defined for re-use, while environment-specific configurations are generated. Applications are deployed using modules that define resources like load balancers, auto-scaling groups, and databases, allowing standardized deployment across environments in about 5 minutes. Monitoring and automation is implemented through CloudWatch, ASGs, and tools like Jenkins and PagerDuty.

1 of 21
Download as PDF, PPTX
Terraform and AWS at Tempus
What is Terraform? • Collection of DSLs for the AWS API
DRYing Terraform • App Specific things - Plugins for Blueprints • “Blueprints” - Iterate over modules • Modules
Network Blueprint / Module • VPCs (Scenario 2) • Public/Private • Multi-Zone • Peering • MGMT (bastion, proxy)
Env Specific VPC
VPC Blueprint
VPC Module
App Stack Overview • Module / Blueprints • CloudFront -> S3 • AutoScaling Groups • Instances • ELB • RDS • Security Groups
Shared Data • Certs • SSH Public Keys • VPC Data
App Deploy • File = Just a bunch of bash • Every app uses the same module for Deploying
Instance Cloud-init • Write Docker-compose (user data) • Auth with ECR • docker-compose -f thatfile.yml -d • Healthcheck = Success
RDS -> S3 • There should be an ingress rule here too • “I’m going to open this up to the pub real quick”
Common Utils • Common VPC Peered to all other “App” VPCs • Output Security Info, CIDRs, etc (sick of IPV4 stuff yet?) • Jenkins (workers in specific SGs) • Log Shipping
IAM • Users (Devs and Machine Users) • Groups / Products • Roles & Policies • Controlling Dev and Machine access to Specific ENVs
CloudFront • CDNs with Bucket origins • Static Assets are Deployed to Buckets • Certs are pushed out to CDNs through Cert Manager • CORS policies
Deploying • Jenkins - Builds Container off Merges, Runs TF code (Jenkinsfile) • Docker Compose • Glue for extraneous TF things • Gem - GitHub -> AWS SDK -> Terraform
Monitoring • Cloudwatch -> SNS -> Pagerduty • Cloudwatch -> ASGs -> scaling and rolling instances
One-off Scaffolding • Stateful Instances (<5%) • Everything “around” the instance is in TF and we plug in an AMI
Globals and API Region Support
Results • The more we control, the less configuration drift there is • Output and Import all the things; tight grasp on ACLs • Deploy times ~ 5 Minutes • Build Time ~5 Minutes
Questions

More Related Content

PDF
Netflix Cloud Platform and Open Source
aspyker
 
PDF
NetflixOSS and ZeroToDocker Talk
aspyker
 
PDF
Matt Chung (Independent) - Serverless application with AWS Lambda
Outlyer
 
PDF
Securing your AWS Deployments with Spinnaker and Armory Enterprise
DevOps.com
 
PDF
Serverless security - how to protect what you don't see?
Sqreen
 
PPTX
Shift Left - How to improve your security with checkov before it’s going to p...
Anton Grübel
 
PDF
Cloudsolutionday 2016: DevOps workflow with Docker on AWS
AWS Vietnam Community
 
PDF
.Net Conf 2018 Service Fabric
Michaël FERY
 
Netflix Cloud Platform and Open Source
aspyker
 
NetflixOSS and ZeroToDocker Talk
aspyker
 
Matt Chung (Independent) - Serverless application with AWS Lambda
Outlyer
 
Securing your AWS Deployments with Spinnaker and Armory Enterprise
DevOps.com
 
Serverless security - how to protect what you don't see?
Sqreen
 
Shift Left - How to improve your security with checkov before it’s going to p...
Anton Grübel
 
Cloudsolutionday 2016: DevOps workflow with Docker on AWS
AWS Vietnam Community
 
.Net Conf 2018 Service Fabric
Michaël FERY
 

What's hot(20)

PPTX
Cloudsolutionday 2016: Getting Started with Severless Architecture
AWS Vietnam Community
 
PPT
Sebastien goasguen cloud stack the next year
ShapeBlue
 
PDF
Terrascan - Cloud Native Security Tool
sangam biradar
 
PPTX
Cloudsolutionday 2016: Docker & FAAS at getvero.com
AWS Vietnam Community
 
PPTX
Meetup #3: Migrate a fast scale system to AWS
AWS Vietnam Community
 
PPTX
Kubernetes as Orchestrator for A10 Lightning Controller
Akshay Mathur
 
PPTX
Flynn Bundy - 60 micro-services in 6 months
WinOps Conf
 
PDF
NetflixOSS Meetup S6E2 - Spinnaker, Kayenta
aspyker
 
PPTX
Ibm cloud nativenetflixossfinal
aspyker
 
PDF
Understanding AWS with Terraform
Knoldus Inc.
 
PPTX
Netflix0SS Services on Docker
Docker, Inc.
 
PPTX
Serverless Reality
Lynn Langit
 
PPT
Docker in the Cloud
Sascha Möllering
 
PPTX
Externalized Spring Boot App Configuration
Haufe-Lexware GmbH & Co KG
 
PDF
Case Study: Utilizing Mirantis Fuel to install OpenStack Ansible
TeK Charnsilp Chinprasert
 
PDF
Aws + kubernetes = ❤︎
Anthony Stanton
 
PPTX
Sas 2015 event_driven
Sascha Möllering
 
PDF
Network Infrastructure as Code with Chef and Cisco
Matt Ray
 
PPTX
Meetup #3: Migrating an Oracle Application from on-premise to AWS
AWS Vietnam Community
 
PDF
Serverless Node.js
The Software House
 
Cloudsolutionday 2016: Getting Started with Severless Architecture
AWS Vietnam Community
 
Sebastien goasguen cloud stack the next year
ShapeBlue
 
Terrascan - Cloud Native Security Tool
sangam biradar
 
Cloudsolutionday 2016: Docker & FAAS at getvero.com
AWS Vietnam Community
 
Meetup #3: Migrate a fast scale system to AWS
AWS Vietnam Community
 
Kubernetes as Orchestrator for A10 Lightning Controller
Akshay Mathur
 
Flynn Bundy - 60 micro-services in 6 months
WinOps Conf
 
NetflixOSS Meetup S6E2 - Spinnaker, Kayenta
aspyker
 
Ibm cloud nativenetflixossfinal
aspyker
 
Understanding AWS with Terraform
Knoldus Inc.
 
Netflix0SS Services on Docker
Docker, Inc.
 
Serverless Reality
Lynn Langit
 
Docker in the Cloud
Sascha Möllering
 
Externalized Spring Boot App Configuration
Haufe-Lexware GmbH & Co KG
 
Case Study: Utilizing Mirantis Fuel to install OpenStack Ansible
TeK Charnsilp Chinprasert
 
Aws + kubernetes = ❤︎
Anthony Stanton
 
Sas 2015 event_driven
Sascha Möllering
 
Network Infrastructure as Code with Chef and Cisco
Matt Ray
 
Meetup #3: Migrating an Oracle Application from on-premise to AWS
AWS Vietnam Community
 
Serverless Node.js
The Software House
 

Similar to 20170831 - Greg Palmier: Terraform & AWS at Tempus(20)

PDF
AWS DevOps - Terraform, Docker, HashiCorp Vault
Grzegorz Adamowicz
 
PPTX
Infrastructure as code with terraform and packer
Alex Landa
 
PDF
Workshop Infrastructure as Code - Suestra
Mario IC
 
PPTX
terraform cours intéressant et super fort
amar719595
 
PPTX
RIMA-Infrastructure as a code with Terraform.pptx
MrJustbis
 
PDF
Provisioning infrastructure to AWS using Terraform – Exove
Exove
 
PPTX
"Continuously delivering infrastructure using Terraform and Packer" training ...
Anton Babenko
 
PDF
Terraforming your Infrastructure on GCP
Samuel Chow
 
PDF
Microservices with Terraform, Docker and the Cloud. DevOps Wet 2018
Derek Ashmore
 
PDF
Introductory Overview to Managing AWS with Terraform
Michael Heyns
 
PDF
Application Lifecycle Management on AWS
David Mat
 
PDF
Microservices with Terraform, Docker and the Cloud. Chicago Coders Conference...
Derek Ashmore
 
PDF
Microservices with Terraform, Docker and the Cloud. JavaOne 2017 2017-10-02
Derek Ashmore
 
PDF
Microservices with Terraform, Docker and the Cloud. IJug Chicago 2017-06-06
Derek Ashmore
 
PDF
Continuous Deployment @ AWS Re:Invent
John Schneider
 
PDF
Hashicorp-Terraform-Deep-Dive-with-no-Fear-Victor-Turbinsky-Texuna.pdf
ssuser705051
 
PDF
Terraform-2.pdf
rutiksankapal21
 
PPTX
Introduction to DevOps on AWS
Shiva Narayanaswamy
 
PDF
Infrastructure as Code with Terraform
Tim Berry
 
PDF
DevOps Braga #9: Introdução ao Terraform
DevOps Braga
 
AWS DevOps - Terraform, Docker, HashiCorp Vault
Grzegorz Adamowicz
 
Infrastructure as code with terraform and packer
Alex Landa
 
Workshop Infrastructure as Code - Suestra
Mario IC
 
terraform cours intéressant et super fort
amar719595
 
RIMA-Infrastructure as a code with Terraform.pptx
MrJustbis
 
Provisioning infrastructure to AWS using Terraform – Exove
Exove
 
"Continuously delivering infrastructure using Terraform and Packer" training ...
Anton Babenko
 
Terraforming your Infrastructure on GCP
Samuel Chow
 
Microservices with Terraform, Docker and the Cloud. DevOps Wet 2018
Derek Ashmore
 
Introductory Overview to Managing AWS with Terraform
Michael Heyns
 
Application Lifecycle Management on AWS
David Mat
 
Microservices with Terraform, Docker and the Cloud. Chicago Coders Conference...
Derek Ashmore
 
Microservices with Terraform, Docker and the Cloud. JavaOne 2017 2017-10-02
Derek Ashmore
 
Microservices with Terraform, Docker and the Cloud. IJug Chicago 2017-06-06
Derek Ashmore
 
Continuous Deployment @ AWS Re:Invent
John Schneider
 
Hashicorp-Terraform-Deep-Dive-with-no-Fear-Victor-Turbinsky-Texuna.pdf
ssuser705051
 
Terraform-2.pdf
rutiksankapal21
 
Introduction to DevOps on AWS
Shiva Narayanaswamy
 
Infrastructure as Code with Terraform
Tim Berry
 
DevOps Braga #9: Introdução ao Terraform
DevOps Braga
 

Recently uploaded(20)

PDF
BRKDCN-2629 Design and Automate Micro-Segmentation in NX-OS VXLAN EVPN Fabric...
dmscott4563
 
PDF
TrustArc Webinar - Executive Perspectives on Data Privacy
TrustArc
 
PPTX
Upskill to Agentic Automation: Prompting & Agentic Thinking with UiPath
DianaGray10
 
PPTX
Chapter One-Introduction to Cybersecurity - Master Of science in Cybersecurit...
nanovates
 
PPTX
Introduction_to_Computers_Computer_Science.pptx
AhirRahman1
 
PDF
Optimizing long short-term memory hyperparameter for cryptocurrency sentiment...
IAESIJAI
 
PDF
Bridging the Operational and Analytical Worlds with Lakebase
RTylerCroy
 
PPT
1.2 WLAN BASICS NCIT study Notes by Mr Magona.ppt
magonajohn
 
DOCX
Management Information Systems. and emmerging technologiesdocx
Rossy719186
 
PPTX
Cybercrime_Visual_Presentation drag and drop.pptx
mimireactor0
 
DOCX
AI Unit 1 Notes for engineering students
NamanBhola3
 
PDF
September Patch Tuesday
Ivanti
 
PDF
Upskill to Agentic Automation: Build Your First Agent with UiPath
DianaGray10
 
PDF
Peak of Data & AI Encore: Scalable Design & Infrastructure
Safe Software
 
PDF
SUPPLY CHAIN MANAGEMENT IN INDIAN AUTOMOTIVE INDUSTRY : COMPLEXITIES, CHALLEN...
ijmvsc
 
PDF
Slides World Game (s) Great Redesign Eco Economic Epochs.pdf
Steven McGee
 
PPTX
Microsoft Azure News - Sepr 2025 -- BAUG
Daniel Toomey
 
PDF
Upskill to Agentic Automation: UiPath Autopilot™ in Action
DianaGray10
 
DOCX
Test Engineering documents for designing
QuocAnhPhung1
 
PDF
Deploying Nexus Dashboard in your Organization.pdf
dmscott4563
 
BRKDCN-2629 Design and Automate Micro-Segmentation in NX-OS VXLAN EVPN Fabric...
dmscott4563
 
TrustArc Webinar - Executive Perspectives on Data Privacy
TrustArc
 
Upskill to Agentic Automation: Prompting & Agentic Thinking with UiPath
DianaGray10
 
Chapter One-Introduction to Cybersecurity - Master Of science in Cybersecurit...
nanovates
 
Introduction_to_Computers_Computer_Science.pptx
AhirRahman1
 
Optimizing long short-term memory hyperparameter for cryptocurrency sentiment...
IAESIJAI
 
Bridging the Operational and Analytical Worlds with Lakebase
RTylerCroy
 
1.2 WLAN BASICS NCIT study Notes by Mr Magona.ppt
magonajohn
 
Management Information Systems. and emmerging technologiesdocx
Rossy719186
 
Cybercrime_Visual_Presentation drag and drop.pptx
mimireactor0
 
AI Unit 1 Notes for engineering students
NamanBhola3
 
September Patch Tuesday
Ivanti
 
Upskill to Agentic Automation: Build Your First Agent with UiPath
DianaGray10
 
Peak of Data & AI Encore: Scalable Design & Infrastructure
Safe Software
 
SUPPLY CHAIN MANAGEMENT IN INDIAN AUTOMOTIVE INDUSTRY : COMPLEXITIES, CHALLEN...
ijmvsc
 
Slides World Game (s) Great Redesign Eco Economic Epochs.pdf
Steven McGee
 
Microsoft Azure News - Sepr 2025 -- BAUG
Daniel Toomey
 
Upskill to Agentic Automation: UiPath Autopilot™ in Action
DianaGray10
 
Test Engineering documents for designing
QuocAnhPhung1
 
Deploying Nexus Dashboard in your Organization.pdf
dmscott4563
 

20170831 - Greg Palmier: Terraform & AWS at Tempus