Who Orchestrates the Orchestrators?

Managing Container Linux and Kubernetes with Puppet

https://slides.lucywyman.me/puppet-on-coreos.html

Where We're Going

Caveats

$ whoami

static/programmer-valentine.gif

Lucy Wyman

Software Engineer - Bolt

Puppet

Source

The Stack

static/pancakes.jpg

Source

Why This Doesn't Make Sense

Why This Makes Sense

Note

  • Don't always want things to be immutable - Don't have to worry much about upgrading - But, if you have 20 node cluster, want to add ssh key, need to rebuild the whole thing - Lose a lot of state caches - Brings a lot of risk (latest tag) - Can be expensive and slow
  • Testing and debuggability is critical
  • Dependencies need to be versioned
  • Cluster PKI management is not easy - No key rotation
  • Terraform abstracts a lot of this away
  • Having bash scripts to manage things is --, not flexible
  • Difference between desired state + actual state
  • End up having state -- databases, caches, etc. - Big risk of downtime

This Is Where The Magic Happens

static/magic.gif

Demo

https://github.com/lucywyman/puppet-on-coreos-demo

static/stadium-bus-demo.gif

Create Kubernetes Cluster

Demo Time

https://github.com/lucywyman/puppet-on-coreos-demo

static/demo-day.gif

Resources

Questions?

static/jlaw-questions.gif

Thank you!