Infrastructure as Code
Recently I’ve been playing a lot with Terraform, Ansible and Kubernetes mostly related to work. With these three, DevOps engineers can build the infrastructure with code without much problem compared to the previous generation of technology.
Ansible Overview
Ansible makes it easy to build and configure VMs.
Installation
# Install Ansible using pip
pip3 install ansibleEnvironment
# Check Ansible version
ansible -v
# Output: ansible 2.7.10Preparing VM for Ansible
1. Initial Setup
- Install Ubuntu 16.04 LTS
- Create an account: deployer
- Set up the SSH key
2. SSH Configuration
Edit /etc/ssh/sshd_config:
# Disable password authentication
PasswordAuthentication no
# Change SSH port (optional)
Port 10223. Sudo Configuration
Edit /etc/sudoers:
# Change from:
# %sudo ALL=(ALL:ALL) ALL
# To:
%sudo ALL=(ALL:ALL) NOPASSWD: ALL4. Update Sources
Edit /etc/apt/sources.list:
# Comment out any lines starting with cdrom:
# cdrom:[Ubuntu 16.04 LTS _Xenial Xerus_ - Release amd64 (20160420.1)]/ xenial main restrictedSSH Fingerprint
To get the SSH fingerprint from your public key:
ssh-keygen -E md5 -lf ~/.ssh/id_rsa.pub | awk '{print $2}'
# Output example: MD5:93:2c:6e:5c:6b:c6:4e:bb:07:77:33:56:51:26:84:1aAnsible Roles
Using Ansible Galaxy
- Browse popular and stable roles at Ansible Galaxy
- Install roles:
# Install a specific role
ansible-galaxy install franklinkim.fail2ban
# Install roles from requirements file
ansible-galaxy install -r requirements.ymlDigital Ocean Referral
Get $100 free credit on Digital Ocean using this referral link.
