again
play

again? Tanya Reilly (@whereistanya) MY SKILLZ Where are you in - PowerPoint PPT Presentation

Feb 25, 2023 •274 likes •868 views

Have you tried turning it off and turning it on again? Tanya Reilly (@whereistanya) MY SKILLZ Where are you in RESUME the stack? CMS MY SKILLZ Where are you in RESUME the stack? CMS MY SKILLZ Where are you in RESUME the stack? CMS

  1. Have you tried turning it off and turning it on again? Tanya Reilly (@whereistanya)

  2. MY SKILLZ Where are you in RESUME the stack? CMS

  3. MY SKILLZ Where are you in RESUME the stack? CMS

  4. MY SKILLZ Where are you in RESUME the stack? CMS CMS ???

  5. MY SKILLZ Where are you in RESUME the stack? CMS!! CMS ???

  6. What is it?

  7. Abstractions let us specialise

  8. A slidedoc is a visual document, developed in presentation software, that is intended to be read and referenced instead of projected. 8

  9. ● fallback plans ● dependencies ● what can we do?

  10. Fallback plans

  11. Of course! I copied it to /tmp/ database.bak backups 11 Backup_Backup_Backup_-_And_Test_Restores, T-Town Photo Booth CC BY 2.0 Backup, Backup Backup and Test Restores, T-Town Photo Booth CC BY 2.0

  12. If you haven't tested your backups, you don't have backups.

  13. Take two, they’re small the identical(ish!) failover site

  14. 1. Is it real?

  15. 2. Is it up to date? Retro, Melinda Seckington CC BY 2.0

  16. 3. Is the idea of actually using it kind of terrifying? FreeImages.com/barun patro

  17. Two sites? I’ve forgotten how to count that low replicated everything

  18. ● fallback plans ● dependencies ● what can we do?

  19. (Micro)services

  20. (Micro)services

  21. Jenga Tower of 50 blocks, Johannes Bader CC BY 2.0

  22. Everybody's backend is someone else's frontend

  23. “ "A service cannot be more available than the intersection of all its critical dependencies." -- "The Calculus of Service Availability" Ben Treynor, Mike Dahlin, Vivek Rau, Betsy Beyer

  24. Your stack… is really more of a "pile", isn't it? dependency cycles

  25. uh... control plane cycles ŠJů CC BY 4.0

  26. Why would we ever restart it? machines that run forever (until they don't) 26

  27. root@X1:/# halt root@x2:/# halt root@x3:/# halt Connection to x1 closed by Connection to x2 closed by Connection to x3 closed by remote host. remote host. remote host. $ root@x10001:/# halt Connection to x10001 closed by remote host. $ root@x10000:/# halt Connection to x10000 closed by remote host $ Global simultaneous reboot (doesn’t usually look like this) 27

  28. tick tick tick...

  29. tick tick tick...

  30. tick tick tick...

  31. tick tick tick...

  32. tick tick tick...

  33. tick tick tick...

  34. tick tick tick...

  35. tick tick tick...

  36. tick tick tick...

  37. tick tick tick...

  38. ● fallback plans ● dependencies ● what can we do?

  39. We're built on top of... really? Are you sure? dependency discovery It’s Turtles All The Way Down, William Warby. CC BY 2.0

  40. design docs obscure information Original design. "We keep an in-memory index of the available cats with some metadata about them. The cat chooser uses the information from the user's request to determine the attributes that needs to be fulfilled. It checks the index for cats that match those attributes. It pulls those cats from storage and returns one to the user. Indexers run at startup and at intervals to update the metadata and make sure we have accurate cat sentiment analysis and geolocation data."

  41. design docs obscure information Original design. "We keep an in-memory index of the available cats with some metadata about them. The cat chooser uses the information from the user's request to determine the attributes that needs to be fulfilled. It checks the index for cats that match those attributes. It pulls those cats from storage and returns one to the user. Indexers run at startup and at intervals to update the metadata and make sure we have accurate cat sentiment analysis and geolocation data." User story: cat must be a cat. "Since catness analysis is an expensive operation, we only run the catness analyzer on pictures that have a high likelihood of being served, i.e., those aleady indexed with geolocation and sentiment data. We'll take the index from the cat chooser and run catness analysis over the cats from that queue."

  42. lists are better webserver -> cat_chooser cat_chooser -> cat_geotagger cat_chooser -> cat_sentiment_analyzer cat_chooser -> catness_analyzer cat_chooser -> storage catness_analyzer -> cat_chooser catness_analyzer -> storage cat_geotagger -> storage cat_sentiment_analyzer -> storage

  43. pictures are even better digraph { webserver -> cat_chooser cat_chooser -> cat_geotagger cat_chooser -> cat_sentiment_analyzer cat_chooser -> catness_analyzer cat_chooser -> storage catness_analyzer -> cat_chooser catness_analyzer -> storage cat_geotagger -> storage cat_sentiment_analyzer -> storage }

  44. $ /usr/bin/dot -T png -o cats.png cats.dot pictures are even better digraph { webserver -> cat_chooser cat_chooser -> cat_geotagger cat_chooser -> cat_sentiment_analyzer cat_chooser -> catness_analyzer cat_chooser -> storage catness_analyzer -> cat_chooser catness_analyzer -> storage cat_geotagger -> storage cat_sentiment_analyzer -> storage }

  45. But don't put humans in charge of remembering what connects to what

  46. This is Site Reliability. THERE ARE RULES. dependency policies

  47. Are you on the guest list? policy enforcement

  48. kind: NetworkPolicy Are you on apiVersion: networking.k8s.io/v1 metadata: the guest name: access-nginx list? spec: podSelector: matchLabels: run: nginx ingress: - from: - podSelector: matchLabels: policy access: "true" enforcement

  49. Manage your dependencies early (It’s harder later on) Some sock yarn, Kara, CC BY-ND 2.0

  50. Look, an actual stack! architecting in layers

  51. soft dependencies

  52. The reserve parachute is always packed by an expert reliable fallback plans T he appearance of U.S. Department of Defense (DoD) visual information does not imply or constitute DoD endorsement.

  53. Really, try turning it off and turning it on again testing 53

  54. in conclusion...

  55. small fallback ❏ fallback plans: plans test everything ❏ manage ❏ dependencies architect in ❏ layers small, simple, solid

  56. if it's not tested, assume small fallback ❏ if it's not tested, plans test everything ❏ it doesn't work manage ❏ dependencies assume it doesn't work architect in ❏ layers

  57. small fallback ❏ plans manage your test everything ❏ manage ❏ dependencies architect in ❏ dependencies layers before you need to

  58. small fallback ❏ plans test everything ❏ manage ❏ dependencies dependencies architect in ❏ layers go down the stack

  59. hope is not a strategy @whereistanya https://github.com/whereistanya/graphviz/ Presentation template by slidescarnival.com

Recommend

More recommend