Upload File

2014 the return of the · this talk may contain comments or opinions that at times may differ with...

  • Home
  • Documents
  • 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those
62
THE RETURN OF THE … 2014

Upload: others

Post on 12-Mar-2020

0 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

THE RETURN OF THE … 2014

Page 2: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

THE RETURN OF THE … 2014 2018

Page 3: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

This talk may contain comments or opinions that

at times may differ with those of cisco systems.

The views expressed here do not necessarily

reflect those of cisco systems. Audience discretion is advised.

Page 4: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

WHY

Page 5: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those
Page 6: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

- W. EDWARDS DEMING

“It is not necessary to change. Survival is not mandatory.”

Page 7: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

MOSES FROSTWWW.RENEGADE.BLOGI WORK [@] CISCO

*THIS IS WHAT I GOT FOR CHRISTMAS

#>./WHOAMI

Page 8: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

The industry today.

Page 9: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

HTTP://EN.WIKIPEDIA.ORG/WIKI/SOFTWARE_DEPLOYMENT

Software deployment is all of the activities that make a software system available for use.

http://en.wikipedia.org/wiki/software_deployment
Page 10: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those
Page 11: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

How

Page 12: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

WORKING TOGETHERDEV + OPS : 2014

Page 13: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

NetDevOpsThe Journey: 2018

Page 14: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

Continously Continous

CI/CD/CD

Page 15: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

❏Stop Using the CLI.❏Use a CI/CD tool❏Use a Source Code Repo❏Automate Deployments❏Automate Testing❏Automate Teardowns❏Stop using the CLI.

Does NetDevOps Work?

HOW

Page 16: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

Our tools used to suck.

Page 17: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those
Page 18: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those
Page 19: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

Scale

Page 20: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those
Page 21: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

Primitive:

Notepad / Config Archive

Advancing:

Python Libraries

Source Code Repo’s

Tools getting better

Advanced:Ansible, Puppet, Chef

CI/CD Pipelines for Deployments

Network as Code

Regressions and Roll back

Page 22: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

What kind of magic is this?

Advanced:Ansible, Puppet, Chef

CI/CD Pipelines for Deployments

Network as Code

Regressions and Roll back

Page 23: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

WORKING TOGETHERDEV + OPS

Security

Page 24: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

The story

Page 25: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

The story

Page 26: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

The story

Software Deployments

Page 27: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

The story

Software Deployments

Deployment Tools

Page 28: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

The story

Software Deployments

Deployment Tools

Server Builds

Page 29: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

The story

Software Deployments

Deployment Tools

Server Builds

Server as Code Tools

Page 30: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

The story

Software Deployments

Deployment Tools

Server Builds

Server as Code Tools

Network Builds?

...

Page 31: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

THE ARMS RACE

Culture

People > Tools

Velocity

Time to Market

Page 32: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

Culture

Working culture:

- We all use one tool- We all deploy in one way- We are all a tribe

Potentially Broken Culture:

- We may or may not use many tools- We all deploy and do things differently- We are multiple factions doing things as

we like.

Page 33: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

CULTURE IN THE FAILURE DOMAIN

Page 34: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

Security Lives in the Failure Domain

Fight Club

Page 35: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

QUESTIONS WE SHOULD BE ASKING

• If we all use different tools how can we provide the ‘same’ security levels?

• If we are all doing different things how many of us need to support how many of them?

• How can we not fail at what we are doing?

Page 36: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

BURN THE WITCH

“As soon as we try to simplify down failure to the miscues and mistakes of a few individuals in this system

…”

“…We deny ourselves an immense amount of learning and

understanding.”-SIDNEY DEKKER, DEVOPS CAFE

Page 37: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

-ME

“In these complex systems managing complex system, We are just actors more than people in control.”

Page 38: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

“Failure is, in a sense, a good thing.”- SIDNEY DEKKER

THE FIRST LESSON TO GO HOME WITH:

Page 39: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

How does this apply

Actual insertion points.

Am I managing an individual device?

Page 40: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

How does this apply

Actual insertion points.

Am I managing an individual device?

No, we are managing Configuration as Code

Page 41: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

How does this apply

Actual insertion points.

Am I managing an individual device?

No, we are managing Configuration as Code

Where do I apply Security?

Page 42: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

How does this apply

Actual insertion points.

Am I managing an individual device?

Where do I apply Security?

Audit and change configurations

Page 43: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

How does this apply

Actual insertion points.

Have the same set of security standards cross

company

Where do I apply Security?

Audit and change configurations

Page 44: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

How does this apply

Actual insertion points.

Have the same set of security standards cross

company

Where do I apply Security?

Page 45: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

How does this apply

Actual insertion points.

Have the same set of security standards cross

company

Where do I apply Security?

OS Level, App Level

Is this in the code repo?

Page 46: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

Now we can roll back “one-off” changes

Stop using the CLI

Page 47: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

First was software at scale

Everyone vs SECURITY

Page 48: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

First was software at scaleThen was servers

Everyone vs SECURITY

Page 49: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

First was software at scaleThen was serversNow the network

Everyone vs SECURITY

Page 50: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

They are wrong

Security individuals may assume they are next

Page 51: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

How does this apply

Who does the insertion?

Network Level

I work on the deployment team

Page 52: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

How does this apply

Who does the insertion?

Network Level

I work on the deployment team

OS Level, App Level

Page 53: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

How does this apply

Who does the insertion?

Network Level

I work on the deployment team

OS Level, App Level

I work on the Server DevOps team

Page 54: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

BEAUTIFUL AREN'T THEY.SILOS

Page 55: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

- CHAD DICKERSON, CTO ETSY

“We actually trust people” *

Page 56: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

Auditors are trained NOT to trust people.

Page 57: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

So what does this mean for us?

CALL TO ACTION

Page 58: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

Everything was a black box

25 years ago

#_>_C:\>_

API

Page 59: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

Everything was a black box

25 years ago

>parse config.txt####################snmp-community string ….

Tools

Page 60: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

Everything is moving to API first

Today

development:snmp:

string: “superstrongstring”productoin:snmp:

strings: [SECRET_STRING]

“CLI”

Page 61: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

FlexibilitySpeed Scale

Today

[Insert novel idea here]

“Tools”

Page 62: 2014 THE RETURN OF THE · This talk may contain comments or opinions that at times may differ with those of cisco systems. The views expressed here do not necessarily reflect those

Thankswww.cisco.com/go/security

[email protected]@mosesrenegade devnet.cisco.com

mailto:[email protected]

COMSAT - COMARAcomara.org/legacy/comsat_magazine/COMSAT_Magazine_17.pdf · Articles in Comsat Magtmne reflect the authors opinions which may not necessarily be those of Comsat Permission

Water Situation Report - assets.publishing.service.gov.uk...All data are provisional and may be subject to revision. The views expressed in this document are not necessarily those

Candidate Image. “Electoral victors are those who excel at projecting imagery and symbolism, but not necessarily those who offer substantive expertise,

The views expressed are my own and not necessarily those of the ECB

Comparability and Convergence - frascanada.ca · The views expressed in this presentation are those of the presenter, not necessarily those of the International Accounting Standards

Open Sesame: Arab Mobile Markets Michael Minges [email protected] The views expressed are those of the author and may not necessarily reflect the opinions

template TC/48 ENGLISH - upov.int€¦  · Web view4. 1 3. The use of the word “may” in Article 14(5)(c) indicates that those ways may not necessarily result in an essentially

opinions, findings, necessarily agencies.)opinions, findings, and conclusions expressed in this report are those of the author and not necessarily those of ... report reviews some

prod-energycouncil.energy.slicedtech.com.au€¦  · Web viewThe views and opinions expressed in this publication are those of the authors and do not necessarily reflect those of

IFRS for SMEs - World Banksiteresources.worldbank.org/EXTCENFINREPREF/Resources/...The views expressed in this presentation are those of the presenter, not necessarily those of the

Everyday Economics: Three Faces of Globalization Disclaimer: The views expressed are those of the presenter and do not necessarily reflect those of the

findings, necessarily - Virginia Department of Transportation · findings, and conclusions expressed report are those of the author and not necessarily the sponsoring agencies.) in

Filename Firm Heterogeneity and Credit Risk Diversification * Any views expressed represent those of the authors only and not necessarily those of the

International Financial Reporting Standards The views expressed in this presentation are those of the presenter, not necessarily those of the IASC Foundation

Robert Cheetham14 May 2003: ReVA MAIA Conference Notice: The views expressed here are those of the individual authors and may not necessarily reflect the

Financial Structure: The Issues, May 17, 2013€¦ · The views expressed in this presentation are those of the author and do not necessarily represent those of the Federal Internal

Please note: The views stated are those of the speaker ......those of the speaker (Cam Beardsell) and not necessarily those of Parks Victoria . Green Wedge Milestones Blueprint for

Notice: The views expressed here are those of the individual authors and may not necessarily reflect the views and policies of the United States Environmental

Volume 7, Issue 5 • May 2017 Oklahoma Economic ReportOklahoma Economic Report TM May 2017 Opinions and positions cited in the Oklahoma Economic Report TM are not necessarily those

THE ALBERTA - cdn.ymaws.com · Broker may not necessarily be those of the publisher, the association or its members. Material in The Alberta Broker may be reproduced with the credit

by Arnold J. Katz WP2008-05 May 2008 · by Arnold J. Katz . WP2008-05 : May 2008 . The views expressed in this paper are solely those of the author and not necessarily those of the

Initial Environmental Examination Project No. 39295-038 ... · herein do not necessarily represent those of ADB's Board of Directors, Management, or staff, and may be preliminary

Disclaimer: The views expressed are those of Paul Gipe and ... · Disclaimer: The views expressed are those of Paul Gipe and are not necessarily those of the sponsor. Disclosure:

CSI REPORT - downloads.sturmpanzer.comdownloads.sturmpanzer.com/WWMF/CSI_Report_07_World... · The views expressed in a CSI REPORT are those of the author and not necessarily those

The views expressed in this presentation are those of the presenter, not necessarily those of the CCHS or the CSIC. repositories.webometrics.info The July

Xingmin Yin Fudan University May 21, 2013 Disclaimer: The views expressed in this document are those of the author, and do not necessarily reflect the

COUNTERPOINTS - Africa Research InstituteCounterpoints are those of the authors, and not necessarily those of Africa Research Institute. ACKNOWLEDGEMENTS Design and typesetting by

RULES AND REGULATIONS OF REGISTRATION...said horse and those registered with the Cria Caballar. Such proof may include but is not necessarily limited to: Documents from the Cria Caballar

Session 10 Economic Instability Disclaimer: The views expressed are those of the presenters and do not necessarily reflect those of the Federal Reserve

Who profits from patents? Rent-sharing at innovative firms · The opinions expressed in this presentation are those of the authors alone and do not necessarily re ... May alleviate

EARLY AMERICAN MOTORCYCLE CLUB - Wild Apricot · EARLY AMERICAN MOTORCYCLE CLUB Issue 181 Views of correspondents may not necessarily be those of the club June 2016 Mark Davey with

HEALTH Health... · 2016. 7. 15. · Certificate is suitable for those who may not necessarily have prior tertiary study, but who have completed some post-secondary study or relevant

Getting unwired in East Africa Michael Minges, ITU [email protected] The views expressed are those of the author and may not necessarily reflect the opinions

International Financial Reporting Standards The views expressed in this presentation are those of the presenter, not necessarily those of the IASB or IFRS

An agency of the European Union Budapest, 13 May 2011 The views expressed in this presentation are those of the author only. They do not necessarily reflect