{"id":408,"date":"2010-02-24T15:39:19","date_gmt":"2010-02-24T21:39:19","guid":{"rendered":"http:\/\/www.webadminblog.com\/?p=408"},"modified":"2010-02-24T15:39:19","modified_gmt":"2010-02-24T21:39:19","slug":"a-case-for-images","status":"publish","type":"post","link":"https:\/\/www.webadminblog.com\/index.php\/2010\/02\/24\/a-case-for-images\/","title":{"rendered":"A Case For Images"},"content":{"rendered":"

After speaking with Luke Kanies at OpsCamp, and reading his good and oft-quoted article “Golden Image or Foil Ball?<\/a>“, I was thinking pretty hard about the use of images in our new automated infrastructure.\u00a0 He’s pretty against them.\u00a0 After careful consideration, however, I think judicious use of images is the right thing to do.<\/p>\n

My top level thoughts on why to use images.<\/p>\n

    \n
  1. Speed – <\/strong>Starting a prebuilt image is faster than reinstalling everything on an empty one.\u00a0 In the world of dynamic scaling, there’s a meaningful difference between a “couple minute spinup” and a “fifteen minute spinup.”<\/li>\n
  2. Reliability<\/strong> – The more work you are doing at runtime, the more there is to go wrong.\u00a0 I bet I’m not the only person who has run the same compile and install on three allegedly identical Linux boxen and had it go wrong somehow on one of ’em.\u00a0 And the more stuff you’re pulling to build your image, the more failure points you have.<\/li>\n
  3. Flexibility<\/strong> – Dynamically building from stem cell kinda makes sense if you’re using 100% free open source and have everything automated.\u00a0 What if, however, you have something that you need to install that just hasn’t been scripted – or is very hard to script?\u00a0 Like an install of some half-baked Windows software that doesn’t have a command line installer and you don’t have a tool that can do it?\u00a0 In that case, you really need to do the manual install in non-realtime as part of a image build.\u00a0 And of course many suppliers are providing software as images themselves nowadays.<\/li>\n
  4. Traceability<\/strong> – What happens if you need to replicate a past environment?\u00a0 Having the image is going to be a 100% effective solution to that, even likely to be sufficient for legal reasons.\u00a0 “I keep a bunch of old software repo versions so I can mostly build a machine like it” – somewhat less so.<\/li>\n<\/ol>\n

    In the end, it’s a question of using intermediate deliverables.\u00a0 Do you recompile all the code and every third party package every time you build a server?\u00a0 No, you often use binaries – it’s faster and more reliable.\u00a0 Binaries are the app guys’ equivalent of “images.”<\/p>\n

    To address Luke’s three concerns from his article specifically:<\/p>\n

      \n
    1. Image sprawl <\/strong>– if you use images, you eventually have a large library of images you have to manage.\u00a0 This is very true – but you have to manage a lot of artifacts all up and down the chain anyway.\u00a0 Given the “manual install” and “vendor supplied image” scenarios noted above, if you can’t manage images as part of your CM system than it’s just not a complete CM system.<\/li>\n
    2. Updating your images<\/strong> – Here, I think Luke makes some not entirely valid assumptions.\u00a0 He notes that once you’re done building your images, you’re still going to have to make changes in the operational environment (“bootstrapping”).\u00a0 True.\u00a0 But he thinks you’re not going to use the same tool to do it.\u00a0 I’m not sure why not – our approach is to use automated tooling to build the images – you don’t *want* to do it manually for sure – and Puppet\/Chef\/etc. works just fine to do that.\u00a0 So if you have to update something at the OS level, you do that and let your CM system blow everything on top – and then burn the image.\u00a0 Image creation and automated CM aren’t mutually exclusive – the only reason people don’t use automation to build their images is the same reason they don’t always use automation on their live servers, which is “it takes work.”\u00a0 But to me, since you DO have to have some amount of dynamic CM for the runtime bootstrap as well, it’s a good conservation of work to use the same package for both. (Besides bootstrapping, there’s other stuff like moving content that shouldn’t go on images.)<\/li>\n
    3. Image state vs running state<\/strong> – This one puzzles me.\u00a0 With images, you do need to do restarts to pull in image-based changes.\u00a0 But with virtually all software and app changes you have to as well – maybe not a “reboot,” but a “service restart,” which is virtually as disruptive.\u00a0 Whether you “reboot\u00a0 your database server” or “stop and start your database server, which still takes a couple minutes”, you are planning for downtime or have redundancy in place.\u00a0 And in general you need to orchestrate the changes (rolling restarts, etc.) in a manner that “oh, pull that change whenever you want to Mr. Application Server” doesn’t really work for.<\/li>\n<\/ol>\n

      In closing, I think images are useful.\u00a0 You shouldn’t treat them as a replacement for automated CM – they should be interim deliverables usually generated by, and always managed by, your automated CM.\u00a0 If you just use images in an uncoordinated way, you do end up with a foil ball.\u00a0 With sufficient automation, however, they’re more like Russian nesting dolls, and have advantages over starting from scratch with every box.<\/p>\n","protected":false},"excerpt":{"rendered":"

      After speaking with Luke Kanies at OpsCamp, and reading his good and oft-quoted article “Golden Image or Foil Ball?“, I was thinking pretty hard about the use of images in our new automated infrastructure.\u00a0 He’s pretty against them.\u00a0 After careful consideration, however, I think judicious use of images is the right thing to do. My […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[85],"tags":[628,39,398,632,397,623],"class_list":["post-408","post","type-post","status-publish","format-standard","hentry","category-automation","tag-automation","tag-cloud","tag-configuration-management","tag-devops","tag-images","tag-virtualization"],"aioseo_notices":[],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/pfI0c-6A","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/posts\/408","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/comments?post=408"}],"version-history":[{"count":2,"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/posts\/408\/revisions"}],"predecessor-version":[{"id":410,"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/posts\/408\/revisions\/410"}],"wp:attachment":[{"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/media?parent=408"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/categories?post=408"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/tags?post=408"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}