Академический Документы
Профессиональный Документы
Культура Документы
AUTOMATE DEVOPS/SECOPS
DEPLOYMENT WITH CI/CD
PIPELINE INTEGRATIONS
The continuous integration and continuous delivery (CI/CD) practices of software
development promise to bring new software or new features to market faster.
No matter how or where applications are deployed, however, they need the
support of application services such as traffic management, content routing,
bot defense, and API security. Most well-functioning CI/CD pipelines handle
the integration and deployment of application code with minimal human
intervention. However, many organizations still manage application services
and policies—often manual configurations of network and security policy—
through a slow, ticket-driven process.
The only viable solution is to insert the configuration and deployment of app services into the same
tool chain that is being used to deploy the rest of the software stack. Integrating code and artifacts
to insert application services into the workflows that build, test, and then deploy applications has
• Application code is tested with production-version application services in place. If there are
interoperability issues between a security policy and a new software feature, they can be
detected during the testing process and the software build can be aborted.
• Applications deployed to production get the security and application delivery services they
need—at the time they need them. Instead of being additional components that are not
automatically deployed, application security services and DDoS mitigations can be deployed
alongside applications at every step of a workflow.
HOW IT WORKS
A typical deployment workflow contains a number of services. Sometimes more than one of
these services might be provided by a single component, but in general the following buckets of
functionality exist:
Source Code Pipelines and Config Management Platform Management App Services Delivery
Repo - IAC Workflows Playbooks Logging Reporting Telemetry
Revision Control Approvals
App Services Catalog Certificate
Webhook Scheduling Management
Application
Service
Security
Optimization
Traffic Management
Orchestrator—Converting numerous text files into the next social media platform requires multiple
jobs, steps and, possibly, approval processes. An orchestration tool creates software build, test,
and integration pipelines—plus jobs to create the test infrastructure and configurations. In many
cases, approval steps might still be required to complete the deployment of built software into
APPLICATION DEPLOYMENT production environments. Application services, too, need to be created by the orchestrator,
WORKFLOW SERVICES sometimes directly integrating into application services platforms and sometimes via secondary
automation tools.
Element managers—These often act as a target of the automation or orchestration tools. They
represent the automation interface to the infrastructure that actually supplies the services. While
not present in every architecture, element managers can manage licensing, telemetry, reporting,
and platform software versions—plus act as an additional layer of authentication and authorization
for service creation.
Of course, something has to initiate the workflow. This might be done using a service catalog with
predefined actions based on a series of templates. Service catalogs can be GUI driven or deployed
via API. In other cases, simply committing new or altered code to a repository might result in
triggering a delivery or deployment workflow using triggers built into the SCM.
F5 Automation Toolchain
The next step, however, is to integrate the deployment of the platform and services into an
organization’s software deployment methodology. F5 offers the widest range of application
services integrations and choices to provide flexibility across toolsets and support public cloud,
private cloud, and on-premises deployments. To simplify and accelerate deployment, F5 has
re-invented the API interface for the BIG-IP platform.
The F5 Automation Toolchain product family comprises the fundamental automation and
orchestration building blocks that enable you to integrate F5 BIG-IP platforms into common
automation patterns such as CI/CD toolchains.
These tools offer declarative interfaces for configuring F5 BIG-IP application services platforms,
which deliver the security, optimization, and scaling services your applications need, and can be
integrated with automation and orchestration tools. Keeping configuration in an SCM is simple
because all the tools use a simple JSON declaration stored as plain text for configuration. And
a range of cloud templates can help you integrate with public and private cloud platforms for
bootstrapping the BIG-IP platform.
Super-NetOps Training
While an effective software delivery practice relies on the right tools, the heart of the process is
a culture of collaboration and shared responsibility. F5 BIG-IP and the application services the
platform provides have generally been the domain of network and security operations teams. With
this in mind, F5 also offers free training to help NetOps and SecOps professionals extend their
skillset to encompass DevOps tools, methodologies, and workflows. Our Super-NetOps training
provides transferrable, hands-on experience in creating and delivering F5 application services in an
as-a-service model to DevOps teams.
CONCLUSION
The practices of continuous integration, continuous delivery, and continuous deployment offer the
promise of safer, faster, and more efficient software development. Critical to realizing this promise
is the integration of application delivery and security services into the development and
deployment workflows.
F5 offers the platform, the integration, and the training to insert industry-leading application
protection and optimization services into workflows so that software can be built, tested, and
deployed with the services it needs to be secure, fast, and available.
RESOURCES
• Get all the details about the F5 Automation Toolchain.
• Learn more about using the programmability features of the BIG-IP platform.
• Read a practical guide to automating F5 application services.
©2019 F5 Networks, Inc. All rights reserved. F5, F5 Networks, and the F5 logo are trademarks of F5 Networks, Inc. in the U.S. and in certain other countries. Other F5 trademarks are identified
at f5.com. Any other products, services, or company names referenced herein may be trademarks of their respective owners with no endorsement or affiliation, express or implied, claimed
by F5. DC0419 | GUIDE-CLOUD-316650807 AUTOMATE DEVOPS/SECOPS DEPLOYMENT WITH CI/CD PIPELINE INTEGRATIONS 6