The more we are connected and the more others are connected to us, the more important reliability of your sites becomes. Site Reliability Engineering is an engineering discipline devoted to helping an organization sustainably achieve the appropriate level of reliability in their systems, services, and products. But what does this mean, and how do get started with this? In this session I will talk about the concepts of Site Reliability Engineering and use Microsoft Azure to implement some of the concepts and practices. You will learn: What is Site Reliability Engineering? How can you get started with SRE? How to use Azure to implement some of the SRE concepts?

1. VST15
WHEN "WE ARE DOWN" IS NOT GOOD
ENOUGH
SRE ON AZURERENÉ VAN OSNABRUGGE
@RENEVO

2. LET’S COUNT
TOGETHER @RENEV

3. 99.9%
@RENEV

4. AVAILABILITY IN HUMAN WORDS
per year
per
quarter
per
month
per
week per day
per
hour
90% 36.5 days 9 days 3 days 16.8 hours 2.4 hours 6 minutes
95% 18.25 days 4.5 days 1.5 days 8.4 hours 1.2 hours 3 minutes
99% 3.65 days 21.6 hours 7.2 hours 1.68 hours 14.4 minutes 36 seconds
99.5% 1.83 days 10.8 hours 3.6 hours 50.4 minutes 7.20 minutes 18 seconds
99.9% 8.76 hours 2.16 hours 43.2 minutes 10.1 minutes 1.44 minutes 3.6 seconds
99.95% 4.38 hours 1.08 hours 21.6 minutes 5.04 minutes 43.2 seconds 1.8 seconds
99.99% 52.6 minutes 12.96
minutes
4.32 minutes 60.5 seconds 8.64 seconds 0.36 seconds
99.999% 5.26 minutes 1.30 minutes 25.9 seconds 6.05 seconds 0.87 seconds 0.04 seconds
@RENEV

5. WHAT DO OTHERS HAVE?
Azure DevOps
99.9%
Azure Policy
----
Gmail
99.9%
ex. planned
Azure AAD
99.9%
Outlook.com
----
Azure Functions
99.95%
Google Maps API
99.9%
ING Banking
----
Slack
99.99%
@RENEV

6. OPS VERSUS DEV @RENEV

7. WHAT WE HEAR FROM
OPS
“We need to have a launch review!”
“Please let the CAB approve first”
“This is our change management checklist”
“We should validate first in Test and Pre-Prod”
@RENEV

8. WHAT WE HEAR FROM
DEV
“We do not launch big changes, this is just a
flag flip”
“This is a hotfix!”
“This is just a UI change... No big thing”
“Only a 20% experiment.”
@RENEV

9. CONFLICTING KPI’S
DO NOT WORK
@RENEV

10. 2 PARALLEL MOVEMENTS
EMERGED
@RENEV

11. “DEVOPS IS THE UNION OF
PEOPLE, PROCESS AND
PRODUCTS TO ENABLE
CONTINUOUS DELIVERY OF VALUE
TO OUR END-USERS”DONOVAN BROWN
@RENEV

12. @RENEV

13. SITE RELIABILITY ENGINEERING IS AN
ENGINEERING DISCIPLINE DEVOTED
TO HELPING AN ORGANIZATION
SUSTAINABLY ACHIEVE THE
APPROPRIATE LEVEL OF RELIABILITY
IN THEIR SYSTEMS, SERVICES, AND
PRODUCTS.
@RENEV

14. public class SRE: DevOps {
…
}
@RENEV

15. DEVOPS SRE
REDUCE
ORGANIZATIONAL SILOS
ACCEPT FAILURE AS
NORMAL
IMPLEMENT GRADUAL
CHANGE
LEVERAGE TOOLING &
AUTOMATION
SHARE OWNERSHIP
SLO’S & BLAMELESS
LEARNING REVIEWS
REDUCE COST OF
FAILURE
AUTOMATION AS 1st
CLASS CITIZEN
@RENEV

16. SRE focusses on the reliability of your site
Product team focusses on the business value
They share ownership
They are all engineers
@RENEV

17. THE PRICE OF GREATNESS IS
RESPONSIBILITY
WINSTON CHURCHILL
@RENEV

18. S L *
SLI SLO SLA
@RENEV

19. S L I
SERVICE LEVEL INDICATOR
@RENEV

20. SLIS ARE A RATIO/PROPORTION
# of successful HTTP calls/# of HTTP calls
# of operations that completed in < 10ms/# of operations
# of “full quality responses”/# of responses
# of records processed/# of records
Ratio * 100 = % proportion
@RENEV

21. SLIS ARE A RATIO/PROPORTION & HOW
# of successful HTTP calls/# of HTTP calls
# of operations that completed in < 10 ms/# of operations
…as measured at the client
…as measured at the load balancer
@RENEV

22. S L O
SERVICE LEVEL OBJECTIVE
@RENEV

23. BASIC SLO RECIPE
THE THING
HTTP requests
Storage checks
Operations
SLI PROPORTIONS
”Successful 50% of the time”
“Can read the data 99.9% of the time”
“Return in 10ms 90% of the time”
TIME STATEMENT
“In the last ten minute period”
”During last quarter”
“In the previous rolling 30 day period”
90% of HTTP requests
as reported by the
load balancer
succeeded in the last
30 day window.
SERVICE LEVEL OBJECTIVE (SLO)
@RENEV

24. AGREEMENT BETWEEN THE PRODUCT TEAM
AND SRE
@RENEV

25. SLA
UPTIME
COMMERCIAL AGREEMENT
WITH CUSTOMER
SLOSLA
@RENEV

26. ERROR BUDGETS
UPTIME
ERROR BUDGET
SLO
@RENEV

27. ERROR BUDGETS
UPTIME
ERROR BUDGET
SLO
@RENEV

28. ERROR BUDGETS
UPTIME
NO
ERROR BUDGET
NO
RELEASE
SLO
@RENEV

29. DEMO – SLI AND SLO IN LOG ANALYTICS
@RENEV

30. WHAT DOES DOWN ACTUALLY
MEAN? @RENEV

31. RELIABILITY
AVAILABILITY LATENCY
THROUGHPU
T
CORRECTNE
SS
FRESHNESS
COVERAGE
FIDELITY
DURABILITY
IT MUST BE ABOUT THE CUSTOMER, NOT THE
SOFTWARE COMPONENT @RENEV

32. AVAILABILITY
Can my
system
answer a
question it is
asked?

33. LATENCY
Is the system
(or service)
returning an
answer in the
amount of
time it needs
to?SLOW IS THE NEW

34. THROUGHPUT
Can you get
the volume of
data from
one point to
another?

35. COVERAGE
Has all data
been
processed?

36. CORRECTNESS
The proportion
of records
going into the
pipeline that
result in a valid
and correct
result coming
out

37. FIDELITY
How many
requests are
served in an
undegraded
way?

38. FRESHNESS
Freshness: is the
data being
served current, is
the cache
refreshed/purged
as needed. How
often am I
serving stale
data

39. DURABILITY
Does the stored
data not suffer
from bit rot,
degradation or
other corruption
after an outage.

40. WHAT DOES AN SRE DO
TIME ALLOCATION OF SRE
50%
Operational Work
50%
Project Work
• Incidents
• Tickets
• Operational work
• Project Work in Product
Teams
• Add Service Features
• Reduce future toil
@RENEV

41. TOIL
• Manual
• Repetitive
• Automatable
• Tactical
• Devoid of enduring value
• cales linearly as a service grows
@RENEV

42. @RENEV

43. DEMO – USING AZURE BOTS TO REDUCE
TOIL
@RENEV

44. OPERATIONAL WORK
@RENEV

45. DETECT @RENEV

46. WHY MONITOR?
Are my apps and infrastructure doing what I expect?
Are my apps and infrastructure doing what others expect?
@RENEV

47. 3 KINDS OF MONITORING OUTPUT
ALERTS
TICKETS
LOGGING
@RENEV

48. RESPOND @RENEV

49. WHO RESPONDS?
SHARED RESPONSIBILITY OF SRE
@RENEV

50. ALERT
FATIGUE @RENEV

51. ACTIONABLE ALERTS
• Alerts are not: logs, notifications, heartbeats, normal
• Needs a human to investigate (and ideally resolve)
• Right human(s) (scope)
• Humans not automation
• Crucial details:
• Where the alert is coming from
• What expectation was violated
• Why this is an issue (for the customer)
• Steps to resolve the problem (or at least a specific pointer)
@RENEV

52. IT IS ABOUT THE USER!
@RENEV

53. DEMO – ACTIONABLE ALERTS
@RENEV

54. REMEDIATE @RENEV

55. MTTR
On average, how long does it take to restore service
when a service incident occurs? @RENEV

56. CONTINUOUS DELIVERY IS
A MEANS TO AN END
@RENEV

57. ANALYZE @RENEV

58. @RENEV

59. BLAMELESS LEARNING REVIEW
INVOLVE EVERYONE
DO IT ASAP
FOCUS ON WHAT HAPPENED
WHAT DID THEY KNOW
WHEN DID THEY KNOW
HOW DID IT MAKE SENSE
CREATE A TIMELINE
WHAT WAS THE THOUGHT PROCESS?
@RENEV

60. OUTCOMES
COUNTERMEASURES
LONG TERM
SHORT TERM
INTERNAL SUMMARY
EXTERNAL SUMMARY
@RENEV

61. EXTERNAL SUMMARY
Summary
Services impacted
Duration
Severity
Customer impact
Resolution
Countermeasures
and improvements
@RENEV

62. DEMO – TROUBLESHOOTING GUIDES
@RENEV

63. READINESS @RENEV

64. MISTAKES ARE MEANT FOR LEARNING
NOT FOR REPEATING
@RENEV

65. The “Paul” attack
Response training (game days)
On-call rotations
Escalation paths
Communication channels
Chaos engineering/testing in
BE READY
@RENEV

67. WRAP UP
CONSIDER YOUR SLA CAREFULLY
SRE IS NOT A NEW OPS DEPARTMENT
USE SLO’S AND ERROR BUDGETS
MEASURE EVERYTHING
CLOSE THE INCIDENT LOOP WITH LEARNING
@RENEV

68. René van Osnabrugge
Xpirit Netherlands
@renevo
rvanosnabrugge@xpirit.com
https://roadtoalm.com
Attributions
Pictures: https://unsplash.com / https://www.flickr.com/photos/wocintechchat
Gifs: https://giphy.com
Music: https://open.spotify.com/user/rvanosnabrugge/playlist/
0BWgsNPM5iwgk8ZGlMHeoY?si=l9-tV8FTR8S1J7AbKBz-KA
Video: https://www.youtube.com/watch?v=SGAnLY46zAk
Thanks: Martijn, Xpirit