Amazon EC2 Container Service€¦ ·  · 2016-10-03Amazon EC2 Container Service (AKA EC2 ECS) (AKA...

Post on 31-Mar-2018

248 views 2 download

Preview:

Click to see full reader
Report this document
SHARE

Transcript of Amazon EC2 Container Service€¦ ·  · 2016-10-03Amazon EC2 Container Service (AKA EC2 ECS) (AKA...

Amazon EC2 Container Service(AKA EC2 ECS)

(AKA ECS)

Brian Nuszkowski @nuszkowski

Github: broamski

Amazon EC2 Container Registry(AKA EC2 ECR)

(AKA ECR)

The Problem Statements

• How do I orchestrate and schedule them?

• Where do I store them?

ECS Building Blocks

EC2 Container Instance

Task Definition

Service

Container Definition(s)

Scheduling

RunTask StartTask

ECS Cluster

ECS Building Blocks

ECS Cluster

ECS Cluster

ECS Building Blocks

EC2 Container Instance

ECS Cluster

ECS Cluster

EC2 Container Instances

ECS Cluster

EC2 Instance

EC2 Container Instance Criteria

1. Linux2. Docker Daemon3. ECS Agent

ECS Cluster - Building a Container Instance Fleet

Amazon ECS-optimized AMI (amzn-ami-2016.03.i-amazon-ecs-optimized) consists:

• The latest minimal version of the Amazon Linux AMI• The latest version of the Amazon ECS container agent (1.12.2)• The recommended version of Docker for the latest Amazon ECS container agent (1.11.2)

• The latest version of the ecs-init package to run and monitor the Amazon ECS agent (1.12.2-1)

ECS Cluster - Building a Container Instance Fleet

#!/bin/bash# install docker# do your other thingsdocker run --name ecs-agent \

--detach=true \--restart=on-failure:10 \--volume=/var/run/docker.sock:/var/run/docker.sock \--volume=/var/log/ecs/:/log \--volume=/var/lib/ecs/data:/data \--net=host \--env=ECS_LOGFILE=/log/ecs-agent.log \--env=ECS_LOGLEVEL=info \--env=ECS_DATADIR=/data \--env=ECS_CLUSTER=<cluster_name> \--env=ECS_ENABLE_TASK_IAM_ROLE=true \--env=ECS_ENABLE_TASK_IAM_ROLE_NETWORK_HOST=true \amazon/amazon-ecs-agent:<version or latest>

ECS Cluster - Building a (Bespoke) Container Instance Fleet

Mix and Match

ECS Cluster - Building a (Robust) Container Instance Fleet

Auto Scaling group

ECS Cluster - Task Definition

• 1 or many Container Definitions per Task Definition

• Each container definition defines typical container parameters: volumes, ports exposed, metadata, etc.

• Task Definitions are immutable

Task Definition: WebApp

nginx:1.10.1

Container Definition

yourpythonapp:2.6.9

Container Definition

ECS Cluster - Task Definition

• 1 or many Container Definitions per Task Definition

• Each container definition defines typical container parameters: volumes, ports exposed, metadata, etc.

• Task Definitions are immutable

Task Definition: WebApp

nginx:1.10.1

Container Definition

redis:latest

Container Definition

yourpythonapp:2.6.9

Container Definition

Task Definitions

Task Definition: WebApp:X (Family:Revision)

nginx:1.10.1

Container Definition

redis:latest

Container Definition

yourpythonapp:2.6.9

Container Definition

Task Definition: Cache:X

redis:latest

Container Definition

nginx:1.10.1

Container Definition

yourpythonapp:2.6.9

Container Definition

Task Definition: API:X(container linking)

(sorry, no cross-task linking)

Task Definitions

Task Definition: nginx:1

nginx:1.10.1

Container Definition

Task Definition: app:1

pythonapp:2.4.3

Container Definition

Task Definition: redis:1

redis:latest

Container Definition

Task Definitions

Task Definition: WebApp:1

nginx:1.10.1

Container Definition

redis:latest

Container Definition

yourpythonapp:2.6.9

Container Definition

Task Definition: WebApp:2

yourpythonapp:2.7.0

(container linking)

nginx:1.10.1

Container Definition

redis:latest

Container Definition

Container Definition

(container linking)

Scheduling Tasks

EC2 Instance

Task Definition

ECS Cluster

. . . . .

Task

Scheduling Tasks

EC2 Instance EC2 Instance

Continuous(Service)

Service: WebApp

ECS Cluster

Scheduler

Task Def: WebApp:1Desired #: 2Deploy Options: 50% minimumLoad Balancer: X

Service: Cache

Task Def: Cache:1Desired #: 1Deploy Options: 50% minimumLoad Balancer: X

Scheduling Tasks

More On Services….• Continuously attempting to achieve desired count • Balance system capacity and Availability Zone considerations • Deployment Strategies

• Optional • Control how many tasks run during the deployment and the ordering of stopping and starting tasks • maximumPercent - max # of running tasks = desiredCount * maximumPercent/100 • minimumHealthyPercent - max # of running tasks = desiredCount * minimumHealthyPercent/100

• AutoScaling • Scale Service • Scale EC2 Instaces

ECS Cluster - Deployment

WebApp:1 WebApp:1 WebApp:1 WebApp:1

minimumHealthyPercent: 50maximumPercent: 100

WebApp:2 WebApp:2WebApp:2 WebApp:2

ECS Cluster - Deployment

WebApp:1 WebApp:1 WebApp:1 WebApp:1

minimumHealthyPercent: 100maximumPercent: 200

WebApp:2 WebApp:2 WebApp:2 WebApp:2

Scheduling Tasks

Even More On Services: Load Balancing

Application ELB (443) -> Dynamic

Classic ELB (443) -> 9999

nginx:1.10.1 0:80

nginx:1.10.1 0:80

nginx:1.10.1 9999:80

1:1 ELB to Service Ratio!

Scheduling Tasks

EC2 Instance EC2 Instance

One-Time

Task Definition: BatchProcessor

ECS Cluster

SchedulerTask Def: WebApp:1Desired #: 2

Randomly distributed via RunTaskor intentionally distributed via

StartTask

Service / Task Definition Design Patterns

ELB

EC2 Instance EC2 Instance EC2 Instance

nginx

app

nginx

app

nginx

apptask task task

Service / Task Definition Design Patterns

ELB

EC2 Instance EC2 Instance EC2 Instance

nginx

app

nginx

app

nginx

appservice service service

Service / Task Definition Design Patterns

ELB

EC2 Instance EC2 Instance EC2 Instance

nginx

dev-app

prod-app

nginx

dev-app

prod-app

nginx

dev-app

prod-app

Service / Task Definition Design Patterns

EC2 Instance

nginx

appA

EC2 Instance

nginx

EC2 Instance

nginx

appB

ELB

appAELB

ELB

Service / Task Definition Design Patterns

EC2 Instance

nginx

prod

EC2 Instance

nginx

EC2 Instance

nginx

dev

ELB

prodELB

ELB

ECS Cluster - IAM

• Container Instance IAM Role (EC2)• ecs-agent uses this

• ECS Service Scheduler• ECS Service operating on your behalf; ELB register/deregister

• ECS Autoscaling Role• Make system adjustments on your behalf

• Per task IAM Roles!!!

• logging w/CloudWatch Logs

• garbage collection

• deploying same task def doesn’t do anything (if using same container tag), must create new version

• comparing task definitions

• sharing data: s3? persistent backend? partitioned? EFS?

Misc Notes

ECR

• you need to run aws ecr get-login —region us-east-1 | bash - which is good for 12 hours

• acs-agent can use instance metadata to pull from ecr, so 3rd party registry credentials can be provided

• There are complaints about the repository naming convention

Amazon API

GatewayAWS

Lambda

Amazon ECS

Top related

February 2016 Webinar Series - EC2 Container Service Deep Dive
 Technology
Arrow ECS Training - Thorsten Butz · Arrow ECS Training Get-KnowHow | Select ... Windows Server Container Thorsten Butz Agenda Windows Server Container • Container basics ... je
 Documents
Container-based Architectures on AWS - Amazon …aws-de-media.s3.amazonaws.com/images/AWS_Summit_2018/...API for launching containers on the cluster EC2 INSTANCES ECS AGENT TASK TASK
 Documents
FALCON FOR AWS · Cloud (Amazon EC2) instances, Amazon Elastic Container Service (Amazon ECS) & Amazon Elastic Kubernetes Service (Amazon EKS) containers, Windows and Linux, including
 Documents
Getting Started with Amazon EC2 Container Service
 Documents
AWS year in revie€¦ ·  · 2016-01-27Amazon EC2 Container Service (EC2) provides everything between raw EC2 instances and a running docker container. It integrates nicely with
 Documents
Play Framework + Docker + CircleCI + AWS + EC2 Container Service
 Software
Introduction to Amazon EC2 Container Service and setting up build pipeline with ECS and Jenkins
 Technology
Making Sense Out of Amazon EC2 Container Service
 Technology
Amazon EC2 Container Service in Action
 Technology
AWS December 2015 Webinar Series - Continuous Delivery to Amazon EC2 Container Service
 Technology
Amazon EC2 Container Service - AWS Documentation€¦ · Amazon EC2 Container Service API Reference Table of Contents Welcome ...
 Documents
Dell EMC ECS: High Availability Design · A chunk is a logical container that ECS uses to store all types of data, including object data, custom client provided metadata, and ECS
 Documents
Containers and the evolution of computing · What is Amazon ECS? Amazon EC2 Container Service (ECS) is a highly scalable, high performance container management service. You can use
 Documents
Introduction to AWS GoldBase · hardened containers used by the Amazon EC2 Container Service (Amazon ECS) or Docker can be deployed using the Trusted Architect template package through
 Documents
Amazon EC2 Container Service: Deep Dive
 Business
CloudBees Jenkins Platform with Amazon EC2 Container Service - Barcelona Meetup - 2015/11/18
 Software
EC2 Container Service
 Technology
DOCKER ON AWS - Quality Thought€¦ ·  · 2017-07-13DOCKER ON AWS. Steps For Creating ... Launch an EC2 Machine and select the ECS Optimized AMI. ... Open EC2 port IAM role for
 Documents
Container Management: Kubernetes vs Docker …...The following sections will introduce Kubernetes, Docker Swarm, Mesos + Marathon, Mesosphere DCOS, and Amazon EC2 Container Service
 Documents

Copyright © 2022 FDOCUMENTS