- Joan Iznardo·Last edited by Joan Iznardo on Jan 12, 2025Linked with GitHubContributed by
Comments
Log in to edit or delete your comments and be notified of replies.
There is no commentSelect some text and then click Comment, or simply add a comment to this page from below to start a discussion.wordpress a ECs
links
demo
https://aws.amazon.com/blogs/containers/running-wordpress-amazon-ecs-fargate-ecs/
ecs explained
https://blog.awsfundamentals.com/ecs-on-fargate
requeriments previs
- disposar d'una ec2 amb aws-cli instal·lada
- configurar les credencials de awsacademy a la ec2
-
aws configure… (prepara els 2 fitxers: ~/.aws/{config,credentials})
- manera interactiva
aws configure- manera no interactiva
tee /tmp/setup-creds.sh << EOT aws configure set region us-east-1 --profile default aws configure set output json --profile default aws configure set aws_access_key_id CHANGEME --profile default aws configure set aws_secret_access_key CHANGEMETOO --profile default aws configure set cli_pager "" --profile default aws configure set cli_history enabled EOT source /tmp/setup-creds.sh -
incorporar les credencials a ~/.aws/credentials
vi ~/.aws/credentials ggcG ^+shift+v [esc]:x -
codi (5 parts)
Image Not Showing
Possible Reasons
- The image file may be corrupted
- The server hosting the image is unavailable
- The image path is incorrect
- The image format is not supported
1 - cloudformation - all but ecs
export WOF_AWS_REGION=us-west-2
export WOF_ACCOUNT_ID=$(aws sts get-caller-identity --query 'Account' --output text)
export WOF_ECS_CLUSTER_NAME=ecs-fargate-wordpressexport
export WOF_CFN_STACK_NAME=WordPress-on-Fargate
wget https://raw.githubusercontent.com/aws-samples/containers-blog-maelstrom/main/CloudFormation/wordpress-ecs-fargate.yaml
aws cloudformation create-stack \
--stack-name $WOF_CFN_STACK_NAME \
--region $WOF_AWS_REGION \
--template-body file://wordpress-ecs-fargate.yaml
aws cloudformation wait stack-create-complete \
--stack-name $(aws cloudformation describe-stacks \
--region $WOF_AWS_REGION \
--stack-name $WOF_CFN_STACK_NAME \
--query 'Stacks[0].StackId' --output text) \
--region $WOF_AWS_REGION
export WOF_EFS_FS_ID=$(aws cloudformation describe-stacks \
--region $WOF_AWS_REGION \
--stack-name $WOF_CFN_STACK_NAME \
--query "Stacks[0].Outputs[?OutputKey=='EFSFSId'].OutputValue" \
--output text)
export WOF_EFS_AP=$(aws cloudformation describe-stacks \
--region $WOF_AWS_REGION \
--stack-name $WOF_CFN_STACK_NAME \
--query "Stacks[0].Outputs[?OutputKey=='EFSAccessPoint'].OutputValue" \
--output text)
# recuperem en variables d'entorn les dades que necessitarem després
export WOF_RDS_ENDPOINT=$(aws cloudformation describe-stacks \
--region $WOF_AWS_REGION \
--stack-name $WOF_CFN_STACK_NAME \
--query "Stacks[0].Outputs[?OutputKey=='RDSEndpointAddress'].OutputValue" \
--output text)
export WOF_VPC_ID=$(aws cloudformation describe-stacks \
--region $WOF_AWS_REGION \
--stack-name $WOF_CFN_STACK_NAME \
--query "Stacks[0].Outputs[?OutputKey=='VPCId'].OutputValue" \
--output text)
export WOF_PUBLIC_SUBNET0=$(aws cloudformation describe-stacks \
--region $WOF_AWS_REGION \
--stack-name $WOF_CFN_STACK_NAME \
--query "Stacks[0].Outputs[?OutputKey=='PublicSubnet0'].OutputValue" \
--output text)
export WOF_PUBLIC_SUBNET1=$(aws cloudformation describe-stacks \
--region $WOF_AWS_REGION \
--stack-name $WOF_CFN_STACK_NAME \
--query "Stacks[0].Outputs[?OutputKey=='PublicSubnet1'].OutputValue" \
--output text)
export WOF_PRIVATE_SUBNET0=$(aws cloudformation describe-stacks \
--region $WOF_AWS_REGION \
--stack-name $WOF_CFN_STACK_NAME \
--query "Stacks[0].Outputs[?OutputKey=='PrivateSubnet0'].OutputValue" \
--output text)
export WOF_PRIVATE_SUBNET1=$(aws cloudformation describe-stacks \
--region $WOF_AWS_REGION \
--stack-name $WOF_CFN_STACK_NAME \
--query "Stacks[0].Outputs[?OutputKey=='PrivateSubnet1'].OutputValue" \
--output text)
export WOF_ALB_SG_ID=$(aws cloudformation describe-stacks \
--region $WOF_AWS_REGION \
--stack-name $WOF_CFN_STACK_NAME \
--query "Stacks[0].Outputs[?OutputKey=='ALBSecurityGroup'].OutputValue" \
--output text)
export WOF_TG_ARN=$(aws cloudformation describe-stacks \
--region $WOF_AWS_REGION \
--stack-name $WOF_CFN_STACK_NAME \
--query "Stacks[0].Outputs[?OutputKey=='WordPressTargetGroup'].OutputValue" \
--output text)
2 - ECS
cat > wp-task-definition.json << EOF
{ "networkMode": "awsvpc",
"containerDefinitions": [
{
"portMappings": [
{
"containerPort": 8080,
"protocol": "tcp"
}
],
"essential": true,
"mountPoints": [
{
"containerPath": "/bitnami/wordpress",
"sourceVolume": "wordpress"
}
],
"name": "wordpress",
"image": "bitnami/wordpress",
"environment": [
{
"name": "MARIADB_HOST",
"value": "${WOF_RDS_ENDPOINT}"
},
{
"name": "WORDPRESS_DATABASE_USER",
"value": "admin"
},
{
"name": "WORDPRESS_DATABASE_PASSWORD",
"value": "supersecretpassword"
},
{
"name": "WORDPRESS_DATABASE_NAME",
"value": "wordpress"
},
{
"name": "PHP_MEMORY_LIMIT",
"value": "512M"
},
{
"name": "enabled",
"value": "false"
},
{
"name": "ALLOW_EMPTY_PASSWORD",
"value": "yes"
}
]
}
],
"requiresCompatibilities": [
"FARGATE"
],
"cpu": "1024",
"memory": "3072",
"volumes": [
{
"name": "wordpress",
"efsVolumeConfiguration": {
"fileSystemId": "${WOF_EFS_FS_ID}",
"transitEncryption": "ENABLED",
"authorizationConfig": {
"accessPointId": "${WOF_EFS_AP}",
"iam": "DISABLED"
}
}
}
],
"family": "wof-tutorial"
}
EOF
WOF_TASK_DEFINITION_ARN=$(aws ecs register-task-definition \
--cli-input-json file://wp-task-definition.json \
--region $WOF_AWS_REGION \
--query taskDefinition.taskDefinitionArn --output text)
aws ecs create-cluster \
--cluster-name $WOF_ECS_CLUSTER_NAME \
--region $WOF_AWS_REGION
WOF_SVC_SG_ID=$(aws ec2 create-security-group \
--description Svc-WordPress-on-Fargate \
--group-name Svc-WordPress-on-Fargate \
--vpc-id $WOF_VPC_ID --region $WOF_AWS_REGION \
--query 'GroupId' --output text)
aws ec2 authorize-security-group-ingress \
--group-id $WOF_SVC_SG_ID --protocol tcp \
--port 8080 --source-group $WOF_ALB_SG_ID \
--region $WOF_AWS_REGION
aws ecs create-service \
--cluster $WOF_ECS_CLUSTER_NAME \
--service-name wof-efs-rw-service \
--task-definition "${WOF_TASK_DEFINITION_ARN}" \
--load-balancers targetGroupArn="${WOF_TG_ARN}",containerName=wordpress,containerPort=8080 \
--desired-count 2 \
--platform-version 1.4.0 \
--launch-type FARGATE \
--deployment-configuration maximumPercent=100,minimumHealthyPercent=0 \
--network-configuration "awsvpcConfiguration={subnets=["$WOF_PRIVATE_SUBNET0,$WOF_PRIVATE_SUBNET1"],securityGroups=["$WOF_SVC_SG_ID"],assignPublicIp=DISABLED}"\
--region $WOF_AWS_REGION
#Wait until there two running tasks
#watch aws ecs describe-services \
# --services wof-efs-rw-service \
# --cluster $WOF_ECS_CLUSTER_NAME \
# --region $WOF_AWS_REGION \
# --query 'services[].runningCount'
expected_count=2
while true; do
running_count=$(aws ecs describe-services \
--services wof-efs-rw-service \
--cluster $WOF_ECS_CLUSTER_NAME \
--region $WOF_AWS_REGION \
--query 'services[].runningCount' --output text)
echo "Current running count: $running_count"
if [ "$running_count" -eq "$expected_count" ]; then
echo "Desired count reached"
break
fi
sleep 10
done
echo "http://$(aws elbv2 describe-load-balancers \
--names wof-load-balancer --region $WOF_AWS_REGION \
--query 'LoadBalancers[].DNSName' --output text)/wp-admin/"
## The admin username is ‘user’ and the password is ‘bitnami’. Please change the password as soon as possible.
3 - data persistence demo
# Test data persistence
## entrar i canviar el tema de wordpress + escalar a zero instancies + escalar a 3 instancies i comprovar que tot continua igual (gràcies a efs)
aws ecs update-service \
--cluster $WOF_ECS_CLUSTER_NAME \
--region $WOF_AWS_REGION \
--service wof-efs-rw-service \
--task-definition "$WOF_TASK_DEFINITION_ARN" \
--desired-count 0
#
# Test data persistence
##watch aws ecs describe-services \
## --services wof-efs-rw-service \
## --cluster $WOF_ECS_CLUSTER_NAME \
## --region $WOF_AWS_REGION \
## --query 'services[].runningCount'
expected_count=0
while true; do
running_count=$(aws ecs describe-services \
--services wof-efs-rw-service \
--cluster $WOF_ECS_CLUSTER_NAME \
--region $WOF_AWS_REGION \
--query 'services[].runningCount' --output text)
echo "Current running count: $running_count"
if [ "$running_count" -eq "$expected_count" ]; then
echo "Desired count reached"
break
fi
sleep 10
done
aws ecs update-service \
--cluster $WOF_ECS_CLUSTER_NAME \
--region $WOF_AWS_REGION \
--service wof-efs-rw-service \
--task-definition "$WOF_TASK_DEFINITION_ARN" \
--desired-count 2
expected_count=2
while true; do
running_count=$(aws ecs describe-services \
--services wof-efs-rw-service \
--cluster $WOF_ECS_CLUSTER_NAME \
--region $WOF_AWS_REGION \
--query 'services[].runningCount' --output text)
echo "Current running count: $running_count"
if [ "$running_count" -eq "$expected_count" ]; then
echo "Desired count reached"
break
fi
sleep 10
done
4 - autoescalat del frontal
# autoescalat - Service Auto Scaling
aws application-autoscaling \
register-scalable-target \
--region $WOF_AWS_REGION \
--service-namespace ecs \
--resource-id service/${WOF_ECS_CLUSTER_NAME}/wof-efs-rw-service \
--scalable-dimension ecs:service:DesiredCount \
--min-capacity 2 \
--max-capacity 4
cat > scaling.config.json << EOF
{
"TargetValue": 75.0,
"PredefinedMetricSpecification": {
"PredefinedMetricType": "ECSServiceAverageCPUUtilization"
},
"ScaleOutCooldown": 60,
"ScaleInCooldown": 60
}
EOF
aws application-autoscaling put-scaling-policy \
--service-namespace ecs \
--scalable-dimension ecs:service:DesiredCount \
--resource-id service/${WOF_ECS_CLUSTER_NAME}/wof-efs-rw-service \
--policy-name cpu75-target-tracking-scaling-policy \
--policy-type TargetTrackingScaling \
--region $WOF_AWS_REGION \
--target-tracking-scaling-policy-configuration file://scaling.config.json
# descàrrega del stress test
curl -o hey_linux_amd64 https://hey-release.s3.us-east-2.amazonaws.com/hey_linux_amd64
chmod a+x hey_linux_amd64
./hey_linux_amd64 -z 20m http://$(aws elbv2 describe-load-balancers \
--names wof-load-balancer --region $WOF_AWS_REGION \
--query 'LoadBalancers[].DNSName' --output text)
5 - destrucció de la infraestructura
aws application-autoscaling delete-scaling-policy --policy-name cpu75-target-tracking-scaling-policy --service-namespace ecs --resource-id service/${WOF_ECS_CLUSTER_NAME}/wof-efs-rw-service --scalable-dimension ecs:service:DesiredCount --region $WOF_AWS_REGION
aws application-autoscaling deregister-scalable-target --service-namespace ecs --resource-id service/${WOF_ECS_CLUSTER_NAME}/wof-efs-rw-service --scalable-dimension ecs:service:DesiredCount --region $WOF_AWS_REGION
aws ecs delete-service --service wof-efs-rw-service --cluster $WOF_ECS_CLUSTER_NAME --region $WOF_AWS_REGION --force
aws ec2 revoke-security-group-ingress --group-id $WOF_SVC_SG_ID --region $WOF_AWS_REGION --protocol tcp --port 8080 --source-group $WOF_ALB_SG_ID
aws ec2 delete-security-group --group-id $WOF_SVC_SG_ID --region $WOF_AWS_REGION
aws ecs delete-cluster --cluster $WOF_ECS_CLUSTER_NAME --region $WOF_AWS_REGION
aws cloudformation delete-stack --stack-name $WOF_CFN_STACK_NAME --region $WOF_AWS_REGION
``
Read more
Recursos útils
View the slide with "Slide Mode".
Jun 27, 2025final 2024/2025 m8/cloud
https://www.cloudhuntinggames.com/https://promptairlines.com/https://bigiamchallenge.com/challenge/1https://k8slanparty.com/https://eksclustergames.com/
May 25, 2025asixcloud - k8s
[TOC]
Apr 23, 2025resum 20242025asixm8
20250117 - mòduls i logs objectiu: demostrar que heu habilitat el mòdul http2 a apache i nginx; demostració via curl; demostrar que sabem qui ens visita: logs (apache i nginx) lliurament a https://forms.gle/x2R8U2ecEtxkyyndA regal: jq
Mar 24, 2025Published on 
HackMD
HackMD