Skip to content

Latest commit

 

History

History
410 lines (314 loc) · 12.7 KB

README.md

File metadata and controls

410 lines (314 loc) · 12.7 KB

Main Tutorial

We are gathered here today, because we want to have multiple containers running on Amazon Web Services (AWS) and Elastic Beanstalk. Reason for using Elastic Beanstalk, it is the only experimental way to move code from local machine to Travis via Docker.

I wanted to share some common tools (really just commands) that will help us troubleshoot - when (NOT if) we find ourselves in hot water. These commands are good to know, as they will help you extract some information about your containers and give you ways to troubleshoot.

#Toolset - Commands
You do not have to memorize them, although I am sure you will, just know that they are here for you if you need them. The tutorial we are about to do, deploys a simple Node server app, however these will come useuful when you are trying to standup your apps :)

Command/Location Description
cat /ect/hosts Not docker specific - this is a file with hosts table
docker inspect <container Name
eb local run Run your app locally on boot2docker VM, before testing it on AWS
eb local status Shows containers IP and address and the open ports
eb local open Opens the application in a web browser and exits
curl http://localhost:51678/v1/tasks Not on your local machine, but when you are inside AWS and - see ### Inspect tasks under "/ecs-agent",
Task Definition This is your Dockerrun.aws.json v2 (reference is below) - file that setups up tasks required for AWS to setup your instances

Btw, this is unrelated with the demo - but logo from Docker Machine is Awsome :) Awesome Docker machine image

Before it begins

I'll be referring to commands executed in your own terminal with:

    $osxterm: command

Commands inside a container with:

    $ root: command

Output after running a command will be denoted (in container/or your terminal)

    %: output 

Output after running a command inside Mongo Shell

    > output 

STEP0 --- FROM git TO Elastic Beanstalk in 5 minutes

In the first part of this tutorial, we will begin by setting a sample application, and deploying it to AWS via Elastic Beanstalk. After we are done with STEP0, we will add Travis. Travis will be a piece of cake, so STEP0 is the majority of the work. (all the hard work into setup and then the payoff)

Fork this repo to follow along - our example repo to your local machine

[] Fork https://github.com/georgebatalinski/newrepo.git [] Delete .travis.yml && Dockerrun.aws.json

git clone https://github.com/georgebatalinski/newrepo.git
  1. We will be using the Command line in this Tutorial, however you can easily achive all of this - via WEB CONSOLE

IF you decied to use [WEB CONSOLE] do the following (otherwise - skip to point 2): I. Login II. Upper right hand corner - [Create New Application] I. Follow the steps that are provided by Amazon NOTE: New Environment: 'Create web server' II. When it asks UPLOAD - click on 'Upload' button - and select only your Dockerrun.aws.json If you decided to go via WEB CONSOLE skip to ### []Dockerrun.aws.json v2

  1. We will need to setup permissions, in order to allow Elastic Beanstalk to create/manage our instances. Since AWS uses multiple services to assemble Docker for us, Elastic Beanstalk will need to speak to Amazon ECS container agent, and you will have to add the Policy in AWS Identity and Access Management (IAM).

Lucky for us, it is simple to do:

I. Paste this into the Policy area in IAM
```
{
"Version": "2016-02-01",
"Statement": [
    {
    "Effect": "Allow",
    "Action": [
        "ecs:StartTask",
        "ecs:StopTask",
        "ecs:RegisterContainerInstance",
        "ecs:DeregisterContainerInstance",
        "ecs:DescribeContainerInstances",
        "ecs:DiscoverPollEndpoint",
        "ecs:Submit*",
        "ecs:Poll"
    ],
    "Resource": ["*"]
    },
    {
    "Effect": "Allow",
    "Action": "s3:PutObject",
    "Resource": "arn:aws:s3:::elasticbeanstalk-*/resources/environments/logs/*"
    }
]
}
```

II. Create the Role
    and attach the above Policy to it 

Here is a good tutorial on exactly how to do it -> Click here for step by step guide

  1. cd into our cloned directory above - and create the environment inside Elastic Beanstalk - eb will do the talking

Roadmap check: [] Cloned the repo [] Added Role/Policy

$ cd rate-instructor 
$ eb init
$ eb create dev-env

You got it - maybe it took a bit longer over our allocated time of 5 minutes -- but it was not our fault, it was all Elastic Beanstalk provisioning the 'dev-env' (it can take up to 12 minutes (approx) - to spin the environment)

[] Create a file - Dockerrun.aws.json (NOTE: v2 - is for multi-container (more then 1 container))

This file, defines the Amazon ECS task definition that are used to configure container instances in the environment. Amazon ECS Task – are "containerDefinitions" inside our Dockerrun.aws.json, which are run by Elastic Beanstalk whenever an instance is added. Reference

  1. Create a file named [Dockerrun.aws.json] - in your git repo - copy/paste the below JSON

Dockerrun.aws.json

{
  "AWSEBDockerrunVersion": 2,
    "volumes": [
    {
      "name": "db",
      "host": {
        "sourcePath": "/src"
      }
    }
  ],
  "containerDefinitions": [
    {
      "name": "server",
      "image": "georgebatalinski/docker-centos-simple-server-two:latest",
      "essential": true,
      "memory": 128,
      "portMappings": [
        {
          "hostPort": 80, //must be - PORT: 80 - See load balancer below for explanation
          "containerPort": 8080
        }
      ],
      "mountPoints": [
        {
          "sourceVolume": "db",
          "containerPath": "/src/money" //We are only mounting - "volumes" NOT creating new volumes
        }
      ],
      "links": [
        "db"
      ]
    },
    {
      "name": "db",
      "image": "mongo",
      "essential": true,
      "memory": 128,
      "portMappings": [
        {
          "hostPort": 27017,
          "containerPort": 27017
        }
      ],
      "mountPoints": [
        {
          "sourceVolume": "db",
          "containerPath": "/src/money"
        }
      ]
    }
  ]
}
 

The biggies:

    "volumes": [
    {
      "name": "db",
      "host": {
        "sourcePath": "/src"
      }
    }
  ],

Elastic Beanstalk will create an empty volume and we get the following benefits: I. We can share the volume between containers II. This volume will be independently be mounted inside each container III. This volume will persist, even when our containers become stopped - helpful for backup making volumes independent of container lifecycle.

LOAD BALANCER - loves port 80 You get the load balancer by default, however it likes to listen to "hostPort": 80 In your Dockerrun.aws.json you can setup the port mapping to like so:

"portMappings": [
        {
          "hostPort": 80,
          "containerPort": 8080
        }
      ],

This is your app with Load Balancer

NOTE: If you cannot set this up, or require non-default port (meaning are unhappy with port 80) - check out Using Multiple Elastic Load Balancing Listeners

[]Test you EB CLI if you are testing you app locally

Roadmap check: [] Cloned the repo [] Added Role/Policy [] There is a file named - Dockerrun.aws.json - in your main repo

If you do not have latest eb cli - then upgrade. REASON: I ran into some configuration issues, beacuse of and older version. Do not burn the hours, just update.

To install EB on OSX

$osxterm: curl -s https://s3.amazonaws.com/elasticbeanstalk-cli-resources/install-ebcli.py | python

Install EB CLI for other platforms

Once you have EB installed - lets run/open the project on our local machine. eb local will use boot2docker - to provide you the application without provisioning any AWS reources.

$osxterm: eb local run 
$osxterm: eb local open

If it runs on your local machine - you are ready for the big leauges. Move it over to ElasticBeanstalk on AWS.

$osxterm: eb deploy

TROUBLESHOOTING: If you cannot open the app

$osxterm: eb local status 

%: ....
Container name: elasticbeanstalk_server_1
Container ip: 192.168.59.103
Container running: False
Exposed host port(s): None
Full local URL(s): None
...

If Exposed host port(s): 80 OR Full local URL(s): 192.168.59.103:80 are not available - you containers are not running

eb local is using boot2docker - to provide you the application without provisioning any AWS reources To get into this Virtual Machine on - use ssh.

$osxterm: boot2docker ssh
$: docker ps 

If you ran into another issue - Go over the table at the top of this page - and see if you can troubleshoot it If not, submit your issue in the Comments

STEP1 --- FROM git TO Elastic Beanstalk TO travis in 5 minutes

Roadmap check: [] Cloned the repo [] Added Role/Policy [] There is a file named - Dockerrun.aws.json - in your main repo [] You got to open and see 'Hello World' in your browser - if not - go to above section and find out why? before proceeding

The missing piece is Travis right now, so lets set it up.

The travis layer is next, our expectation (or where Travis is going to help us):
1. Run tests 2. Build our docker image and push it to public repository Private Registry Push 3. Move our Dockerrun.aws.json TO Elastic Beanstalk 4. Turn green - when sucess :)

The Setup

Sign up for a Travis account - Once you synced your account on https://travis-ci.org/ with your Git repo, the rest is 2 simple steps away

  1. We Create a file .travis.yml in our local repo

From Line:1 of the file - copy/paste this into .travis.yml

sudo: required
language: node_js
node_js:
- '4.1'
git:
  depth: 1
env:
  DOCKER_COMPOSE_VERSION: 1.5.0
services:
- docker

before_install:
- docker login -e="$DOCKER_EMAIL" -u="$DOCKER_USERNAME" -p="$DOCKER_PASSWORD"
- docker build -t georgebatalinski/docker-centos-simple-server-two:latest .
- docker push georgebatalinski/docker-centos-simple-server-two

  1. We are going to add our AWS_ACCESS_KEY_ID && AWS_SECRET_ACCESS_KEY - by running the command below, we will be promted for this information and travis will encrypt it for us

WARNING: Do not upload your AWS_ACCESS_KEY_ID && AWS_SECRET_ACCESS_KEY without encyption to public repos, or you may get unwanted charges from AWS. (since if others have your root keys - they can use your account as they please)

$osxterm: travis setup elasticbeanstalk
%: ....
now you will be promted 
choose to encrypt
....

On your local machine now, set these ENV vars - that Travis will use to publish your docker repo

$osxterm: travis env set DOCKER_EMAIL <youremail>
$osxterm: travis env set DOCKER_USERNAME <yourusername>
$osxterm: travis env set <yourpassword>

You are setup, push the changes to the repository, and travis will run automatically

git commit -am 'first build via docker on elasticbean'
git push origin master

Check your Travis dashboard and see the GREEN status

Isn't that your favourite color? :)

General troubleshooting techniques - for docker containers

Docker specific

ps - show you running contatainers
logs -- show you logs 
diff      Inspect changes on a container's filesystem
events    Get real time events from the server
history   Show the history of an image
inspect   Return low-level information on a container or image
port      Lookup the public-facing port that is NAT-ed to PRIVATE_PORT

Inspect tasks under "/ecs-agent",

If you can SSH into your instance, and you see "/ecs-agent" and no other containers running, then you know that somehow your containers are not being build.

$osxterm: sudo docker ps
$osxterm: curl http://localhost:51678/v1/tasks

Introspection