Join this workshop to learn the basics of working with microservices and Amazon ECS. Discover how to prepare two microservice container images, set up the initial Amazon ECS cluster, and deploy the containers with traffic routed through an ALB. You'll deploy a simple web application that enables users to request unicorn rides from the Wild Rydes (http://wildrydes.com/) fleet. The application architecture uses AWS Lambda (https://aws.amazon.com/lambda/), Amazon API Gateway (https://aws.amazon.com/api-gateway/), Amazon S3 (https://aws.amazon.com/s3/), Amazon DynamoDB (https://aws.amazon.com/dynamodb/), Amazon Cognito (https://aws.amazon.com/cognito/), and AWS Amplify Console (https://aws.amazon.com/amplify/console/). Amplify Console hosts static web resources including HTML, CSS, JavaScript, and image files which are loaded in the user's browser via Amazon S3. JavaScript executed in the browser sends and receives data from a public backend API built using AWS Lambda and Amazon API Gateway. Amazon Cognito provides user management and authentication functions to secure the backend API. Finally, DynamoDB provides a persistence layer where data can be stored by the API's AWS Lambda function.
Deep Dive on Amazon Elastic Container Service (ECS) | AWS Summit Tel Aviv 2019AWS Summits
This talk will dive deep into Amazon ECS. We will take a look at recently added ECS features, like target tracking autoscaling, service discovery, daemon scheduling, task networking, and GPU pinning, including live demos!
We have traditionally built robust software systems by trying to avoid mistakes and by dodging failures when they occur in production or by testing parts of the system in isolation from one another. Modern methods and techniques take a very different approach based on resiliency, which promotes embracing failure instead of trying to avoid it. Resilient architectures enhance observability, leverage well-known patterns such as graceful degradation, timeouts and circuit breakers but also new patterns like cell-based architecture and shuffle sharding. In this session, will review the most useful patterns for building resilient software systems and especially show the audience how they can benefit from the patterns.
AWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 BarcelonaAmazon Web Services
In this session, learn about how AWS App Mesh can help give you end-to-end visibility and manage traffic routing to ensure high availability for your microservice. We will cover what the need for a service mesh, capabilities of App Mesh, and show you a demo.
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019AWS Summits
AWS provides a wide range of data analytics tools with the power to analyze vast volumes of customer, business, and transactional data quickly and at low cost.
In this session, we provide an overview of AWS analytics services and discuss how customers are using these services today. We will also discuss the new database and analytics services and features we launched in the last year.
Expedite the Pace of Innovation with Microservices
利用微服務加速創新的步伐
Level: 200, 中文演講
講師: Louis Wang, Cloud Support Engineer, AWS & Shang-Wei Lin, Software Development Manager, MobiX Corp.
創業家兄弟透過推陳出新品牌來因應快速的市場變化,並且在2016年創立了另一個B2B2C的平台-松果購物來滿足更多面向消費者的需求。本場次將會說明創業家兄弟及松果購物如何使用AWS ECS 打造一個彈性又易於操作的底層平台來呼應不斷變動的市場。
聯繫銷售: https://aws.amazon.com/tw/contact-us/
與銷售線上聊天: https://pages.awscloud.com/tw-hkt-sales-chat.html
Budget management with Cloud Economics | AWS Summit Tel Aviv 2019Amazon Web Services
Cloud Computing lets you pay for what you actually use.How can you deliver innovation efficiently and cost effectively?In this session, we will discuss the various options that will help you manage your costs and developing a cost-conscious culture in the cloud.We will review a wide range of cost planning, monitoring and optimization strategies. Starting with the meaning of moving from CAPEX to variable IT expenses, to how you can optimize by using multiple purchasing options and how to monitor your operational expense.
Deep Dive on Amazon Elastic Container Service (ECS) | AWS Summit Tel Aviv 2019AWS Summits
This talk will dive deep into Amazon ECS. We will take a look at recently added ECS features, like target tracking autoscaling, service discovery, daemon scheduling, task networking, and GPU pinning, including live demos!
We have traditionally built robust software systems by trying to avoid mistakes and by dodging failures when they occur in production or by testing parts of the system in isolation from one another. Modern methods and techniques take a very different approach based on resiliency, which promotes embracing failure instead of trying to avoid it. Resilient architectures enhance observability, leverage well-known patterns such as graceful degradation, timeouts and circuit breakers but also new patterns like cell-based architecture and shuffle sharding. In this session, will review the most useful patterns for building resilient software systems and especially show the audience how they can benefit from the patterns.
AWS App Mesh (Service Mesh Magic)- AWS Container Day 2019 BarcelonaAmazon Web Services
In this session, learn about how AWS App Mesh can help give you end-to-end visibility and manage traffic routing to ensure high availability for your microservice. We will cover what the need for a service mesh, capabilities of App Mesh, and show you a demo.
AWS Analytics Services - When to use what? | AWS Summit Tel Aviv 2019AWS Summits
AWS provides a wide range of data analytics tools with the power to analyze vast volumes of customer, business, and transactional data quickly and at low cost.
In this session, we provide an overview of AWS analytics services and discuss how customers are using these services today. We will also discuss the new database and analytics services and features we launched in the last year.
Expedite the Pace of Innovation with Microservices
利用微服務加速創新的步伐
Level: 200, 中文演講
講師: Louis Wang, Cloud Support Engineer, AWS & Shang-Wei Lin, Software Development Manager, MobiX Corp.
創業家兄弟透過推陳出新品牌來因應快速的市場變化,並且在2016年創立了另一個B2B2C的平台-松果購物來滿足更多面向消費者的需求。本場次將會說明創業家兄弟及松果購物如何使用AWS ECS 打造一個彈性又易於操作的底層平台來呼應不斷變動的市場。
聯繫銷售: https://aws.amazon.com/tw/contact-us/
與銷售線上聊天: https://pages.awscloud.com/tw-hkt-sales-chat.html
Budget management with Cloud Economics | AWS Summit Tel Aviv 2019Amazon Web Services
Cloud Computing lets you pay for what you actually use.How can you deliver innovation efficiently and cost effectively?In this session, we will discuss the various options that will help you manage your costs and developing a cost-conscious culture in the cloud.We will review a wide range of cost planning, monitoring and optimization strategies. Starting with the meaning of moving from CAPEX to variable IT expenses, to how you can optimize by using multiple purchasing options and how to monitor your operational expense.
Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...AWS Summits
So, you have workloads running on premise and you wish to extend to the Cloud? You are not that different! Let's discuss few of your options for running in a hybrid mode. How to connect the two in a secure manner? Which services you should utilize? what you can also use on premise?
This free, one-day training will provide a step-by-step introduction to the core AWS services for compute, storage, database, and networking.
AWS technical experts will explain key features and use cases, share best practices, walk through technical demos, and be available to answer your questions one-on-one.
AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about cloud computing and how to get started on the AWS Cloud.
Training Overview:
This free, online training will provide an introduction to the core AWS services for compute, storage, database, and networking. Our AWS technical expert will provide an overview of AWS, sharing key features, use cases, best practices, and walk through technical demos. There will be AWS experts available to answer your questions one-on-one.
Who should attend:
Virtual AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about AWS cloud computing.
How can you accelerate the delivery of new, high-quality services? How can you be able to experiment and get feedback quickly from your customers? To get the most out of the agility afforded by serverless and containers, it is essential to build CI/CD pipelines that help teams iterate on code and quickly release features. In this talk, we demonstrate how developers can build effective CI/CD release workflows to manage their serverless or containerized deployments on AWS. We cover infrastructure-as-code (IaC) application models, such as AWS Serverless Application Model (AWS SAM) and new imperative IaC tools. We also demonstrate how to set up CI/CD release pipelines with AWS CodePipeline and AWS CodeBuild, and we show you how to automate safer deployments with AWS CodeDeploy.
Transform with Cloud to drive your Future | AWS Summit Tel Aviv 2019Amazon Web Services
Innovation and agility are not for startups only, getting a competitive edge requires combining cloud-based tools and business challenges in innovative ways to drive operating efficiency, open new revenue streams, and evolve customer engagement models. In this session we will imagine the future. We will explore how to transform with Cloud to drive your future.
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
Vuoi conoscere le opzioni per eseguire Microsoft Active Directory su AWS? Quando si spostano carichi di lavoro Microsoft in AWS, è importante considerare come distribuire Microsoft Active Directory per supportare la gestione, l'autenticazione e l'autorizzazione dei criteri di gruppo. In questa sessione, discuteremo le opzioni per la distribuzione di Microsoft Active Directory su AWS, incluso AWS Directory Service per Microsoft Active Directory e la distribuzione di Active Directory su Windows su Amazon Elastic Compute Cloud (Amazon EC2). Trattiamo argomenti quali l'integrazione del tuo ambiente Microsoft Active Directory locale nel cloud e l'utilizzo di applicazioni SaaS, come Office 365, con AWS Single Sign-On.
Introduction to the AWS Cloud - AWSome Day 2019 - TorontoAmazon Web Services
This free, one-day training will provide a step-by-step introduction to the core AWS services for compute, storage, database, and networking. AWS technical experts will explain key features and use cases, share best practices, walk through technical demos, and be available to answer your questions one-on-one. Who should attend? AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about cloud computing and how to get started on the AWS Cloud.
Introduction to the AWS Cloud - AWSome Day 2019 - CharlotteAmazon Web Services
This free, one-day training will provide a step-by-step introduction to the core AWS services for compute, storage, database, and networking. AWS technical experts will explain key features and use cases, share best practices, walk through technical demos, and be available to answer your questions one-on-one. Who should attend? AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about cloud computing and how to get started on the AWS Cloud.
In this session we will focus on accounts operations best practices, how to setup your account to reduce operational risks and how to make your operations easier using various tools including Systems Manager, Trusted Advisor, Personal Health Dashboard, AWS config and more. SundaySky will present how they improve their operations with automated responce based on lessons learned.
Ora puoi utilizzare Amazon Elastic Kubernetes Service (EKS) per eseguire pod Kubernetes su AWS Fargate, il motore di elaborazione serverless creato per container su AWS. Questo rende più semplice che mai costruire ed eseguire le tue applicazioni Kubernetes nel cloud AWS.In questa sessione presenteremo le caratteristiche principali del servizio e come distribuire la tua applicazione in pochi passaggi
Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019AWS Summits
This session focuses on performance and cost optimization on Amazon SageMaker. First, we'll show you how to automatically tune hyper-parameters, and quickly converge to optimal models. Second, you'll learn how to use SageMaker Neo, a new service that optimizes models for the underlying hardware architecture. Third, we'll show you how Elastic Inference lets you attach GPU acceleration to EC2 and SageMaker instances at the fraction of the cost of a full-fledged GPU instance. Finally, we'll share additional cost optimization tips for SageMaker.
Introduction to the AWS Cloud - AWSome Day 2019 - VancouverAmazon Web Services
This free, one-day training will provide a step-by-step introduction to the core AWS services for compute, storage, database, and networking. AWS technical experts will explain key features and use cases, share best practices, walk through technical demos, and be available to answer your questions one-on-one. Who should attend? AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about cloud computing and how to get started on the AWS Cloud.
Kubernetes on AWS with Amazon EKS - MAD301 - New York AWS SummitAmazon Web Services
Containers are a lightweight and very fast alternative to virtual machines. But keeping track of and coordinating a vast array of individual containers is no small feat and requires orchestration for all of the components to act as one. Amazon Elastic Container Service for Kubernetes (Amazon EKS) is the tool to handle this task. In this session, learn about this service’s latest new features.
Migrating Data to the Cloud: Explore Your Options From AWSAmazon Web Services
AWS offers a variety of data migration services and tools to facilitate moving gigabytes to petabytes of data using your networks, our networks, or even email. Learn about the available data migration options, including the AWS Snowball family, AWS Storage Gateway, Amazon S3 Transfer Acceleration, and other approaches. We provide the guidance to help you find the right service or tool to fit your requirements, and share relevant customers use cases to inspire your first steps with the cloud.
[Games on AWS 2019] AWS 입문자를 위한 초단기 레벨업 트랙 | AWS 레벨업 하기! : 컨테이너 - 김세호 AWS 솔루션...Amazon Web Services Korea
마이크로 서비스, 모던 어플리케이션으로의 이동은 컨테이너와 밀접한 관계를 가지고 있습니다. AWS에서 제공하는 컨테이너 오케스트레이션 플랫폼인 Amazon Elastic Container Service, Elastic Kubernetes Service에 대한 소개 및 이를 이용한 배포 방법에 대해 알아보고, 서버리스 컨테이너 서비스인 AWS Fargate에 대한 소개를 해드립니다.
The AWS Cloud offers infrastructure resources optimized for running containers, as well as a set of orchestration services that make it easy for you to build and run containerized applications in production. In this session we will review how Docker containers are used to build microservices and how Amazon Elastic Container Service (Amazon ECS) and AWS Fargate are used for container orchestration to help customers like FINRA run and scale containerized applications on AWS.
Blur the boundaries between your on-premises to AWS cloud by embracing VMWare...AWS Summits
So, you have workloads running on premise and you wish to extend to the Cloud? You are not that different! Let's discuss few of your options for running in a hybrid mode. How to connect the two in a secure manner? Which services you should utilize? what you can also use on premise?
This free, one-day training will provide a step-by-step introduction to the core AWS services for compute, storage, database, and networking.
AWS technical experts will explain key features and use cases, share best practices, walk through technical demos, and be available to answer your questions one-on-one.
AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about cloud computing and how to get started on the AWS Cloud.
Training Overview:
This free, online training will provide an introduction to the core AWS services for compute, storage, database, and networking. Our AWS technical expert will provide an overview of AWS, sharing key features, use cases, best practices, and walk through technical demos. There will be AWS experts available to answer your questions one-on-one.
Who should attend:
Virtual AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about AWS cloud computing.
How can you accelerate the delivery of new, high-quality services? How can you be able to experiment and get feedback quickly from your customers? To get the most out of the agility afforded by serverless and containers, it is essential to build CI/CD pipelines that help teams iterate on code and quickly release features. In this talk, we demonstrate how developers can build effective CI/CD release workflows to manage their serverless or containerized deployments on AWS. We cover infrastructure-as-code (IaC) application models, such as AWS Serverless Application Model (AWS SAM) and new imperative IaC tools. We also demonstrate how to set up CI/CD release pipelines with AWS CodePipeline and AWS CodeBuild, and we show you how to automate safer deployments with AWS CodeDeploy.
Transform with Cloud to drive your Future | AWS Summit Tel Aviv 2019Amazon Web Services
Innovation and agility are not for startups only, getting a competitive edge requires combining cloud-based tools and business challenges in innovative ways to drive operating efficiency, open new revenue streams, and evolve customer engagement models. In this session we will imagine the future. We will explore how to transform with Cloud to drive your future.
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
Vuoi conoscere le opzioni per eseguire Microsoft Active Directory su AWS? Quando si spostano carichi di lavoro Microsoft in AWS, è importante considerare come distribuire Microsoft Active Directory per supportare la gestione, l'autenticazione e l'autorizzazione dei criteri di gruppo. In questa sessione, discuteremo le opzioni per la distribuzione di Microsoft Active Directory su AWS, incluso AWS Directory Service per Microsoft Active Directory e la distribuzione di Active Directory su Windows su Amazon Elastic Compute Cloud (Amazon EC2). Trattiamo argomenti quali l'integrazione del tuo ambiente Microsoft Active Directory locale nel cloud e l'utilizzo di applicazioni SaaS, come Office 365, con AWS Single Sign-On.
Introduction to the AWS Cloud - AWSome Day 2019 - TorontoAmazon Web Services
This free, one-day training will provide a step-by-step introduction to the core AWS services for compute, storage, database, and networking. AWS technical experts will explain key features and use cases, share best practices, walk through technical demos, and be available to answer your questions one-on-one. Who should attend? AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about cloud computing and how to get started on the AWS Cloud.
Introduction to the AWS Cloud - AWSome Day 2019 - CharlotteAmazon Web Services
This free, one-day training will provide a step-by-step introduction to the core AWS services for compute, storage, database, and networking. AWS technical experts will explain key features and use cases, share best practices, walk through technical demos, and be available to answer your questions one-on-one. Who should attend? AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about cloud computing and how to get started on the AWS Cloud.
In this session we will focus on accounts operations best practices, how to setup your account to reduce operational risks and how to make your operations easier using various tools including Systems Manager, Trusted Advisor, Personal Health Dashboard, AWS config and more. SundaySky will present how they improve their operations with automated responce based on lessons learned.
Ora puoi utilizzare Amazon Elastic Kubernetes Service (EKS) per eseguire pod Kubernetes su AWS Fargate, il motore di elaborazione serverless creato per container su AWS. Questo rende più semplice che mai costruire ed eseguire le tue applicazioni Kubernetes nel cloud AWS.In questa sessione presenteremo le caratteristiche principali del servizio e come distribuire la tua applicazione in pochi passaggi
Optimize your Machine Learning workloads | AWS Summit Tel Aviv 2019AWS Summits
This session focuses on performance and cost optimization on Amazon SageMaker. First, we'll show you how to automatically tune hyper-parameters, and quickly converge to optimal models. Second, you'll learn how to use SageMaker Neo, a new service that optimizes models for the underlying hardware architecture. Third, we'll show you how Elastic Inference lets you attach GPU acceleration to EC2 and SageMaker instances at the fraction of the cost of a full-fledged GPU instance. Finally, we'll share additional cost optimization tips for SageMaker.
Introduction to the AWS Cloud - AWSome Day 2019 - VancouverAmazon Web Services
This free, one-day training will provide a step-by-step introduction to the core AWS services for compute, storage, database, and networking. AWS technical experts will explain key features and use cases, share best practices, walk through technical demos, and be available to answer your questions one-on-one. Who should attend? AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about cloud computing and how to get started on the AWS Cloud.
Kubernetes on AWS with Amazon EKS - MAD301 - New York AWS SummitAmazon Web Services
Containers are a lightweight and very fast alternative to virtual machines. But keeping track of and coordinating a vast array of individual containers is no small feat and requires orchestration for all of the components to act as one. Amazon Elastic Container Service for Kubernetes (Amazon EKS) is the tool to handle this task. In this session, learn about this service’s latest new features.
Migrating Data to the Cloud: Explore Your Options From AWSAmazon Web Services
AWS offers a variety of data migration services and tools to facilitate moving gigabytes to petabytes of data using your networks, our networks, or even email. Learn about the available data migration options, including the AWS Snowball family, AWS Storage Gateway, Amazon S3 Transfer Acceleration, and other approaches. We provide the guidance to help you find the right service or tool to fit your requirements, and share relevant customers use cases to inspire your first steps with the cloud.
[Games on AWS 2019] AWS 입문자를 위한 초단기 레벨업 트랙 | AWS 레벨업 하기! : 컨테이너 - 김세호 AWS 솔루션...Amazon Web Services Korea
마이크로 서비스, 모던 어플리케이션으로의 이동은 컨테이너와 밀접한 관계를 가지고 있습니다. AWS에서 제공하는 컨테이너 오케스트레이션 플랫폼인 Amazon Elastic Container Service, Elastic Kubernetes Service에 대한 소개 및 이를 이용한 배포 방법에 대해 알아보고, 서버리스 컨테이너 서비스인 AWS Fargate에 대한 소개를 해드립니다.
The AWS Cloud offers infrastructure resources optimized for running containers, as well as a set of orchestration services that make it easy for you to build and run containerized applications in production. In this session we will review how Docker containers are used to build microservices and how Amazon Elastic Container Service (Amazon ECS) and AWS Fargate are used for container orchestration to help customers like FINRA run and scale containerized applications on AWS.
Fast-Track Your Application Modernisation Journey with Containers - AWS Summi...Amazon Web Services
Many organisations are embarking on an application modernisation journey to focus on agility and developer productivity to drive growth. Containers play a crucial role in building scalable, secure, and cost-effective infrastructure from the start. Accelerate your test, build, deploy, and run phases, enabling you to deploy software faster and focus on what matters most to your business.
In this workshop, you will learn how to containerise an application and deploy onto Amazon ECS Fargate or Amazon EKS. You will also see how to operationalise this environment, creating an automated pipeline for container deployments and configuring application monitoring.
This workshop requires a laptop and administrative access to your own AWS account.
AWS Fargate is a compute engine for Amazon Elastic Container Service (Amazon ECS). In this session, we demonstrate how AWS removes the need for you to provision, configure, and scale clusters of virtual machines to run containers. This, in turn, eliminates the need to choose server types, decide when to scale your clusters, or optimize cluster packing, freeing you to focus on designing and building your applications instead of on managing the infrastructure that runs them.
In this session, we cover all options for running containers on AWS. This includes an introduction of container concepts and an overview of the different services: Amazon Elastic Container Service, AWS Fargate, and Amazon Elastic Container Service for Kubernetes. We also cover best practices for how to choose the right orchestration platform for your workload, the different tools for making this process easier, and ways to find more information and support as you work.
by Andy Mui, Solutions Architect, AWS
Join this workshop to get hands-on experience deploying Docker containers as you break an aging monolithic application into containerized microservices. Using Amazon ECS and the Application Load Balancer, you will create API-based microservices and deploy them leveraging integrations with other AWS services.
How do you break a monolithic application into microservices? Learn how AWS delivers the integrated building blocks to support the move to containerized microservices for any application architecture, regardless of scale, load, or complexity. Learn more about the newly released AWS App Mesh and how it makes it easy to monitor and control containerized microservices. We will explore different options for running containers on AWS, such as AWS Fargate (serverless containers), EKS, and ECS.
Docker and AWS have been working together to improve the Docker experience you already know and love. Deploying from Docker straight to AWS with your existing workflow has never been easier. Developers can use Docker Compose and Docker Desktop to deploy applications on Amazon ECS on AWS Fargate. This new functionality streamlines the process of deploying and managing containers in AWS from a local development environment running Docker. Join us for a hands-on walk through of how you can get started today.
By packaging software into standardized units, Docker gives code everything it needs to run, ensuring consistency from your laptop all the way into production. But once you have your code ready to ship, how do you run and scale it in the cloud? In this session, you will learn about your options for running containers on AWS and the integrated AWS services that you can take advantage of to run and scale containerized applications
By packaging software into standardized units, Docker gives code everything it needs to run, ensuring consistency from your laptop all the way into production. But once you have your code ready to ship, how do you run and scale it in the cloud? In this session, you become comfortable running containerized services in production using Amazon EC2 Container Service. We cover container deployment, cluster management, service auto-scaling, service discovery, secrets management, logging, monitoring, security, and other core concepts. We also cover integrated AWS services and supplementary services that you can take advantage of to run and scale container-based services in the cloud.
Following simple patterns of good application design can allow you to scale your application for your customers easily. We'll dive into the 12 factor application design and demo how this applies to containers and deployments on Amazon ECS and Fargate. We'll take a look at tooling that can be used to simplfy your work flow and help you adopt the principles of the 12 factor application.
Interstella 8888 is an intergalactic trading company that deals in rare resources, but their antiquated monolithic logistics systems are causing the business to lose money.
Join this workshop to get hands-on experience with Docker as you containerize Intersella 8888’s aging monolithic application and deploy it using Amazon ECS.
AWS credits are provided. Bring your laptop, and please have an active AWS account.
Interstella 8888 is an intergalactic trading company that deals in rare resources, but their antiquated monolithic logistics systems are causing the business to lose money.
Join this workshop to get hands-on experience with Docker as you containerize Intersella 8888’s aging monolithic application and deploy it using Amazon ECS.
AWS credits are provided. Bring your laptop, and please have an active AWS account."
Architecting security and governance through policy guardrails in Amazon EKS ...Amazon Web Services
Amazon EKS makes it easy to run Kubernetes on AWS without managing master nodes or etcd operators. Kubernetes offers a powerful abstraction layer for managing containerized infrastructure, which presents unique challenges to AWS media customers. In this session, we share lessons from Synamedia, and we discuss its reasons for moving to EKS and the security and governance implications for migrating workloads. Learn about the approach and benefits for establishing security and governance with Open Policy Agent (OPA), which uses Kubernetes validating and mutating admission controllers to establish policy guardrails for container registries, input, load balancers, and other objects within EKS.
Similar to Serverless and Containers, AWS Federal Pop-Up Loft (20)
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
Il Forecasting è un processo importante per tantissime aziende e viene utilizzato in vari ambiti per cercare di prevedere in modo accurato la crescita e distribuzione di un prodotto, l’utilizzo delle risorse necessarie nelle linee produttive, presentazioni finanziarie e tanto altro. Amazon utilizza delle tecniche avanzate di forecasting, in parte questi servizi sono stati messi a disposizione di tutti i clienti AWS.
In questa sessione illustreremo come pre-processare i dati che contengono una componente temporale e successivamente utilizzare un algoritmo che a partire dal tipo di dato analizzato produce un forecasting accurato.
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
La varietà e la quantità di dati che si crea ogni giorno accelera sempre più velocemente e rappresenta una opportunità irripetibile per innovare e creare nuove startup.
Tuttavia gestire grandi quantità di dati può apparire complesso: creare cluster Big Data su larga scala sembra essere un investimento accessibile solo ad aziende consolidate. Ma l’elasticità del Cloud e, in particolare, i servizi Serverless ci permettono di rompere questi limiti.
Vediamo quindi come è possibile sviluppare applicazioni Big Data rapidamente, senza preoccuparci dell’infrastruttura, ma dedicando tutte le risorse allo sviluppo delle nostre le nostre idee per creare prodotti innovativi.
Vent'anni fa Amazon ha attraversato una trasformazione radicale con l'obiettivo di aumentare il ritmo dell'innovazione. In questo periodo abbiamo imparato come cambiare il nostro approccio allo sviluppo delle applicazioni ci ha permesso di aumentare notevolmente l'agilità, la velocità di rilascio e, in definitiva, ci ha consentito di creare applicazioni più affidabili e scalabili. In questa sessione illustreremo come definiamo le applicazioni moderne e come la creazione di app moderne influisce non solo sull'architettura dell'applicazione, ma sulla struttura organizzativa, sulle pipeline di rilascio dello sviluppo e persino sul modello operativo. Descriveremo anche approcci comuni alla modernizzazione, compreso l'approccio utilizzato dalla stessa Amazon.com.
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
L’utilizzo dei container è in continua crescita.
Se correttamente disegnate, le applicazioni basate su Container sono molto spesso stateless e flessibili.
I servizi AWS ECS, EKS e Kubernetes su EC2 possono sfruttare le istanze Spot, portando ad un risparmio medio del 70% rispetto alle istanze On Demand. In questa sessione scopriremo insieme quali sono le caratteristiche delle istanze Spot e come possono essere utilizzate facilmente su AWS. Impareremo inoltre come Spreaker sfrutta le istanze spot per eseguire applicazioni di diverso tipo, in produzione, ad una frazione del costo on-demand!
In recent months, many customers have been asking us the question – how to monetise Open APIs, simplify Fintech integrations and accelerate adoption of various Open Banking business models. Therefore, AWS and FinConecta would like to invite you to Open Finance marketplace presentation on October 20th.
Event Agenda :
Open banking so far (short recap)
• PSD2, OB UK, OB Australia, OB LATAM, OB Israel
Intro to Open Finance marketplace
• Scope
• Features
• Tech overview and Demo
The role of the Cloud
The Future of APIs
• Complying with regulation
• Monetizing data / APIs
• Business models
• Time to market
One platform for all: a Strategic approach
Q&A
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
Per creare valore e costruire una propria offerta differenziante e riconoscibile, le startup di successo sanno come combinare tecnologie consolidate con componenti innovativi creati ad hoc.
AWS fornisce servizi pronti all'utilizzo e, allo stesso tempo, permette di personalizzare e creare gli elementi differenzianti della propria offerta.
Concentrandoci sulle tecnologie di Machine Learning, vedremo come selezionare i servizi di intelligenza artificiale offerti da AWS e, anche attraverso una demo, come costruire modelli di Machine Learning personalizzati utilizzando SageMaker Studio.
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
Con l'approccio tradizionale al mondo IT per molti anni è stato difficile implementare tecniche di DevOps, che finora spesso hanno previsto attività manuali portando di tanto in tanto a dei downtime degli applicativi interrompendo l'operatività dell'utente. Con l'avvento del cloud, le tecniche di DevOps sono ormai a portata di tutti a basso costo per qualsiasi genere di workload, garantendo maggiore affidabilità del sistema e risultando in dei significativi miglioramenti della business continuity.
AWS mette a disposizione AWS OpsWork come strumento di Configuration Management che mira ad automatizzare e semplificare la gestione e i deployment delle istanze EC2 per mezzo di workload Chef e Puppet.
Scopri come sfruttare AWS OpsWork a garanzia e affidabilità del tuo applicativo installato su Instanze EC2.
Dal riconoscimento facciale al riconoscimento di frodi o difetti di fabbricazione, l'analisi di immagini e video che sfruttano tecniche di intelligenza artificiale, si stanno evolvendo e raffinando a ritmi elevati. In questo webinar esploreremo le possibilità messe a disposizione dai servizi AWS per applicare lo stato dell'arte delle tecniche di computer vision a scenari reali.
Amazon Web Services e VMware organizzano un evento virtuale gratuito il prossimo mercoledì 14 Ottobre dalle 12:00 alle 13:00 dedicato a VMware Cloud ™ on AWS, il servizio on demand che consente di eseguire applicazioni in ambienti cloud basati su VMware vSphere® e di accedere ad una vasta gamma di servizi AWS, sfruttando a pieno le potenzialità del cloud AWS e tutelando gli investimenti VMware esistenti.
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
Molte aziende oggi, costruiscono applicazioni con funzionalità di tipo ledger ad esempio per verificare lo storico di accrediti o addebiti nelle transazioni bancarie o ancora per tenere traccia del flusso supply chain dei propri prodotti.
Alla base di queste soluzioni ci sono i database ledger che permettono di avere un log delle transazioni trasparente, immutabile e crittograficamente verificabile, ma sono strumenti complessi e onerosi da gestire.
Amazon QLDB elimina la necessità di costruire sistemi personalizzati e complessi fornendo un database ledger serverless completamente gestito.
In questa sessione scopriremo come realizzare un'applicazione serverless completa che utilizzi le funzionalità di QLDB.
Con l’ascesa delle architetture di microservizi e delle ricche applicazioni mobili e Web, le API sono più importanti che mai per offrire agli utenti finali una user experience eccezionale. In questa sessione impareremo come affrontare le moderne sfide di progettazione delle API con GraphQL, un linguaggio di query API open source utilizzato da Facebook, Amazon e altro e come utilizzare AWS AppSync, un servizio GraphQL serverless gestito su AWS. Approfondiremo diversi scenari, comprendendo come AppSync può aiutare a risolvere questi casi d’uso creando API moderne con funzionalità di aggiornamento dati in tempo reale e offline.
Inoltre, impareremo come Sky Italia utilizza AWS AppSync per fornire aggiornamenti sportivi in tempo reale agli utenti del proprio portale web.
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
In queste slide, gli esperti AWS e VMware presentano semplici e pratici accorgimenti per facilitare e semplificare la migrazione dei carichi di lavoro Oracle accelerando la trasformazione verso il cloud, approfondiranno l’architettura e dimostreranno come sfruttare a pieno le potenzialità di VMware Cloud ™ on AWS.
Amazon Elastic Container Service (Amazon ECS) è un servizio di gestione dei container altamente scalabile, che semplifica la gestione dei contenitori Docker attraverso un layer di orchestrazione per il controllo del deployment e del relativo lifecycle. In questa sessione presenteremo le principali caratteristiche del servizio, le architetture di riferimento per i differenti carichi di lavoro e i semplici passi necessari per poter velocemente migrare uno o più dei tuo container.
Durante i laboratori pratici, gli esperti AWS ti mostrano quali strumenti aiutano a sviluppare le applicazioni Serverless in locale e nel cloud AWS e ti aiuteranno a programmare i prossimi passi per iniziare ad utilizzare questa tecnologia nella tua azienda.
AWS Serverless per startup: come innovare senza preoccuparsi dei serverAmazon Web Services
La tecnologia Serverless sembra essere perfetta per startup. Il modello di pricing “pay-per-use” e l’infrastruttura che non genera alcun costo in mancanza di traffico rende la struttura di costi estremamente economica ed efficiente per le startup. Inoltre, le architetture Serverless sono pienamente gestite e scalano automaticamente, per questo i team non devono preoccuparsi di improvvise crescite del traffico che, per esempio, possono derivare da campagne marketing di successo. Questi sono solo alcuni dei motivi per cui molte startup hanno deciso di costruire architetture Serverless a supporto del proprio business. Durante il webinar, approfondiremo i servizi Serverless di AWS e come le startup possono utilizzarli per aumentare agilità e innovazione. Approfondiremo il servizio AWS Lambda che permette di eseguire codice per qualunque tipologia di applicazione, senza alcun lavoro di “amministrazione”. Durante la sessione, condivideremo inoltre casi d’uso di startup che hanno implementato con successo la tecnologia Serverless.
75. 2
Overview of lab
This lab introduces the basics of working with microservices and
ECS. This includes: preparing two microservice container images,
setting up the initial ECS cluster, and deployment of the
containers with traffic routed through an ALB.
You'll need to have a working AWS account to use this lab. (Note:
you can skip this step if you are provided an AWS account.)
76. 3
1. Verify the VPC
For this lab, we will use the default VPC in the region. It should
have at least 3 public subnets.
Go to the AWS VPC console, verify the default VPC has the CIDR
block such as 172.31.0.0/16
Click the Subnets link on the left side and verify there are subnets
in the VPC.
77. 4
2. Setting up the IAM user and roles
In order to work with ECS from our workstation, we will need the
appropriate permissions for our developer workstation instance.
Go to the IAM Console, Roles > Create Role > AWS Service >
EC2. We will later assign this role to our workstation instance.
Click Next: Permissions.
Enter AmazonEC2ContainerRegistryFullAccess in the Filter
text field.
Click Next: Tags
Click Next: Review
Enter ecslabworkstationprofile for the Role name and click
Create Role.
78. 5
Use the same process to create another new role so that EC2
instances in the ECS cluster have appropriate permissions to
access the container registry, auto-scale, etc. We will later assign
this role to the EC2 instances in our ECS cluster.
In the Create Role screen, enter
AmazonEC2ContainerServiceforEC2Role
AmazonEC2ContainerServiceAutoscaleRole in the text field
(without a comma) and select the two policies.
In the Review screen, enter ecslabinstanceprofile for the Role
name and click Create Role.
79. 6
Note: By default, the ECS first run wizard creates
ecsInstanceRole for you to use. However, it's a best practice to
create a specific role for your use so that we can add more
policies in the future when we need to.
3. Launching the Cluster
Next, let’s launch the ECS cluster which will host our container
instances. We're going to put these instances in the public
subnets since they're going to be hosting public microservices.
Create a new security group by navigating to the EC2 console >
Security Group and create sgecslabpubliccluster. Keep the
defaults. Make sure the correct VPC is selected when creating
the security group.
Navigate to the ECS console and click Clusters on the top-left
corner, then click Create Cluster. Choose the EC2 Linux +
Networking cluster template. Click Next Step.
80. 7
In the next screen, configure the cluster as follows:
Field Name Value
Cluster Name EcsLabPublicCluster
Provisioning Model On-Demand Instance
EC2 instance type t2.micro
Number of instances 2
EBS storage 22
Keypair none
Networking Section
VPC The default VPC
Subnets
pick 2 public subnets, e.g.
us-east-1a and us-east-1b
Security Group sgecslabpubliccluster
IAM Role ecslabinstanceprofile
Click Create. It will take a few minutes to create the cluster.
83. 10
4. Launching the Cloud 9 environment
Next, let’s launch our developer environment. Think of this as the
developer's machine which runs Docker and has access to our
Git repository.
Navigate to the AWS Cloud9 > Create environment
Provide a name such as lab-env, click the Next step button and
use the default values.
Click Next step again and Create environment.
Once the environment is running, you should have something
similar to the following:
Note: you can resize different panels and the bottom one is a
terminal in which you can run Linux commands such as docker
info
Verify docker is configured correctly:
84. 11
$ docker info
Containers: 0
Running: 0
Paused: 0
Stopped: 0
Images: 0
Server Version: 17.03.1-ce
Storage Driver: overlay2
Backing Filesystem: extfs
Supports d_type: true
Native Overlay Diff: true
Logging Driver: json-file
Cgroup Driver: cgroupfs
Plugins:
Volume: local
Network: bridge host macvlan null overlay
Swarm: inactive
Runtimes: runc
Default Runtime: runc
Init Binary: docker-init
containerd version: (expected:
4ab9917febca54791c5f071a9d1f404867857fcc)
runc version: N/A (expected:
54296cf40ad8143b62dbcaa1d90e520a2136ddfe)
init version: N/A (expected:
949e6facb77383876aeff8a6944dde66b3089574)
Security Options:
seccomp
Profile: default
Kernel Version: 4.9.32-15.41.amzn1.x86_64
Operating System: Amazon Linux AMI 2017.03
…
We now have a working developer workspace.
5. Prepping the Docker images
At this point, we're going to pretend that we're the developers of
both the web and api microservices, and we will get the latest
from our source repo. In this case we will just be using the plain
85. 12
old curl, but just pretend you're using git (Note: please
ignore the errors/warnings from the tar command):
curl -O http://workshop.summit.awsdemo.me/ecs-lab-code.tar.gz
tar -xvf ecs-lab-code.tar.gz
Our first step is to build and test our containers locally. If you've
never worked with Docker before, there are a few basic
commands that we'll use in this workshop, but you can find a
more thorough list in the Docker "Getting Started" documentation.
To build your first container, go to the web directory. This folder
contains our web Python Flask microservice:
cd aws-microservices-ecs-bootcamp-v2/web
Notice there is a Dockerfile under the directory and you can view
the file using:
cat Dockerfile
To build the container:
docker build -t ecs-lab-web .
This should output steps that look something like this:
Sending build context to Docker daemon 4.096 kB
Sending build context to Docker daemon
Step 0 : FROM ubuntu:latest
---> 6aa0b6d7eb90
Step 1 : MAINTAINER widha@amazon.com
---> Using cache
---> 3f2b91d4e7a9
If the container builds successfully, the output should end with
something like this:
Removing intermediate container d2cd523c946a
86. 13
Successfully built ec59b8b825de
To view the image that was just built:
$ docker images
REPOSITORY TAG IMAGE ID CREATED SIZE
ecs-lab-web latest 2b849343f6be 13 seconds ago 452MB
ubuntu latest 113a43faa138 12 days ago 81.2MB
To run your container:
docker run -d -p 8080:3000 ecs-lab-web
This command runs the image in daemon mode and maps the
docker container port 3000 with the host (in this case our
workstation) port 3000. We're doing this so that we can run both
microservices on a single host without port conflicts.
To check if your container is running:
docker ps
This should return a list of all the currently running containers. In
this example, it should just return a single container, the one that
we just started:
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
7b0d04f4502c ecs-lab-web "python app.py" 9 seconds ago Up 9 seconds 0.0.0.0:8080->3000/tcp eloquent_noether
To test the actual container output:
curl localhost:8080/web
This should return some html text like the following:
<html><head>...</head><body>hi! i'm served via Python
+ Flask. i'm a web endpoint. ...</body></html>
87. 14
Repeat the same steps with the api microservice. Change
directory to /api and repeat the same steps above:
cd ../api
docker build -t ecs-lab-api .
docker images
docker run -d -p 8000:8000 ecs-lab-api
curl localhost:8000/api
The API container should return:
{ "response" : "hi! i'm ALSO served via Python +
Flask. i'm an API." }
We now have two working microservice containers.
6. Creating container registries with ECR
Once images are built, it’s useful to share them and this is done
by pushing the images to a container registry. Let’s create two
repositories in Amazon EC2 Container Registry (ECR).
Navigate to the ECR console, and click Create repository.
Name your first repository ecs-lab-web:
88. 15
Once you've created the repository, click the repository name and
the button View push commands. It will display the push
commands. Take note of these, as you'll need them in the next
step. The push commands should like something like this:
89. 16
Once you've created the ecs-lab-web repository, repeat the
process for the ecs-lab-api repository. Take note of the push
commands for this second repository. Push commands are
unique per repository.
7. Configuring the AWS CLI
On our Cloud9 environment, we will use the AWS CLI to push
images to ECR.
You can confirm that your CLI is setup correctly by running the
command to obtain an ECR authentication token.
aws ecr get-login
90. 17
This should output something like:
docker login -u AWS -p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 -e none
https://<account_id>.dkr.ecr.us-east-1.amazonaws.com
To register ECR as your Docker repository, copy and paste that
output or run:
$(aws ecr get-login --no-include-email --region us-east-1)
Your shell will execute the output of that command and respond:
Login Succeeded
If you are unable to login to ECR, check your IAM permissions.
8. Pushing our tested images to ECR
Now that we've tested our images locally, we need to tag and
push them to ECR. This will allow us to use them in Task
Definitions that can be deployed to an ECS cluster.
91. 18
You'll need your push commands that you saw during registry
creation. You can find them again by going back to the repository
(ECR Console > Repositories > Select the Repository you want
to see the commands for > View Push Commands).
To tag and push to the web repository (you can copy/paste the
commands #3 and #4 from the View Push Commands output):
cd ~/environment/aws-microservices-ecs-bootcamp-v2/web
docker tag ecs-lab-web:latest <account_id>.dkr.ecr.us-east-1.amazonaws.com/ecs-lab-web:latest
docker push <account_id>.dkr.ecr.us-east-1.amazonaws.com/ecs-lab-web:latest
This should return something like this:
The push refers to a repository [<account_id>.ecr.us-east-
1.amazonaws.com/ecs-lab-web] (len: 1)
ec59b8b825de: Image already exists
5158f10ac216: Image successfully pushed
860a4e60cdf8: Image successfully pushed
6fb890c93921: Image successfully pushed
aa78cde6a49b: Image successfully pushed
Digest:
sha256:fa0601417fff4c3f3e067daa7e533fbed479c95e40ee96a24b3d63b24
938cba8
To tag and push to the api repository:
cd ~/environment/aws-microservices-ecs-bootcamp-v2/api
docker tag ecs-lab-api:latest <account_id>.dkr.ecr.us-east-1.amazonaws.com/ecs-lab-api:latest
docker push <account_id>.dkr.ecr.us-east-1.amazonaws.com/ecs-lab-api:latest
Note: why :latest? This is the actual image tag. In most
production environments, you'd tag images for different schemes,
for example, you might tag the most up-to-date image with
:latest, and all other versions of the same container with a
commit SHA from a CI job. If you push an image without a
specific tag, it will default to :latest, and untag the previous
92. 19
image with that tag. For more information on Docker tags, see the
Docker documentation.
You can see your pushed images by viewing the repository in the
ECS Console. Alternatively, you can use the CLI:
$ aws ecr list-images --repository-name=ecs-lab-api
{
"imageIds": [ {
"imageTag": "latest",
"imageDigest": "sha256:f0819d27f73c7fa6329644efe8110644e23c248f2f3a9445cbbb6c84a01e108f"
}
]
}
You have successfully completed Lab 1.. Keep all the infrastructure you have built
running. You will be building on this in Lab 2
94. 2
Note: in a production environment, you should also have a secure
listener on port 443. This will require an SSL certificate, which can
be obtained from AWS Certificate Manager, or from your
registrar/CA. For the purposes of this lab, we will only create the
insecure HTTP listener. DO NOT RUN THIS IN PRODUCTION.
Next, select your VPC and we need at least two subnets for high
availability. Make sure to choose the VPC and subnets that were
used in Lab 1.
Click Next, and create a new security group
(sgecslabloadbalancer) with the following rule:
Ports Protocol Source
80 tcp 0.0.0.0/0
95. 3
Continue to the next step: Configure Routing. For this initial
setup, we're just adding a dummy health check on /. We'll add
specific health checks for our service endpoints when we register
them with the ALB.
Click through the "Next:Register Targets" step, and continue to
the Review step. If your values look correct, click Create.
Important Note: If you created your own security group for the
ECS Cluster (sgecslabpubliccluster), and only added a rule for
port 80, you'll need to add one more. Edit your security group and
add a rule to allow your ALB security group
(sgecslabloadbalancer) to access the port range for ECS (0-
65535) for port mapping. This rule references itself and you will
see the security group appears when you start typing “sg-” in the
Source textbox for the All TCP rule.
96. 4
We now have the following security group setup:
10. Creating the Task Definitions
We need to create a service in ECS but before that can be done,
the container needs be a part of a Task Definition. Task
97. 5
Definitions define things like environment variables, the container
image you wish to use, and the resources you want to allocate to
the service (port, memory, CPU). To create a Task Definition,
choose Task Definitions from the ECS console menu. Then,
choose Create new Task Definition. For launch type
compatibility, select EC2, Next Step.
Scroll down and leave the default values for the “Task execution
IAM role” and “Task size” sections. Click on the Add Container
button. Use ecs-lab-web for Container name. In the Image
textbox, paste the Image URI that you used to push the web
image to ECR from the previous lab. You can also find the web
URI in the ECR web repo (look for the value for Repository URI).
For Memory Limit, use a value of 128.
98. 6
A few things to note here:
We've specified a specific container image, including the :latest
tag. Although it's not important for this lab, in a production
environment where you were creating Task Definitions
programmatically from a CI/CD pipeline, Task Definitions could
include a specific SHA hash, or a more accurate tag.
Under Port Mappings, we've specified a Container Port (3000),
but left Host Port as 0. This is required to facilitate dynamic port
allocation. This means that we don't need to map the Container
Port to a specific Host Port in our Container Definition; instead,
we can let the ALB allocate a port during task placement. To learn
more about port allocation, check out the ECS documentation
here.
Once you've specified your Port Mappings, scroll down and add a
log driver. There are a few options here, but for this lab, choose
awslogs:
99. 7
For this web container, make sure the Auto-configure
CloudWatch Logs is checked in the Log configuration section.
Once you've added your log driver, save the Container Definition
by clicking Add, and click on Create to complete the Task
Definition.
Repeat the Task Definition creation process with the API
container, taking care to use the api container image registry, and
the correct port (8000) for the Container Port option. For the log
driver, make sure Auto-configure CloudWatch Logs is checked.
100. 8
Don’t forget to click on the Create button to complete the Task
Definition.
101. 9
11. Creating the Services
Next, we're going to create the service based on our Task
Definition. A service is a group of tasks (which are containers).
You can define how many tasks you want to run simultaneously,
specify load balancing, auto scaling and configure many other
options.
First, we need to create an IAM role for this Service. Navigate to
IAM > Roles > Create role:
Click Next: Permissions
102. 10
Click Next: Tags
Click Next: Review. In the Review page, use
EcsLabServiceRole for the role name and click the Create Role
button.
Navigate back to the ECS console, and choose the cluster that
you created. This should be named EcsLabPublicCluster. From
the cluster detail page, choose Services > Create. Make sure
the launch type is EC2 (not Fargate) and configure the service as
follows:
103. 11
Choose the web Task Definition you created in the previous
section. For the purposes of this lab, we'll only start one copy of
each task. In a production environment, you will always want
more than one copy of each task running for reliability and
availability.
You can keep the default AZ Balanced Spread for the Task
Placement Policy. To learn more about the different Task
Placement Policies, see the documentation, or this blog post.
Click Next step to configure load balancing.
Choose Application Load Balancer and configure as follows:
104. 12
Select the web container, choose Add to load balancer and
configure load balancing.
105. 13
Service discovery is not used for this lab, please uncheck the
checkbox for Enable service discovery integration.
When we created our ALB, we only added a listener for HTTP:80.
Select this from the dropdown as the value for Listener. For
Target Group Name, enter a value that will make sense to you
later, like ecs-lab-web. For Path Pattern, the value should be
/web*. This is the route that we specified in our Python
application.
106. 14
If the values look correct, click Next Step, click through the
optional Auto Scaling page click Create Service.
Repeat this process for the api microservice and task definition.
Don't forget to adjust the target group name, path pattern,
evaluation order and health check path accordingly.
107. 15
12. Testing our service deployments from the console and the
ALB
You can see service level events from the ECS console. This
includes deployment events. You can test that both of your
services are deployed and registered properly with the ALB by
looking at the service's Events tab:
108. 16
We can also test from the ALB itself. To find the DNS A record for
your ALB, navigate to the EC2 Console > Load Balancers >
Select your Load Balancer. Under Description, you can find
details about your ALB, including a section for DNS Name. You
can enter this value in your browser, and append the endpoint of
your service, to see your ALB and ECS Cluster in action:
The ALB routes traffic appropriately based on the paths we
specified when we registered the containers: /web* requests go
to our web service, and /api* requests go to our API service.
109. 17
13. More in-depth logging with CloudWatch
When we created our Container Definitions, we also added the
awslogs driver, which sends logs to CloudWatch. You can see
more details logs for your services by going to the CloudWatch
console, and selecting first our log group ecs-lab and then
choosing an individual stream:
That's a wrap!
Congratulations! You've deployed an ECS Cluster with two
working endpoints.
Clean up (Optional)
Don't forget to do the following, after you're finished with the lab:
Delete the ecs-lab stack
Go to CloudWatch Console > Logs and delete Log Group ecs-
lab
Go to ECS Console > Repositories and delete the cluster,
deregister the 2 task definitions, delete the 2 created repositories
Go to the EC2 Console, terminate the ecs-lab-workstation
EC2 Instance, the Application Load Balancer and the 3 Target
Groups
Go to IAM console and delete the 2 roles EcslabInstanceRole
and EcsWorkstationRole
110. 18
Find the above a little boring?
Here are some ideas to make it more interesting:
Try to migrate the tasks to Fargate
The development team refactored our api and now it requires a
host with GPU. Deploy the api containers to EC2 P2 GPU
instances by defining a Task Placement Constraint.