Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Eks workshop with ee blueprint #99

Merged
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
49 commits
Select commit Hold shift + click to select a range
de1458d
updating eks workshop to use EE blueprint
Jul 27, 2020
d1e62a6
updating eks workshop to use EE blueprint
Jul 28, 2020
6791d53
updating eks workshop to use EE blueprint
Jul 31, 2020
aca2b26
Added sceenshot of cnf output
Aug 13, 2020
eecbf50
Adding note style to the last line
Aug 18, 2020
c5d728e
Update create_asg.md
Sep 8, 2020
ff05aa5
Merge pull request #101 from neil-greenwood/patch-1
ruecarlo Sep 8, 2020
b7d8fa0
Removed analytics and added site privacy link + term and conditions
ruecarlo Sep 11, 2020
d8fdc58
css changes made to set right aspect and focus
ruecarlo Sep 11, 2020
a80d2f9
Merge pull request #102 from ruecarlo/fix-cookies
ruecarlo Sep 11, 2020
77fb656
Update README.md
Sep 21, 2020
5fdf0b2
FIxing Jenkins module in EKS workshop (#104)
Sep 23, 2020
8ad7295
Fixing Jenkins modules in EKS workshop (#105)
black-mirror-1 Sep 29, 2020
7ae2b01
Log group regexp fix
VladimirKuletski Sep 28, 2020
b5c89c9
Function name added. Log stream path changed
VladimirKuletski Sep 29, 2020
8bd9ed1
Updated README.md
jagpk Nov 20, 2020
b95d9a1
Updated index.md in ec2 spot with eks
jagpk Nov 20, 2020
af69f80
Upgraded EKS to 1.18
jagpk Nov 20, 2020
3ae9b8d
Upgraded EKSCTL to 0.31.0
jagpk Nov 20, 2020
46e976d
Upgraded metrics server to 2.11.4
jagpk Nov 20, 2020
6a01e92
Changed HELM stable repo to charts.helm
jagpk Nov 20, 2020
cf6fe9e
Upgraded kube-ops-view to 1.2.4
jagpk Nov 20, 2020
44aad0b
Upgraded KUBECTL to 1.19.3
jagpk Nov 20, 2020
12f9342
Upgraded to Cluster Autoscaler to 1.18.2
jagpk Nov 20, 2020
4ae1a33
Upgraded aws-node-termination-handler to 0.12.0
jagpk Nov 20, 2020
cd1b520
Updated to refelect EC2 Instances UI changes
jagpk Nov 20, 2020
5b6d920
Merge pull request #1 from jagpk/EKS-1.18
jagpk Nov 20, 2020
1b82fe8
Update resources.md
Nov 24, 2020
f0dd8c0
Merge branch 'master' of https://github.com/awslabs/ec2-spot-workshop…
jagpk Nov 25, 2020
5785bfc
Updates for EKS 1.18
jagpk Nov 25, 2020
feab741
Merge branch 'master' of https://github.com/awslabs/ec2-spot-workshop…
jagpk Nov 25, 2020
8ff4926
Merge branch 'master' into EKS-1.18
jagpk Nov 25, 2020
f52925c
Merge pull request #2 from jagpk/EKS-1.18
jagpk Nov 25, 2020
8a14fff
EKS 1.18 Changes
jagpk Nov 25, 2020
ef0d389
Merge branch 'EKS-1.18' of https://github.com/jagpk/ec2-spot-workshop…
jagpk Nov 25, 2020
620f2b3
Merge pull request #3 from jagpk/EKS-1.18
jagpk Nov 25, 2020
1b1283e
EKS 1.18 changes
jagpk Nov 25, 2020
6f59842
Merge pull request #4 from jagpk/EKS-1.18
jagpk Nov 25, 2020
3fdfa7c
Merge pull request #125 from jagpk/master
ruecarlo Nov 25, 2020
97907d8
updating eks workshop to use EE blueprint
Jul 27, 2020
c81c029
updating eks workshop to use EE blueprint
Jul 28, 2020
843478f
updating eks workshop to use EE blueprint
Jul 31, 2020
e8f175a
Added sceenshot of cnf output
Aug 13, 2020
7fbc77f
Adding note style to the last line
Aug 18, 2020
4a365f3
Rebasing for recent changes on the remote fork
Dec 1, 2020
61fbb40
removing the tab selection in validate IAM role section
Dec 4, 2020
e818d8a
Adding condition in CNF to use event engine TeamRole
Dec 4, 2020
6887a7a
Adding the fix for unauthorized error on EKS console
Dec 4, 2020
ea234a8
Adding the fix for unauthorized error on EKS console
Dec 4, 2020
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions README.md
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
## Ec2 Spot Workshops
## EC2 Spot Workshops

Collection of workshops to demonstrate best practices in using Amazon EC2 Spot Instances. https://aws.amazon.com/ec2/spot/

Expand All @@ -11,7 +11,7 @@ The content of the workshops is built using [hugo](https://gohugo.io/).
### Local Build
To build the content
* clone this repository
* [install hugo](https://gohugo.io/getting-started/installing/)
* [install hugo](https://gohugo.io/getting-started/installing/). The website is currently running on Hugo 0.53, since we have some markdown issues with the latest versions. You can download the exact version here: https://github.com/gohugoio/hugo/releases/download/v0.53/hugo_0.53_Linux-64bit.tar.gz
* The project uses [hugo learn](https://github.com/matcornic/hugo-theme-learn/) template as a git submodule. To update the content, execute the following code
```bash
pushd themes/learn
Expand Down
18 changes: 9 additions & 9 deletions config.toml
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,6 @@ theme = "learn"
uglyurls = true
sectionPagesMenu = "main"
pygmentsCodeFences = true
googleAnalytics = "UA-136840914-1"


[blackfriday]
hrefTargetBlank = true
Expand All @@ -25,28 +23,30 @@ disableInlineCopyToClipBoard = true
home = [ "HTML", "AMP", "RSS", "JSON"]
page = [ "HTML", "AMP"]


# All privacy options enabled. There should not be
# any cookies or privacy
[privacy]
[privacy.disqus]
disable = false
[privacy.googleAnalytics]
anonymizeIP = false
disable = false
anonymizeIP = true
disable = true
respectDoNotTrack = true
useSessionStorage = false
[privacy.instagram]
disable = false
disable = true
simple = false
[privacy.twitter]
disable = false
disable = true
enableDNT = false
simple = false
[privacy.vimeo]
disable = false
disable = true
simple = false
[privacy.youtube]
disable = false
privacyEnhanced = false
# This is required to avoid cookies on youtube integration
privacyEnhanced = true


[[menu.shortcuts]]
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ weight: 20

{{% notice warning %}}
Only complete this section if you are at an AWS hosted event (such as re:Invent,
Kubecon, Immersion Day, or any other event hosted by an AWS employee). If you are running the workshop on your own, go to: [Start the workshop on your own]({{< relref "self_paced.md" >}}).
Kubecon, Immersion Day, or any other event hosted by an AWS employee). If you are running the workshop on your own, go to: [Start the workshop on your own]({{< relref "nf_self_paced.md" >}}).
{{% /notice %}}

### Login to the AWS Workshop Portal
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@ weight: 10
---

{{% notice warning %}}
Only complete this section if you are running the workshop on your own. If you are at an AWS hosted event (such as re:Invent, Kubecon, Immersion Day, etc), go to [Start the workshop at an AWS event]({{< relref "aws_event.md" >}}).
Only complete this section if you are running the workshop on your own. If you are at an AWS hosted event (such as re:Invent, Kubecon, Immersion Day, etc), go to [Start the workshop at an AWS event]({{< relref "nf_aws_event.md" >}}).
{{% /notice %}}

### Prepare for CleanUp
Expand Down
4 changes: 3 additions & 1 deletion content/resources.md
Original file line number Diff line number Diff line change
Expand Up @@ -16,9 +16,9 @@ disableToc: true

##### [ - [Blog post] New – EC2 Auto Scaling Groups With Multiple Instance Types & Purchase Options](https://aws.amazon.com/blogs/aws/new-ec2-auto-scaling-groups-with-multiple-instance-types-purchase-options/)


##### [ - [Blog post] Capacity-Optimized Spot Instance Allocation in Action at Mobileye and Skyscanner](https://aws.amazon.com/blogs/aws/capacity-optimized-spot-instance-allocation-in-action-at-mobileye-and-skyscanner/)

##### [ - [Blog post] Proactively manage the Spot Instance lifecycle using the new Capacity Rebalancing feature for EC2 Auto Scaling](https://aws.amazon.com/blogs/compute/proactively-manage-spot-instance-lifecycle-using-the-new-capacity-rebalancing-feature-for-ec2-auto-scaling/)

##### [ - [AWS Online Tech Talks]: Optimize AI/ML, Kubernetes and Big Data Workloads at Your Startup](https://www.youtube.com/watch?v=2donGftFSIY)

Expand All @@ -33,6 +33,8 @@ disableToc: true

## Big-data and analytics

##### [ - [Blog post] Optimizing Amazon EMR for resilience and cost with capacity-optimized Spot Instances](https://aws.amazon.com/blogs/big-data/optimizing-amazon-emr-for-resilience-and-cost-with-capacity-optimized-spot-instances/)

##### [ - [Blog post] Best practices for running Apache Spark applications using Amazon EC2 Spot Instances with Amazon EMR](https://aws.amazon.com/blogs/big-data/best-practices-for-running-apache-spark-applications-using-amazon-ec2-spot-instances-with-amazon-emr/)

##### [ - [Tutorial] Getting started tutorial: Optimizing Amazon EMR clusters for cost and scale with EC2 Spot Instances and Amazon EMR](https://aws.amazon.com/getting-started/hands-on/optimize-amazon-emr-clusters-with-ec2-spot/)
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -12,7 +12,7 @@ sed -i.bak -e "s#%TargetGroupARN%#$tg_arn#g" -e "s/%publicSubnet1%/$publicSubnet

**Challenge**

The EC2 Auto Scaling group that you are going to deploy supports [multiple purchase options (On-Demand and Spot Instances) and EC2 instance types](https://docs.aws.amazon.com/autoscaling/ec2/serguide/asg-purchase-options.html).
The EC2 Auto Scaling group that you are going to deploy supports [multiple purchase options (On-Demand and Spot Instances) and EC2 instance types](https://docs.aws.amazon.com/autoscaling/ec2/userguide/asg-purchase-options.html).

* Examining the asg.json configuration file, can you determine what would be the different configuration options in the deployed ASG?
* How many On-Demand and Spot Instances would be deployed?
Expand Down
8 changes: 4 additions & 4 deletions content/using_ec2_spot_instances_with_eks/_index.md
Original file line number Diff line number Diff line change
Expand Up @@ -5,10 +5,10 @@ weight: 50
pre: "<b>⁃ </b>"
---

In this workshop, you learn how to provision, manage, and maintain your Amazon Kubernetes
clusters with Amazon EKS at any scale on Spot Instances to architect for optimizations on cost and scale.
We dive deep using hands-on material to provision and scale worker nodes, handle
interruptions, and design for fault tolerance.
In this workshop, you will learn how to provision, manage, and maintain your Kubernetes
clusters with Amazon Elastic Kubernetes Service (Amazon EKS) at any scale on Spot Instances to architect for optimizations on cost and scale.
We will dive deep using hands-on material to provision and scale worker nodes, handle
Spot interruptions, and design for fault tolerance.

This workshop is originally based on AWS [EKS Workshop](https://eksworkshop.com/). You can find
there more modules and learn about other Amazon Elastic Kubernetes Service best practices.
Expand Down
Original file line number Diff line number Diff line change
@@ -0,0 +1,13 @@
---
title: "Create EKS cluster Command"
chapter: false
disableToc: true
hidden: true
---
<!--
This markdown file is used as part of another file using 'insert-md-from-file' shortcode
-->

```
eksctl create cluster --version=1.18 --name=eksworkshop-eksctl --node-private-networking --managed --nodes=2 --alb-ingress-access --region=${AWS_REGION} --node-labels="lifecycle=OnDemand,intent=control-apps" --asg-access
```
32 changes: 4 additions & 28 deletions content/using_ec2_spot_instances_with_eks/eksctl/launcheks.md
Original file line number Diff line number Diff line change
Expand Up @@ -14,20 +14,7 @@ weight: 20

{{%expand "Expand here to see the solution" %}}

Use the [GetCallerIdentity](https://docs.aws.amazon.com/cli/latest/reference/sts/get-caller-identity.html) CLI command to validate that the Cloud9 IDE is using the correct IAM role.

```
aws sts get-caller-identity

```

{{% notice note %}}
**Select the tab** and and validate the assumed role…
{{% /notice %}}
{{< tabs name="Region" >}}
{{< tab name="...ON YOUR OWN" include="../prerequisites/on_your_own_validaterole.md" />}}
{{< tab name="...AT AN AWS EVENT" include="../prerequisites/at_an_aws_validaterole.md" />}}
{{< /tabs >}}
{{% insert-md-from-file file="using_ec2_spot_instances_with_eks/prerequisites/validate_workspace_role.md" %}}

If you do not see the correct role, please go back and **[validate the IAM role]({{< relref "../prerequisites/update_workspaceiam.md" >}})** for troubleshooting.

Expand All @@ -37,12 +24,9 @@ If you do see the correct role, proceed to next step to create an EKS cluster.

### Create an EKS cluster

The following command will create an eks cluster with the name `eksworkshop-eksctl`
.It will also create a nodegroup with 2 on-demand instances.
The following command will create an eks cluster with the name `eksworkshop-eksctl`. It will also create a nodegroup with 2 on-demand instances.

```
eksctl create cluster --version=1.16 --name=eksworkshop-eksctl --node-private-networking --managed --nodes=2 --alb-ingress-access --region=${AWS_REGION} --node-labels="lifecycle=OnDemand,intent=control-apps" --asg-access
```
{{% insert-md-from-file file="using_ec2_spot_instances_with_eks/eksctl/create_eks_cluster_eksctl_command.md" %}}

eksctl allows us to pass parameters to initialize the cluster. While initializing the cluster, eksctl does also allow us to create nodegroups.

Expand All @@ -52,12 +36,4 @@ The managed nodegroup will have two m5.large nodes and it will bootstrap with th
Launching EKS and all the dependencies will take approximately **15 minutes**
{{% /notice %}}

The command above, created a **Managed Nodegroup**. [Amazon EKS managed node groups](https://docs.aws.amazon.com/eks/latest/userguide/managed-node-groups.html) automate the provisioning and lifecycle management of nodes. Managed Nodegroups use the latest [EKS-optimized AMIs](https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html). The node run in your AWS account provisioned as apart of an EC2 Auto Scaling group that is managed for you by Amazon EKS. This means EKS takes care of the lifecycle management and undifferentiated heavy lifting on operations such as node updates, handling of terminations, gracefully drain of nodes to ensure that your applications stay available.








The command above, created a **Managed Nodegroup**. [Amazon EKS managed node groups](https://docs.aws.amazon.com/eks/latest/userguide/managed-node-groups.html) automate the provisioning and lifecycle management of nodes. Managed Nodegroups use the latest [EKS-optimized AMIs](https://docs.aws.amazon.com/eks/latest/userguide/eks-optimized-ami.html). The node run in your AWS account provisioned as apart of an EC2 Auto Scaling group that is managed for you by Amazon EKS. This means EKS takes care of the lifecycle management and undifferentiated heavy lifting on operations such as node updates, handling of terminations, gracefully drain of nodes to ensure that your applications stay available.
Original file line number Diff line number Diff line change
Expand Up @@ -6,8 +6,9 @@ weight: 10

For this module, we need to download the [eksctl](https://eksctl.io/) binary:
```
export EKSCTL_VERSION=0.23.0
curl --silent --location "https://github.com/weaveworks/eksctl/releases/download/${EKSCTL_VERSION}/eksctl_Linux_amd64.tar.gz" | tar xz -C /tmp
export EKSCTL_VERSION=0.31.0
curl --silent --location "https://github.com/weaveworks/eksctl/releases/download/${EKSCTL_VERSION}/eksctl_$(uname -s)_amd64.tar.gz" | tar xz -C /tmp

sudo mv -v /tmp/eksctl /usr/local/bin
```

Expand Down
33 changes: 33 additions & 0 deletions content/using_ec2_spot_instances_with_eks/eksctl/test.md
Original file line number Diff line number Diff line change
Expand Up @@ -33,3 +33,36 @@ You now have a fully working Amazon EKS Cluster that is ready to use!
{{% notice tip %}}
Explore the Elastic Kubernetes Service (EKS) section in the AWS Console and the properties of the newly created EKS cluster.
{{% /notice %}}

{{% notice warning %}}
You might see **Error loading Namespaces** while exploring the cluster on the AWS Console. It could be because the console user role doesnt have necessary permissions on the EKS cluster's RBAC configuration in the control plane. Please expand and follow the below instructions to add necessary permissions.
{{% /notice %}}

{{%expand "Click to reveal detailed instructions" %}}

### Add your IAM role Arn as cluster-admin on RBAC

Get the ARN for your IAM role, it should look something like

```
arn:aws:iam::<AWS_Account_Number>:role/<RoleName>
```

Edit the ConfigMap **aws-auth** using the below command

```
kubectl edit configmap -n kube-system aws-auth
```

Add the below snippet at the end, that will add the IAM role to the **masters** group on EKS cluster RBAC, thereby assigning a **cluster-admin** role on the cluster. Please refer the documentation [here](https://docs.aws.amazon.com/eks/latest/userguide/add-user-role.html)

Please make sure to replace the `<AWS_Account_Number>` and `<RoleName>` with your AWS Account Number and IAM Role Name respectively

```
- groups:
- system:masters
rolearn: arn:aws:iam::<AWS_Account_Number>:role/<RoleName>
username: <RoleName>
```

{{% /expand%}}
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@ Metrics Server is a cluster-wide aggregator of resource usage data. These metric
kubectl create namespace metrics
helm install metrics-server \
stable/metrics-server \
--version 2.10.0 \
--version 2.11.4 \
--namespace metrics
```

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@ Homebrew on macOS.
Download the `stable` repository so we have something to start with:

```sh
helm repo add stable https://kubernetes-charts.storage.googleapis.com/
helm repo add stable https://charts.helm.sh/stable/
helm repo update
```

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -14,6 +14,7 @@ helm install kube-ops-view \
stable/kube-ops-view \
--set service.type=LoadBalancer \
--set nodeSelector.intent=control-apps \
--version 1.2.4 \
--set rbac.create=True
```

Expand All @@ -32,8 +33,8 @@ helm list

should display :
```
NAME REVISION UPDATED STATUS CHART APP VERSION NAMESPACE
kube-ops-view 1 Sun Sep 22 11:47:31 2019 DEPLOYED kube-ops-view-1.1.0 0.11 default
NAME NAMESPACE REVISION UPDATED STATUS CHART
kube-ops-view default 1 2020-11-20 05:16:47 deployed kube-ops-view-1.2.4
```

With this we can explore kube-ops-view output by checking the details about the newly service created.
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -34,6 +34,9 @@ nodeGroups:
k8s.io/cluster-autoscaler/node-template/label/lifecycle: Ec2Spot
k8s.io/cluster-autoscaler/node-template/label/intent: jenkins-agents
k8s.io/cluster-autoscaler/node-template/label/aws.amazon.com/spot: "true"
iam:
withAddonPolicies:
autoScaler: true
EoF
```

Expand All @@ -53,10 +56,10 @@ The creation of the workers will take about 3 minutes.
#### Instructing Jenkins to run jobs on the new, Spot dedicated nodegroup
1. In the Jenkins dashboard, browse to **Manage Jenkins** -> **Manage Node and Clouds**
1. On the left hand side click on the **Configure Clouds** link. That will take you to the cloud configuration where Kubernetes.
1. Click on the **Pod Templates...** button to expand the default pod template definition and then click again on **Pod Template Details...***
1. Change the default pod name, attribute **Name** from `defualt` to `jenkins-agent`. We want to be able to identify the pods that are running in our clusters by name.
1. Click on the **Pod Templates...** button to expand the default pod template definition and then click again on **Pod Template Details...***
1. Change the default pod name, attribute **Name** from `defualt` to `jenkins-agent`. We want to be able to identify the pods that are running in our clusters by name.
![Jenkins Pod Setup 1](/images/using_ec2_spot_instances_with_eks/jenkins/jenkinslabels-1.png)
1. At the bottom of the page, near the end of the Pod template section, In the **Node Selector** Pod , add the following: `intent=jenkins-agents,lifecycle=Ec2Spot`
1. At the bottom of the page, near the end of the Pod template section, for the **Node Selector** parameter , add the following: `intent=jenkins-agents,lifecycle=Ec2Spot` in order to instruct the Jenkins agent pods to run on the dedicated node group.
![Jenkins Pod Setup 2](/images/using_ec2_spot_instances_with_eks/jenkins/jenkinslabels-2.png)
1. Click **Save**

Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@ weight: 30
#### Install Jenkins

```
helm install cicd stable/jenkins --set rbac.create=true,master.servicePort=80,master.serviceType=LoadBalancer
helm install cicd jenkinsci/jenkins --set rbac.create=true,master.servicePort=80,master.serviceType=LoadBalancer,master.JCasC.enabled=false,master.enableXmlConfig=true
```

The output of this command will give you some additional information such as the
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -7,8 +7,8 @@ hidden: true

## Attach the IAM role to your Workspace

1. Follow [this deep link to find your Cloud9 EC2 instance](https://console.aws.amazon.com/ec2/v2/home?#Instances:tag:Name=aws-cloud9-.*workshop.*;sort=desc:launchTime)
1. Select the instance, then choose **Actions / Instance Settings / Attach/Replace IAM Role**
1. Follow this [deep link to find your Cloud9 EC2 instance](https://console.aws.amazon.com/ec2/v2/home?#Instances:tag:Name=aws-cloud9-eksworkshop;sort=desc:launchTime).
1. Select the instance, then choose **Actions / Security / Modify IAM role**
![c9instancerole](/images/using_ec2_spot_instances_with_eks/prerequisites/c9instancerole.png)
1. Choose **TeamRoleInstance** from the **IAM Role** drop down, and select **Apply**
1. Choose **TeamRoleInstance** from the **IAM role** drop down, and select **Save**
![c9attachrole](/images/using_ec2_spot_instances_with_eks/prerequisites/c9attachroleee.png)
Loading