========================================
- AWS CLI installed: http://docs.aws.amazon.com/cli/latest/userguide/installing.html
- Configure AWS CLI:
aws configure- Details on creating credentials: http://docs.aws.amazon.com/cli/latest/userguide/cli-chap-getting-set-up.html
- These AWS IAM permissions are needed: EC2, AutoScaling, CloudFormation, Marketplace
There are several scripts used to make this work:
For AWS CloudFormation:
- cloudformation-generate-template.py: generates the AWS Cloudformation template
- cloudformation.json: the CloudFormation template which deploys a cluster
For managing multiple clusters (each takes variables for naming & the number of clusters):
- ../bin/clusters-create.sh: calls cloudformation to create clusters
- ../bin/clusters-report.sh: list cluster details
- ../bin/clusters-terminate.sh: calls cloudformation to terminate clusters
- ../bin/cloudformation-status.sh: list all cloudformation stacks in the region
-
Get this repo:
git clone https://github.com/HortonworksUniversity/Security_Labs cd masterclass/generic
1. Check for conflicting/existing stacks (same name as what you plan to deploy):
- Open the CloudFormat Web UI
- Or with the command-line: `../bin/cloudformation-status.sh`
1. Open a 'screen' so the commands continue if you lose connectivity:
```
screen
## Note: If you get disconnected, SSH back to the host and execute: `screen -x`
```
1. Set variables to define the naming & number of clusters to deploy:
- the following will deploy 2 clusters with name sec100,sec101
- update 'lab_count' to the number of clusters you want
```sh
export AWS_DEFAULT_REGION=us-west-2 ## region to deploy in
export lab_prefix=sec ## template for naming the cloudformation stacks
export lab_first=100 ## number to start at in naming
export lab_count=2 ## number of clusters to create
- Set parameters which are passed to CloudFormation:
- KeyName: The key (added on the EC2 page) to access the cluster.
- AmbariServices: Which HDP services to deploy.
- AdditionalInstanceCount: How many additional nodes to deploy. (Setting to 2 will deploy 3 nodes total)
- SubnetId & SecurityGroups: This CloudFormation deploys in an existing Subnet & Security Group. You must update this to your environment.
## Update with your keypair name, subnet, securitygroups and the number of instances you want
export cfn_parameters='
[
{"ParameterKey":"KeyName","ParameterValue":"training-keypair"},
{"ParameterKey":"AmbariServices","ParameterValue":"HDFS MAPREDUCE2 PIG YARN HIVE ZOOKEEPER SOLR AMBARI_METRICS HBASE"},
{"ParameterKey":"InstanceType","ParameterValue":"m4.xlarge"},
{"ParameterKey":"AdditionalInstanceCount","ParameterValue":"2"},
{"ParameterKey":"PostCommand","ParameterValue":"curl -sSL https://raw.githubusercontent.com/HortonworksUniversity/Security_Labs/setup.sh | bash"},
{"ParameterKey":"SubnetId","ParameterValue":"subnet-02edac67"},
{"ParameterKey":"SecurityGroups","ParameterValue":"sg-a02d17c4"}]
'-
Provision your clusters
../bin/clusters-create.sh ```
-
Check the build status
- From the CloudFormation Web UI
- Or from the command-line:
../bin/cloudformation-status.sh ```
-
Once your clusters are ready, get list of clusters nodes for providing to students:
..bin/clusters-report.sh ```
-
Use the clusters:
ssh centos@ipFromReportAbove## use the key which was specified during the build
-
Terminate clusters
..bin/clusters-terminate.sh ```
-
Verify that all clusters are terminated
- From the AWS CloudFormation Web UI
- Or from the CLI
../bin/cloudformation-status.sh ```
########
It's recommended to use an "etherpad" to share:
- the cluster details (from above)
- instructions to students
You can create your own, or use a hosted version such as TitanPad. You should create this account in advance.
########
- Some instances will fail their creation and time out, being rolled back, this is a nature of deploying large volumes of instances
- Those that fail should simply be manually deleted from the cloudformations web ui
- Occasionally cloudformations will fail to delete due to timing issues, in which case, it’s probably the VPC or InternetGateway, just switch to the VPC service window within the AWS site, delete the specific VPC that is being complained about in the cloudformation and then once the cloudformation delete has failed, retry the delete, deletion should complete this time.
- Once you’ve done the VPC deletion you can also do an AWS CLI call instead:
aws cloudformation delete-stack --stack-name <cluster-name>
If you suddenly notice that your instances/cloudformations/etc have vanished from the AWS control panel, you may have to re-login.
########
-
There are several options, such as pdsh, cssh, ...
-
Example using cssh, csshX or tmux-cssh (you'll need to install it)
../bin/clusters-report.sh | grep "^[0-9]" | xargs echo tmux-cssh -u masterclass ```
- After executing you will get a terminal with small windows to all of the clusters.
- Anything you type will go to all hosts.
-
Change Ambari to port 8081
export TERM=xterm echo "client.api.port=8081" | sudo tee -a /etc/ambari-server/conf/ambari.properties sudo ambari-server restart sudo ambari-agent restart