SAS in Amazon cloud #90
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
glenrobson
commented
Aug 27, 2020
|
|
||
| **Configure Security Settings**: If you have a certificate then assign this to your Load balancer. As load balancers are quite expensive it makes sense to re-use them for different services. If you plan to do this then it is a good idea to create a wildcard certificate and assign it here. | ||
|
|
||
| **Security policy**: BEN WHAT DO YOU SEE HERE? |
There was a problem hiding this comment.
Safe to select the default
glenrobson
commented
Aug 27, 2020
|
|
||
| **IP address type**: ipv4 | ||
|
|
||
| **Listeners**: If you want to access your application using http then leave the default listener in place. You should also add a https listener by clicking Add listener and selecting https. |
There was a problem hiding this comment.
If you have configured a certificate you can add a https listener but this can be added later.
glenrobson
commented
Aug 27, 2020
|
|
||
| **Security policy**: BEN WHAT DO YOU SEE HERE? | ||
|
|
||
| **Configure Security groups**: BEN WHAT DO YOU SEE HERE? |
There was a problem hiding this comment.
Select your default security group. Note you will need to check this default security group has the following inbound ports open 80 and 443. To check this navigate to the following in a new window:
EC2 > Security Groups > default policy > Inbound Rules
glenrobson
commented
Aug 28, 2020
|
|
||
| **Service role**: New service role | ||
|
|
||
| **Role name**: Codebuild-Docker-role |
There was a problem hiding this comment.
Need to add AmazonEC2ContainerRegistryPowerUser to role
glenrobson
commented
Aug 28, 2020
|
|
||
| **Protocol**: HTTP | ||
|
|
||
| **PORT**: 80 |
glenrobson
commented
Aug 28, 2020
|
|
||
| **Memory Limits (MiB)**: this is where you configure the minimum amount of memory the SAS task needs to run. Set this too high and ECS won't deploy your task. You can set a hard or soft limit. If you set a hard limit your task will be killed if SAS goes over this limit. A soft limit makes sure this memory is available before it is deployed. A low value means the task will almost always be deployed. Set it to soft limit of 300MB which is the minimum recommend for a Web Application. | ||
|
|
||
| **Port Mappings**: This is where you map your internal Docker ports to ports you can access. The only port that SAS listens to is 8888 so enter that here and set the protocol to TCP. |
glenrobson
commented
Aug 28, 2020
|
|
||
| **Load balancer name**: Select the load balancer you create earlier. | ||
|
|
||
| **Container to load balance**: sas-container:0:8888 |
glenrobson
commented
Aug 28, 2020
|
|
||
| **Task execution IAM role**: allow ECS to create a role for you | ||
|
|
||
| **Task size**: Memory 0.5GB. CPU 0.25 - this is the resources to allocate to SAS. If you find SAS is too slow these can be increased. |
There was a problem hiding this comment.
Needs to be 2gb Memory and 1 cpu
|
Updates required to avoid issues with DockerHub limits: https://medium.com/rockedscience/fixing-docker-hub-rate-limiting-errors-in-ci-cd-pipelines-ea3c80017acb |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Documentation on deploying SAS to the cloud.
https://github.com/glenrobson/SimpleAnnotationServer/blob/aws_docs/doc/AWS.md