[AWS] ECS - Fargate: vpc, sg and load balancer

Ref: 在AWS上构建无服务器管理的容器应用实践

Ref: Uploads from AWS Full-Stack [挺全面]

 

 6. Setting up a VPC to Run Fargate Containers

设置vpc，在其内构建ecs。

 

VPC

CIDR: Classless Inter-Domain Routing

 

Subnet

 

Security Groups and NACLs

1) SG：instance level

2) NACL：subnet level

(1)

(2)

 

 

 

 7. Running containers with a load balancer on cluster powered by AWS Fargate

Container

Get started --> 选择 custom configure

ECR 上传 docker image 后，填写：container name, docker image

Task

Task memory

Task CPU

It is JSON document that describes tasks.

Server

开几个 tasks。

Cluster

暂时只设置个 cluster name。

 

Task Networking

require awsvpc network mode.

provide Elastic Network Interface (ENI) for each task.

弹性网络接口 (在本文档中称为网络接口) 是 VPC 中的一个逻辑网络组件，代表 虚拟网卡。

需要指定vpc

security group for the ENI.

A task where its ENI attached to a Public subnet will receive Public IP otherwise a Private IP.

 

Load Balancing

就需要配置 target group (logical groups)，最小单元。

 

End.