AWS server deployment options

Pick which crew of robots to build your servers

                   

Overview

• Manually configure component services
• Elastic Beanstalk
  • Beanstalk Settings
• Opsworks Chef
• Ansible using CloudFormation
• More on Amazon
• More on DevOps

This tutorial describes the options AWS provides to automate setup of multi-stage (dev+QA+prod) enterprise environments within EC2.

NOTE: Content here are my personal opinions, and not intended to represent any employer (past or present). “PROTIP:” here highlight information I haven’t seen elsewhere on the internet because it is hard-won, little-know but significant facts based on my personal research and experience.

The options:

• Manually configure the various components using the AWS Management Console at http://aws.amazon.com/ on internet browsers. See my AWS On-boarding for a tutorial on the AWS Management Console and Consoles on mobile devices.

• Elastic Beanstalk for developers to quickly bring up standard server configurations with no SSH capability.

• Opsworks “configuration as code service” which sets up servers by running Chef recipies obtained from a Chef Cookbook repository.

• CloudFormation for sysadmins to create JSON template files which configure ALL AWS services.

• Ansible using CloudFormation.

• Value-added services outside Amazon, such as Terraform (and licensed Atlas) from HashiCorp.

---

Manually configure component services

Each environment within AWS for enterprise use requires several services. Here is the sequence of dependencies:

1. VPN
2. VPC

3. NAT

4. DNS

5. ELB

6. AMI by Region, with Auto-scale

---

Elastic Beanstalk

Before doing this, setup default VPC, subnets, and Security Groups.

1. Services > Compute > Beanstalk

   NOTE: You can’t SSH into individual servers.

2. Specify an Application Name.

   PROTIP: Define a convention that applies to apps, such as a project, feature, and version number, such as PS1-bean2-node-v01.

   PROTIP: Include in the name a code for the platform being used.

3. Select a Platform.

4. Click Configure more options.

   Beanstalk is considered a “Platform-as-a-Service” (PaaS), that does the “heavy lifting” to get infrastructure online, with load balancing, autoscaling, and health monitoring.

   The Virtual Machine is for the Platform chosen in the previous step.

   The Low cost configuration preset is the default.

   In the Scaling section, the Environment type is single instance.

5. Click the Highly available configuration preset.

   Notice the Environment type changed to “loadbalancing, autoscaling” with Scale instance: 1-4.

   Beanstalk is free to use. You only pay for servers deployed by it.

6. Click Modify in the Notifications section and input your email address.

7. Switch temporarily to your email to confirm the subscription.

8. Since this is a tutorial, select the Low cost single instance.

9. Scroll down to click Create app.

Beanstalk Settings

Configuration information stored in the .ebextensions folder containing:

• a dynamodb.config

  The file contains functions definitions such as Fn::GetOptionSetting: with parameters.

• a options.config files.

• The .elasticbeanstalk folder ???

---

Opsworks Chef

Opsworks is a higher level tool than CloudFormation, offering more customization than Elastic Beanstalk.

1. Services > Management Tools > Opsworks

2. Click Add your first stack.

   NOTE: You cannot mix and match Windows with Linux servers.

Opsworks is called a “configuration as code service” because it sets up servers by running Chef recipies obtained from a Cookbook repository.

NOTE: There is no equivalent for Puppet.

Each “layer” is a blueprint and container for instances. (JSON) defining stacks:

• OpsWorks
• ECS

• RDS

  A different Chef recipie for each event within the lifecycle :

  • Setup
  • Configure
  • Deploy
  • Undeploy
  • Shutdown

Opsworks Cookbooks from @Danilop.

NOTE: Each server has a Chef agent installed.

The lack of agents is why Ansible is becoming more popular.

Ansible using CloudFormation

My tutorial on AWS High-Availability using CloudFormation, which is the current rage (June 2016).

More on Amazon

This is one of a series on Amazon:

• AWS Cloud Services Comparisons
• AWS Well-Architected Cloud
• AWS Cloud Services

• AWS Certifications

• AWS CLI
• AWS On-boarding (GUI, CLI, API)
• AWS IAM
• AWS DevOps (CodeCommit, CodePipeline, CodeDeploy)
• AWS server deployment options
• AWS Cloud Formation IaS

• AWS CDK

• AWS Cognito
• AWS Security

• API Management by Amazon

• Build load-balanced servers in AWS EC2
• AWS Networking
• AWS Xray

• Cloud performance testing

• IoT on AWS

• MacOS on AWS

• AWS Lambda
• AWS Lambda

More on DevOps

This is one of a series on DevOps:

1. DevOps_2.0
2. ci-cd (Continuous Integration and Continuous Delivery)
3. User Stories for DevOps

4. Enterprise Software)

5. Git and GitHub vs File Archival
6. Git Commands and Statuses
7. Git Commit, Tag, Push
8. Git Utilities
9. Data Security GitHub
10. GitHub API

11. TFS vs. GitHub

12. Choices for DevOps Technologies
13. Pulumi Infrastructure as Code (IaC)
14. Java DevOps Workflow

15. Okta for SSO & MFA

16. AWS DevOps (CodeCommit, CodePipeline, CodeDeploy)
17. AWS server deployment options

18. AWS Load Balancers

19. Cloud services comparisons (across vendors)
20. Cloud regions (across vendors)

21. AWS Virtual Private Cloud

22. Azure Cloud Onramp (Subscriptions, Portal GUI, CLI)
23. Azure Certifications

24. Azure Cloud

25. Azure Cloud Powershell
26. Bash Windows using Microsoft’s WSL (Windows Subsystem for Linux)

27. Azure KSQL (Kusto Query Language) for Azure Monitor, etc.

28. Azure Networking
29. Azure Storage
30. Azure Compute

31. Azure Monitoring

32. Digital Ocean

33. Cloud Foundry

34. Packer automation to build Vagrant images
35. Terraform multi-cloud provisioning automation

36. Hashicorp Vault and Consul to generate and hold secrets

37. Powershell Ecosystem
38. Powershell on MacOS

39. Powershell Desired System Configuration

40. Jenkins Server Setup
41. Jenkins Plug-ins
42. Jenkins Freestyle jobs

43. Jenkins2 Pipeline jobs using Groovy code in Jenkinsfile

44. Docker (Glossary, Ecosystem, Certification)
45. Make Makefile for Docker
46. Docker Setup and run Bash shell script
47. Bash coding
48. Docker Setup
49. Dockerize apps

50. Docker Registry

51. Maven on MacOSX

52. Ansible
53. Kubernetes Operators

54. OPA (Open Policy Agent) in Rego language

55. MySQL Setup

56. Threat Modeling

57. SonarQube & SonarSource static code scan

58. API Management Microsoft

59. API Management Amazon

60. Scenarios for load
61. Chaos Engineering

---