Running Kubernetes on AWS with Rancher
As everyone is aware, Amazon has EC2 Container Services, the Amazon
solution for running Docker containers. I haven’t had much luck with
this, so now I’m testing Rancher and Kubernetes on Amazon Web Services.
Kubernetes is an open-source system
for automating deployment, scaling, and management of containerized
applications, and Rancher is a
complete platform running containers within enterprises, providing
enterprise-level access control and container orchestration. I started
first by creating a new Virtual Private Cloud, using the default wizard.
This VPC is being used for the complete Rancher farm. Next thing is to
create one or more new hosts; where the Rancher documentation says to
install Docker manually, I’ve chosen the RancherOS AMI itself.
That AMI is specially built for this purposes, and very minimal (even
curl isn’t installed):
The security group enables traffic to TCP port 8080 for my IP only. This
is important, as there is no authorization enabled by default. It is
also a good idea to add traffic between several hosts itself; this can
be done by saving the security group (then it well get an sg-
identifier), and add All Traffic permissions to that security group.
When the new instance is ready, just connect using ssh and start the
Rancher server Docker image using
sudo docker run -d --restart=always -p 8080:8080 rancher/server
. The
Rancher applications will run within the Docker images themselves.
$ sudo docker run -d --restart=always -p 8080:8080 rancher/server
Unable to find image 'rancher/server:latest' locally latest: Pulling from rancher/server
...
Status: Downloaded newer image for rancher/server:latest 3baee4a975200c3eb4b18fd1351b07393cdd09455cf7917d46879a278399c02e
You can tail the logs using the docker logs -f {containerid}
command:
[rancher@ip-10-0-0-29 ~]$ sudo docker logs -f 3baee4a975200c3eb4b18fd1351b07393cdd09455cf7917d46879a278399c02e 160901 8:40:30
[Note] /usr/sbin/mysqld (mysqld 5.5.49-0ubuntu0.14.04.1) starting as process 25
...
Uptime: 8 Threads: 1 Questions: 2 Slow queries: 0 Opens: 33 Flush tables: 1 Open tables: 26 Queries per second avg: 0.250
Setting up database
Importing schema
Perfect. Rancher server is starting, and will be finished soon. You can
browse to the IP of the instance, and by default, Rancher server will
run on port 8080. The public IP will be reachable for all hosts, which
is an issue when having the hosts in a VPC, so you can use the private
IP instead. This can be changed within Admin and Settings.
When Rancher server is up and running, we need to add some Docker hosts.
You can launch a new host (the More Like This option is awesome – it
just starts another instance of the same configuration), or add the same
host as server (but that’s not a best practice). Next, add a new host
within Rancher Server, click on Infrastructure, and next on Add Host.
When the host(s) have been added, you can add the Kubernetes
environment. Kubernetes will then be deployed automatically to the new
host(s).
This will take a few minutes, and you can monitor its current status by
selecting the environment:
As the Kubernetes environment finishes, you navigate to Catalog and
deploy a container. For example, select the K8S Example Ghost container
– this will be up and running in no time:
During the deployment Kubernetes, the stack is created with the
following instances:
- Rancher Ingress Controller 1 (rancher/ingress-controller): The
Rancher Ingress Controller will leverage the existing load balancing
functionality within Rancher and convert what is in Kubernetes
ingress to a load balancer in Rancher (read more about this
here) - **Rancher Server (rancher/server): **The Rancher management server,
this will run the web frontend and API. - Rancher Agent (rancher/agent): Each node will get an individual
agent, which manages the node - Rancher Kubernetes Agent 1 (rancher/kubernetes-agent): Agent
responsible for handling communications between Rancher and
Kubernetes - Rancher Agent Instance (rancher/agent-instance): Agent instance
image for Rancher - Kubernetes ETCD 1 (rancher/etc): etcd is the highly-available
key value store used for persistent, safe, and distributed storage
of objects and metadata - Kubernetes Proxy 1 (rancher/k8s): The Kubernetes network proxy
runs on each node - Kubernetes Scheduler 1 (rancher/k8s): The Kubernetes controller
manager is a daemon that embeds the core control loops shipped with
Kubernetes - Kubelet 1 (rancher/k8s): The kubelet is the primary “node
agent” that runs on each node.
When adding an extra host the following will be added as well:
- Kubernetes Proxy 2
- Kubernetes Etcd 2
- Kubelet 2
Because I don’t want to maintain my own registry, I’ve created an
Amazon Container Registry, and used the registry within Rancher. You can
just copy the address, username AWS (note, this is case sensitive), and
password (the long base64 encoded string). You can get the credentials
using
aws ecr get-login --region us-east-1
Then build the Docker image:
docker build -t dutchcoders .
Tag the image and register it:
docker tag dutchcoders:latest {url}/dutchoders:latest
Push the image to the registry:
docker push {url}/dutchcoders:latest
If you want to read more about running Kubernetes with Rancher, check
this, join the Kubernetes LinkedIn
group, or check out the free
eBook on deploying and scaling Kubernetes with
Rancher.
Let me know if you’ve got any questions running Rancher with Kubernetes
on Amazon Web Services. You can reach Rancher Labs on Twitter,
@Rancher_Labs, and me
@remco_verhoef. About the
Author: Remco Verhoef is a tech enthusiast experimenting with
Kubernetes and developing in Golang and Rust.
Related Articles
Mar 25th, 2024
Announcing the Harvester v1.3.0 release
Jan 25th, 2023
Deploy s3gw in Digital Ocean
Jan 30th, 2023