Deploying App through AWS EKS by using ingress and fargate

-

 1.Create cluster

Command-  eksctl create cluster --name demo-cluster --region us-east-1 --fargate (15 to 20 min)

2. Once cluster is ready check if it is visible in EKS





3. aws eks update-kubeconfig --name demo-cluster --region us-east-1

output- Added new context arn:aws:eks:us-east-1:533267033126:cluster/demo-cluster to C:\Users\Raghvendra Singh\.kube\config

4. creating fargate profile

Command (linux)- eksctl create fargateprofile \

         --cluster demo-cluster \

         --region us-east-1 \

         --name alb-sample-app \

         --namespace game-2048

windows- eksctl create fargateprofile --cluster demo-cluster --region us-east-1 --name alb-sample-app --namespace game-2048

5. Application deployment-

kubectl apply -f https://raw.githubusercontent.com/kubernetes-sigs/aws-load-balancer-controller/v2.5.4/docs/examples/2048/2048_full.yaml

6. After deploying this app, run few commands to check status

- kubectl get pods -n game-2048

- kubectl get pods -n game-2048 -w

- kubectl get svc -n game-2048

7. configure-oidc-controller then alb-controller

 eksctl utils associate-iam-oidc-provider --cluster $cluster_name --approve

before creating alb-controller , we need to create IAM policy and Role with below command.

Download IAM policy- curl -O https://raw.githubusercontent.com/kubernetes-sigs/aws-load-balancer-controller/v2.11.0/docs/install/iam_policy.json

Create IAM Policy:

aws iam create-policy \

    --policy-name AWSLoadBalancerControllerIAMPolicy \

    --policy-document file://iam_policy.json


Create IAM Role:

eksctl create iamserviceaccount \

  --cluster=<your-cluster-name> \

  --namespace=kube-system \

  --name=aws-load-balancer-controller \

  --role-name AmazonEKSLoadBalancerControllerRole \

  --attach-policy-arn=arn:aws:iam::<your-aws-account-id>:policy/AWSLoadBalancerControllerIAMPolicy \

  --approve

Deploy ALB controller:

Add helm repo:

helm repo add eks https://aws.github.io/eks-charts


Update the repo

helm repo update eks

Install

helm install aws-load-balancer-controller eks/aws-load-balancer-controller \            

  -n kube-system \

  --set clusterName=<your-cluster-name> \

  --set serviceAccount.create=false \

  --set serviceAccount.name=aws-load-balancer-controller \

  --set region=<region> \

  --set vpcId=<your-vpc-id>


Verify that the deployments are running:

kubectl get deployment -n kube-system aws-load-balancer-controller

checking cluster details- aws eks describe-cluster --name demo-cluster --region us-east-1

kubectl get ingress -n game-2048

Access through public url which will get from below command-

kubectl get ingress -n game-2048


Comments

Post a Comment

Popular posts from this blog

How to save git token key to avoid again and again put manually

-
  To avoid entering your Git token key manually every time, you can use Git's credential helper to save and cache your credentials. The following steps outline how to set it up: 1.Open a terminal or command prompt. 2. Set up the Git credential helper by running the following command: git config --global credential.helper cache This command configures Git to use the cache credential helper, which will store your credentials in memory for a certain period of time. 3.Set the cache timeout (optional): git config --global credential.helper 'cache --timeout=3600' This command sets the cache timeout to 3600 seconds (1 hour). After this period of inactivity, Git will prompt you to enter your credentials again. 4.The next time you interact with a remote Git repository that requires authentication, enter your username and password (or token) as you normally would. Git will cache these credentials for the specified timeout period. From now on, you won't have to enter your Git toke...
Read more

How to upload bulk Email alias in Google Workspace

-
Image
  Prerequisites-  1) You should have superadmin privilege 2) GAM tool download it from below link https://github.com/GAM-team/GAM/releases After configuration GAM tool (Followed the screen instructions ). Prepare your data sheet and upload file with 1 or 2 records. if this goes success then you can upload whole data. gam csv raghvendra.csv gam create alias ~alias user ~user  (user- primary email id) field will be like this user- xyz.com and in alias -second second email ids
Read more

SSH Error- Permission denied (publickey,gssapi-keyex,gssapi-with-mic)

-
  Problem-   The authenticity of host 'IP X.X.X.X' can't be established. ECDSA key fingerprint is SHA256:U8lQ0PvPeWJgvTWC+MHS2Idjt4ZxcDzoW5/7kwJ60X0. ECDSA key fingerprint is MD5:2f:73:20:11:42:5e:02:8a:65:5a:f3:e1:2c:f8:ad:57. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added 'host IP' (ECDSA) to the list of known hosts. Permission denied (publickey,gssapi-keyex,gssapi-with-mic). Solution- Sometimes it happens we face above issue while making SSH connection between 2 servers or hosts. Step 1- Make sure ssh server is running  Step 2- Make some configuration changes in SSHD_Config file accordingly. Goto- vi /etc/ssh/sshd_config here we need to make 3 changes 1.Uncommet line- PasswordAuthentication yes 2. Commet Line - #PasswordAuthentication no (This will be line number three) 3. Uncommet- PermitRootLogin yes Step 3- Restart service to apply these changes service sshd restart
Read more