Docker – TERRAFORM how do i have 1 ecs cluster with 2 or more ecs service/task definitions

amazon-ecsconsuldockerterraform

Using Terraform, I have tried the hardest to find out how to create 1 ECS cluster and have multiple services running under it. SO basically i have 2 different containers i want to run with this 1 ECS cluster.

How do i do this?
I have seen many examples but usually 1 service with 1 ECS cluster

So from this link i got a template https://www.terraform.io/docs/providers/aws/d/ecs_task_definition.html

# Simply specify the family to find the latest ACTIVE revision in that family.
data "aws_ecs_task_definition" "mongo" {
  task_definition = "${aws_ecs_task_definition.mongo.family}"
}

resource "aws_ecs_cluster" "foo" {
  name = "foo"
}

resource "aws_ecs_task_definition" "mongo" {
  family = "mongodb"

  container_definitions = <<DEFINITION
[
  {
    "cpu": 128,
    "environment": [{
      "name": "SECRET",
      "value": "KEY"
    }],
    "essential": true,
    "image": "mongo:latest",
    "memory": 128,
    "memoryReservation": 64,
    "name": "mongodb"
  }
]
DEFINITION
}

resource "aws_ecs_service" "mongo" {
  name          = "mongo"
  cluster       = "${aws_ecs_cluster.foo.id}"
  desired_count = 2

  # Track the latest ACTIVE revision
  task_definition = "${aws_ecs_task_definition.mongo.family}:${max("${aws_ecs_task_definition.mongo.revision}", "${data.aws_ecs_task_definition.mongo.revision}")}"
}

So lets say i want to add a node app service to that how will it look? And have them both run on the same cluster

Thanks!

Best Answer

You simply create another aws_ecs_service and aws_ecs_task_definition resources.

If you want it running on the same cluster, just specify the same cluster ID in the cluster param.

So it would look something like this

# Simply specify the family to find the latest ACTIVE revision in that family.
data "aws_ecs_task_definition" "mongo" {
  task_definition = "${aws_ecs_task_definition.mongo.family}"
}

data "aws_ecs_task_definition" "nginx" {
  task_definition = "${aws_ecs_task_definition.nginx.family}"
}

resource "aws_ecs_cluster" "foo" {
  name = "foo"
}


# ======================  TASKS ===================
resource "aws_ecs_task_definition" "mongo" {
  family = "mongodb"

  container_definitions = <<DEFINITION
[
  {
    "cpu": 128,
    "environment": [{
      "name": "SECRET",
      "value": "KEY"
    }],
    "essential": true,
    "image": "mongo:latest",
    "memory": 128,
    "memoryReservation": 64,
    "name": "mongodb"
  }
]
DEFINITION
}

resource "aws_ecs_task_definition" "nginx" {
  family = "nginx"

  container_definitions = <<DEFINITION
[
  {
    "cpu": 128,
    "environment": [{
      "name": "SECRET",
      "value": "KEY"
    }],
    "essential": true,
    "image": "nginx:latest",
    "memory": 128,
    "memoryReservation": 64,
    "name": "nginx"
  }
]
DEFINITION
}

# ======================  SERVICES ===================

resource "aws_ecs_service" "mongo" {
  name          = "mongo"
  cluster       = "${aws_ecs_cluster.foo.id}"
  desired_count = 2

  # Track the latest ACTIVE revision
  task_definition = "${aws_ecs_task_definition.mongo.family}:${max("${aws_ecs_task_definition.mongo.revision}", "${data.aws_ecs_task_definition.mongo.revision}")}"
}

resource "aws_ecs_service" "nginx" {
  name          = "nginx"
  cluster       = "${aws_ecs_cluster.foo.id}"
  desired_count = 2

  # Track the latest ACTIVE revision
  task_definition = "${aws_ecs_task_definition.nginx.family}:${max("${aws_ecs_task_definition.nginx.revision}", "${data.aws_ecs_task_definition.nginx.revision}")}"
}

There is another way of running multiple containers on ECS.

You can place both Nginx and MongoDB on the same instance and under the same Task/Service.

It would look like this

# Simply specify the family to find the latest ACTIVE revision in that family.
data "aws_ecs_task_definition" "webapp" {
  task_definition = "${aws_ecs_task_definition.webapp.family}"
}

resource "aws_ecs_cluster" "foo" {
  name = "foo"
}


# ======================  TASKS ===================

resource "aws_ecs_task_definition" "webapp" {
  family = "webapp"

  container_definitions = <<DEFINITION
[
  {
    "cpu": 128,
    "environment": [{
      "name": "SECRET",
      "value": "KEY"
    }],
    "essential": true,
    "image": "nginx:latest",
    "memory": 128,
    "memoryReservation": 64,
    "name": "nginx"
  },
  {
    "cpu": 128,
    "environment": [{
      "name": "SECRET",
      "value": "KEY"
    }],
    "essential": true,
    "image": "mongo:latest",
    "memory": 128,
    "memoryReservation": 64,
    "name": "mongodb"
  }
]
DEFINITION
}

# ======================  SERVICES ===================

resource "aws_ecs_service" "webapp" {
  name          = "webapp"
  cluster       = "${aws_ecs_cluster.foo.id}"
  desired_count = 1

  # Track the latest ACTIVE revision
  task_definition = "${aws_ecs_task_definition.webapp.family}:${max("${aws_ecs_task_definition.webapp.revision}", "${data.aws_ecs_task_definition.webapp.revision}")}"
}

The advantage of the first method is that you can scale and manage each container independently.

The advantage of the second method is that the containers will be placed on the same EC2 instance and can be linked but can not be scaled independently. When you set desired count to N, you will get N number of "webapp" (so both Nginx and MongoDB instances). With the first method you can have N number of Nginx and X number of MongoDB.

Hope this helps.

NOTE : Terraform code has not been tested.

Related Solutions

Docker – How to scale up one container using Amazon EC2 Container Service

Do I need to create separate task definitions?

Yes

Do I need to create separate services?

Not necessarily. You can simply run tasks on their own without the "service". But "service" allows association with Load Balancer, Application autoscaling as well as zero downtime deployments.

The only way to "Docker link" your containers is to define them in one task definition like you are currently doing. This way ECS will place all containers on the same instance. Splitting into different tasks means no linking as the containers might be started on different instances.

So if you decide to split them, then each container will have to connect to other containers via "service" urls.

My advise is to

Create ALB/ELB
Split all containers into individual tasks.
Create "services" for all tasks
Associate each service container with ALB/ELB
Update each service config to use DNS:PORT of the ALB/ELB used by each service
Stop using rabitMQ and migrate to SQS.

This way you can scale each "service" individually.

If you decide to stay with rabbitMQ you will have to use ELB for rabbitMQ container and manually associate container port used by rabbitMQ with the ELB.

ALBs will automagically discover container ports used by your services.

See this for more details on ALB and ECS:

https://aws.amazon.com/blogs/compute/microservice-delivery-with-amazon-ecs-and-application-load-balancers/

How to determine the Container ID so that Terraform can attach it to an ALB target group

I've managed to fix this!

I don't think you need to attach items to the target group yourself, which makes sense because it all happens magically when using the console wizard.

What I did was remove any attempts to attach any targets but define an ALB listener:

resource "aws_alb_listener" "web_front_end" {
  load_balancer_arn = "${aws_alb.nancy_template_alb.id}"
  port              = "80"
  protocol          = "HTTP"

  default_action {
    target_group_arn = "${aws_alb_target_group.web-targetgroup.id}"
    type             = "forward"
  }
}

and also added this to my service definition:

depends_on = [
  "aws_alb_listener.web_front_end",
]

..which might not be necessary but ensure that relationship between my target group and load balancer is in place before my service is brought up.

Best Answer

Related Solutions

Docker – How to scale up one container using Amazon EC2 Container Service

How to determine the Container ID so that Terraform can attach it to an ALB target group

Related Topic