Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Docker on Amazon Web Services
  • Toc
  • feedback
Docker on Amazon Web Services

Docker on Amazon Web Services

By : Justin Menga
4.2 (5)
close
Docker on Amazon Web Services

Docker on Amazon Web Services

4.2 (5)
By: Justin Menga

Overview of this book

Over the last few years, Docker has been the gold standard for building and distributing container applications. Amazon Web Services (AWS) is a leader in public cloud computing, and was the first to offer a managed container platform in the form of the Elastic Container Service (ECS). Docker on Amazon Web Services starts with the basics of containers, Docker, and AWS, before teaching you how to install Docker on your local machine and establish access to your AWS account. You'll then dig deeper into the ECS, a native container management platform provided by AWS that simplifies management and operation of your Docker clusters and applications for no additional cost. Once you have got to grips with the basics, you'll solve key operational challenges, including secrets management and auto-scaling your infrastructure and applications. You'll explore alternative strategies for deploying and running your Docker applications on AWS, including Fargate and ECS Service Discovery, Elastic Beanstalk, Docker Swarm and Elastic Kubernetes Service (EKS). In addition to this, there will be a strong focus on adopting an Infrastructure as Code (IaC) approach using AWS CloudFormation. By the end of this book, you'll not only understand how to run Docker on AWS, but also be able to build real-world, secure, and scalable container platforms in the cloud.
Table of Contents (20 chapters)
close
close
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Code in Action
Get in touch
Free Chapter
1
Container and Docker Fundamentals
Container and Docker Fundamentals
Technical requirements
Introduction to containers and Docker
Setting up a local Docker environment
Installing the sample application
Summary
Questions
Further reading
2
Building Applications Using Docker
Building Applications Using Docker
Technical requirements
Testing and building the application using Docker
Testing and building the application using Docker Compose
Automating the workflow
Summary
Questions
Further reading
3
Getting Started with AWS
Getting Started with AWS
Technical requirements
Setting up an AWS account
Logging in as the root account
Creating IAM users, groups, and roles
Creating an EC2 Key Pair
Using the AWS CLI
Introduction to AWS CloudFormation
Summary
Questions
Further reading
4
Introduction to ECS
Introduction to ECS
Technical requirements
ECS architecture
Creating an ECS cluster
Understanding ECS container instances
Creating an ECS task definition
Creating an ECS service
Deploying ECS services
Running ECS tasks
Using the ECS CLI
Deleting the Test Cluster
Summary
Questions
Further information
5
Publishing Docker Images Using ECR
Publishing Docker Images Using ECR
Technical requirements
Understanding ECR
Creating ECR repositories
Logging into ECR
Publishing Docker images to ECR
Pulling Docker images from ECR
Configuring lifecycle policies
Summary
Questions
Further reading
6
Building Custom ECS Container Instances
Building Custom ECS Container Instances
Technical requirements
Designing a custom Amazon Machine Image
Building a custom AMI using Packer
Building custom ECS container instance images using Packer
Testing your custom ECS container instance image
Summary
Questions
Further reading
7
Creating ECS Clusters
Creating ECS Clusters
Technical requirements
Deployment overview
Defining an ECS cluster
Configuring an EC2 Auto Scaling group
Defining an EC2 Auto Scaling launch configuration
Configuring CloudFormation Init Metadata
Configuring Auto Scaling group creation policies
Configuring EC2 instance profiles
Configuring EC2 security groups
Deploying and testing an ECS cluster
Summary
Questions
Further reading
8
Deploying Applications Using ECS
Deploying Applications Using ECS
Technical requirements
Creating an application database using RDS
Configuring Application Load Balancers
Creating ECS task definitions
Deploying ECS services
Creating a CloudFormation custom resource
Summary
Questions
Further reading
9
Managing Secrets
chevron up
Managing Secrets
Technical requirements
Creating KMS keys
Creating secrets using the AWS Secrets Manager
Injecting secrets at container startup
Provisioning secrets using CloudFormation
Deploying secrets to AWS
Summary
Questions
Further reading
10
Isolating Network Access
Isolating Network Access
Technical requirements
Understanding ECS task networking
Configuring a NAT gateway
Configuring ECS task networking
Deploying and testing ECS task networking
Summary
Questions
Further reading
11
Managing ECS Infrastructure Life Cycle
Managing ECS Infrastructure Life Cycle
Technical requirements
Understanding ECS life cycle management
Building a new ECS container instance AMI
Configuring EC2 Auto Scaling rolling updates
Creating EC2 Auto Scaling life cycle hooks
Creating a Lambda function for consuming life cycle hooks
Deploying and testing Auto Scaling life cycle hooks
Summary
Questions
Further reading
12
ECS Auto Scaling
ECS Auto Scaling
Technical requirements
Understanding ECS cluster resources
Calculating the ECS cluster capacity
Implementing an ECS Auto Scaling solution
Summary
Questions
Further reading
13
Continuously Delivering ECS Applications
Continuously Delivering ECS Applications
Technical requirements
Introducing CodePipeline and CodeBuild
Creating a custom CodeBuild container
Adding CodeBuild support to your application repository
Creating a continuous integration pipeline using CodePipeline
Creating a continuous delivery pipeline using CodePipeline
Continuously delivering to production using CodePipeline
Summary
Questions
Further reading
14
Fargate and ECS Service Discovery
Fargate and ECS Service Discovery
Technical requirements
When to use Fargate?
Adding support for AWS X-Ray to applications
Creating an X-Ray daemon Docker image
Configuring ECS service discovery resources
Configuring an ECS task definition for Fargate
Configuring an ECS service for Fargate
Deploying and testing the X-Ray daemon
Summary
Questions
Further reading
15
Elastic Beanstalk
Elastic Beanstalk
Technical requirements
Introduction to Elastic Beanstalk
Creating an Elastic Beanstalk application
Configuring Elastic Beanstalk applications using the CLI
Customizing Elastic Beanstalk applications
Summary
Questions
Further reading
16
Docker Swarm in AWS
Docker Swarm in AWS
Technical requirements
Docker Swarm introduction
Installing Docker for AWS
Deploying applications to Docker Swarm
Deploying the sample application to Docker Swarm
Summary
Questions
Further reading
17
Elastic Kubernetes Service
Elastic Kubernetes Service
Technical requirements
Introduction to Kubernetes
Getting started with Kubernetes
Creating an EKS cluster
Deploying the sample application to EKS
Summary
Questions
Further reading
18
Assessments
Assessments
Chapter 1, Container and Docker Fundamentals
Chapter 2, Building Applications Using Docker
Chapter 3, Getting Started with AWS
Chapter 4, Introduction to ECS
Chapter 5, Publishing Docker Images Using ECR
Chapter 6, Building Custom ECS Container Instances
Chapter 7, Creating ECS Clusters
Chapter 8, Deploying Applications Using ECS
Chapter 9, Managing Secrets
Chapter 10, Isolating Network Access
Chapter 11, Managing the ECS Infrastructure Life Cycle
Chapter 12, ECS Auto Scaling
Chapter 13, Continuously Delivering ECS Applications
Chapter 14, Fargate and ECS Service Discovery
Chapter 15, Elastic Beanstalk
Chapter 16, Docker Swarm in AWS
Chapter 17, Elastic Kubernetes Service
19
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Managing Secrets

Secrets management is a critical security and operational requirement for modern applications and systems. Credentials such as usernames and passwords are commonly used to authenticate access to resources that may contain private and sensitive data, and it is very important that you can implement a secrets management solution that is able to provide these credentials to your applications in a secure manner that does not expose them to unauthorized parties.

Secrets management for container-based applications is challenging, in part due to the ephemeral nature of containers and the fundamental requirement to run your containers on disposable and repeatable infrastructure. Gone are the days of long-lived servers where you could store secrets in a local file – now your servers are ECS container instances that can come and go, and you need to have some mechanism...

End of Section 1
Next Section
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete