You can run this lab either from your local computer or for AWS Cloud9. If you opt for AWS Cloud9, please follow the link bellow to create, connect to your Cloud9 environment, and open a terminal to get started.
Instructions: https://docs.aws.amazon.com/cloud9/latest/user-guide/environments.html
git clone https://github.com/jpbueno/eks-spot-lab.gitcurl --silent --location "https://github.com/weaveworks/eksctl/releases/latest/download/eksctl_$(uname -s)_amd64.tar.gz" | tar xz -C /tmp
sudo mv /tmp/eksctl /usr/local/binCreate an EKS cluster with a managed node group having 3 On-Demand t3.medium nodes and a label called lifecycle=OnDemand
eksctl create cluster --name=eks-spot-lab --node-private-networking --managed --nodes=3 --region=us-east-1 --node-type t3a.medium --node-labels="lifecycle=OnDemand"Install kube-ops-view
cd kube-ops-view-jp
kubectl apply -k deployOpen kube-ops-view
kubectl port-forward service/kube-ops-view 8080:80Note: Open kube-ops-view by accessinig http://localhost:8080/ in the browser. To increase size, append /#scale=2.0 in the end of URL.
Create spot worker nodes
cd ..
eksctl create nodegroup -f spot-nodegroups.yamlAfter a few minutes, confirm these nodes were added to the cluster by looking at kube-ops-view or by running the following command
kubectl get nodes --show-labels --selector=lifecycle=Ec2SpotInstall Node Termination Handler
kubectl apply -f https://github.com/aws/aws-node-termination-handler/releases/download/v1.10.0/all-resources.yamlVerify Node Termination Handler is running
kubectl get daemonsets --all-namespacesDeploy Cluster Autoscaler
kubectl apply -f https://raw.githubusercontent.com/kubernetes/autoscaler/master/cluster-autoscaler/cloudprovider/aws/examples/cluster-autoscaler-autodiscover.yamlAdd cluster-autoscaler.kubernetes.io/safe-to-evictannotation to the deployment
kubectl -n kube-system annotate deployment.apps/cluster-autoscaler cluster-autoscaler.kubernetes.io/safe-to-evict="false"
kubectl get nodes --show-labels --selector=lifecycle=Ec2SpotView cluster-autoscaler logs
kubectl -n kube-system logs -f deployment.apps/cluster-autoscalerCreate an IAM OIDC provider and associate it with the cluster
eksctl utils associate-iam-oidc-provider --cluster eks-spot-lab --approveCreate an IAM policy for the AWS load balancer controller
aws iam create-policy \
--policy-name AWSLoadBalancerControllerIAMPolicy \
--policy-document file://iam-policy.jsonNote:Take note of the policy ARN that is returned.
Create an IAM role and Kubernetes service account named aws-load-balancer-controller in the kube-system namespace, a cluster role, and a cluster role binding for the load balancer controller
eksctl create iamserviceaccount \
--cluster=<my-cluster> \
--namespace=kube-system \
--name=aws-load-balancer-controller \
--attach-policy-arn=arn:aws:iam::<AWS_ACCOUNT_ID>:policy/<AWSLoadBalancerControllerIAMPolicy> \
--override-existing-serviceaccounts \
--approveInstall the controller and verify if it is installed
kubectl apply --validate=false -f https://github.com/jetstack/cert-manager/releases/download/v1.0.2/cert-manager.yaml
kubectl apply -f v2_0_0_full.yaml
kubectl get deployment -n kube-system aws-load-balancer-controllerDeploy the Color app as a sample application. The deployment is created with five replicas, which land on one of the Spot Instance node groups due to the nodeSelector choosing lifecycle: Ec2Spot.
kubectl apply -f color-app.yamlAfter a few minutes, verify that the Ingress resource was created with the following command.
kubectl get -n color-ns ingressOpen a browser and navigate to the ADDRESS URL from the previous command output to see the sample application.
kubectl scale --replicas=100 -n color-ns deployment blue
kubectl scale --replicas=100 -n color-ns deployment redCreate Fargate
eksctl create fargateprofile --cluster eks-spot-lab --region us-east-1 --name alb-sample-app --namespace game-2048After a few minutes, verify that the Ingress resource was created with the following command.
kubectl get ingress/ingress-2048 -n game-2048kubectl scale --replicas=100 -n game-2048 deployment deployment-2048