The One Million Container Challenge<\/a><\/p>\n c1m github<\/a><\/p>\n The Two Million Container Challenge<\/a><\/p>\n c2m github<\/a><\/p>\n IntelliJ Plugin \uc124\uce58<\/a><\/p>\n Terraform \uc744 \uc124\uce58\ud569\ub2c8\ub2e4.<\/p>\n \uc5ec\uae30<\/a> \ub97c \ucc38\uace0\ud574\uc11c IAM \uacc4\uc815\uc744 \uc0dd\uc131\ud569\ub2c8\ub2e4.<\/p>\n \ub2e4\uc6b4\ubc1b\uc740 CSV \ud30c\uc77c\uc744 \ucc38\uc870\ud574\uc11c AMI \uc774\ubbf8\uc9c0 ID \ub294 \uc544\ub798\uc5d0\uc11c \ucc3e\uc744 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n \uc124\uc815\uc744 \uac80\uc99d\ud569\ub2c8\ub2e4.<\/p>\n \uc2e4\uc81c\ub85c \uc778\uc2a4\ud134\uc2a4\ub97c \uc0dd\uc131\ud569\ub2c8\ub2e4.<\/p>\n \uc544\ub798 \uba85\ub839\uc73c\ub85c \uc0dd\uc131\ub41c \uc0c1\ud0dc\ub97c \ud655\uc778\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc0dd\uc131\ub41c \uc778\uc2a4\ud134\uc2a4\ub97c \uc0ad\uc81c\ud569\ub2c8\ub2e4.<\/p>\n EC2 \uc778\uc2a4\ud134\uc2a4\ub97c \uc0dd\uc131\ud558\uace0, nginx \uc774\ubbf8\uc9c0\ub97c \uc2e4\ud589\ud558\uace0, \ud37c\ube14\ub9ad\uc73c\ub85c 8080 \ud3ec\ud2b8\ub97c \uc624\ud508\ud569\ub2c8\ub2e4.<\/p>\n \ucc38\uace0<\/a><\/p>\n \ucc38\uace0<\/a><\/p>\n nginx \uac00 \uc2e4\ud589\ub420 \ub54c\uae4c\uc9c0, \uc778\uc2a4\ud134\uc2a4 \uc0dd\uc131 \ud6c4\uc5d0\ub3c4 30~60\ucd08 \uc815\ub3c4 \ucd94\uac00\ub85c \uc18c\uc694\ub429\ub2c8\ub2e4.<\/p>\n \ub2e4\uc2dc nomad \uc11c\ubc84\uc758 \ud504\ub77c\uc774\ube57 \uc544\uc774\ud53c\ub97c \ud30c\ub77c\ubbf8\ud130\ub85c nomad \ud074\ub77c\uc774\uc5b8\ud2b8\ub97c 1\uac1c \uc0dd\uc131\ud569\ub2c8\ub2e4.<\/p>\n http:\/\/<Consul \uc11c\ubc84 \ud37c\ube14\ub9ad \uc544\uc774\ud53c>:8500 \uc5d0 \uc811\uc18d\ud574\uc11c \uc0dd\uc131\uc744 \ud655\uc778\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n \uc0dd\uc131\ud655\uc778 \ud6c4\uc5d0\ub294 \ucc38\uc870<\/a><\/p>\n nomad client \ub178\ub4dc\uc5d0 \ub300\ud574 Auto Scaling \uad6c\ud604\ud569\ub2c8\ub2e4.<\/p>\n nomad \uc5d0\uc11c\uc758 Auto Scaling \uc740 Nomad Autoscaler \ub3c5\ub9bd\uc11c\ubc84\ub85c \uc124\uce58\ud560 \uc218\ub3c4 \uc788\uc9c0\ub9cc, Job \uc73c\ub85c \ub4f1\ub85d\ud558\ub294 \uac83\uc774 \uc77c\ubc18\uc801\uc785\ub2c8\ub2e4.<\/p>\n \ucc38\uc870<\/a><\/p>\n \ucc38\uc870<\/a><\/p>\n nomad client \uc5d0 Terraform \uc2dc\uc791\ud558\uae30 \uacf5\uc2dd\ubb38\uc11c The One Million Container Challenge c1m github The Two Million Container Challenge c2m github IntelliJ Plugin \uc124\uce58 \uc791\uc5c5\uc6a9 Terraform \uc11c\ubc84 \uc0dd\uc131 Terraform \uc124\uce58 AWS AMI \uc778\uc2a4\ud134\uc2a4\ub97c \uc0dd\uc131\ud569\ub2c8\ub2e4. \uba54\ubaa8\ub9ac\ub294 500M \uba74 \ucda9\ubd84\ud569\ub2c8\ub2e4. Terraform \uc744 \uc124\uce58\ud569\ub2c8\ub2e4. sudo yum install -y yum-utils sudo yum-config-manager –add-repo https:\/\/rpm.releases.hashicorp.com\/AmazonLinux\/hashicorp.repo sudo yum -y install terraform terraform -help IAM \uad8c\ud55c\u2026 Read More »<\/a><\/span><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[30],"tags":[],"class_list":["post-2773","post","type-post","status-publish","format-standard","hentry","category-terraform"],"_links":{"self":[{"href":"https:\/\/www.skyer9.pe.kr\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/2773","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.skyer9.pe.kr\/wordpress\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.skyer9.pe.kr\/wordpress\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.skyer9.pe.kr\/wordpress\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.skyer9.pe.kr\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2773"}],"version-history":[{"count":58,"href":"https:\/\/www.skyer9.pe.kr\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/2773\/revisions"}],"predecessor-version":[{"id":3151,"href":"https:\/\/www.skyer9.pe.kr\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/2773\/revisions\/3151"}],"wp:attachment":[{"href":"https:\/\/www.skyer9.pe.kr\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2773"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.skyer9.pe.kr\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2773"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.skyer9.pe.kr\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2773"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}\uc791\uc5c5\uc6a9 Terraform \uc11c\ubc84 \uc0dd\uc131<\/h2>\n
Terraform \uc124\uce58<\/h3>\n
AWS AMI<\/code> \uc778\uc2a4\ud134\uc2a4\ub97c \uc0dd\uc131\ud569\ub2c8\ub2e4.
\n\uba54\ubaa8\ub9ac\ub294 500M \uba74 \ucda9\ubd84\ud569\ub2c8\ub2e4.<\/p>\nsudo yum install -y yum-utils\nsudo yum-config-manager --add-repo https:\/\/rpm.releases.hashicorp.com\/AmazonLinux\/hashicorp.repo\nsudo yum -y install terraform\n\nterraform -help<\/code><\/pre>\nIAM \uad8c\ud55c \uc124\uc815<\/h3>\n
AmazonEC2FullAccess<\/code> \uad8c\ud55c\uc744 \ubd80\uc5ec\ud569\ub2c8\ub2e4.<\/p>\naws configure<\/code> \uc744 \uc2e4\ud589\ud569\ub2c8\ub2e4.<\/p>\naws configure\nAWS Access Key ID [None]: AKIA3VXXXXXXXXXX\nAWS Secret Access Key [None]: sDSWqBzAyunFXXXXXXXXXXXXXXXXXXXXXX\nDefault region name [None]: ap-northeast-2<\/code><\/pre>\nmkdir mywork\ncd mywork<\/code><\/pre>\nEC2 \uc778\uc2a4\ud134\uc2a4 \uc0dd\uc131<\/h2>\n
vi main.tf\n-------------------------------------\nprovider "aws" {\n profile = "default"\n region = "ap-northeast-2"\n}\n\nresource "aws_instance" "my_server" {\n ami = "ami-0a0de518b1fc4524c"\n instance_type = "t2.nano"\n\n tags = {\n Name = "MyExampleAppServerInstance"\n }\n}\n-------------------------------------<\/code><\/pre>\n![\"\"](\"https:\/\/www.skyer9.pe.kr\/wordpress\/wp-content\/uploads\/2021\/08\/2021-08-14-02.png\")
<\/a><\/p>\n# \ud14c\ub77c\ud3fc \ucd08\uae30\ud654\nterraform init\n\n# \uc124\uc815\ud30c\uc77c \uac80\uc99d\nterraform validate\n\n# \uc2e4\ud589\uc2dc \uacb0\uacfc\ubb3c \ucd9c\ub825\nterraform plan<\/code><\/pre>\nterraform apply<\/code><\/pre>\n
\nEC2 \uc778\uc2a4\ud134\uc2a4\ub294 \uc0dd\uc131\ub418\uc5c8\uc9c0\ub9cc, \uc544\ubb34 \uc11c\ube44\uc2a4\ub3c4 \uc5c6\uace0,
\n\uc2ec\uc9c0\uc5b4 EC2 \uc778\uc2a4\ud134\uc2a4\uc5d0 \uc811\uc18d\ud560 ssh \uc811\uadfc \uad8c\ud55c\ub3c4 \uc5c6\uc2b5\ub2c8\ub2e4.<\/p>\nterraform show<\/code><\/pre>\nterraform destroy<\/code><\/pre>\nEC2 \uc778\uc2a4\ud134\uc2a4\uc5d0 \ub3c4\ucee4 \uc774\ubbf8\uc9c0 \uc2e4\ud589<\/h2>\n
\ubaa9\ud45c<\/h3>\n
EC2 \uc778\uc2a4\ud134\uc2a4 \uc0dd\uc131<\/h3>\n
vi main.tf\n-------------------------------------\nprovider "aws" {\n profile = "default"\n region = "ap-northeast-2"\n}\n\nresource "aws_instance" "my_server" {\n ami = "ami-0a0de518b1fc4524c"\n instance_type = "t2.nano"\n\n tags = {\n Name = "my webserver"\n }\n}\n-------------------------------------<\/code><\/pre>\nnginx \uc774\ubbf8\uc9c0 \uc2e4\ud589<\/h3>\n
vi main.tf\n-------------------------------------\nprovider "aws" {\n profile = "default"\n region = "ap-northeast-2"\n}\n\nresource "aws_instance" "my_server" {\n ami = "ami-0a0de518b1fc4524c"\n instance_type = "t2.nano"\n\n user_data = <<-EOF\n #! \/bin\/bash\n sudo yum update -y\n sudo yum install docker -y\n sudo service docker start\n sudo systemctl enable docker.service\n sudo mkdir -p \/var\/web\n echo "<h1>Hello, World.<\/h1>" | sudo tee \/var\/web\/index.html\n sudo docker run --name nginx \\\n -v \/var\/web:\/usr\/share\/nginx\/html \\\n -d \\\n -p 8080:80 \\\n nginx\n EOF\n\n tags = {\n Name = "my webserver"\n }\n}\n-------------------------------------<\/code><\/pre>\n8080 \ud3ec\ud2b8 \uc624\ud508<\/h3>\n
sg_ssh<\/code>, key_name<\/code> \ub294 \ud14c\uc2a4\ud2b8 \uc6a9\ub3c4\ub85c\ub9cc \uc0ac\uc6a9\ud558\uace0 \uc774\ud6c4\uc5d0\ub294 \uc0ad\uc81c\ud569\ub2c8\ub2e4.<\/p>\nvi main.tf\n-------------------------------------\nprovider "aws" {\n profile = "default"\n region = "ap-northeast-2"\n}\n\nresource "aws_instance" "my_server" {\n ami = "ami-0a0de518b1fc4524c"\n instance_type = "t2.nano"\n key_name = "skyer9" # \uc790\uc2e0\uc758 \ud0a4 \ud398\uc5b4\uc785\ub825\n\n vpc_security_group_ids = [\n aws_security_group.sg_web.id,\n aws_security_group.sg_ssh.id\n ]\n\n user_data = <<-EOF\n #! \/bin\/bash\n sudo yum update -y\n sudo yum install docker -y\n sudo service docker start\n sudo systemctl enable docker.service\n sudo mkdir -p \/var\/web\n echo "<h1>Hello, World.<\/h1>" | sudo tee \/var\/web\/index.html\n sudo docker run --name nginx \\\n -v \/var\/web:\/usr\/share\/nginx\/html \\\n -d \\\n -p 8080:80 \\\n nginx\n EOF\n\n tags = {\n Name = "my webserver"\n }\n}\n\nresource "aws_security_group" "sg_web" {\n name = "sg_web"\n ingress {\n from_port = "8080"\n to_port = "8080"\n protocol = "tcp"\n cidr_blocks = ["0.0.0.0\/0"]\n }\n\n # \ud14c\ub77c\ud3fc\uc774 \uc544\uc6c3\ubc14\uc6b4\ub4dc \ud5c8\uc6a9\uc744 \uc0ad\uc81c\ud558\ubbc0\ub85c, \ub2e4\uc2dc \ucd94\uac00\ud574\uc57c \ud569\ub2c8\ub2e4.\n egress {\n from_port = 0\n to_port = 0\n protocol = "-1"\n cidr_blocks = ["0.0.0.0\/0"]\n }\n}\n\nresource "aws_security_group" "sg_ssh" {\n name = "sg_ssh"\n ingress {\n from_port = "22"\n to_port = "22"\n protocol = "tcp"\n cidr_blocks = ["0.0.0.0\/0"]\n }\n}\n-------------------------------------<\/code><\/pre>\n\uc0dd\uc131<\/h3>\n
terraform init\nterraform validate\nterraform plan\n\nterraform apply<\/code><\/pre>\nterraform destroy<\/code><\/pre>\nnomad \ud074\ub7ec\uc2a4\ud130 \uc0dd\uc131<\/h2>\n
\ubaa9\ud45c<\/h3>\n
Consul<\/code> \uc11c\ubc84 1\uac1c \uc0dd\uc131 \ud6c4, \ud560\ub2f9\ubc1b\uc740 \ud504\ub77c\uc774\ube57 \uc544\uc774\ud53c\ub85c nomad \uc11c\ubc84 1\uac1c\ub97c \uc0dd\uc131\ud569\ub2c8\ub2e4.<\/p>\nSecurity Group \uc0dd\uc131<\/h3>\n
\n
resource "aws_security_group" "sg_outbound" {\n name = "sg_outbound"\n egress {\n from_port = 0\n to_port = 0\n protocol = "-1"\n cidr_blocks = ["0.0.0.0\/0"]\n }\n}\n\nresource "aws_security_group" "sg_allow_nomad" {\n name = "sg_allow_nomad"\n}\n\nresource "aws_security_group" "sg_protect_nomad" {\n name = "sg_protect_nomad"\n ingress {\n from_port = 0\n to_port = 0\n protocol = "-1"\n security_groups = [ "${aws_security_group.sg_allow_nomad.id}" ]\n }\n}\n\nresource "aws_security_group" "sg_allow_me" {\n name = "sg_allow_me"\n ingress {\n from_port = 0\n to_port = 0\n protocol = "-1"\n cidr_blocks = ["183.101.XXX.XXX\/32"] # \ub0b4 \uc544\uc774\ud53c \ud5c8\uc6a9\n }\n}<\/code><\/pre>\nConsul \uc11c\ubc84 \uc0dd\uc131<\/h3>\n
key_name<\/code> \uacfc aws_security_group.sg_allow_me.id<\/code> \ub294 \uc81c\uac70\ud574 \uc90d\ub2c8\ub2e4.<\/p>\nresource "aws_instance" "consul_server" {\n ami = "ami-0a0de518b1fc4524c"\n instance_type = "t2.nano"\n key_name = "skyer9" # \uc790\uc2e0\uc758 \ud0a4 \ud398\uc5b4\uc785\ub825\n\n vpc_security_group_ids = [\n aws_security_group.sg_outbound.id,\n aws_security_group.sg_allow_nomad.id,\n aws_security_group.sg_protect_nomad.id,\n aws_security_group.sg_allow_me.id\n ]\n\n user_data = <<-EOF\n #! \/bin\/bash\n sudo yum update -y\n sudo yum install docker -y\n sudo service docker start\n sudo systemctl enable docker.service\n sudo docker run -d --name consul -p 8500:8500 -p 8600:8600\/udp consul\n EOF\n\n tags = {\n Name = "my consul server"\n }\n}<\/code><\/pre>\nnomad \uc11c\ubc84 \uc0dd\uc131<\/h3>\n
vi aws\/userdata_nomad_server.sh\n-------------------------------------\n#! \/bin\/bash\n\nsudo yum update -y\n# sudo yum install docker -y\n# sudo service docker start\n# sudo systemctl enable docker.service\n\nwget https:\/\/releases.hashicorp.com\/nomad\/1.1.3\/nomad_1.1.3_linux_amd64.zip\nunzip nomad_1.1.3_linux_amd64.zip\nsudo chown root:root nomad\nsudo chmod 777 nomad\nsudo mv nomad \/usr\/bin\/\n\nsudo mkdir \/etc\/nomad.d\n\nsudo bash -c 'cat << EOF > \/etc\/nomad.d\/server.hcl\ndatacenter = "dc1"\ndata_dir = "\/var\/lib\/nomad\/"\nbind_addr = "0.0.0.0"\n\nserver {\n enabled = true\n bootstrap_expect = 1\n}\n\nconsul {\n address = "CONSUL_SERVER_IP:8500"\n}\nEOF'\n\nsudo bash -c 'cat << EOF > \/lib\/systemd\/system\/nomad.service\n[Unit]\nDescription=Nomad\nDocumentation=https:\/\/nomadproject.io\/docs\/\nWants=network-online.target\nAfter=network-online.target\n\n# When using Nomad with Consul it is not necessary to start Consul first. These\n# lines start Consul before Nomad as an optimization to avoid Nomad logging\n# that Consul is unavailable at startup.\n#Wants=consul.service\n#After=consul.service\n\n[Service]\nExecReload=\/bin\/kill -HUP $MAINPID\nExecStart=\/usr\/bin\/nomad agent -config \/etc\/nomad.d\nKillMode=process\nKillSignal=SIGINT\nLimitNOFILE=65536\nLimitNPROC=infinity\nRestart=on-failure\nRestartSec=2\nStartLimitBurst=3\nStartLimitIntervalSec=10\nTasksMax=infinity\nOOMScoreAdjust=-1000\n\n[Install]\nWantedBy=multi-user.target\nEOF'\n\nsudo systemctl daemon-reload\nsudo systemctl enable nomad\nsudo systemctl start nomad\n-------------------------------------<\/code><\/pre>\ndepends_on<\/code> \uc73c\ub85c \uc758\uc874\uc131(\uc0dd\uc131\uc21c\uc11c) \uc744 \uac15\uc81c\ud569\ub2c8\ub2e4.<\/p>\naws_instance.consul_server.private_ip<\/code> \uc744 \uc774\uc6a9\ud574 Consul Server \uc758 \ud504\ub77c\uc774\ube57 \uc544\uc774\ud53c\ub97c \uac00\uc838\uc635\ub2c8\ub2e4.<\/p>\nresource "aws_instance" "nomad_server" {\n ami = "ami-0a0de518b1fc4524c"\n instance_type = "t2.nano"\n key_name = "skyer9" # \uc790\uc2e0\uc758 \ud0a4 \ud398\uc5b4\uc785\ub825\n # count = 5 # \uc778\uc2a4\ud134\uc2a4\ub97c 5\uac1c \uc0dd\uc131\n\n vpc_security_group_ids = [\n aws_security_group.sg_outbound.id,\n aws_security_group.sg_allow_nomad.id,\n aws_security_group.sg_protect_nomad.id,\n aws_security_group.sg_allow_me.id\n ]\n\n user_data = "${replace(file(".\/aws\/userdata_nomad_server.sh"), "CONSUL_SERVER_IP", aws_instance.consul_server.private_ip)}"\n\n tags = {\n Name = "my nomad server"\n }\n\n depends_on = [ aws_instance.consul_server ]\n}<\/code><\/pre>\nnomad \ud074\ub77c\uc774\uc5b8\ud2b8 \uc0dd\uc131<\/h3>\n
vi aws\/userdata_nomad_client.sh\n-------------------------------------\n#! \/bin\/bash\n\nsudo yum update -y\nsudo yum install docker -y\nsudo service docker start\nsudo systemctl enable docker.service\n\nsudo yum install java-11-amazon-corretto-headless -y\n\nwget https:\/\/releases.hashicorp.com\/nomad\/1.1.3\/nomad_1.1.3_linux_amd64.zip\nunzip nomad_1.1.3_linux_amd64.zip\nsudo chown root:root nomad\nsudo chmod 777 nomad\nsudo mv nomad \/usr\/bin\/\n\nsudo mkdir \/etc\/nomad.d\n\nsudo bash -c 'cat << EOF > \/etc\/nomad.d\/client.hcl\n# bind_addr = "127.0.0.1"\n\ndatacenter = "dc1" # \ud074\ub7ec\uc2a4\ud130\uba85\ndata_dir = "\/var\/lib\/nomad\/"\n\nclient {\n enabled = true\n servers = ["NOMAD_SERVER_IP"] # \ub178\ub9c8\ub4dc \uc11c\ubc84 \ud504\ub77c\uc774\ube57 \uc544\uc774\ud53c\n}\nEOF'\n\nsudo bash -c 'cat << EOF > \/lib\/systemd\/system\/nomad.service\n[Unit]\nDescription=Nomad\nDocumentation=https:\/\/nomadproject.io\/docs\/\nWants=network-online.target\nAfter=network-online.target\n\n# When using Nomad with Consul it is not necessary to start Consul first. These\n# lines start Consul before Nomad as an optimization to avoid Nomad logging\n# that Consul is unavailable at startup.\n#Wants=consul.service\n#After=consul.service\n\n[Service]\nExecReload=\/bin\/kill -HUP $MAINPID\nExecStart=\/usr\/bin\/nomad agent -config \/etc\/nomad.d\nKillMode=process\nKillSignal=SIGINT\nLimitNOFILE=65536\nLimitNPROC=infinity\nRestart=on-failure\nRestartSec=2\nStartLimitBurst=3\nStartLimitIntervalSec=10\nTasksMax=infinity\nOOMScoreAdjust=-1000\nEnvironment="HOME=\/root"\n\n[Install]\nWantedBy=multi-user.target\nEOF'\n\nsudo systemctl daemon-reload\nsudo systemctl enable nomad\nsudo systemctl start nomad\n-------------------------------------<\/code><\/pre>\nresource "aws_instance" "nomad_client" {\n ami = "ami-0a0de518b1fc4524c"\n instance_type = "t2.nano"\n key_name = "skyer9" # \uc790\uc2e0\uc758 \ud0a4 \ud398\uc5b4\uc785\ub825\n\n vpc_security_group_ids = [\n aws_security_group.sg_outbound.id,\n aws_security_group.sg_allow_nomad.id,\n aws_security_group.sg_protect_nomad.id,\n aws_security_group.sg_allow_me.id\n ]\n\n # nomad \uc11c\ubc84\uac00 1\ub300\uc778 \uacbd\uc6b0\n user_data = "${replace(file(".\/aws\/userdata_nomad_client.sh"), "NOMAD_SERVER_IP", aws_instance.nomad_server.private_ip)}"\n # 2\ub300 \uc774\uc0c1\uc778 \uacbd\uc6b0\n # user_data = "${replace(file(".\/aws\/userdata_nomad_client.sh"), "NOMAD_SERVER_IP", join("\\",\\"", aws_instance.nomad_server.*.private_ip))}"\n\n tags = {\n Name = "my nomad client"\n }\n\n depends_on = [ aws_instance.nomad_server ]\n}<\/code><\/pre>\nAuto Scaling<\/h2>\n
\ubaa9\ud45c<\/h3>\n
Application Level<\/code>, Cluster Level<\/code> \ub450\uac00\uc9c0\uc758 Auto Scaling \uc744 \uc9c0\uc6d0\ud569\ub2c8\ub2e4.<\/p>\nNomad Autoscaler \uc124\uce58<\/h3>\n
vi prometheus.nomad\n------------------------------\njob "prometheus" {\n datacenters = ["dc1"]\n\n group "prometheus" {\n count = 1\n\n network {\n port "prometheus_ui" {}\n }\n\n task "prometheus" {\n driver = "docker"\n\n config {\n image = "prom\/prometheus:v2.25.0"\n ports = ["prometheus_ui"]\n\n args = [\n "--config.file=\/etc\/prometheus\/config\/prometheus.yml",\n "--storage.tsdb.path=\/prometheus",\n "--web.listen-address=0.0.0.0:${NOMAD_PORT_prometheus_ui}",\n "--web.console.libraries=\/usr\/share\/prometheus\/console_libraries",\n "--web.console.templates=\/usr\/share\/prometheus\/consoles",\n ]\n\n volumes = [\n "local\/config:\/etc\/prometheus\/config",\n ]\n }\n\n template {\n data = <<EOH\n---\nglobal:\n scrape_interval: 1s\n evaluation_interval: 1s\nscrape_configs:\n - job_name: nomad\n scrape_interval: 10s\n metrics_path: \/v1\/metrics\n params:\n format: ['prometheus']\n consul_sd_configs:\n - server: '{{ env "attr.unique.network.ip-address" }}:8500'\n services: ['nomad','nomad-client']\n relabel_configs:\n - source_labels: ['__meta_consul_tags']\n regex: .*,http,.*\n action: keep\n - job_name: traefik\n metrics_path: \/metrics\n consul_sd_configs:\n - server: '{{ env "attr.unique.network.ip-address" }}:8500'\n services: ['traefik-api']\nEOH\n\n change_mode = "signal"\n change_signal = "SIGHUP"\n destination = "local\/config\/prometheus.yml"\n }\n\n resources {\n cpu = 100\n memory = 256\n }\n\n service {\n name = "prometheus"\n port = "prometheus_ui"\n\n tags = [\n "traefik.enable=true",\n "traefik.tcp.routers.prometheus.entrypoints=prometheus",\n "traefik.tcp.routers.prometheus.rule=HostSNI(`*`)"\n ]\n\n check {\n type = "http"\n path = "\/-\/healthy"\n interval = "10s"\n timeout = "2s"\n }\n }\n }\n }\n}\n------------------------------<\/code><\/pre>\nnomad run prometheus.nomad<\/code><\/pre>\nvi autoscaler.nomad\n------------------------------\njob "autoscaler" {\n datacenters = ["dc1"]\n\n group "autoscaler" {\n count = 1\n\n task "autoscaler" {\n driver = "docker"\n\n config {\n image = "hashicorp\/nomad-autoscaler:0.3.3"\n command = "nomad-autoscaler"\n args = ["agent", "-config", "${NOMAD_TASK_DIR}\/config.hcl"]\n }\n\n template {\n data = <<EOF\nplugin_dir = "\/plugins"\n\nnomad {\n address = "http:\/\/{{env "attr.unique.network.ip-address" }}:4646"\n}\napm "nomad" {\n driver = "nomad-apm"\n config = {\n address = "http:\/\/{{env "attr.unique.network.ip-address" }}:4646"\n }\n}\napm "prometheus" {\n driver = "prometheus"\n config = {\n address = "http:\/\/{{ env "attr.unique.network.ip-address" }}:9090"\n }\n}\nstrategy "target-value" {\n driver = "target-value"\n}\n EOF\n\n destination = "${NOMAD_TASK_DIR}\/config.hcl"\n }\n }\n }\n}\n------------------------------<\/code><\/pre>\nnomad run autoscaler.nomad<\/code><\/pre>\nApplication Level<\/h3>\n
vi hello.nomad<\/code><\/pre>\njob "hello" {\n datacenters = ["dc1"]\n type = "service"\n\n group "helloGroup" {\n network {\n port "http" {}\n port "https" {}\n # port "lb" { static = 8080 }\n }\n\n count = 1\n\n scaling {\n enabled = true\n min = 1\n max = 2\n\n policy {\n cooldown = "1m"\n evaluation_interval = "30s"\n\n check "avg_sessions" {\n source = "prometheus"\n query = "sum(traefik_entrypoint_open_connections{entrypoint=\\"webapp\\"})\/scalar(nomad_nomad_job_summary_running{task_group=\\"demo\\"})"\n\n strategy "target-value" {\n target = 10\n }\n }\n }\n }\n\n # Define a task to run\n task "helloTask" {\n driver = "java"\n\n config {\n jar_path = "local\/TestPublic-0.0.2-SNAPSHOT.jar"\n jvm_options = ["-Xmx128m","-Xms128m"]\n }\n\n env {\n PORT = "${NOMAD_PORT_http}"\n NODE_IP = "${NOMAD_IP_http}"\n }\n\n service {\n name = "helloService"\n # port = "lb"\n port = "http"\n\n check {\n type = "http"\n path = "\/hello" # health check \uc6a9 url\n interval = "2s"\n timeout = "2s"\n }\n }\n\n resources {\n cpu = 500 # 500 Mhz\n memory = 200 # 200 MB\n }\n\n # \uc6d0\uaca9\uc5d0\uc11c \ub2e4\uc6b4\ubc1b\uc544\uc57c \ud569\ub2c8\ub2e4.\n artifact {\n source = "https:\/\/github.com\/skyer9\/TestPublic\/raw\/master\/TestPublic-0.0.2-SNAPSHOT.jar"\n }\n }\n }\n}<\/code><\/pre>\nnomad run hello.nomad<\/code><\/pre>\nCluster Level<\/h3>\n
Auto Scaling + Load Balancing<\/h2>\n
\ubaa9\ud45c<\/h3>\n
Auto Scaling + Load Balancing<\/code> \uae30\ub2a5\uc744 \ubd80\uc5ec\ud569\ub2c8\ub2e4.<\/p>\ndata "aws_availability_zones" "available" {\n state = "available"\n}<\/code><\/pre>\n```\n\n```terraform<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"