$30 off During Our Annual Pro Sale. View Details »

ECS を利用したデプロイ環境

Kohei Suzuki
June 27, 2016
Technology
12
6.2k

ECS を利用したデプロイ環境

JAWS-UGおコンテナ支部 #5 発表資料
http://jawsug-container.connpass.com/event/32298/

hako: https://github.com/eagletmt/hako

Kohei Suzuki

June 27, 2016
Tweet

More Decks by Kohei Suzuki

See All by Kohei Suzuki
少人数でも運用できるインフラ作り / Operating infrastructure with less effort
eagletmt
1
2.8k
Cookpad Lounge #4 SRE 座談会 コンテナ中心の構成からサーバーレスへの展望 / From containers to serverless
eagletmt
0
480
Cookpad Tech Kitchen #20 Amazon ECS の安定運用 / Building a steady ECS infrastructure
eagletmt
1
2.6k
クックパッドでの Webアプリケーション開発 2017 / Web application development in Cookpad 2017
eagletmt
20
9.5k
ActiveRecord 3.2 -> 4.1
eagletmt
3
1.6k
クックパッドにおける Rubyの活用
eagletmt
0
470
複数DBとRails
eagletmt
14
6.8k
R/W Splitting in Rails
eagletmt
2
1.3k

Other Decks in Technology

See All in Technology
Autonomous Database - Dedicated 技術詳細 / adb-d_technical_detail_jp
oracle4engineer
PRO
2
3.9k
新卒エンジニアでも技術的負債に向き合いたい!
smasato
1
1.4k
スクラムマスターやマネージャーのための信頼構築につながる傾聴の技術
kawagoi
6
2.8k
Podman_update_2023-11
orimanabu
1
260
Cloud Security Day 2023パネルディスカッション資料
coconala_engineer
0
120
ROSCon 2023参加報告:Real-Time Workshop & Zenoh's Current Status and Forecast
takasehideki
1
180
IAMAccessAnalyzer_Security-JAWS
koheiawa
PRO
1
270
GraphQLクライアントの技術選定 2023冬
kazukihayase
6
2.5k
第21回Ques シフトレフトにおけるシナリオテストの適用事例
moritamasami
1
330
走馬灯のIaCは考えておいて
nwiizo
6
2.7k
11/10 watsonx.aiに関する資料
masaaki_k
2
130
幸運を科学する ~アジャイルチームの成功を再現する方法~
okamototakuyasr2
0
190

Featured

See All Featured
Statistics for Hackers
jakevdp
787
220k
The Cult of Friendly URLs
andyhume
71
5.4k
What's new in Ruby 2.0
geeforr
336
30k
Navigating Team Friction
lara
177
13k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
24
2k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
152
14k
The World Runs on Bad Software
bkeepers
PRO
59
6.1k
Atom: Resistance is Futile
akmur
257
24k
Building Applications with DynamoDB
mza
87
5.3k
[RailsConf 2023] Rails as a piece of cake
palkan
16
3.1k
Agile that works and the tools we love
rasmusluckow
323
20k
Teambox: Starting and Learning
jrom
125
8.2k

Transcript

  1. &$4Λར༻ͨ͠σϓϩΠ؀ڥ
    ,PIFJ4V[VLJ

    View Slide

  2. .F
    • @eagletmt
    • ΫοΫύου ٕज़෦։ൃج൫άϧʔϓ
    • Docker Λར༻ͨ͠ΞϓϦέʔγϣϯαʔόج൫ͷ
    ։ൃɺӡ༻

    View Slide

  3. Ξ΢τϥΠϯ
    • ΫοΫύουͱ Docker
    • Docker ΞϓϦͷσϓϩΠํ๏ v1
    • ECS ҎલͷσϓϩΠํ๏
    • Docker ΞϓϦͷσϓϩΠํ๏ v2
    • ECS Λར༻ͨ͠σϓϩΠπʔϧ Hako ͷ։ൃ
    • Hako Λ࢖ͬͨσϓϩΠ؀ڥ

    View Slide

  4. ΫοΫύουͱ%PDLFS
    • 2014೥9݄ࠒ͔Β Docker ͷར༻Λݕ౼
    • ࣗ෼͕৽نʹ։ൃ͢Δখ͍͞ Web API ΞϓϦέʔ
    γϣϯΛύΠϩοτϓϩδΣΫτͱ͠ɺ12݄͔Βར
    ༻։࢝

    View Slide

  5. ΫοΫύουͱ%PDLFS
    • 2015೥͔Βɺ৽نͷ Web ΞϓϦέʔγϣϯ͸جຊ
    తʹ Docker Λར༻ͨ͠؀ڥ (v1) Ͱಈ࡞
    • 2016೥6݄ݱ࣌఺ʹ͓͍ͯɺ
    • ຊ൪Քಈ͍ͯ͠ΔαʔϏε͕ 11 ݸ
    • εςʔδϯά༻్ʹ 14 ݸ
    • ࣾ಺αʔϏεʹ 8 ݸ

    View Slide

  6. ΫοΫύουͱ%PDLFS
    • 2015೥9݄ࠒ͔Β ECS Λར༻ͨ͠৽ߏ੒ (v2) Λݕ౼
    • 2016೥1݄͔Βࣾ಺αʔϏεͰར༻։࢝
    • 5݄͔Βຊ൪Ͱ΋ར༻։࢝͠ɺݱ࣌఺Ͱ
    • ຊ൪Քಈ͍ͯ͠ΔαʔϏε͕ 2 ݸ
    • εςʔδϯά༻్ʹ 10 ݸ
    • ࣾ಺αʔϏεʹ 21 ݸ

    View Slide

  7. %PDLFSΞϓϦͷσϓϩΠ
    ํ๏W

    View Slide

  8. &$4Λ࢖͍࢝ΊΔલ
    • σϓϩΠํ๏Λߟ͑ɺϗετଆʹσϓϩΠεΫϦϓτ
    Λ༻ҙ͢Δ͜ͱʹͨ͠
    • ඞཁͳ͜ͱ
    • Web ΞϓϦέʔγϣϯͷσϓϩΠΛແఀࢭͰߦ͏
    • σϓϩΠ͸શ։ൃऀ͕ߦ͏͜ͱ͕Ͱ͖Δ
    • ։ൃऀʹ͸ൿಗ஋ (DB ύεϫʔυͳͲ) Λݟͤͳ͍
    • ൿಗ஋͸؀ڥม਺ͱͯ͠౉͢

    View Slide

  9. σϓϩΠํ๏ W

    • 1ͭͷϗετʹ1ͭ·ͨ͸ෳ਺ͷ Docker ίϯςφ
    • ϗετଆʹ nginx Λ1ͭىಈ͠ɺHost ϔομͰίϯςφ
    ʹৼΓ෼͚
    • σϓϩΠ࣌͸ɺίϯςφΛ৽نʹىಈ͠ɺnginx ͷઃఆ
    Λมߋͯ͠Ϧϩʔυ͠ɺݹ͍ίϯςφΛఀࢭ͢Δ
    • ৄ͘͠͸ http://techlife.cookpad.com/entry/
    2015/04/20/134758

    View Slide

  10. σϓϩΠํ๏ W

    OHJOY
    BQQTFSWFS
    DPOUBJOFS
    W
    EFQMPZTDSJQU

    View Slide

  11. σϓϩΠํ๏ W

    OHJOY
    BQQTFSWFS
    DPOUBJOFS
    W
    DPOUBJOFS
    W
    EFQMPZTDSJQU
    docker run

    View Slide

  12. σϓϩΠํ๏ W

    OHJOY
    BQQTFSWFS
    DPOUBJOFS
    W
    DPOUBJOFS
    W
    EFQMPZTDSJQU
    IFBMUIDIFDL

    View Slide

  13. σϓϩΠํ๏ W

    OHJOY
    BQQTFSWFS
    DPOUBJOFS
    W
    DPOUBJOFS
    W
    EFQMPZTDSJQU
    nginx -s reload

    View Slide

  14. σϓϩΠํ๏ W

    OHJOY
    BQQTFSWFS
    DPOUBJOFS
    W
    EFQMPZTDSJQU
    docker stop

    View Slide

  15. WͷΑ͔ͬͨ఺
    • Πϯϑϥ͕ Itamae ͰΞϓϦέʔγϣϯຖʹϓϩϏ
    δϣχϯά͢Δख͕ؒͳ͘ͳͬͨ
    • ڞ௨ͷϗετͷ্ʹ༷ʑͳίϯςφ͕ಈ͘
    • ΞϓϦέʔγϣϯαʔόͷΦʔτεέʔϧ͕͠΍͢
    ͘ͳͬͨ
    • શ͘ಉ͡ํ๏ͰɺͲΜͳΞϓϦέʔγϣϯ΋εέʔ
    ϧΠϯɾεέʔϧΞ΢τͰ͖Δ

    View Slide

  16. Wͷ࢒೦ͩͬͨ఺
    • σϓϩΠઌͷϗετͷࢦఆ͕ਓྗ
    • EC2 λάʹࢦఆ͍ͯͨ͠
    • ৽نͷαʔϏεΛ௥Ճ͢Δͱ͖͸ɺۭ͍ͯͦ͏ͳΠϯε
    λϯεʹλάΛ͚ͭΔ͔ɺ৽نʹىಈ͢Δඞཁ͕͋ͬͨ
    • ΞϓϦέʔγϣϯαʔόҎ֎ʹ΋ඞཁͳ΋ͷ͸͋Δ
    • RDSɺRoute53ɺELBɺCapistrano ͷઃఆ
    • ؀ڥม਺ͷ௥Ճ

    View Slide

  17. %PDLFSΞϓϦͷσϓϩΠ
    ํ๏W

    View Slide

  18. &$4Խ
    • ECS Λར༻͢Δ͜ͱͰɺσϓϩΠઌͷ੍ޚΛ೚ͤ
    Δ͜ͱ͕Ͱ͖Δ
    • EC2 λά͔Βͷղ์
    • ECS Խʹ͋ͨͬͯൿಗ஋ͷѻ͍Λߟ͑Δ
    • task definition ͸Ӆͭͭ͠ɺผͷετϨʔδ͔Β
    ൿಗ஋Λ஫ೖ͢Δඞཁ͕͋Δ

    View Slide

  19. &$4Խ
    • Route53 ΍ͦͷଞͷઃఆ͸ ECS ͚ͩͰ͸׬݁͠ͳ
    ͍
    • ECS Λར༻ͭͭ͠ɺൿಗ஋ͷ஫ೖ΍ؔ࿈͢ΔϦιʔ
    ε΍ઃఆΛૢ࡞͢ΔσϓϩΠπʔϧ͕ඞཁ
    • => Hako ͷ։ൃ

    View Slide

  20. )BLP
    • Docker ίϯςφΛσϓϩΠ͢ΔͨΊͷπʔϧ
    • ࠓͷͱ͜Ζ ECS ͷΈʹରԠ
    • ΞϓϦέʔγϣϯͷఆٛΛ YAML Ͱهड़
    • ൿಗ஋ΛؚΉ؀ڥม਺Λѻ͑Δ
    • σϓϩΠ࣌ʹ༷ʑͳॲཧΛࠩ͠ࠐΉ͜ͱ͕Ͱ͖Δ

    View Slide

  21. ઃܭϙϦγʔ
    • Ͱ͖Δ͚ͩ੩తͳఆٛʹ͢Δ
    • ఆٛ (ઃఆ) ͸ YAML Ͱɺίʔυ͸ Ruby Ͱ
    • ఆٛ͸ͦͷ··ͰɺRuby Ҏ֎Ͱ΋࣮૷Ͱ͖Δܗ
    • ϓϥΨϒϧʹ͢Δ
    • Docker ʹඞཁͳ΋ͷͷΈίΞʹؚΊΔ
    • ͦΕҎ֎ͷίʔυ͸ϓϥάΠϯͱͯࠩ͠͠ସ͑Մೳʹ
    ͢Δ

    View Slide

  22. ΞϓϦέʔγϣϯఆٛ
    scheduler:
    <<: !include schedulers/internal_default.yml
    desired_count: 1
    app:
    image: 01234567890.dkr.ecr.us-east-1.amazonaws.com/camo
    cpu: 128
    memory: 128
    port: 8080
    env:
    $providers:
    - <<: !include env_providers/etcenv.yml
    root: /envs/hako/camo
    CAMO_KEY: '#{CAMO_KEY}'
    CAMO_KEEP_ALIVE: 'true'
    additional_containers:
    front:
    !include containers/front.yml
    consul-register:
    !include containers/consul_register_internal.yml
    scripts:
    - type: jenkins_tag
    job: docker-camo
    - !include scripts/route53_subdomain_shared.yml
    - !include scripts/nginx_omniauth.yml
    - type: consul_register

    View Slide

  23. σϓϩΠํ๏ W

    • Hako::Schedulers::Ecs
    • ECS ্ʹ serviceɺtask definitionɺELB Λ࡞੒
    • σϓϩΠ࣌ʹ͸ɺtask definition ͱ service Λߋ৽
    • ͓ͦΒ͘ ECS ͷී௨ͷ࢖͍ํ

    View Slide

  24. σϓϩΠํ๏ W

    • YAML ͷఆٛͱ DescribeTaskDefinition ͷ݁ՌΛൺ
    ֱ
    • ඞཁʹԠͯ͡ RegisterTaskDefinition Ͱߋ৽
    • CreateService / UpdateService Ͱࢦ͍ͯ͠Δ task
    definition Λߋ৽
    • CreateService ࣌ʹ͸ ELB ΋࡞੒͢Δ

    View Slide

  25. σϓϩΠํ๏ W

    &-#
    UBTLW TFSWJDF
    IBLP

    View Slide

  26. σϓϩΠํ๏ W

    &-#
    UBTLW UBTLW
    TFSWJDF
    IBLP
    3FHJTUFS5BTL%FpOJUJPO
    6QEBUF4FSWJDF

    View Slide

  27. σϓϩΠํ๏ W

    &-#
    UBTLW
    TFSWJDF
    IBLP

    View Slide

  28. σϓϩΠํ๏ W
    ࣾ಺αʔϏε൛
    • ͜ͷํ๏ͩͱ service ຖʹ ELB ͕ඞཁ
    • ࣾ಺޲͚ͷࡶαʔϏεͰ΋ຖճ ELB Λ࡞Δ…?
    • ڞ௨ͷ ELB Λ࢖͍ͭͭɺϦόʔεϓϩΩγͷઃఆΛ
    ͍͍͔Μ͡ʹมߋ͢ΔΑ͏ͳผͷϞʔυΛ࣮૷
    • ࣾ಺ͷผͷج൫ʹґଘ͍ͯ͠ΔͷͰίʔυ͸ඇެ։
    • Hako ͳΒσϓϩΠ෦෼͚ͩࠩ͠ସ͑Δ͜ͱ͕Մೳ

    View Slide

  29. શମߏ੒ W
    ࣾ಺αʔϏε൛
    OHJOY
    &-#
    UBTL
    UBTL
    UBTL UBTL
    SFWFSTFQSPYZ
    DPOUBJOFS
    JOTUBODFT

    View Slide

  30. σϓϩΠํ๏ W
    ࣾ಺αʔϏε൛
    OHJOY
    UBTLW
    DPOTVM
    IBLP
    TFSWJDFW

    View Slide

  31. σϓϩΠํ๏ W
    ࣾ಺αʔϏε൛
    OHJOY
    UBTLW
    DPOTVM
    IBLP
    TFSWJDFW
    UBTLW
    TFSWJDFW
    3FHJTUFS5BTL%FpOJUJPO
    $SFBUF4FSWJDF

    View Slide

  32. σϓϩΠํ๏ W
    ࣾ಺αʔϏε൛
    OHJOY
    UBTLW
    DPOTVM
    IBLP
    TFSWJDFW
    UBTLW
    TFSWJDFW
    SFHJTUFS

    View Slide

  33. σϓϩΠํ๏ W
    ࣾ಺αʔϏε൛
    OHJOY
    UBTLW
    DPOTVM
    IBLP
    TFSWJDFW
    UBTLW
    TFSWJDFW
    DPOTVMUFNQMBUF
    nginx -s reload

    View Slide

  34. σϓϩΠํ๏ W
    ࣾ಺αʔϏε൛
    OHJOY
    DPOTVM
    IBLP
    UBTLW
    TFSWJDFW
    %FMFUF4FSWJDF
    EFSFHJTUFS
    DPOTVMUFNQMBUF
    nginx -s reload

    View Slide

  35. ൿಗ஋ͷѻ͍
    • ؀ڥม਺ʹม਺ͷΑ͏ʹຒΊࠐΉ͜ͱ͕Ͱ͖Δ
    • DATABASE_URL: 'mysql2://#{user}:#{pass}@db-
    nanika-001/nanika'
    • ม਺͸σϓϩΠ࣌ʹผͷετϨʔδ͔Βऔಘ
    • ͨͱ͑͹ etcenv Λ࢖͏৔߹
    • https://github.com/eagletmt/hako-etcenv
    • user ͷ৔ॴʹ /hako/nanika/user ͷ஋͕ೖΔ

    View Slide

  36. )BLPΛ࢖ͬͨ
    σϓϩΠ؀ڥ

    View Slide

  37. )BLPΛ࢖ͬͨσϓϩΠ؀ڥ
    • ΞϓϦέʔγϣϯఆ͚ٛͩΛؚΉϦϙδτϦ
    hako_apps Λ༻ҙ
    • ؀ڥม਺ͳͲΛมߋ͍ͨ͠ͱ͖͸ɺ։ൃऀ͕ࣗ༝ʹ
    pull-requestɺmerge
    • ൿಗ஋Λ௥Ճ͍ͨ͠ͱ͖ͷΈΠϯϑϥʹґཔ

    View Slide

  38. )BLPΛ࢖ͬͨσϓϩΠ؀ڥ
    • σϓϩΠίϚϯυͷ࣮ߦʹ͸ Rundeck Λར༻
    • app αʔόͰ࣮ߦ͢ΔίϚϯυ͕ແ͍ͷͰɺ
    Capistrano Λ࢖͏ඞཁ͕ͳ͍
    • Rundeck ্ͰδϣϒΛ࣮ߦ͢Δͱɺ
    • git clone git@repository:hako_apps.git
    • cd hako_apps && hako deploy nanika.yml

    View Slide

  39. όονॲཧ
    • hako oneshot Ͱ service Λ࢖ΘͣʹɺRunTask Ͱ୯
    ൃͷλεΫΛ࣮ߦͰ͖Δ
    • ࣾ಺Ͱ͸ kuroko2 ͷλεΫͱ࣮ͯ͠ߦͰ͖ΔΑ͏ʹ
    ੔උ
    • kuroko2 ʹ͍ͭͯ͸ http://techlife.cookpad.com/
    entry/2015/12/07/195732

    View Slide

  40. σϓϩΠ࣌ͷϑοΫ
    • Hako Ͱ͸ script ͱݺশ
    • σϓϩΠ࣌ʹ΍ͬͯΔ͜ͱ
    • Route53 ͷࣗಈઃఆ
    • nginx ίϯςφͷΞΫηε੍ݶͷઃఆ
    • σϓϩΠ͢ΔΠϝʔδͷϦϏδϣϯΛ Jenkins ͷ݁Ռ
    ͔Βܾఆ
    • ౳ʑ

    View Slide

  41. Φʔτεέʔϧ
    • AutoScaling Group Λར༻͠ɺΫϥελ͝ͱʹΠϯ
    ελϯεΛ૿ݮͰ͖ΔΑ͏ʹ
    • ࠓͷͱ͜ΖεέʔϧΠϯ͸ͤͣɺσϓϩΠ࣌
    (service ͷ࡞੒ɺߋ৽࣌) ʹΠϯελϯεͷΩϟύ
    γςΟ͕଍Γͯͳ͔ͬͨΒɺAutoScaling Group ͷ
    ΩϟύγςΟΛ্͛ͯεέʔϧΞ΢τ

    View Slide

  42. ϩΪϯά
    • Docker ͷ log driver ΛࢦఆͰ͖Δ
    • fluentd log driver Λ࢖ͬͯɺϗετଆʹ fluentd Λཱͯ
    ͯɺ͔ͦ͜Β CloudWatch Logs ΁సૹ
    • service ໊΍ίϯςφ໊Λ log stream ͷ໊લʹؚΊΔ
    Α͏ʹ͍ͯ͠Δ
    • ద౰ͳΞϓϦͰαʔϏε͝ͱʹϩάΛӾཡͰ͖ΔΑ͏ʹ

    View Slide

  43. )BLPʹͳͬͯΑ͔ͬͨ఺
    • ΠϯελϯεΛखಈͰ࡞੒͠ͳͯ͘Α͍
    • AutoScaling Group ͷΩϟύγςΟΛ૿΍͚ͩ͢
    • ΞϓϦέʔγϣϯͷఆٛΛɺ։ൃऀ͕ࣗ༝ʹӾཡɾߋ৽
    Ͱ͖ΔΑ͏ʹͳͬͨ
    • ґཔͰ͸ͳ͘ pull-request ʹ
    • Route 53 ͷઃఆͳͲɺయܕతͳ࡞ۀΛࣗಈԽͰ͖ͨ
    • ݁Ռɺؾܰʹࣾ಺ΞϓϦ͕࡞ΒΕΔΑ͏ʹͳͬͨ

    View Slide

  44. ࠓޙͷల๬
    • ϩΪϯάΛվળ͍ͨ͠
    • ΞϓϦέʔγϣϯͷϩάΛଈ࠲ʹ֬ೝ͍ͨ͠ͱ͖
    ͕͋Δ͕ɺݱঢ়Ͱ͖͍ͯͳ͍
    • CloudWatch Logs ʹอଘ͢Δͷ͸ͦͷ··Ͱɺಉ
    ࣌ʹ଎ใΛϩʔΧϧϑΝΠϧʹॻ͘Α͏ʹ͢Δ?

    View Slide

  45. ࠓޙͷల๬
    • ECS Ҏ֎ͷαϙʔτ?
    • ͪΐ͏ͲઌिɺDocker 1.12 Ͱ orchestration ػೳ
    ͷڧԽ͕ൃද͞Εͨ
    • ͜ͷ service Λ Hako ͔Β੍ޚͰ͖ΔͱΑͦ͞͏
    • https://blog.docker.com/2016/06/docker-1-12-
    built-in-orchestration/

    View Slide