Running Containers on ECS Fargate
In this tutorial, we’ll build and publish a Docker container to a private Elastic Container Registry (ECR), and spin up a load-balanced Amazon Elastic Container Service (Amazon ECS) Fargate service, all in a handful of lines of code, using Pulumi Crosswalk for AWS.
Prerequisites
Deploy the App
Step 1: Create a new project from a template
Create a project directory, hello-fargate, and change into it. Run pulumi new aws-typescript --name myproject to create a new project using the AWS template for TypeScript. Replace myproject with your desired project name.
Run pulumi new to create a new project:
$ mkdir hello-fargate && cd hello-fargate
$ pulumi new aws-typescript --name myprojectStep 2: Build the Dockerized app
Create a subdirectory, app, containing our sample Dockerized application. From the app subdirectory, add the following files:
Dockerfile
FROM nginx
COPY index.html /usr/share/nginx/htmlindex.html
<html>
<head>
<title>Hello Fargate</title>
</head>
<body>
<p>Hello AWS Fargate!</p>
<p>Made with ❤️ with <a href="https://pulumi.com">Pulumi</a></p>
</body>
</html>Step 3: Create the load balancer
Replace the contents of index.ts with the following:
import * as awsx from "@pulumi/awsx";
// Create a load balancer to listen for requests and route them to the container.
let lb = new awsx.lb.NetworkListener("nginx", { port: 80 });Step 4: Define the service and publish the Docker image
Add the following lines to index.ts:
// Define the service, building and publishing our "./app/Dockerfile", and using the load balancer.
let service = new awsx.ecs.FargateService("nginx", {
desiredCount: 2,
taskDefinitionArgs: {
containers: {
nginx: {
image: awsx.ecs.Image.fromPath("nginx", "./app"),
memory: 512,
portMappings: [ lb ],
},
},
},
});
// Export the URL so we can easily access it.
export const url = lb.endpoint.hostname;You just created an automatic cluster in the default AWS VPC to run a Fargate service.
Step 5: Verify your app structure
Ensure you have the following directory structure:
Pulumi.yaml
index.ts
app/
Dockerfile
index.html
Step 6: Set your AWS region
Configure the AWS region you would like to use:
$ pulumi config set aws:region us-east-1Step 7: Preview and deploy your resources
To preview your Pulumi program, run pulumi up. The command shows a preview of the resources that will be created and prompts you to proceed with the deployment. Note that the stack itself is counted as a resource, though it does not correspond to a physical cloud resource.
$ pulumi up
Previewing changes:
...
Diagnostics:
...
global: global
info: Building container image 'pulum-164fa748-container': context=./app
...
Do you want to perform this update? yes
Updating stack 'container-quickstart-dev'
...
---outputs:---
url: "http://42dc3ff4-ac65d11-86a100b6e1d7f210.elb.us-west-2.amazonaws.com"
Resources:
+ 32 created
Duration: 4m6sThe deployment takes a few minutes. With your pulumi up invocation, Pulumi automatically does the following for you:
- Build and provision a container registry using ECR
- Build the Docker image
- Push the resulting image to the repository
Step 8: Test the resulting load balancer URL
Now that you’ve deployed your app, confirm that the service is working via curl.
$ curl http://$(pulumi stack output url)
<html>
<head>
<title>Hello Fargate</title>
</head>
<body>
<p>Hello, containers!</p>
<p>Made with ❤️ with <a href="https://pulumi.com">Pulumi</a></p>
</body>
</html>Step 9: View container logs (Optional)
To view the runtime logs from the container, use the pulumi logs command. To get a log stream, use pulumi logs --follow.
$ pulumi logs --follow
Collecting logs for stack container-quickstart-dev since 2019-09-11T13:38:04.000-07:00.
2019-09-11T14:32:35.713-07:00[nginx-d73e16c] 172.31.61.144 - - [11/Sep/2019:21:32:35 +0000] "GET / HTTP/1.1" 200 193 "-" "curl/7.64.0" "-"
2019-09-11T14:50:27.388-07:00[nginx-d73e16c] 95.140.20.94 - - [11/Sep/2019:21:50:27 +0000] "\xA0<\xA6\x1D\xED\xB2\xCC\xC79dH\xDCo\xED\xD6k\x02\xB6b\x05{)r\xFF5g\xC8/\xC4\xE7x~\xAB\xB8\xC8\x95\xF9\x9D?" 400 157 "-" "-" "-"Clean Up
Before moving on, tear down the resources that are part of your stack to avoid incurring any charges.
- Run
pulumi destroyto tear down all resources. You'll be prompted to make sure you really want to delete these resources. A destroy operation may take some time, since Pulumi waits for the resources to finish shutting down before it considers the destroy operation to be complete. - To delete the stack itself, run
pulumi stack rm. Note that this command deletes all deployment history from the Pulumi Console.
Summary
In this tutorial, we showed you how to write a Pulumi program in Typescript, and leverage Pulumi Crosswalk for AWS (via the @pulumi/awsx package) in order to build and publish a Dockerized application to a private Elastic Container Registry (ECR), spin up an ECS Fargate cluster, and run a scalable, load balanced service.
You also learned how to work with the Pulumi CLI. To recap:
- Run
pulumi new <cloud>-<language> --name myprojectto create a new project from a language and cloud template. - Run
pulumi upto preview and update your infrastructure. - Run
pulumi destroyto clean up your resources. - Run
pulumi stack rmto delete your stack.
For a similar example in other languages and clouds, see the Pulumi examples repo.
Next Steps
For more information about containerized applications on AWS, please read these User Guides:
- Pulumi Crosswalk for AWS Elastic Container Service (ECS)
- Pulumi Crosswalk for AWS Elastic Kubernetes Service (EKS)
For an end-to-end application also includes serverless functions, see the Serverless plus Containers Thumbnailer tutorial.
For an example application that connects two containers, see the Voting App sample.
The code for this tutorial is available on GitHub.