Name		Name	Last commit message	Last commit date
parent directory ..
install-nomad		install-nomad
run-nomad		run-nomad
Makefile		Makefile
README.md		README.md
copy_map_efs.sh		copy_map_efs.sh
dnsmasq_10-consul.conf		dnsmasq_10-consul.conf
docker_config.json		docker_config.json
goss.yaml		goss.yaml
mount_efs.sh		mount_efs.sh
nomad-consul-docker-ecr-cni.json		nomad-consul-docker-ecr-cni.json
nomad-consul-docker-ecr.json		nomad-consul-docker-ecr.json
nomad-consul-docker.json		nomad-consul-docker.json
setup_amazon-linux.sh		setup_amazon-linux.sh
setup_cni.sh		setup_cni.sh
setup_ecr_helper.sh		setup_ecr_helper.sh
setup_nomad_consul.sh		setup_nomad_consul.sh
test.sh		test.sh

README.md

Overview

This documents provides some help on how to use pre-configured Amazon Machine Image descriptions to create a nomad cluster.

Amazon Linux 2

https://aws.amazon.com/de/amazon-linux-2/release-notes/

Certain flavors with different supported functionalities are supported.

AMI without ECR support

The packer definition nomad-consul-docker.json creates an ami that can load docker images from public repositories such as docker hub.

Nomad
Consul
Docker
privileged mode activated

AMI with ECR support

The packer definition nomad-consul-docker-ecr.json creates an ami with ECR support. That means you can load docker images hosted at a AWS ECR of your account.

Nomad
Consul
Docker
privileged mode activated
AWS ECR plugin

Create the Amazon Machine Image

Prepare

AWS Credentials

As described at Authentication Packer you can use static, environment variables or shared credentials.

# environment variables
export AWS_ACCESS_KEY_ID=<your access key id>
export AWS_SECRET_ACCESS_KEY=<your secret key>
export AWS_DEFAULT_REGION=us-east-1

Goss Provisioner

The packer builds are verified during the build process using goss. Goss needs to be available as provisioner for packer to build AMIs.

# Install goss provisioner
make prepare

Build

The following can be applied for nomad-consul-docker-ecr.json and nomad-consul-docker.json.

# Build the AMI using the AWS_DEFAULT_REGION
make ami

# If the AMI should be available in multiple regions
make ami additional_aws_regions="us-east-1,us-east-2"

Packer Details

Under the hood AMI are created using packer, please find below more sophisticated examples.

# Build it using the default variables specified in the packer file.
# Important variables are:
# aws_region - The region where the ami is build in. The exported account settings have to match to this region.
# ami_regions - A list (comma separated) of regions this ami should be available in as well (will be copied over).
# aws_account_ids - A list of AWS account Id's (comma separated list) this ami should be allowed to used from.
packer build nomad-consul-docker-ecr.json

# Build the AMI in us-east-1 and make it available in us-east-2 as well.
packer build -var 'aws_region=us-east-1' -var 'ami_regions=us-east-1,us-east-2' nomad-consul-docker-ecr.json

# Build the AMI in us-east-1, make it available in us-east-2 as well and grant access from account 123456789 and 987654321.
packer build -var 'aws_region=us-east-1' -var 'ami_regions=us-east-1,us-east-2' -var aws_account_ids='123456789,987654321' nomad-consul-docker-ecr.json

Files

ami2

Directory actions

More options