import time import boto3 from botocore.exceptions import ClientError ################################################################################################ # # Configuration Parameters # ################################################################################################ # print("!!!!!!!! You cannot use Auto Scaling Group in AWS Educate Account !!!!!!!!") # exit(-1) # place your credentials in ~/.aws/credentials, as mentioned in AWS Educate Classroom, # Account Details, AWC CLI -> Show (Copy and paste the following into ~/.aws/credentials) # changed to use us-east, to be able to use AWS Educate Classroom region = 'us-east-1' availabilityZone1 = 'us-east-1a' availabilityZone2 = 'us-east-1b' availabilityZone3 = 'us-east-1c' # region = 'eu-central-1' # availabilityZone = 'eu-central-1b' # AMI ID of Amazon Linux 2 image 64-bit x86 in us-east-1 (can be retrieved, e.g., at # https://console.aws.amazon.com/ec2/v2/home?region=us-east-1#LaunchInstanceWizard:) # TODO update to recent version of Amazon Linux 2 AMI? imageId = 'ami-0d5eff06f840b45e9' # for eu-central-1, AMI ID of Amazon Linux 2 would be: # imageId = 'ami-0cc293023f983ed53' # potentially change instanceType to t2.micro for "free tier" if using a regular account # for production, t3.nano seams better # as of SoSe 2022 t2.nano seams to be a bit too low on memory, mariadb first start can fail # due to innodb cache out of memory, therefore t2.micro or swap in t2.nano currently recommended # instanceType = 't2.nano' instanceType = 't2.micro' # keyName = 'srieger-pub' keyName = 'vockey' # see, e.g., AWS Academy Lab readme, or "aws iam list-instance-profiles | grep InstanceProfileName" # for roles see: "aws iam list-roles | grep RoleName" iamRole = 'LabInstanceProfile' ################################################################################################ # # boto3 code # ################################################################################################ client = boto3.setup_default_session(region_name=region) ec2Client = boto3.client("ec2") ec2Resource = boto3.resource('ec2') elbv2Client = boto3.client('elbv2') asClient = boto3.client('autoscaling') # if you only have one VPC, vpc_id can be retrieved using: response = ec2Client.describe_vpcs() vpc_id = response.get('Vpcs', [{}])[0].get('VpcId', '') # if you have more than one VPC, vpc_id should be specified, and code # top retrieve VPC id below needs to be commented out # vpc_id = 'vpc-eedd4187' subnet_id1 = ec2Client.describe_subnets( Filters=[ { 'Name': 'availability-zone', 'Values': [availabilityZone1] } ])['Subnets'][0]['SubnetId'] subnet_id2 = ec2Client.describe_subnets( Filters=[ { 'Name': 'availability-zone', 'Values': [availabilityZone2] } ])['Subnets'][0]['SubnetId'] subnet_id3 = ec2Client.describe_subnets( Filters=[ { 'Name': 'availability-zone', 'Values': [availabilityZone3] } ])['Subnets'][0]['SubnetId'] print("Deleting old auto scaling group...") print("------------------------------------") try: response = asClient.delete_auto_scaling_group(AutoScalingGroupName='tug-of-war-asg-autoscalinggroup', ForceDelete=True) except ClientError as e: print(e) print("Deleting old launch configuration...") print("------------------------------------") try: response = asClient.delete_launch_configuration(LaunchConfigurationName='tug-of-war-asg-launchconfig') except ClientError as e: print(e) print("Deleting old instances...") print("------------------------------------") response = ec2Client.describe_instances(Filters=[{'Name': 'tag-key', 'Values': ['tug-of-war-asg']}]) print(response) reservations = response['Reservations'] for reservation in reservations: for instance in reservation['Instances']: if instance['State']['Name'] == "running": response = ec2Client.terminate_instances(InstanceIds=[instance['InstanceId']]) print(response) instanceToTerminate = ec2Resource.Instance(instance['InstanceId']) instanceToTerminate.wait_until_terminated() print("Deleting old load balancer and deps...") print("------------------------------------") try: response = elbv2Client.describe_load_balancers(Names=['tug-of-war-asg-loadbalancer']) loadbalancer_arn = response.get('LoadBalancers', [{}])[0].get('LoadBalancerArn', '') response = elbv2Client.delete_load_balancer(LoadBalancerArn=loadbalancer_arn) waiter = elbv2Client.get_waiter('load_balancers_deleted') waiter.wait(LoadBalancerArns=[loadbalancer_arn]) except ClientError as e: print(e) try: response = elbv2Client.describe_target_groups(Names=['tug-of-war-asg-targetgroup']) while len(response.get('TargetGroups', [{}])) > 0: targetgroup_arn = response.get('TargetGroups', [{}])[0].get('TargetGroupArn', '') try: response = elbv2Client.delete_target_group(TargetGroupArn=targetgroup_arn) except ClientError as e: print(e) response = elbv2Client.describe_target_groups(Names=['tug-of-war-asg-targetgroup']) time.sleep(5) except ClientError as e: print(e) print("Delete old security group...") print("------------------------------------") try: response = ec2Client.describe_security_groups(Filters=[{'Name': 'group-name', 'Values': ['tug-of-war-asg']}]) while len(response.get('SecurityGroups', [{}])) > 0: security_group_id = response.get('SecurityGroups', [{}])[0].get('GroupId', '') try: response = ec2Client.delete_security_group(GroupName='tug-of-war-asg') except ClientError as e: print(e) response = ec2Client.describe_security_groups(Filters=[{'Name': 'group-name', 'Values': ['tug-of-war-asg']}]) time.sleep(5) except ClientError as e: print(e) print("Create security group...") print("------------------------------------") try: response = ec2Client.create_security_group(GroupName='tug-of-war-asg', Description='tug-of-war-asg', VpcId=vpc_id) security_group_id = response['GroupId'] print('Security Group Created %s in vpc %s.' % (security_group_id, vpc_id)) data = ec2Client.authorize_security_group_ingress( GroupId=security_group_id, IpPermissions=[ {'IpProtocol': 'tcp', 'FromPort': 3306, 'ToPort': 3306, 'IpRanges': [{'CidrIp': '0.0.0.0/0'}]}, {'IpProtocol': 'tcp', 'FromPort': 22, 'ToPort': 22, 'IpRanges': [{'CidrIp': '0.0.0.0/0'}]}, {'IpProtocol': 'tcp', 'FromPort': 80, 'ToPort': 80, 'IpRanges': [{'CidrIp': '0.0.0.0/0'}]}, {'IpProtocol': 'tcp', 'FromPort': 443, 'ToPort': 443, 'IpRanges': [{'CidrIp': '0.0.0.0/0'}]} ]) print('Ingress Successfully Set %s' % data) except ClientError as e: print(e) print("Running new DB instance...") print("------------------------------------") userDataDB = ('#!/bin/bash\n' '# extra repo for RedHat rpms\n' 'yum install -y https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm\n' '# essential tools\n' 'yum install -y joe htop git\n' '# mysql\n' 'yum install -y mariadb mariadb-server\n' '\n' 'service mariadb start\n' '\n' 'echo "create database cloud_tug_of_war" | mysql -u root\n' '\n' 'echo "create table clouds ( cloud_id INT AUTO_INCREMENT, name VARCHAR(255) NOT NULL, value INT, max_value INT, PRIMARY KEY (cloud_id))" | mysql -u root cloud_tug_of_war\n' '\n' 'echo "CREATE USER \'cloud_tug_of_war\'@\'%\' IDENTIFIED BY \'cloudpass\';" | mysql -u root\n' 'echo "GRANT ALL PRIVILEGES ON cloud_tug_of_war.* TO \'cloud_tug_of_war\'@\'%\';" | mysql -u root\n' 'echo "FLUSH PRIVILEGES" | mysql -u root\n' ) # convert user-data from script with: cat install-mysql | sed "s/^/'/; s/$/\\\n'/" response = ec2Client.run_instances( ImageId=imageId, InstanceType=instanceType, Placement={'AvailabilityZone': availabilityZone1, }, KeyName=keyName, MinCount=1, MaxCount=1, UserData=userDataDB, SecurityGroupIds=[ security_group_id, ], TagSpecifications=[ { 'ResourceType': 'instance', 'Tags': [ {'Key': 'Name', 'Value': 'tug-of-war-asg-db1'}, {'Key': 'tug-of-war-asg', 'Value': 'db'} ], } ], ) instanceIdDB = response['Instances'][0]['InstanceId'] privateIpDB = response['Instances'][0]['PrivateIpAddress'] # privateIpDB = response['Instances'][0]['NetworkInterfaces'][0]['NetworkInterfaceId'] instance = ec2Resource.Instance(instanceIdDB) instance.wait_until_running() print(instanceIdDB) userDataWebServer = ('#!/bin/bash\n' '# extra repo for RedHat rpms\n' 'yum install -y https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm\n' '# essential tools\n' 'yum install -y joe htop git\n' '# mysql\n' 'yum install -y httpd php php-mysql\n' '\n' 'service httpd start\n' '\n' # 'wget http://mmnet.informatik.hs-fulda.de/cloudcomp/tug-of-war-in-the-clouds.tar.gz\n' # 'cp tug-of-war-in-the-clouds.tar.gz /var/www/html/\n' # 'tar zxvf tug-of-war-in-the-clouds.tar.gz\n' 'cd /var/www/html\n' 'wget https://gogs.informatik.hs-fulda.de/srieger/cloud-computing-msc-ai-examples/raw/master/example-projects/tug-of-war-in-the-clouds/web-content/index.php\n' 'wget https://gogs.informatik.hs-fulda.de/srieger/cloud-computing-msc-ai-examples/raw/master/example-projects/tug-of-war-in-the-clouds/web-content/cloud.php\n' 'wget https://gogs.informatik.hs-fulda.de/srieger/cloud-computing-msc-ai-examples/raw/master/example-projects/tug-of-war-in-the-clouds/web-content/config.php\n' '\n' '# change hostname of db connection\n' 'sed -i s/localhost/' + privateIpDB + '/g /var/www/html/config.php\n' ) print("Creating launch configuration...") print("------------------------------------") response = asClient.create_launch_configuration( #IamInstanceProfile='my-iam-role', IamInstanceProfile=iamRole, ImageId=imageId, InstanceType=instanceType, LaunchConfigurationName='tug-of-war-asg-launchconfig', UserData=userDataWebServer, KeyName=keyName, SecurityGroups=[ security_group_id, ], ) elbv2Client = boto3.client('elbv2') print("Creating load balancer...") print("------------------------------------") response = elbv2Client.create_load_balancer( Name='tug-of-war-asg-loadbalancer', Subnets=[ subnet_id1, subnet_id2, subnet_id3, ], SecurityGroups=[ security_group_id ] ) loadbalancer_arn = response.get('LoadBalancers', [{}])[0].get('LoadBalancerArn', '') loadbalancer_dns = response.get('LoadBalancers', [{}])[0].get('DNSName', '') print("Creating target group...") print("------------------------------------") response = elbv2Client.create_target_group( Name='tug-of-war-asg-targetgroup', Port=80, Protocol='HTTP', VpcId=vpc_id, ) targetgroup_arn = response.get('TargetGroups', [{}])[0].get('TargetGroupArn', '') print("Creating listener...") print("------------------------------------") response = elbv2Client.create_listener( DefaultActions=[ { 'TargetGroupArn': targetgroup_arn, 'Type': 'forward', }, ], LoadBalancerArn=loadbalancer_arn, Port=80, Protocol='HTTP', ) response = elbv2Client.modify_target_group_attributes( TargetGroupArn=targetgroup_arn, Attributes=[ { 'Key': 'stickiness.enabled', 'Value': 'true' }, ] ) print("Creating auto scaling group...") print("------------------------------------") response = asClient.create_auto_scaling_group( AutoScalingGroupName='tug-of-war-asg-autoscalinggroup', LaunchConfigurationName='tug-of-war-asg-launchconfig', MaxSize=3, MinSize=1, HealthCheckGracePeriod=120, HealthCheckType='ELB', TargetGroupARNs=[ targetgroup_arn, ], VPCZoneIdentifier=subnet_id1 + ', ' + ', ' + subnet_id2 + ', ' + subnet_id3, Tags=[ {'Key': 'Name', 'Value': 'tug-of-war-asg-webserver', 'PropagateAtLaunch': True}, {'Key': 'tug-of-war', 'Value': 'webserver', 'PropagateAtLaunch': True} ], ) print(loadbalancer_arn) print(targetgroup_arn) print('app/tug-of-war-asg-loadbalancer/'+str(loadbalancer_arn).split('/')[3]+'/targetgroup/tug-of-war-asg-targetgroup/'+str(targetgroup_arn).split('/')[2]) print('If target group is not found, creation was delayed in AWS Academy lab, need to add a check that target group is' 'existing before executing the next lines in the future... If the error occurs, rerun script...') response = asClient.put_scaling_policy( AutoScalingGroupName='tug-of-war-asg-autoscalinggroup', PolicyName='tug-of-war-asg-scalingpolicy', PolicyType='TargetTrackingScaling', EstimatedInstanceWarmup=60, TargetTrackingConfiguration={ 'PredefinedMetricSpecification': { 'PredefinedMetricType': 'ALBRequestCountPerTarget', 'ResourceLabel': 'app/tug-of-war-asg-loadbalancer/'+str(loadbalancer_arn).split('/')[3]+'/targetgroup/tug-of-war-asg-targetgroup/'+str(targetgroup_arn).split('/')[2] }, 'TargetValue': 5.0, } ) print('Load Balancer should be reachable at: http://' + loadbalancer_dns) print('As always, you need to wait some time, until load balancer is provisioned, instances are healthy (cloud-init ' 'did its job as specified in the launch configuration). ') print('You can use "aws elbv2 ..." commands or the web console to examine the current state. Take a look at Load' 'Balancer, Target Group, Auto Scaling Group and esp. Monitoring of the Load Balancer and related Cloud Watch' 'alarms.') print('If you "pull" a lot of clouds in the game, generating a lot of requests, you will see the alarm being fired and' 'further instances started (scale-out) (involves some clicking for about three minutes). After 15 min of idling,' 'instances will automatically be stopped (scale-in).')