EC2 ã§ã® AMI 作æˆæ‰‹é †
前々回ã¯ã€ã‚¤ãƒ³ã‚¹ã‚¿ãƒ³ã‚¹ã®èµ·å‹•ãƒ»åœæ¢ãƒ»ç¢ºèªã¾ã§é€²ã¿ã¾ã—ãŸã€‚ãã—ã¦ã€ä»Šå›žã¯ AMI ã®ä½œæˆã‚’è¡Œã„ãŸã„ã¾ã™ã€‚
作æˆç†ç”±ã¯ã€EC2 をシャットダウンã™ã‚‹ã¨ãƒ‡ã‚£ã‚¹ã‚¯ã«ä¿å˜ã—ãŸå†…容ãŒå¤±ã‚ã‚Œã¦ã—ã¾ã†ã®ã§ã™ãŒã€‚AMI を作æˆã™ã‚‹ã“ã¨ã«ã‚ˆã‚Šã€ä½œæˆã—ãŸæ™‚点ã®ãƒ‡ã‚£ã‚¹ã‚¯å†…容ã§ã‚¤ãƒ³ã‚¹ã‚¹ã‚¿ãƒ³ã‚¹èµ·å‹•ã§ãã¾ã™ã€‚*1
今回も CodeZine ã«æ²¿ã£ãŸå½¢ã§ä½œæ¥ã‚’進ã‚ã¦è¡Œãã¾ã™ã€‚今回ã®å†…容ã¯ï¼’ページ分ã§ã™ã。
事å‰æƒ…å ±
- AMI 㯠S3 ã«è»¢é€ã—ã¦ä¿å˜ã™ã‚‹
- EC2 ã‹ã‚‰ S3 ã¸ã®è»¢é€æ–™ã¯èª²é‡‘対象外
- イメージ化ã•ã‚Œã‚‹ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªã¯ã€Œ/dev/sda1ã€ã®ã¿
インスタンス
å‰ã€…回ã®æ–¹æ³•ã§ã€ã‚¤ãƒ³ã‚¹ã‚¿ãƒ³ã‚¹èµ·å‹•ã¾ã§é€²ã‚ã¾ã™ã€‚
ssh 接続
今回ã¯ã€ŽAWS Management Consoleã€ã‚’利用ã—ãŸæ‰‹è»½ãªæŽ¥ç¶šæ–¹æ³•ã‚’解説ã—ã¾ã™ã€‚
- AWS Management Console/EC2 ã‹ã‚‰ã€å·¦ãƒ¡ãƒ‹ãƒ¥ãƒ¼ã® [Instances] をクリック
- [Connect] ボタンをクリック
- [Connect Help - Secure Shell (SSH)]ã¨ã„ã†ã‚¿ã‚¤ãƒˆãƒ«ã®ã‚¦ã‚£ãƒ³ãƒ‰ã‚¦ãŒè¡¨ç¤ºã•ã‚Œã‚‹
- ウィンドウ下ã«ã€ssh 接続ã™ã‚‹ãŸã‚ã®ã‚³ãƒžãƒ³ãƒ‰ãŒæ·»ä»˜ã•ã‚Œã¦ã„ã‚‹ã®ã§ copy and paste
- ターミナルã§ã€ä»¥å‰ã«ä½œæˆã—ãŸã‚¤ãƒ³ã‚¹ã‚¿ãƒ³ã‚¹ã‚ーãŒä¿ç®¡ã•ã‚Œã¦ã„るディレクトリã§ã‚³ãƒžãƒ³ãƒ‰å®Ÿè¡Œ*2
é©å½“ãªãƒ•ã‚¡ã‚¤ãƒ«ä½œæˆ
ãã®ã¾ã¾ AMI 作æˆã—ã¦ã‚‚ã€å…ƒã® AMI ã¨é•ã„ãŒç„¡ã„ã®ã§ã€ä½•ã‹ã—らファイルを作æˆã—ã¦ãŠãã¾ã™ã€‚
root@domU-12-31-39-00-5E-33:/root# ls test
AMI 作æˆ
「X.509証明書ã€è»¢é€
å‰ã€…回ã«å–å¾—ã—ã¦ãŠã„ãŸã€ŒX.509証明書ã€ã‚’ AMI å´ã¸è»¢é€ã•ã›ã¾ã™ã€‚
$ scp -i ec2_instance_key.pem *.pem root@ec2-75-101-180-145.compute-1.amazonaws.com:/mnt cert-xxxxx.pem 100% 916 0.9KB/s 00:00 ec2_instance_key.pem 100% 1675 1.6KB/s 00:00 pk-xxxxx.pem 100% 926 0.9KB/s 00:00
ssh 接続ã—ã¦è»¢é€ã•ã‚ŒãŸã“ã¨ã‚’確èª
/mnt ã«ãƒ•ã‚¡ã‚¤ãƒ«ãŒå˜åœ¨ã™ã‚‹ã‹ã‚’ãƒã‚§ãƒƒã‚¯ã—ã¾ã™ã€‚
# cd /mnt # ls cert-xxxxx.pem ec2_instance_key.pem lost+found pk-xxxxx.pem
ãŠã‰ã€ã¡ã‚ƒã‚“ã¨è»¢é€ã•ã‚Œã¦ã„ã¾ã—ãŸã。
AMI 作æˆ
ã¯ã„ã€ã‚ˆã†ã‚„ã作æˆã§ãã¾ã™ã€‚
コマンドã§ã€user ã®å¾Œã«ã¯ã‚¢ã‚«ã‚¦ãƒ³ãƒˆå*3を指定ã—ã¦ãã ã•ã„。
途ä¸ã§ç¢ºèªã‚’求ã‚られã¾ã™ãŒã€‚インスタンスタイプãŒã€Œm1.smallã€ãªã‚‰ã€ãã®ã¾ã¾ Enter を押ã›ã°ã‚ˆã„ã§ã™ã€‚
# ec2-bundle-vol -d /mnt --privatekey pk-xxxxx.pem --cert cert-xxxxx.pem --user xxxx-xxxx-xxxx --fstab /etc/fstab Please specify a value for arch [i386]: Copying / into the image file /mnt/image... Excluding: /sys /proc /dev/pts /dev /media /mnt /proc /sys /etc/udev/rules.d/70-persistent-net.rules /etc/udev/rules.d/z25_persistent-net.rules /mnt/image /mnt/img-mnt 1+0 records in 1+0 records out 1048576 bytes (1.0 MB) copied, 0.002536 s, 413 MB/s mke2fs 1.41.4 (27-Jan-2009) /etc/fstab: # Legacy /etc/fstab # Supplied by: ec2-ami-tools-1.3-30748 /dev/sda1 / ext3 defaults 1 1 /dev/sda2 /mnt ext3 defaults 0 0 /dev/sda3 swap swap defaults 0 0 none /proc proc defaults 0 0 none /sys sysfs defaults 0 0 Bundling image file... Splitting /mnt/image.tar.gz.enc... Created image.part.00 Created image.part.01 Created image.part.02 Created image.part.03 Created image.part.04 Created image.part.05 Created image.part.06 Created image.part.07 Created image.part.08 Created image.part.09 Created image.part.10 Created image.part.11 Created image.part.12 Generating digests for each part... Digests generated. Unable to read instance meta-data for product-codes Creating bundle manifest... ec2-bundle-vol complete.
ã»ã¼åˆæœŸçŠ¶æ…‹ã«ã‚‚é–¢ã‚らãšã€ä½œæˆã«ã¯ï¼’・3分もã‹ã‹ã‚Šã¾ã—ãŸã€‚
作æˆã—㟠AMI ã‚’ S3 ã¸ã‚¢ãƒƒãƒ—ãƒãƒ¼ãƒ‰ï¼ˆä»®ï¼‰
作æˆã•ã‚ŒãŸãƒ‡ãƒ¼ã‚¿ã¯ã€EC2 å´ã® /mnt ディレクトリã«ã‚ã‚Šã¾ã™ã®ã§ã€ã“れを S3 ã¸ã‚¢ãƒƒãƒ—ãƒãƒ¼ãƒ‰ã—ã¦ã¿ã¾ã™ã€‚
ã¨ã€ã“ã“ã§é‡è¦ãªã“ã¨ã«æ°—ã¥ãã¾ã—ãŸã€‚
S3 ã®ç’°å¢ƒæ§‹ç¯‰ã‚’ã—ã¦ã„ãªã„
ã“ã“以é™ã‹ã‚‰æ§‹ç¯‰ã«ã¤ã„ã¦æ›¸ã„ã¦ã‚‚良ã„ã®ã§ã™ãŒã€èªã¿é›£ããªã‚‹ã®ã§åˆ†ã‘ã¦æ›¸ãã¾ã™ã€‚
Amazon S3 を使ってみたよ
作æˆã—㟠AMI ã‚’ S3 ã¸ã‚¢ãƒƒãƒ—ãƒãƒ¼ãƒ‰ï¼ˆçœŸï¼‰
${...} ã¯ã€ãã‚Œãžã‚ŒæŒ‡å®šã—ã¦å®Ÿè¡Œã—ã¦ãã ã•ã„。
# ec2-upload-bundle --bucket ${アップ先ã®ãƒã‚±ãƒƒãƒˆå} --manifest image.manifest.xml --access-key ${Access Key ID} --secret-key ${Secret Access Key} bucket ${アップ先ã®ãƒã‚±ãƒƒãƒˆå} ... Uploaded image.part.00 Uploaded image.part.01 Uploaded image.part.02 Uploaded image.part.03 Uploaded image.part.04 Uploaded image.part.05 Uploaded image.part.06 Uploaded image.part.07 Uploaded image.part.08 Uploaded image.part.09 Uploaded image.part.10 Uploaded image.part.11 Uploaded image.part.12 Uploading manifest ... Uploaded manifest. Bundle upload completed.
å‰è¿°ã—ãŸé€šã‚Šã€ã“ã®è»¢é€æ–™ã¯èª²é‡‘ã•ã‚Œã¾ã›ã‚“。
AMI 登録
インスタンス起動ã§ãるよㆠAMI ã® ID を発行ã—ã¾ã™ã€‚ãã®ãŸã‚ã€ãƒã‚°ã‚¢ã‚¦ãƒˆ(インスタンス起動åœæ¢)ã—ã¦ã‹ã‚‰ä½œæ¥ã—ã¦ãã ã•ã„。
$ ec2-register ${アップ先ã®ãƒã‚±ãƒƒãƒˆå}/image.manifest.xml IMAGE ami-0558bf6c
ç¾åœ¨ç™»éŒ²ä¸ã® AMI を確èªã—ã¦ã¿ã¾ã—ょã†ã€‚
$ ec2-describe-images -o self MAGE ami-0558bf6c aws-kawakami/image.manifest.xml 443600062368 available private i386 machine aki-a71cf9ce ari-a51cf9cc
AMI ã® ID ãŒã€Œami-0558bf6cã€ã ã¨åˆ†ã‹ã‚Šã¾ã™ã€‚
ã¾ãŸã€ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã§ã¯ private ã¨ãªã£ã¦ã„ã¾ã™ãŒã€ã“れを public ã«ã™ã‚‹ã“ã¨ã‚‚å¯èƒ½ã§ã™ã€‚
AMI èµ·å‹•
AWS Management Console を使ã£ã¦èµ·å‹•ã—ã¦ã¿ãŸã„ã¨æ€ã„ã¾ã™ã€‚
- 左メニューã«ã‚ã‚‹ [AMIs] をクリック
- å·¦å´ã®ã‚³ãƒ³ãƒœãƒœãƒƒã‚¯ã‚¹ã§ã€ã€ŒPrivate Imagesã€ã‚’é¸æŠž
- 発行ã—㟠AMI ã® ID ãŒä¸€è¦§ä¸Šã«ä¸¦ã¶ã®ã§ã€é¸æŠžã—㦠[Launch] ボタンをクリック
ã“ã‚Œã§èµ·å‹•ã—ã¾ã™ã€‚
確èª
root@ip-10-251-211-144:~# ls test
ãã¡ã‚“ã¨å‰ã«ä½œæˆã—ãŸã€Œtestã€ãƒ•ã‚¡ã‚¤ãƒ«ãŒå˜åœ¨ã™ã‚‹ã“ã¨ãŒç¢ºèªã§ãã¾ã—ãŸã€‚
以上ã§ã€ä»Šå›žã®æ¤œè¨¼ã¯çµ‚ã‚ã‚Šã¾ã™ã€‚
ã¾ã¨ã‚
ã¾ãšã€èµ·å‹•ã—ãŸä»®æƒ³ãƒžã‚·ãƒ³ä¸Šã§ã®ä½œæ¥ãŒã¨ã«ã‹ãé…ã„。å˜ã«ãƒ•ã‚¡ã‚¤ãƒ«ä½œæˆã™ã‚‹ã ã‘ã§ã‚‚モッサリã—ã¦ã¦ã‚¤ãƒ©ã£ã¨æ¥ã‚‹å ´åˆãŒã‚ã‚Šã¾ã™ã€‚ã“ã®ãƒ¬ã‚¹ãƒãƒ³ã‚¹ã®é…ã•ã¯ã€å›½å†…ã«ã‚µãƒ¼ãƒãƒ¼ãŒç½®ã‹ã‚ŒãŸã‚‰æ”¹å–„ã•ã‚Œã‚‹ã‹ã‚‚ã—ã‚Œã¾ã›ã‚“ãŒã€ãã‚Œæ„外ã®æ–¹æ³•ã§ã‚‚何ã‹å¯¾ç–ãŒå–ã‚Œãªã„ã‹æ¨¡ç´¢ã™ã¹ãã§ã™(æ—¢ã«ã‚る?)。
ã¾ãŸã€AMI ã®ä¿å˜ã¨ã„ã†ä½œæ¥ãŒäºˆæƒ³ä»¥ä¸Šã«ãƒ¡ãƒ³ãƒ‰ã‚¯ã‚µã‚¤ã§ã™ã€‚ã©ã“ãŒãƒ¡ãƒ³ãƒ‰ã‚¦ã‹ã¨è¨€ã†ã¨ã€/mnt ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªæƒ…å ±ãŒä¿å˜ã§ããªã„ãŸã‚ã€å†åº¦ AMI ã‚’ä¿å˜ã—ãŸã„ã¨ãã¯ä¸€ã‹ã‚‰ä½œæ¥ã—ãªã„ã¨ãƒ€ãƒ¡ãªã¨ã“ã‚ã§ã™ã€‚ã“ã®è¾ºã¯åˆ¥ã®ä»•çµ„ã¿ã§ä¿å˜ã§ãるらã—ã„ã®ã§ã€ãã®æ–¹æ³•ã—ã ã„ã§ã¯æ”¹å–„ã§ãã‚‹ã®ã‹ã‚‚ã—ã‚Œã¾ã›ã‚“。
*1:別ã®æ–¹æ³•ã§ã‚‚ディスク内容ã¯ä¿å˜å¯èƒ½
*2:以å‰ã«ä½œæˆã—ãŸã‚¤ãƒ³ã‚¹ã‚¿ãƒ³ã‚¹ã‚ーå称㯠ec2_instance_key.id ã§ã—ãŸãŒã€ã‚³ãƒ”ー元ã«åˆã‚ã›ã¦ ec2_instance_key.pem ã¨æ‹¡å¼µåを変更ã—ã¾ã—ãŸ
*3:AWS サイト㮠[Account Activity] ページ㫠Account Number ã¨ã‚る番å·ã®ã“ã¨
