Coder Social home page Coder Social logo

dockerlogger's Introduction

Steps:

try the file locally first - I ran all this on a Cloud9 machine

./logger.py

you should be able to: curl localhost:8080

build a docker container

docker build -t logtest .

test the docker container locally

docker run -p 8080:8080 logtest

you should be able to: curl localhost:8080

check the docker image is there

docker images

create an ECR repo

aws ecr create-repository --repository-name logtest

command line login foo for ECR

aws ecr get-login --no-include-email

tag image to your ECR repo

docker tag logtest <account>.dkr.ecr.eu-west-1.amazonaws.com/logtest

push image up - do this every time you change it

docker push <account>.dkr.ecr.eu-west-1.amazonaws.com/logtest

check image is there

aws ecr describe-images --repository-name logtest

create an ECS cluster

aws ecs create-cluster --cluster-name logtest

find AMI ID of ECS ready AMI

aws ssm get-parameters --names /aws/service/ecs/optimized-ami/amazon-linux/recommended

start an EC2 instance (you will need to edit this script)

./launch-instance.sh

register task defn with ECS (need to edit the file too)

aws ecs register-task-definition --cli-input-json file://ecs-task-definition.json

create the log group in CWL

start the ECS task - takes a few seconds to come up

aws ecs run-task --cluster arn:aws:ecs:eu-west-1:<account>:cluster/logtest --task-definition arn:aws:ecs:eu-west-1:<account>:task-definition/logtest-task:1

the trailing number depends on the version of task defn

you should be able to ssh into the ECS instance machine, once there this will show you connections made - one will be to CWL

sudo netstat -t

iptables can cut the connections to CWL. Adding an entry to /etc/hosts for:

52.95.125.162 logs.eu-west-1.amazonaws.com

will stop you having to block more IPs. Run it like this:

sudo iptables -A OUTPUT -p tcp -d <ip> --dport 443 -j DROP

to undo the iptables work, use this to view the rules

sudo iptables -L --line-numbers

and this to drop by number

sudo iptables -D OUTPUT 1

Use ab to throw some traffic at the server

ab -n 1000 http://<ip>:8080/

To stop the server from getting blocked, just add this line to the ECS Task Definition log configuration options section:

"mode": "non-blocking"

dockerlogger's People

Contributors

charltones avatar

Watchers

avatar avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.