Implementation of AWS EKS Node Group Using Terraform<\/b><\/p>\n
Manages an EKS Node Group, which can provision and optionally update an Auto Scaling Group of Kubernetes worker nodes compatible with EKS.<\/span><\/p>\n Amazon EKS managed node groups automate the provisioning and lifecycle management of nodes (Amazon EC2 instances) for Amazon EKS Kubernetes clusters.<\/span><\/p>\n With Amazon EKS managed node groups, you don\u2019t need to separately provision or register the Amazon EC2 instances that provide compute capacity to run your Kubernetes applications. You can create, automatically update, or terminate nodes for your cluster with a single operation. Node updates and terminations automatically drain nodes to ensure that your applications stay available.<\/span><\/p>\n Every managed node is provisioned as part of an Amazon EC2 Auto Scaling group that’s managed for you by Amazon EKS. Every resource including the instances and Auto Scaling groups runs within your AWS account. Each node group runs across multiple Availability Zones that you define.<\/span><\/p>\n Managed node group capacity types<\/b><\/p>\n With On-Demand Instances, you pay for compute capacity by the second, with no long-term commitments.<\/span><\/p>\n Amazon EC2 Spot Instances are spare Amazon EC2 capacity that offers steep discounts off of On-Demand prices. Amazon EC2 Spot Instances can be interrupted with a two-minute interruption notice when EC2 needs the capacity back. For more information, see Spot Instances in the Amazon EC2 User Guide for Linux Instances. You can configure a managed node group with Amazon EC2 Spot Instances to optimize costs for the compute nodes running in your Amazon EKS cluster.<\/span><\/p>\nOn-Demand<\/b><\/h4>\n
Spot<\/b><\/h4>\n
Example Usage<\/b><\/h4>\n
resource \"aws_eks_node_group\" \"example\" {<\/span>\r\n\r\n\u00a0\u00a0cluster_name\u00a0 \u00a0 = aws_eks_cluster.example.name<\/span>\r\n\r\n\u00a0\u00a0node_group_name = \"example\"<\/span>\r\n\r\n\u00a0\u00a0node_role_arn \u00a0 = aws_iam_role.example.arn<\/span>\r\n\r\n\u00a0\u00a0subnet_ids\u00a0 \u00a0 \u00a0 = aws_subnet.example[*].id<\/span>\r\n\r\n\u00a0\u00a0scaling_config {<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0desired_size = 1<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0max_size \u00a0 \u00a0 = 1<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0min_size \u00a0 \u00a0 = 1<\/span>\r\n\r\n\u00a0\u00a0}<\/span>\r\n\r\n\u00a0\u00a0update_config {<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0max_unavailable = 2<\/span>\r\n\r\n\u00a0\u00a0}<\/span>\r\n\r\n\u00a0\u00a0# Ensure that IAM Role permissions are created before and deleted after EKS Node Group handling.<\/span>\r\n\r\n\u00a0\u00a0# Otherwise, EKS will not be able to properly delete EC2 Instances and Elastic Network Interfaces.<\/span>\r\n\r\n\u00a0\u00a0depends_on = [<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0aws_iam_role_policy_attachment.example-AmazonEKSWorkerNodePolicy,<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0aws_iam_role_policy_attachment.example-AmazonEKS_CNI_Policy,<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0aws_iam_role_policy_attachment.example-AmazonEC2ContainerRegistryReadOnly,<\/span>\r\n\r\n\u00a0\u00a0]<\/span>\r\n\r\n}<\/span><\/pre>\nCode used in an existing project.<\/b><\/h4>\n
resource \"aws_eks_node_group\" \"aws_eks_node_group\" {<\/span>\r\n\r\n\u00a0\u00a0cluster_name\u00a0 \u00a0 =\"${var.environment}_${var.cluster_name}\"<\/span>\r\n\r\n\u00a0\u00a0node_group_name = \"${var.environment}-worker\"<\/span>\r\n\r\n\u00a0\u00a0node_role_arn \u00a0 = aws_iam_role.eks_worker_role.arn<\/span>\r\n\r\n\u00a0\u00a0subnet_ids\u00a0 \u00a0 \u00a0 = \"${concat(var.private_subnets)}\"<\/span>\r\n\r\n\u00a0\u00a0scaling_config {<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0desired_size = 2<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0max_size \u00a0 \u00a0 = 3<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0min_size \u00a0 \u00a0 = 1<\/span>\r\n\r\n\u00a0\u00a0}<\/span>\r\n\r\n\u00a0\u00a0update_config {<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0max_unavailable = 2<\/span>\r\n\r\n\u00a0\u00a0}<\/span>\r\n\r\n\u00a0\u00a0tags = {<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0\"Name\" \u00a0 = \"example abc\"<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0\"SecurityClass\" = \"example abc\"<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0\"Customers\" = \"example abc\"<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0\"ServiceLevel\" =\"example abc\"<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0\"Billable\" = \"example abc\"<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0\"RemedyGroup\" = \"example abc\"<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0\"Function\" = \"example abc\"<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0\"ProductCode\" = \"example abc\"<\/span>\r\n\r\n\u00a0\u00a0}<\/span>\r\n\r\n\u00a0\u00a0# Ensure that IAM Role permissions are created before and deleted after EKS Node Group handling.<\/span>\r\n\r\n\u00a0\u00a0# Otherwise, EKS will not be able to properly delete EC2 Instances and Elastic Network Interfaces.<\/span>\r\n\r\n\u00a0\u00a0depends_on = [<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0aws_iam_role_policy_attachment.AmazonEKSWorkerNodePolicy,<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0aws_iam_role_policy_attachment.AmazonEKS_CNI_Policy,<\/span>\r\n\r\n\u00a0\u00a0\u00a0\u00a0aws_iam_role_policy_attachment.AmazonEC2ContainerRegistryReadOnly,<\/span>\r\n\r\n\u00a0\u00a0]<\/span>\r\n\r\n}<\/span><\/pre>\nIgnoring Changes to Desired Size<\/b><\/h3>\n