This section provides instructions for deploying the required AWS infrastructure resources for APEX File Storage for AWS, including:
- IAM policy, role, and instance profile: this is a one-time activity. The IAM policy and role is reusable for additional cluster deployment.
- Placement group: A spread strategy placement group is required to ensure that OneFS nodes are placed on distinct hardware to ensure high availability. See the AWS placement groups documentation for additional details.
- Security group:
- Creating an internal security group for cluster internal network interfaces only.
- Creating an external security group for cluster external network interfaces to allow specific ingress traffic from clients.
- Network interfaces for cluster internal network interfaces
- Network interfaces for cluster external network interfaces
- If you use AWS CLI to perform the deployment, you must prepare the cluster nodes block device mapping .json file. OneFS uses EBS devices as data volumes. All EC2 instances must share the same configuration of block device mapping. See AWS block device mapping documentation for more details.
- Prepare the cluster nodes EC2 instance user data: OneFS requires user data in a .json format file. This file provides new instances running OneFS with the information needed to form a OneFS cluster.
- Create an interface endpoint if you are using a private VPC.
- Create EC2 instances.
This guide provides instructions for using the AWS CLI and AWS Management Console. You can choose the method that is best for you to perform the deployment.