# EKS Containers and Services {% hint style="info" %} For an end-to-end example of creating an EKS Service, see [this tutorial](https://docs.duplocloud.com/docs/automation-platform/overview/quick-start/quick-start-eks-services). For a Native Docker Services example, see [this tutorial](https://docs.duplocloud.com/docs/automation-platform/overview/quick-start/quick-start-duplocloud-docker-services). {% endhint %} ## Creating a DuploCloud EKS Service 1. In the DuploCloud Portal, navigate to **Kubernetes** -> **Services**. 2. Click **Add**. **The Add Service** pane displays. 3. Complete the following fields:

Field	Description
Service Name	Give the Service a name (without spaces).
App Name	Optionally, enter an App Name for the Service. You can use this label later to filter Services.
Cloud	Select AWS from the list box.
Platform	Select EKS Linux from the list box.
Docker Image	Enter the Docker image.
Allocation Tag	Optionally, enter any allocation tags.
Replica Strategy	Select a replication strategy. Refer to the informational ToolTip () for more information.
Environmental Variables	Optionally, enter variables.
Replicas	Specify the number of replicas (for Static replica strategy). The number must be less than or equal to the number of Hosts in the fleet.
Replica Placement	For Static or Horizontal Pod Autoscaler strategies. Select First Available, Place on Different Hosts, Spread Across Zones, or Different Hosts and Spread Across Zones. Refer to the informational ToolTip () for more information.
Force StatefulSets	Select Yes or No (for Static or Horizontal Pod Autoscaler strategies).
Tolerate spot instances	Optionally, select this option (for Static or Horizontal Pod Autoscaler strategies).
Use Fargate	Select this option to run the Service on AWS Fargate instead of EC2-based worker nodes.

4. Click **Next.** The **Advanced Options** page displays. 5. Configure advanced options as needed. For example, you can implement [Kubernetes Lifecycle Hooks](https://docs.duplocloud.com/docs/automation-platform/kubernetes-overview/kubernetes-lifecycle-hooks) in the **Other Container Config** field (optional). 6. Click **Create**. The Service is created. ## Viewing and Managing Services 1. From the DuploCloud Portal, navigate to **Kubernetes** -> **Services**. 2. Select **All** to view all Services or **Select App** to view Services by **App Name** (this option is only available when one or more Services were created with an App Name).

**Kubernetes - Services** page with the **Select App** list box

3. Select the Service from the **NAME** column. The Service details page displays. 4. Click **Actions** to choose from the following options:


Edit	Modify the container configuration.
Restart	Stop and then start the container immediately.
Start	Start a stopped container.
Stop	Stop a running container.

## Starting, Stopping, and Restarting Multiple DuploCloud Services Using the Services page, you can start, stop, and restart multiple services simultaneously. 1. In the DuploCloud Portal, navigate to **Kubernetes** -> **Services**. 2. Use the checkbox column to select the services you want to start or stop. 3. From the **Service Actions** menu, select **Start Service**, **Stop Service**, or **Restart Service.** Your selected services are started, stopped, or restarted.

## Importing a Native Kubernetes Service Using the **Import Kubernetes Deployment** pane, you can add a Service to an existing Kubernetes namespace using Kubernetes YAML. 1. In the DuploCloud Portal, select **Kubernetes -> Services** from the navigation pane. 2. Click **Add**. The **Add Service** page displays. 3. Click the **Import Kubernetes Deployment** button in the upper right. **The Import Kubernetes Deployment** pane displays. 4. Paste the deployment YAML code, as in the example below, into the **Import Kubernetes Deployment** pane. 5. Click **Import**. 6. In the **Add Service** page, click **Next.** 7. Click **Create**. Your Native Kubernetes Service is created.

YAML code for importing a Native Kubernetes Service

{% code title="Sample YAML code" %} ```yaml //apiVersion: apps/v1 kind: Deployment metadata: name: nginx-deployment namespace: duploservices-my-tenant labels: app: nginx spec: replicas: 3 selector: matchLabels: app: nginx template: metadata: labels: app: nginx spec: containers: - name: nginx1 image: nginx:1.14.2 ports: - containerPort: 80 ``` {% endcode %} ## Advanced EKS Configurations You can supply advanced configuration options with EKS in the DuploCloud Portal in several ways, including the advanced use cases in this section. ### Enable DuploCloud Master IP access to an EKS Security Group 1. In the DuploCloud Portal, navigate to **Administrator** -> **System Settings**. 2. Click the **System Config** tab. 3. Click **Add**. The **Add Config** pane displays. 4. From the **Config Type** list box, select, **Flags**. 5. From the **Key** list box, select **Block Master VPC CIDR Allow in EKS SG**.

**Add Config** pane with **Block Master VPC CIDR Allow in EKS SG** setting

6. From the **Value** list box, select **True**. 7. Click **Submit**. The setting is displayed as **BlockMasterVpcCidrAllowInEksSg** in the **System Config** tab.

**System Config** tab with **Flag BlockMasterVpcCidrAllowInEksSg** set to **true**

## Managing Kubernetes Containers 1. You can view and manage Containers from the DuploCloud Portal by navigating to one of two locations: * **Tenant-wide view**: Go to **Kubernetes** → **Containers**. * **Service-specific view**: Go to **Kubernetes** → **Services**, select the name of the Service, and select the **Containers** tab. 2. Click the menu icon (

) for a Container and select from the following options:

Option	Functionality
Logs	Displays container logs. When you select this option, the Container Logs window displays. Use the Follow Logs option (enabled by default) to monitor logging in real-time for a running container. See the graphic below for an example of the Container Logs window.
State	Displays container state information in a separate window, where you can select between two tabs: Container State: Shows key runtime details such as start time, restart policy, termination grace period, container image, restart count, and current state. Details: Shows the full YAML definition of the container and Pod, including metadata, labels, annotations, volumes, and status conditions.
Container Shell	Accesses the Container Shell. To access the Container Shell option, you must first set up Shell access for Docker.
Host Shell	Accesses the Host Shell.
Delete	Deletes the container.

**Containers** page displaying defined containers with highlighted Options Menu

### Downloading the Kubectl Token and KubeConfig DuploCloud provides you with a Just-In-Time (JIT) security token, for fifteen minutes, to access the `kubectl` cluster. 1. In the DuploCloud Portal, select **Administrator** -> **Infrastructure** from the navigation pane. 2. Select the Infrastructure in the **Name** column. 3. Click the **EKS** tab. 4. Copy the temporary **Token** and the **Server Endpoint** (Kubernetes URL) **Values** from the Infrastructure that you created. You can also download the complete configuration by clicking the **Download Kube Config** button.

**EKS** tab with **Download KubeConfig** button

5. Run the following commands, in a local Bash shell instance: ```shell > kubectl config --kubeconfig=config-demo set-cluster EKS_CLUSTER --server=[EKS_API_URL] --insecure-skip-tls-verify ``` ```shell > kubectl config --kubeconfig=config-demo set-credentials tempadmin --token=[TOKEN] ``` ```shell > kubectl config --kubeconfig=config-demo set-context EKS --cluster=EKS_CLUSTER --user=tempadmin --namespace=duploservices-[TENANTNAME] ``` ```shell > export KUBECONFIG=config-demo ``` ```shell > kubectl config use-context EKS ``` You have now configured `kubectl` to point and access the Kubernetes cluster. You can apply deployment templates by running the following command: ```shell > kubectl apply -f nginx.yaml ``` {% code title="nginx.yaml" %} ```yaml apiVersion: apps/v1 kind: Deployment metadata: name: nginx-deployment-g labels: app: nginx-deployment-g spec: replicas: 1 selector: matchLabels: app: nginx-deployment-g template: metadata: labels: app: nginx-deployment-g spec: nodeSelector: tenantname: "duploservices-stgeast1" containers: - name: nginx image: nginx:latest ports: - containerPort: 80 ``` {% endcode %} If you need security tokens of a longer duration, create them on your own. Secure them outside of the DuploCloud environment. ### Additional Resources For more detailed instructions and examples related to EKS and container deployments, see: * [Passing Kubernetes Configs and Secrets](https://docs.duplocloud.com/docs/automation-platform/kubernetes-overview/configs-and-secrets) * [Downloading and Configuring a Kubectl Token](https://docs.duplocloud.com/docs/automation-platform/kubernetes-overview/kubectl/kubectl-token) * [Setting Up Docker Registry Credentials](https://docs.duplocloud.com/docs/automation-platform/overview/aws-services/containers/docker-registry-credentials) * [Adding Pod Toleration Specs to a Container Configuration](https://docs.duplocloud.com/docs/automation-platform/kubernetes-overview/pod-toleration)