Overview
Search
⌃K
Links

AWS FAQ

Popular and frequently asked questions about DuploCloud and AWS

With DuploCloud, will we be more secure and compliant out-of-the-box, as opposed to using a default AWS configuration?

Yes. This is a major advantage of using DuploCloud. All controls are mapped to various compliance standards. DuploCloud is also very flexible in enabling you to add custom policies (resource quotas, ability to create public-facing endpoints, etc.)

How do I ssh into the host?

Under each host you can click on Connection details under Action dropdown which will provide the key file and instructions to ssh.

My host is windows how do I RDP?

Under host click on Connection details under Action dropdown, it will provide the password and instructions to rdp.

How do I get into the container where my code is running?

Under the services status tab, find the host where the container is running. Then ssh into the host (see instructions above) and then run sudo docker ps and get ID of the container. Then run sudo docker exec -it <containerid> bash“. You can tell which one is your container by using the image id. Don’t forget the sudo in docker commands

I cannot connect to my service URL, how do I debug?

Make sure the DNS name is resolves by running on your local machine: ping. Then we need to check if the application is running by testing the same from within the container. Then ssh into the host and then connect to your docker container using docker exec command (see above). From inside the container curl the application URL using the IP 127.0.0.1 and port where the application is running. Confirm that this works. Then curl the same URL using the IP address of the container instead of 127.0.0.1. The IP address can be obtained by running ifconfig command in the container.
If the connection from within the container works, then exit from the container into the host. Now curl the same endpoint from the host i.e., using container IP and port. If this works then under the ELB UI in DuploCloud note down the host port that DuploCloud created for the given container endpoint. This will be in the range 10xxx or the same as container port. Now try connecting to the “HostIP” and DuploMappedHostPort just obtained. If this works as well but the service URL is still failing, contact your enterprise admin or [email protected].

Do I need an AWS access key for my application when using AWS?

CI/CD is the topmost layer of the DevOps stack. DuploCloud should be viewed as a deployment and monitoring solution that is invoked by your CI/CD pipelines, written with tools such as CircleCI, Jenkins, GitHub Actions, etc. You build images and push them to container registries without involving DuploCloud, but invoke DuploCloud to update the container image. An example of this is in the CI/CD section. DuploCloud offers its own CI/CD tool (KatKit), as well.
If your application is running in a DuploCloud Tenant you do not need a long-term credential, such as an AWS access key. After your application is running in the Tenant, test your connection using the AWS CLI to verify access. For more information, see the AWS FAQ.

What keys should I use in my application to connect to the AWS resources I have created in DuploCloud like S3, Dynamo, SQS, etc.?

If your application is running in a DuploCloud Tenant you do not need a long-term credential, such as an AWS access key. After your application is running in the Tenant, test your connection using the AWS CLI to verify access.
Use the AWS constructor that takes only the region as the argument (us-west-2). DuploCloud setup links your instance profile and the resources. The host in DuploCloud already has access to the resources within the same tenant\project. DuploCloud AWS resources are reachable only from DuploCloud Hosts on the same account.
IMPORTANT: You cannot connect to any DuploCloud AWS resource from your local machine.

What is a rolling upgrade and how do I enable it?

If you have multiple replicas in your service i.e., multiple containers, and when you need to update your service, for example change an image or eNV variable then DuploCloud will make this change one container at a time i.e., it will bring down the first container and bring up the new one on that host with the updated config. If the new container fails to start or the health check URL does not return Http 200 status, then DuploCloud will pause the upgrade of remaining containers. A user must intervene by fixing the issue typically by updating the service with a newer image that has a fix. If no health check URL is specified, then DuploCloud only checks for the new container to be running. To specify health check, go the ELB menu and you will find the health check URL suffix.

I want to have multiple replicas of my mvc service, how do I make sure that only one of them runs migration?

Enable health check for your service and make sure that the API does not return Http 200 status till migration is done. Since DuploCloud waits for health check to be complete before upgrading the next service it is guaranteed that only one instance runs migration.

One or more of my containers are showing in a pending state, how can I debug?

If the status is Pending when the desired state is Running, then the image is being downloaded so wait a few minutes. If it’s been more than five minutes check the faults from the button below the table. Check if your image name is correct and does not have spaces. Image names are case sensitive so it should be all lower case i.e., the image name in DockerHub should also be lower case.
If the current state is Pending when desired state is Delete then it means this container is the old version of the service. It is still running as the system is in rolling upgrade and the previous replica is not successfully upgraded yet. Check the faults in other containers of this service for which the Current State is Pending with Desired State as Running.

Some of my container status says “pending delete” what does it mean?

This means DuploCloud is wanting to remove these containers. The most common reason for this is that another replica of the same service was upgraded but is now not operational. Hence DuploCloud has blocked the upgrade. You might see the other replicas in even “Running” state, but it is possible that health check is failing and that’s why the rolling upgrade is blocked. To unblock, fix the service configuration (image, env, etc.) to an error free state.

How to create host with public IP?

While creating host, click on show advanced and select the public subnet in the list of availability zone.

How do I look at detailed load balancer settings for my K8 Service?

DuploCloud provisions a load balancer for your K8 service. If you want to look at detailed settings on the load balancer like Idle timeout, Access logs and others, you can find and view them directly in AWS, by following the below steps:
You can find the load balancer name for your service by navigating to DevOps->Containers->EKS/Native, goto your service and look at the Load Balancer tab. If your using K8 Ingress then you will have to goto the K8 Ingress tab and find the Load Balancer configuration there.
Once you have the load balancer name, you can goto AWS console via the DuploCloud UI (here). Once you are in the AWS Console, navigate to the EC2 service view and navigate to Load Balancers from the left navigation menu. Find your load balancer by name from that list and look at the detailed attributes in that view (scroll down to attributes)

Why use Terraform when Cloud Formation is AWS native?

Many customers prefer Terraform to Cloud Formation. Many elements in the Cloud DevOps cycle can be non-AWS (such as native Kubernetes, MongoDB, Data Dog, Okta, etc.) and all support Terraform providers.

AWS Copilot seems to be a low-code tool and developer-friendly. I understand that Copilot relies on existing AWS tools to monitor.

AWS Copilot is used only for ECS cluster management, which is just a small subset of overall Cloud operations. In the chart below, you can see that DuploCloud includes container management in addition to multiple other functions. You can still use Copilot with DuploCloud for ECS management. Other clients have used tools like Harness or using Helm with DuploCloud for Kubernetes management.
DuploCloud features

Is the Duplocloud instance a single point of failure, and to what extent, if so? Who manages this instance?

No. DuploCloud achieves High Availability (HA) using cluster management. And because you have an AWS account, your data is always secure in AWS.
Our customers have never been blocked from performing urgent configuration updates because DuploCloud is unavailable. If DuploCloud is down, it is similar to your DevOps engineer being unavailable. In this case, someone else can take their place by directly configuring AWS.
Our customers consider this single-platform approach very beneficial for both centralizing operations and maximizing developer access. DuploCloud runs in a VM in your account. We manage this VM with your permission, and we can also give you simple steps to troubleshoot or install new updates. We are available 24x7 and work as your extended DevOps team.

With DuploCloud, will we be more secure and compliant out-of-the-box, as opposed to using a default AWS configuration?

Yes. This is a major advantage of using DuploCloud. All controls are mapped to various compliance standards. DuploCloud is also very flexible in enabling you to add custom policies (resource quotas, ability to create public-facing endpoints, etc.)

Is scaling handled differently from ECS, where you set thresholds and min/max instances to spin up/down?

No. DuploCloud manages scaling in the same way. We expose these thresholds in a simple form that is much easier to configure, even for a user with no DevOps experience. Behind the scenes, DuploCloud maps to the same native AWS constructs.

Is attaching an RDS instance to each application for spin up/down purposes expensive? Some of our RDS instances are small.

Small instances are generally no problem. DuploCloud can manage dynamic database spinup/down with a single RDS database. Sharing AWS services in dynamic environments also helps reduce costs.

Can an RDS be left intact if I only want to destroy the application and not the database?

Yes.

Is Kubernetes required to use DuploCloud? Is using Kubernetes better than using ECS?

DuploCloud supports both AWS ECS and Kubernetes, among other Cloud solutions.
The main advantage of Kubernetes is its broad-based, highly-customizable, third-party open-source community that champions and supports it as a delivery platform. For example, Astronomer (managed air flow), Time series database, IsTio Service Mesh, and Kong API Gateway all expect you to have a Kubernetes deployment. But if your business needs and use cases are met with an AWS solution, for example, you may have no need for Kubernetes.
Choose the container management software that best satisfies your use cases and the complexity level of your requirements. DuploCloud supports AWS, Kubernetes, Azure, and GCP. Many customers use software from multiple vendors to create robust business solutions backed by DuploCloud's assurance of compliance and automated low-code/no-code DevOps approach.

Our current RDS logs are sent to CloudWatch. Does DuploCloud support this?

Yes.

Can you delete an application and all its resources with a single click and confirmation?

Yes.

Can anything in the UI be automated over an API as well?

Yes. Every element in the DuploCloud UI is populated by calling an API.

Does DuploCloud make any assumptions that we should be aware of that may impact initial implementation time?

No. DuploCloud segregates resources into environments called Tenants that accelerate ramp-up time. For more information about implementation, contact the DuploCloud support team.