Author: K. C. Ramakrishna (www.rknowsys.com)
License: GNU-FDL - http://www.gnu.org/licenses/fdl.html
Date: 18-Nov-08
Please mail comments/corrections to kcr AT rknowsys DOT com, kcr AT members DOT fsf DOT org,
Note: This is a follow up to the tutorial on hosting the site with mongrel.
This tutorial can be found here: http://docs.google.com/Doc?id=dcn2ckbh_20hk4kc4d4
You may have to read it for some optimisations of RoR app to use EBS.
Credits and Disclaimer: Quite a bit of stuff exists in various tutorials - especially the part where we configure mysql to use EBS - This excellent tutorial is on AWS resources page (I don't have the exact URL). We just made an effort to consolidate a lot of relevant stuff into one document with a consistent form. This is the general outline you need to follow for any app on AWS.
Background:
After building it, we were requested to host and manage it for them. Initially we went with knownhost which is OK but a production RoR application needs more RAM than what we get on most VPS plans - especially if we have image processing. We did consider AWS but at that time it did not have EBS and the client did not initially expect enough traffic to justify a 'scalr' managed cluster. We were looking for a replacement to a dedicated server. Once EBS was launched, we immediately decided to move the site to AWS. The Cost-benefit analysis is compelling.
Update:
tripladder.com is not live anymore, please look at www.vitalizeu.com but the below process is still good.
The following tutorial starts off after signing up with AWS and configuring your desktop/laptop to be able to connect to AWS and launch instances i.e. we assume that you have completed the 'Getting Started' section of AWS.
We have started with the stock Fedora image and modified it to our requirements. We could have used CentOS but Fedora-8 appeared at the top of the list and we went ahead with it.
The application hosting has the following steps.
Launching an instance.
Installing RoR, gems, plugins...We used rmagick, hence we had to install Imagemagick too.
Installing REE and Phusion (mod_rails)
Installing mysql.
Intalling the application (checkout from subversion).
Creating and attaching a EBS volume. Mysql with data on EBS
Modifying the RoR app to save user upload files to EBS.(http://docs.google.com/Doc?id=dcn2ckbh_20hk4kc4d4)
Installing and configuring a production level ferret server
Configuring Apache to serve the application, caching optimisations for performance.
Configuring permanent public IP (covered) and DNS (we have the domain parked with go daddy but this is not covered in this article)
Configuring smtp (email) support for RoR application.
Once we have the perfect server setup, save it to S3.
Periodic automated backups - Using Amazon snapshots.
1. Launching an instance and logging in:
guest@kc-laptop:~$ ec2-run-instances ami-2b5fba42 -k gsg-keypair -z us-east-1a
RESERVATION r-a864bec1 526262918289 default
INSTANCE i-xxxxxxxx ami-2b5fba42 pending gsg-keypair 0 m1.small 2008-11-09T10:19:29+0000 us-east-1a aki-a71cf9ce ari-a51cf9cc
guest@kc-laptop:~$ ec2-describe-instances i-xxxxxxxx
RESERVATION r-a864bec1 526262918289 default
INSTANCE i-xxxxxxxx ami-2b5fba42 ec2-xx-xxx-49-xxx.compute-1.amazonaws.com domU-12-31-39-00-68-93.compute-1.internal running gsg-keypair 0 m1.small 2008-11-09T10:19:29+0000 us-east-1a aki-a71cf9ce ari-a51cf9cc
# Authorise access on port 22 for ssh
guest@kc-laptop:~$ ec2-authorize default -p 22
GROUP default
PERMISSION default ALLOWS tcp 22 22 FROM CIDR 0.0.0.0/0
# Authorise access on port 80 for http
guest@kc-laptop:~$ ec2-authorize default -p 80
GROUP default
PERMISSION default ALLOWS tcp 80 80 FROM CIDR 0.0.0.0/0
# Authorise access on port 3306 for mysql admin.
guest@kc-laptop:~$ ec2-authorize default -p 3306
GROUP default
PERMISSION default ALLOWS tcp 3306 3306 FROM CIDR 0.0.0.0/0
1.1 Associating a permanent IP address with this instance.
guest@kc-laptop:~$ ec2-allocate-address
ADDRESS 75.101.158.167
guest@kc-laptop:~$ ec2-associate-address -i i-xxxxxxxx 75.101.158.167
ADDRESS 75.101.158.167 i-xxxxxxxx
1.2 Check by logging in
guest@kc-laptop:~$ ssh -i ~/AWS-do-not-delete/id_rsa-gsg-keypair root@ec2-xx-xxx-49-xxx.compute-1.amazonaws.com
OR
guest@kc-laptop:~$ ssh -i ~/AWS-do-not-delete/id_rsa-gsg-keypair root@75.101.158.167
Server is accessible;
Went to godaddy.com (or your registrar) and set the DNS records accordingly:
tripladder.com <==> 75.101.158.167
2. Updating the system and installing required software
2.1 Updating the system
[root@domU-12-31-39-00-68-93 ~]# yum update
Updated: fedora-release.noarch 0:8-6.transition
Complete!
2.2 Installing mysql
[root@domU-12-31-39-00-68-93 ~]# yum install mysql mysql-server mysql-devel
Installed: mysql-devel.i386 0:5.0.45-6.fc8 mysql-server.i386 0:5.0.45-6.fc8
Dependency Installed: device-mapper-devel.i386 0:1.02.22-1.fc8 e2fsprogs-devel.i386 0:1.40.4-2.fc8 keyutils-libs-devel.i386 0:1.2-2.fc6 krb5-devel.i386 0:1.6.2-14.fc8 libselinux-devel.i386 0:2.0.43-1.fc8 libsepol-devel.i386 0:2.0.15-1.fc8 mysql.i386 0:5.0.45-6.fc8 mysql-libs.i386 0:5.0.45-6.fc8 openssl-devel.i386 0:0.9.8b-17.fc8 perl-DBD-MySQL.i386 0:4.005-2.fc8.1 perl-DBI.i386 0:1.58-2.fc8 zlib-devel.i386 0:1.2.3-14.fc8
Complete!
2.3 Installing httpd server, tools required for installing REE and subversion (for checking out the code).
[root@domU-12-31-39-00-68-93 ~]# yum install gcc-c++ httpd httpd-devel subversion
Installed: gcc-c++.i386 0:4.1.2-33 httpd-devel.i386 0:2.2.9-1.fc8 subversion.i386 0:1.4.4-7
Dependency Installed: apr.i386 0:1.2.11-2 apr-devel.i386 0:1.2.11-2 apr-util.i386 0:1.2.10-2.fc8 apr-util-devel.i386 0:1.2.10-2.fc8 cyrus-sasl-devel.i386 0:2.1.22-8.fc8 db4-cxx.i386 0:4.6.21-2.fc8 db4-devel.i386 0:4.6.21-2.fc8 expat-devel.i386 0:2.0.1-2 httpd.i386 0:2.2.9-1.fc8 httpd-tools.i386 0:2.2.9-1.fc8 libstdc++-devel.i386 0:4.1.2-33 neon.i386 0:0.27.2-2 openldap-devel.i386 0:2.3.39-4.fc8 perl-URI.noarch 0:1.35-3.1
Updated: db4.i386 0:4.6.21-2.fc8 openldap.i386 0:2.3.39-4.fc8
Complete!
2.4 Installing REE
[root@domU-12-31-39-00-68-93 ~]# mkdir software
[root@domU-12-31-39-00-68-93 ~]# cd software/
[root@domU-12-31-39-00-68-93 software]# wget http://rubyforge.org/frs/download.php/41040/ruby-enterprise-1.8.6-20080810.tar.gz
05:28:36 (3.66 MB/s) - `ruby-enterprise-1.8.6-20080810.tar.gz' saved [6431918/6431918]
[root@domU-12-31-39-00-68-93 software]# tar xzf ruby-enterprise-1.8.6-20080810.tar.gz
[root@domU-12-31-39-00-68-93 software]# ./ruby-enterprise-1.8.6-20080810/installer
[/opt/ruby-enterprise-1.8.6-20080810] :
## kc - Choose a path - I chose the default as mentioned above. Type 'yes' to all questions.
## kc - You will get a confirmation after REE has been successfully installed.
2.4.1 Uploading the keys to EC2 instance - this will enable you to run AWS commands right from the instance.
[root@domU-12-31-39-00-68-93 ~]# mkdir .ec2
# Now go back to a terminal on your laptop/desktop:
guest@kc-laptop:~$ scp -i ~/AWS-do-not-delete/id_rsa-gsg-keypair /home/guest/AWS-do-not-delete/EC2-keys/pk-IFMHVYZ47LTIHHLIHU4A5X6SVULFXV3D.pem root@tripladder.com:
pk-IFMHVYZ47LTIHHLIHU4A5X6SVULFXV3D.pem 100% 922 0.9KB/s 00:00
guest@kc-laptop:~$ scp -i ~/AWS-do-not-delete/id_rsa-gsg-keypair /home/guest/AWS-do-not-delete/EC2-keys/cert-IFMHVYZ47LTIHHLIHU4A5X6SVULFXV3D.pem root@tripladder.com:
cert-IFMHVYZ47LTIHHLIHU4A5X6SVULFXV3D.pem 100% 916 0.9KB/s 00:00
[root@domU-12-31-39-00-68-93 ~]# mv cert-IFMHVYZ47LTIHHLIHU4A5X6SVULFXV3D.pem .ec2/
[root@domU-12-31-39-00-68-93 ~]# mv pk-IFMHVYZ47LTIHHLIHU4A5X6SVULFXV3D.pem .ec2/
2.4.2 Install latest and full version of AWS tools on the instance
We need Java for the AWS APIs:
[root@domU-12-31-39-00-68-93 software]# wget <Java Dk - jdk-6u10-linux-i586.bin>
[root@domU-12-31-39-00-68-93 software]# bash jdk-6u10-linux-i586.bin
# kc - Java has been installed to /root/software/jdk1.6.0_10/
# - We need to put it into .bash_profile
[root@domU-12-31-39-00-68-93 ~]# cd software/
[root@domU-12-31-39-00-68-93 software]# wget http://s3.amazonaws.com/ec2-downloads/ec2-api-tools.zip
[root@domU-12-31-39-00-68-93 software]# unzip -q ec2-api-tools.zip
2.4.3 Set some environment variables for convenience
# kc - Note: Because we installed REE and not the native (yum install ruby) we need to make a small modification for ruby-lib-paths
# We need to put in some stuff in the bash_profile for some things - these are indicated in the comments below:
[root@domU-12-31-39-00-68-93 ~]# vi .bash_profile
# kc start - 09Nov08 - for enterprise ruby
PATH=/opt/ruby-enterprise-1.8.6-20080810/bin:$PATH
#http://developer.amazonwebservices.com/connect/thread.jspa?threadID=12491
# Because we have REE instead of 'yum install ruby'
export RUBYLIB=/usr/lib/site_ruby
# kc end - 09Nov08 - for enterprise ruby
# kc start - 09Nov08 - for EC2 tools
export EC2_HOME=/root/software/ec2-api-tools-1.3-26369
export EC2_PRIVATE_KEY=~/.ec2/pk-5YPLCLZG2ZBEKNWCTWESOHEOMACLCZTN.pem
export EC2_CERT=~/.ec2/cert-5YPLCLZG2ZBEKNWCTWESOHEOMACLCZTN.pem
PATH=$PATH:$EC2_HOME/bin
export JAVA_HOME=/root/software/jdk1.6.0_10/jre
# kc start - 09Nov08 - for EC2 tools
[root@domU-12-31-39-00-68-93 ~]# source .bash_profile
[root@domU-12-31-39-00-68-93 software]# source ~/.bash_profile
2.4.4 Installing Passenger and configuring it for the previously installed http server
[root@domU-12-31-39-00-68-93 ~]# gem install --no-ri --no-rdoc passenger
Building native extensions. This could take a while...
Successfully installed passenger-2.0.3
1 gem installed
[root@domU-12-31-39-00-68-93 ~]# passenger-install-apache2-module
# kc - accept default values and let the installation finish - It will take some time so be patient.
2.4.5 Installing some ruby gems and related software
# - strictly speaking this is not necessary but some gems check for availablity of rails-2.0.2 before installing so we might as well get it installed. Especially ferret checks for rails 2.0.2 before it starts.
[root@domU-12-31-39-00-68-93 tripladder]# gem install --no-ri --no-rdoc rails -v=2.0.2
Bulk updating Gem source index for: http://gems.rubyforge.org
Successfully installed rails-2.0.2
Successfully installed rake-0.8.2
Successfully installed activesupport-2.0.2
Successfully installed activerecord-2.0.2
Successfully installed actionpack-2.0.2
Successfully installed actionmailer-2.0.2
Successfully installed activeresource-2.0.2
All below gems are required for our app - You may install based on your application:
[root@domU-12-31-39-00-68-93 ~]# gem install --no-rdoc --no-ri actionwebservice -v=1.2.6
Successfully installed activesupport-1.4.4
Successfully installed actionpack-1.13.6
Successfully installed activerecord-1.15.6
Successfully installed actionwebservice-1.2.6
4 gems installed
[root@domU-12-31-39-00-68-93 ~]# gem install --no-rdoc --no-ri ferret -v=0.11.4
Building native extensions. This could take a while...
Successfully installed ferret-0.11.4
1 gem installed
[root@domU-12-31-39-00-68-93 tripladder]# gem install --no-rdoc --no-ri acts_as_ferret -v=0.4.3
Successfully installed acts_as_ferret-0.4.3
1 gem installed
2.5.6 Installing Imagemagick and rmagick - This step gave me a lot of trouble - do these with a lot of care
# See this tutorial: http://rmagick.rubyforge.org/install-faq.html
[root@domU-12-31-39-00-68-93 software]# yum install ghostscript-devel ghostscript ghostscript-font
Installed: ghostscript-devel.i386 0:8.63-1.fc8
Dependency Installed: ghostscript.i386 0:8.63-1.fc8 ghostscript-fonts.noarch 0:5.50-18.fc8 jasper-libs.i386 0:1.900.1-7.fc8 libXfont.i386 0:1.3.1-2.fc8 libfontenc.i386 0:1.0.4-4.fc8 urw-fonts.noarch 0:2.4-3.fc8 xorg-x11-font-utils.i386 1:7.2-2.fc8
Complete!
[root@domU-12-31-39-00-68-93 ~]# yum install perl perl-devel *ghostscript* *freetype* *jpeg* *png* *wmf* *tiff* *ghostscript* *lcms* *libexif* * libxml* *zlib* *bzip*
# - There will be lot of activity - just relax and accept all options.
# - Now get the exact version of Imagemagick and copy it to your 'software' directory.
[root@domU-12-31-39-00-68-93 software]# scp root@<myserver.com>:software/ImageMagick-6.4.1-0.tar.gz ./
root@rknowsys.com's password:
ImageMagick-6.4.1-0.tar.gz 100% 11MB 1.2MB/s 00:09
[root@domU-12-31-39-00-68-93 software]# tar xzf ImageMagick-6.4.1-0.tar.gz
[root@domU-12-31-39-00-68-93 software]# cd ImageMagick-6.4.1
[root@domU-12-31-39-00-68-93 ImageMagick-6.4.1]# ./configure
# kc - *Lots* of activity.....
[root@domU-12-31-39-00-68-93 ImageMagick-6.4.1]# make install
# kc - *Lots* of activity.....
[root@domU-12-31-39-00-68-93 ImageMagick-6.4.1]# ln -s /usr/local/lib/* /usr/lib/
ln: creating symbolic link `/usr/lib/pkgconfig': File exists
[root@domU-12-31-39-00-68-93 ImageMagick-6.4.1]# mv /usr/lib/pkgconfig/ /root/software/original_pkgcongi_09Nov08
[root@domU-12-31-39-00-68-93 ImageMagick-6.4.1]# ln -s /usr/local/lib/pkgconfig/ /usr/lib/
[root@domU-12-31-39-00-68-93 ImageMagick-6.4.1]# gem install --no-rdoc --no-ri rmagick -v=2.3.0
Building native extensions. This could take a while...
Successfully installed rmagick-2.3.0
1 gem installed
3. Creating and attaching external EBS volume and making it usable
3.1 Creating a volume
guest@kc-laptop:~$ ec2-create-volume -s 20 -z us-east-1a
VOLUME vol-<my-volume> 20 us-east-1a creating 2008-09-22T10:29:36+0000
guest@kc-laptop:~$ ec2-describe-volumes vol-<my-volume>
VOLUME vol-<my-volume> 20 us-east-1a available 2008-09-22T10:29:36+0000
3.2 Attaching the volume to our instance
guest@kc-laptop:~$ ec2-attach-volume vol-<my-volume> -i <my-instance> -d /dev/sdh
ATTACHMENT vol-<my-volume> <my-instance> /dev/sdh attaching 2008-09-22T10:32:38+0000
guest@kc-laptop:~$ ec2-describe-volumes
VOLUME vol-8105e0e8 20 us-east-1a in-use 2008-09-22T10:29:36+0000
ATTACHMENT vol-<my-volume> <my-instance> /dev/sdh attached 2008-09-22T10:32:38+0000
3.3Making it usable
[root@domU-12-31-39-00-65-E3 ~]# yes | mkfs -t ext3 /dev/sdh
mke2fs 1.40.4 (31-Dec-2007)
/dev/sdh is entire device, not just one partition!
Proceed anyway? (y,n) Filesystem label=
OS type: Linux
Block size=4096 (log=2)
Fragment size=4096 (log=2)
2621440 inodes, 5242880 blocks
262144 blocks (5.00%) reserved for the super user
First data block=0
Maximum filesystem blocks=0
160 block groups
32768 blocks per group, 32768 fragments per group
16384 inodes per group
Superblock backups stored on blocks:
32768, 98304, 163840, 229376, 294912, 819200, 884736, 1605632, 2654208,
4096000
Writing inode tables: done
Creating journal (32768 blocks): done
Writing superblocks and filesystem accounting information: done
This filesystem will be automatically checked every 26 mounts or
180 days, whichever comes first. Use tune2fs -c or -i to override.
[root@domU-12-31-39-00-65-E3 ~]# mkdir -p /mnt/data-store
[root@domU-12-31-39-00-65-E3 ~]# mount /dev/sdh /mnt/data-store/
4. Ensuring that mysql uses EBS
[root@domU-12-31-39-00-68-93 tripladder]# rmdir /var/lib/mysql/
[root@domU-12-31-39-00-68-93 tripladder]# mkdir -p /mnt/data-store/new_mysql_store/
[root@domU-12-31-39-00-68-93 tripladder]# ln -s /mnt/data-store/new_mysql_store/ /var/lib/mysql/
[root@domU-12-31-39-02-68-78 tripladder]# chown -R mysql:mysql /mnt/data-store/new_mysql_store/
[root@domU-12-31-39-00-65-E3 ~]# service mysqld start
Initializing MySQL database: Installing MySQL system tables...
OK
...
[root@domU-12-31-39-00-68-93 tripladder]# ls /mnt/data-store/new_mysql_store/
ibdata1 ib_logfile0 ib_logfile1 mysql mysql.sock .........
4.1 secure your mysql installation
[root@domU-12-31-39-00-65-E3 ~]# mysql_secure_installation
4.2 Create your DB
# - Now create your DB, Db-user and access privileges to the db-user.
# - You will have to do something like this:
[root@domU-12-31-39-00-68-93 tripladder]# mysql -u root -p
mysql> create database <database name>;
Query OK, 1 row affected (0.01 sec)
mysql> grant all on <database name>.* to '<database-user>'@'localhost' identified by '<database-passwd>';
Query OK, 0 rows affected (0.00 sec)
4.3 Creating a schema or restoring from backup. (Optional) You can even do this later.
# after creating the database, you will have to create the schema and seed data -
You can do this: (Take care to edit the config/database.yml file as shown in the next section before you run rake)
[root@domU-12-31-39-00-68-93 tripladder]# rake db:migrate RAILS_ENV=production
OR
[root@domU-12-31-39-00-68-93 tripladder]# mysql -u <database-user> -p <database name> < <Path to backup scripts>/backup.sql
4.4 Stop the mysqld
[root@domU-12-31-39-00-68-93 tripladder]# service mysqld stop
5. Installing the application
[root@domU-12-31-39-00-68-93 ~]# cd /var/www/html/
[root@domU-12-31-39-00-68-93 html]# svn co https://<servername>/svn/tripladder/
5.1 Configuring the database access credentials
[root@domU-12-31-39-00-68-93 html]# cd tripladder/
[root@domU-12-31-39-00-68-93 tripladder]# vi config/database.yml
production:
adapter: mysql
database: <database name>
username: <database user>
password: <passwd for database user>
host: localhost
5.2 Configuring some stuff in environment.rb
# kc - Note - these configs are spread across the whole file. I am listing out the sections that need changing.
# - kc Note - Tripladder uses google apps for Intranet and email.
[root@domU-12-31-39-00-68-93 tripladder]# vi config/environment.rb
ENV['RAILS_ENV'] ||= 'production'
RAILS_GEM_VERSION = '2.0.2' unless defined? RAILS_GEM_VERSION
# kc start - use google to send our email - 23Sep08
ActionMailer::Base.smtp_settings = {
:tls => true,
:address => "smtp.gmail.com",
:port => "587",
:domain => "tripladder.com",
:authentication => :plain,
:user_name => "<mail-user>@tripladder.com",
:password => "<mail-user-passwd>"
}
# kc end - use google to send our email - 23Sep08
5.3 Configuring stuff for ferret
# kc - Ferret will give some trouble unless all related directories have the right ownerships/permissions. You may need to iterate here a bit.
5.3.1 Ferret configurations
[root@domU-12-31-39-00-68-93 tripladder]# vi config/ferret_server.yml
production:
host: localhost
port: 9010
pid_file: log/ferret.pid
log_file: log/ferret_server.log
log_level: warn
# kc - Note - Also comment out rest of the file.
[root@domU-12-31-39-00-68-93 tripladder]# vi config/environments/ferret_environment.rb
INDEX = Index::Index.new(:path => '/var/www/html/tripladder/index')
# - kc - Now we will commit all these files to subversion so that we don't have to keep worrying about this during svn updates (Developers will have to take care to change relevant sections.
[root@domU-12-31-39-00-68-93 tripladder]# svn commit config -m "From production server - kc"
Sending config/database.yml
Sending config/environment.rb
Sending config/environments/ferret_environment.rb
Sending config/ferret_server.yml
Transmitting file data ....
Committed revision 997.
5.3.2 Configuring ferret init scripts
# kc - Create this file and paste the contents (make changes as per your setup)
[root@domU-12-31-39-00-68-93 tripladder]# vi script/ferret_init_production
# kc - end of content for the file - Do not copy this line
#!/bin/bash
#
# This script starts and stops the ferret DRb server
# chkconfig: 2345 89 36
# description: Ferret search engine for ruby apps.
#
# save the current directory
CURDIR=`pwd`
PATH=/usr/local/bin:/opt/ruby-enterprise-1.8.6-20080810/bin:$PATH
RORPATH="/var/www/html/tripladder"
case "$1" in
start)
cd $RORPATH
echo "Starting ferret DRb server."
FERRET_USE_LOCAL_INDEX=1 \
script/ferret_server -e production start
chmod a+rwx /var/www/html/tripladder/log/ferret.pid # we need this for to allow some manipulations
;;
stop)
cd $RORPATH
echo "Stopping ferret DRb server."
FERRET_USE_LOCAL_INDEX=1 \
script/ferret_server -e production stop
;;
*)
echo $"Usage: $0 {start, stop}"
exit 1
;;
esac
cd $CURDIR
# kc - end of content for the file- Do not copy this line
[root@domU-12-31-39-00-68-93 tripladder]# chmod a+x script/ferret_init_production
[root@domU-12-31-39-00-68-93 tripladder]# svn add script/ferret_init_production
A script/ferret_init_production
[root@domU-12-31-39-00-68-93 tripladder]# svn commit script -m "From production server - kc"
Adding script/ferret_init_production
Transmitting file data .
Committed revision 998.
[root@domU-12-31-39-00-68-93 tripladder]# ln -s /var/www/html/tripladder/script/ferret_init_production /etc/init.d/
[root@domU-12-31-39-00-68-93 tripladder]# chmod -R a+rwx log/
[root@domU-12-31-39-00-68-93 tripladder]# chmod -R a+rwx tmp/
# -Start - section is optional - you will need to check if your dir structure already has 'index' directory required by ferret (ferret_environment.rb) .
[root@domU-12-31-39-00-68-93 tripladder]# mkdir index
[root@domU-12-31-39-00-68-93 tripladder]# chmod -R a+rwx index/
# - End - section is optional - you will need to check if your dir structure already has 'index' directory.
[root@domU-12-31-39-00-68-93 software]# service ferret_init_production start
Starting ferret DRb server.
Install the ruby-openid gem to enable OpenID support
starting ferret server...
[root@domU-12-31-39-00-68-93 software]# service ferret_init_production stop
Stopping ferret DRb server.
Install the ruby-openid gem to enable OpenID support
stopping ferret server...
process 1723 has stopped
# kc - If you have problems here you will need to check for <ROR-Home>/log/ferret.log(or ferret.out) files for errors and fix them accordingly.
# - Usually we will have problems with ownership or permission for ferret log files - 'log' directory and 'index' directory in ROR-Home.
6. Configuring Apache and getting it to serve the application
6.1 Getting Apache introduced to REE and Passenger
[root@domU-12-31-39-00-68-93 tripladder]# vi /etc/httpd/conf/httpd.conf
# kc start For Phusion and enterprise Ruby - 09Nov08
LoadModule passenger_module /opt/ruby-enterprise-1.8.6-20080810/lib/ruby/gems/1.8/gems/passenger-2.0.3/ext/apache2/mod_passenger.so
PassengerRoot /opt/ruby-enterprise-1.8.6-20080810/lib/ruby/gems/1.8/gems/passenger-2.0.3
PassengerRuby /opt/ruby-enterprise-1.8.6-20080810/bin/ruby
# kc end For Phusion and enterprise Ruby - 09Nov08
6.2 Getting Apache to recognise our application as well as some REE/Passenger config parameters
# kc start - Deploying tripladder app
RailsEnv production
PassengerMaxPoolSize 26
PassengerLogLevel 0
PassengerMaxInstancesPerApp 0
PassengerPoolIdleTime 86400
RailsSpawnMethod smart
<VirtualHost *:80>
ServerName www.tripladder.com
DocumentRoot /var/www/html/tripladder/public
# kc - to redirect tripladder.com to www.tripladder.com
RewriteEngine on
RewriteCond %{HTTP_HOST} ^tripladder\.com
RewriteRule ^(.*)$ http://www.tripladder.com/$1 [R=permanent,L]
# kc - to redirect tripladder.com to www.tripladder.com
</VirtualHost>
# kc end - Deploying tripladder app
6.3 Deploying the app and checking that its working
[root@domU-12-31-39-00-68-93 tripladder]# service mysqld start
Starting MySQL: [ OK ]
[root@domU-12-31-39-00-68-93 tripladder]# service httpd restart
Stopping httpd: [FAILED]
Starting httpd: [ OK ]
[root@domU-12-31-39-00-68-93 software]# service ferret_init_production start
Starting ferret DRb server.
Install the ruby-openid gem to enable OpenID support
starting ferret server...
# - Check that the application is accessible from the URL or the IP address.
7. Setting up periodic backups, cleaning up and miscellaneous activities
7.1 Ensure that you have full version of AWS tools (Section 2.4.2)
7.2 Set a cron task to take periodic backups of mysql
# - Create a directory on EBS for your mysql dumps.
[root@domU-12-31-39-00-68-93 ~]# mkdir -p /mnt/data-store/mysql_backups/
[root@domU-12-31-39-00-68-93 ~]# chmod -R a+rw /mnt/data-store/mysql_backups/
# Check that mysqldump works manually before you put it in cron.
[root@domU-12-31-39-00-68-93 ~]# crontab -e
2 0 * * * mysqldump --user=root --password=<root passwd> --single-transaction <database name> > /mnt/data-store/mysql_backups/database_name.sql
7.3 Use logrotate to clean up older mysqld dumps as well as RoR log files.
# kc - Note - I have elected to have full backups everyday and rotate them every 30 days. i.e. I can go back-data upto 30 days if I want to restore mysql.
[root@domU-12-31-39-00-68-93 ~]# vi /etc/logrotate.conf
# kc - 09Nov08 - for rotating rails logs
/var/www/html/tripladder/log/*.log {
size=10M
missingok
rotate 4
compress
delaycompress
notifempty
copytruncate
}
# kc - 09Nov08 - for rotating rails logs
# kc - 09Nov08 - for rotating mysqldumps
/mnt/data-store/mysql_backups/tripladder_prod.sql {
daily
rotate 30
compress
delaycompress
notifempty
notifempty
copytruncate
}
# kc - 09Nov08 - for rotating mysql dumps
7.4 Use EBS snapshot facility to automate backups.
[root@domU-12-31-39-02-68-78 ~]# vi software/backup_script.sh
#!/bin/bash
export EC2_PRIVATE_KEY=$(echo /root/.ec2/pk-xxxxxxxxxx.pem)
export EC2_CERT=$(echo /root/.ec2/cert-xxxxxxxxxxx.pem)
export EC2_HOME=/root/software/ec2-api-tools-1.3-26369
export PATH=$PATH:$EC2_HOME/bin
export JAVA_HOME=/root/software/jdk1.6.0_10/jre
/root/software/ec2-api-tools-1.3-26369/bin/ec2-create-snapshot vol-<myvolume>
# - test that this is working!!!
[root@domU-12-31-39-00-68-93 ~]# chmod a+x software/backup_script.sh
[root@domU-12-31-39-00-68-93 ~]# ./software/backup_script.sh
SNAPSHOT snap-d55cbdbc vol-8105e0e8 pending 2008-11-11T10:56:10+0000
# - kc - now we put this in the crontab.
[root@domU-12-31-39-00-68-93 ~]# crontab -e
3 0 * * * /root/software/backup_script.sh
crontab: installing new crontab
# kc - start - Important -
# We save all user uploaded data to 2 location - 1st to a directory in the RoR dir structure and 2nd to a directory on the EBS.
# The rails app access this data from EC2 local storage.
# If ever the instance dies, we copy the data from EBS to associated directory on directory structure. Now why don't we link the RoR pubic directory to EBS is because EBS has some
# price attached to disk access. I could not calculate this with any conviction and hence decided not to use the disk for reads. The EBS is only used for writes for user data.
# Having user data like this reduces your disk access costs. Please look at this tutorial to see how we achieved this in rails - http://docs.google.com/Doc?id=dckr2rnx_5ghz54qcj
# Since Mysql can't have 2 data dirs, we host the mysql data directory on EBS.
# kc - end - Important -
7.5 Some apache optimisations
[root@domU-12-31-39-00-68-93 tripladder]# vi public/.htaccess
# kc start - enable browser caching - 24Sep08
<IfModule mod_expires.c>
ExpiresActive On
ExpiresDefault "access plus 1 seconds"
ExpiresByType text/html "access plus 1 seconds"
ExpiresByType image/gif "access plus 120 minutes"
ExpiresByType image/jpeg "access plus 120 minutes"
ExpiresByType image/png "access plus 120 minutes"
ExpiresByType text/css "access plus 60 minutes"
ExpiresByType text/javascript "access plus 60 minutes"
ExpiresByType application/x-javascript "access plus 60 minutes"
ExpiresByType text/xml "access plus 60 minutes"
</IfModule>
[root@domU-12-31-39-00-68-93 tripladder]# svn commit public/.htaccess -m "From production server"
Sending public/.htaccess
Transmitting file data .
Committed revision 1000.
# - Get Apache to read this by restarting the application:
[root@domU-12-31-39-00-68-93 tripladder]# touch tmp/restart.txt
-- OR --
[root@domU-12-31-39-00-68-93 tripladder]# service httpd restart
7.6 We need to be able to use rake to clear caches else this will become a major headache when we update to new versions.
[root@domU-12-31-39-00-68-93 tripladder]# service httpd stop
Stopping httpd: [ OK ]
[root@domU-12-31-39-00-68-93 tripladder]# rm -f public/cache/*cache
[root@domU-12-31-39-00-68-93 tripladder]# ls public/cache/
[root@domU-12-31-39-00-68-93 tripladder]#
[root@domU-12-31-39-00-68-93 tripladder]# cd public/cache/
[root@domU-12-31-39-00-68-93 cache]# cd ..
[root@domU-12-31-39-00-68-93 public]# svn del cache
D cache
[root@domU-12-31-39-00-68-93 public]# svn commit -m "For symlinking tmp/cache to public/cache"
Deleting public/cache
Committed revision 1041.
[root@domU-12-31-39-00-68-93 public]# ln -s /var/www/html/tripladder/tmp/cache/ /var/www/html/tripladder/public/
[root@domU-12-31-39-00-68-93 public]# chmod a+rwx /var/www/html/tripladder/tmp/cache
[root@domU-12-31-39-00-68-93 public]# service httpd start
Starting httpd: [ OK ]
# - KC now to test the rake task to clear cache
[root@domU-12-31-39-00-68-93 tripladder]# ls public/cache/
application_layout_header.cache homepage_meta.cache
homepage.cache send_review_to_freind.cache
homepage_header.cache
[root@domU-12-31-39-00-68-93 tripladder]# ls tmp/cache/
application_layout_header.cache homepage_meta.cache
homepage.cache send_review_to_freind.cache
homepage_header.cache
[root@domU-12-31-39-00-68-93 tripladder]# rake tmp:clear
(in /var/www/html/tripladder)
[root@domU-12-31-39-00-68-93 tripladder]# ls tmp/cache/
[root@domU-12-31-39-00-68-93 tripladder]# ls public/cache/
# kc - Confirmed that rake works.
8. Bundling the image
8.1 First stop all running services
Now stop all services:
[root@domU-12-31-39-00-68-93 tripladder]# service httpd stop
Stopping httpd: [ OK ]
[root@domU-12-31-39-00-68-93 software]# service ferret_init_production stop
Stopping ferret DRb server.
Install the ruby-openid gem to enable OpenID support
stopping ferret server...
process 1741 has stopped
[root@domU-12-31-39-00-68-93 software]# service mysqld stop
Stopping MySQL: [ OK ]
8.2 Ensure that services do not start when system reboots - This is important as we have to attach EBS before we start the services.
[root@domU-12-31-39-00-68-93 software]# chkconfig --list httpd
httpd 0:off 1:off 2:off 3:off 4:off 5:off 6:off
[root@domU-12-31-39-00-68-93 software]# chkconfig --list mysqld
mysqld 0:off 1:off 2:off 3:off 4:off 5:off 6:off
[root@domU-12-31-39-00-68-93 software]# chkconfig --list ferret_init_production
service ferret_init_production supports chkconfig, but is not referenced in any runlevel (run 'chkconfig --add ferret_init_production')
[root@domU-12-31-39-00-68-93 software]# chkconfig --add ferret_init_production
[root@domU-12-31-39-00-68-93 software]# chkconfig --list ferret_init_production
ferret_init_production 0:off 1:off 2:on 3:on 4:on 5:on 6:off
[root@domU-12-31-39-00-68-93 software]# chkconfig ferret_init_production off
[root@domU-12-31-39-00-68-93 software]# chkconfig --list ferret_init_production
ferret_init_production 0:off 1:off 2:off 3:off 4:off 5:off 6:off
8.3 Bundle the volume and save it to S3.
[root@domU-12-31-39-00-68-93 ~]# ec2-bundle-vol -d /mnt/ -k .ec2/pk-<xxxxxxxxx>.pem -c .ec2/cert-<xxxxxxxx>.pem -u <12 digit AWS user id without hypehns>
Please specify a value for arch [i386]:
....# Lots of activity
[root@domU-12-31-39-00-68-93 ~]# ec2-upload-bundle -b tripladder-09Nov08 -m /mnt/image.manifest.xml -a <accesskey> -s <secret>
guest@kc-laptop:~$ ec2-register tripladder-09Nov08/image.manifest.xml
IMAGE ami-3c15f155
8.4 Cleaning up
# kc - The AWS bundle tools seem to have memory leak - The used memory never comes back to normal and seems to be using up ~ 1 GB of RAM
[root@domU-12-31-39-00-68-93 ~]# umount /mnt/data-store/
[root@domU-12-31-39-00-68-93 ~]# reboot
9. Bringing up the application after reboot.
[root@domU-12-31-39-00-68-93 ~]# mount /dev/sdh /mnt/data-store/
[root@domU-12-31-39-00-68-93 ~]# service mysqld start
Starting MySQL: [ OK ]
[root@domU-12-31-39-00-68-93 ~]# service ferret_init_production start
Starting ferret DRb server.
Install the ruby-openid gem to enable OpenID support
starting ferret server...
[root@domU-12-31-39-00-68-93 ~]# service httpd start
Starting httpd: [ OK ]
# kc - Site should be running perfectly.
10. Bringing up the application from AMI
If ever your instance is killed, just do the following:
1. Launch your bundled instance wih the AMI id you got when you registered your bundle,
2. Attach the EBS volume,
3. Associate the IP address
4. Start services - mysql, ferret and httpd.
5. Presto!!!
# - Important - NEVER put the mount option for EBS in fstab. When the system is brought up from AMI, the EBS volume is still not attached and hence will not be mounted. This will not allow the system to boot. You AMI will essentially be useless.
WRONG, WRONG, WRONG, WRONG, WRONG, WRONG, WRONG, WRONG, WRONG, WRONG !!!!!!!!!!!!!!!!
[root@domU-12-31-39-00-65-E3 ~]# vi /etc/fstab
/dev/sdh /mnt/data-store ext3 defaults,noatime 0 2
# - Amazon is working on attaching a volume to EC2 instance during launch - when this feature is available, we can use fstab....
WRONG, WRONG, WRONG, WRONG, WRONG, WRONG, WRONG, WRONG, WRONG, WRONG !!!!!!!!!!!!!!!