AWS CLIとCloudFormationでVPCを作ってEC2を立ち上げてみた①～AWS CLI編～

投稿日 2015年8月25日
著者 aws-recipe-user
カテゴリーデプロイ＆マネージメント

はじめまして！Tamaです！
今回からレシピ記事を書いていきます！よろしくお願いいたします！

AWS CLIからのデプロイ

今回は一括デプロイサービスであるCroudFormationをAWS CLIでの構築と比較するため、まずはAWS CLIからVPCを作りその中にEC2インスタンスの立ち上げを行います。

AWS CLIの導入や使い方はこちらから

今回作成する環境は下の表になります。

OS	Amazon Linux AMI 2015.03.0 x86_64 HVM GP2
AMI	ami-cbf90ecb
Instance Type	t2.micro
Root Volume	8GiB
VPC IP Range	10.0.0.0/16
Subnet IP Range	10.0.0.0/24
SecurityGroup	SSH(port:22) source:0.0.0.0/0
New Key Pair	NO

EC2インスタンスにSSHで接続し、コマンドを入力していきます。

1. VPCの作成

# aws ec2 create-vpc --cidr-block 10.0.0.0/16

1	# aws ec2 create-vpc --cidr-block 10.0.0.0/16

[実行結果]

{
    "Vpc": {
        "InstanceTenancy": "default",
        "State": "pending",
        "VpcId": "[VPC ID]",
        "CidrBlock": "10.0.0.0/16",
        "DhcpOptionsId": "XXXXXXXXXXXX"
    }
}

{

"Vpc": {

"InstanceTenancy": "default",

"State": "pending",

"VpcId": "[VPC ID]",

"CidrBlock": "10.0.0.0/16",

"DhcpOptionsId": "XXXXXXXXXXXX"

}

2. Subnetの作成

# aws ec2 create-subnet --vpc-id [VPC ID] --cidr-block 10.0.0.0/24

1	# aws ec2 create-subnet --vpc-id [VPC ID] --cidr-block 10.0.0.0/24

[実行結果]

{
    "Subnet": {
        "VpcId": "[VPC ID]",
        "CidrBlock": "10.0.0.0/24",
        "State": "pending",
        "AvailabilityZone": "ap-northeast-1a",
        "SubnetId": "[SubnetID]",
        "AvailableIpAddressCount": 251
    }
}

{

"Subnet": {

"VpcId": "[VPC ID]",

"CidrBlock": "10.0.0.0/24",

"State": "pending",

"AvailabilityZone": "ap-northeast-1a",

"SubnetId": "[SubnetID]",

"AvailableIpAddressCount": 251

}

3. インターネットゲートウェイの作成

# aws ec2 create-internet-gateway

1	# aws ec2 create-internet-gateway

[実行結果]

{
    "InternetGateway": {
        "Tags": [],
        "InternetGatewayId": "[InternetGatewayID]",
        "Attachments": []
    }
}

{

"InternetGateway": {

"Tags": [],

"InternetGatewayId": "[InternetGatewayID]",

"Attachments": []

}

4. インターネットゲートウェイのアタッチ

# aws ec2 attach-internet-gateway --internet-gateway-id [InternetGatewayID] --vpc-id [VPC ID]

1	# aws ec2 attach-internet-gateway --internet-gateway-id [InternetGatewayID] --vpc-id [VPC ID]

5. ルートテーブルの作成

# aws ec2 create-route-table --vpc-id [VPC ID]

1	# aws ec2 create-route-table --vpc-id [VPC ID]

[実行結果]

{
    "RouteTable": {
        "Associations": [],
        "RouteTableId": "[RootTableID]",
        "VpcId": "[VPC ID]",
        "PropagatingVgws": [],
        "Tags": [],
        "Routes": [
            {
                "GatewayId": "local",
                "DestinationCidrBlock": "10.0.0.0/16",
                "State": "active",
                "Origin": "CreateRouteTable"
            }
        ]
    }
}

{

"RouteTable": {

"Associations": [],

"RouteTableId": "[RootTableID]",

"VpcId": "[VPC ID]",

"PropagatingVgws": [],

"Tags": [],

"Routes": [

{

"GatewayId": "local",

"DestinationCidrBlock": "10.0.0.0/16",

"State": "active",

"Origin": "CreateRouteTable"

}

]

}

6. ルートの設定

# aws ec2 create-route --route-table-id [RootTableID] --destination-cidr-block 0.0.0.0/0 --gateway-id [InternetGatewayID]

1	# aws ec2 create-route --route-table-id [RootTableID] --destination-cidr-block 0.0.0.0/0 --gateway-id [InternetGatewayID]

[実行結果]

{
    "Return": true
}

{

"Return": true

}

7. ルートテーブルの割り当て

# aws ec2 associate-route-table --subnet-id [SubnetID] --route-table-id [RootTableID]

1	# aws ec2 associate-route-table --subnet-id [SubnetID] --route-table-id [RootTableID]

[実行結果]

{
    "AssociationId": "[AssociationID]"
}

{

"AssociationId": "[AssociationID]"

}

8. セキュリティグループの作成

# aws ec2 create-security-group --group-name EC2inVPC --description EC2inVPC --vpc-id [VPC ID]

1	# aws ec2 create-security-group --group-name EC2inVPC --description EC2inVPC --vpc-id [VPC ID]

[実行結果]

{
    "GroupId": "[GroupID]"
}

{

"GroupId": "[GroupID]"

}

9. インバウンドルールの設定

# aws ec2 authorize-security-group-ingress --group-id [GroupID] --protocol tcp --port 22 --cidr 0.0.0.0/0

1	# aws ec2 authorize-security-group-ingress --group-id [GroupID] --protocol tcp --port 22 --cidr 0.0.0.0/0

10. EC2インスタンスの立ち上げ

# aws ec2 run-instances --image-id ami-cbf90ecb --key-name [KeyName] --security-group-ids [GroupID] --instance-type t2.micro --block-device-mappings "[{\"DeviceName\":\"/dev/xvda\",\"Ebs\":{\"VolumeSize\":8}}]" --subnet-id [SubnetID] --count 1 --associate-public-ip-address

1	# aws ec2 run-instances --image-id ami-cbf90ecb --key-name [KeyName] --security-group-ids [GroupID] --instance-type t2.micro --block-device-mappings "[{\"DeviceName\":\"/dev/xvda\",\"Ebs\":{\"VolumeSize\":8}}]" --subnet-id [SubnetID] --count 1 --associate-public-ip-address

[実行結果]

{
    "OwnerId": "XXXXXXXXX",
    "ReservationId": "XXXXXXXXX",
    "Groups": [],
    "Instances": [
        {
            "Monitoring": {
                "State": "disabled"
            },
            "PublicDnsName": "",
            "RootDeviceType": "ebs",
            "State": {
                "Code": 0,
                "Name": "pending"
            },
            "EbsOptimized": false,
            "LaunchTime": "2015-XX-XXTXX:XX:XX.000Z",
            "PrivateIpAddress": "10.0.0.138",
            "ProductCodes": [],
            "VpcId": "[VPC ID]",
            "StateTransitionReason": "",
            "InstanceId": "[InstanceID]",
            "ImageId": "ami-cbf90ecb",
            "PrivateDnsName": "ip-10-0-0-138.ap-northeast-1.compute.internal",
            "KeyName": "[KeyName]",
            "SecurityGroups": [
                {
                    "GroupName": "EC2inVPC",
                    "GroupId": "[GroupID]"
                }
            ],
            "ClientToken": "",
            "SubnetId": "[SubnetID]",
            "InstanceType": "t2.micro",
            "NetworkInterfaces": [
                {
                    "Status": "in-use",
                    "MacAddress": "XX:XX:XX:XX:XX:XX",
                    "SourceDestCheck": true,
                    "VpcId": "[VPC ID]",
                    "Description": "",
                    "NetworkInterfaceId": "XXXXXXXXXX",
                    "PrivateIpAddresses": [
                        {
                            "Primary": true,
                            "PrivateIpAddress": "10.0.0.138"
                        }
                    ],
                    "Attachment": {
                        "Status": "attaching",
                        "DeviceIndex": 0,
                        "DeleteOnTermination": true,
                        "AttachmentId": "XXXXXXXXXXX",
                        "AttachTime": "2015-XX-XXTXX:XX:XX.000Z"
                    },
                    "Groups": [
                        {
                            "GroupName": "EC2inVPC",
                            "GroupId": "[GroupID]"
                        }
                    ],
                    "SubnetId": "[SubnetID]",
                    "OwnerId": "XXXXXXXXXXXX",
                    "PrivateIpAddress": "10.0.0.138"
                }
            ],
            "SourceDestCheck": true,
            "Placement": {
                "Tenancy": "default",
                "GroupName": "",
                "AvailabilityZone": "ap-northeast-1a"
            },
            "Hypervisor": "xen",
            "BlockDeviceMappings": [],
            "Architecture": "x86_64",
            "StateReason": {
                "Message": "pending",
                "Code": "pending"
            },
            "RootDeviceName": "/dev/xvda",
            "VirtualizationType": "hvm",
            "AmiLaunchIndex": 0
        }
    ]
}

{

"OwnerId": "XXXXXXXXX",

"ReservationId": "XXXXXXXXX",

"Groups": [],

"Instances": [

{

"Monitoring": {

"State": "disabled"

"PublicDnsName": "",

"RootDeviceType": "ebs",

"State": {

"Code": 0,

"Name": "pending"

"EbsOptimized": false,

"LaunchTime": "2015-XX-XXTXX:XX:XX.000Z",

"PrivateIpAddress": "10.0.0.138",

"ProductCodes": [],

"VpcId": "[VPC ID]",

"StateTransitionReason": "",

"InstanceId": "[InstanceID]",

"ImageId": "ami-cbf90ecb",

"PrivateDnsName": "ip-10-0-0-138.ap-northeast-1.compute.internal",

"KeyName": "[KeyName]",

"SecurityGroups": [

{

"GroupName": "EC2inVPC",

"GroupId": "[GroupID]"

}

"ClientToken": "",

"SubnetId": "[SubnetID]",

"InstanceType": "t2.micro",

"NetworkInterfaces": [

{

"Status": "in-use",

"MacAddress": "XX:XX:XX:XX:XX:XX",

"SourceDestCheck": true,

"VpcId": "[VPC ID]",

"Description": "",

"NetworkInterfaceId": "XXXXXXXXXX",

"PrivateIpAddresses": [

{

"Primary": true,

"PrivateIpAddress": "10.0.0.138"

}

"Attachment": {

"Status": "attaching",

"DeviceIndex": 0,

"DeleteOnTermination": true,

"AttachmentId": "XXXXXXXXXXX",

"AttachTime": "2015-XX-XXTXX:XX:XX.000Z"

"Groups": [

{

"GroupName": "EC2inVPC",

"GroupId": "[GroupID]"

}

"SubnetId": "[SubnetID]",

"OwnerId": "XXXXXXXXXXXX",

"PrivateIpAddress": "10.0.0.138"

}

"SourceDestCheck": true,

"Placement": {

"Tenancy": "default",

"GroupName": "",

"AvailabilityZone": "ap-northeast-1a"

"Hypervisor": "xen",

"BlockDeviceMappings": [],

"Architecture": "x86_64",

"StateReason": {

"Message": "pending",

"Code": "pending"

"RootDeviceName": "/dev/xvda",

"VirtualizationType": "hvm",

"AmiLaunchIndex": 0

}

]

}

コンソールからデプロイされたインスタンスを見てみます。
今回作成したVPC, Subnet内にデプロイされているのが確認できます。

AWS CLIでのVPCへのEC2インスタンスの立ち上げは以上になります！
お疲れさまでした！
CLIではコンソール以上に細かな設定が行えて便利ですね。

次回は同じ構成をCloudFormationで作成します！
またお会いしましょう！

この記事を書いた人

aws-recipe-user

記事一覧

AWS CLIとCloudFormationでVPCを作ってEC2を立ち上げてみた①～AWS CLI編～

AWS CLIからのデプロイ

この記事を書いた人

aws-recipe-user

AWS CLI　～CLIでS3バケット作成・管理してみた～

Amazon CloudFormation編～CloudFormationの使い…

AWS CLI でIAMユーザーとポリシー作成してみた

AWS RDS Auroraのスナップショットが複製できない？！