Basic Setup (Not Recommended):
- Download nomad binary & make it executable:
$ wget https://releases.hashicorp.com/nomad/1.0.5/nomad_1.0.5_linux_amd64.zip
$ unzip nomad_1.0.5_linux_amd64.zip
$ mv nomad /usr/local/bin/
- Create configs directory & data directory:
$ sudo mkdir --parents /opt/nomad
$ sudo mkdir --parents /opt/data/redis
$ sudo mkdir --parents /etc/nomad.d
$ sudo chmod 700 /etc/nomad.d
$ sudo chmod 700 /opt/data
$ sudo touch /etc/nomad.d/nomad.hcl
$ sudo touch /etc/nomad.d/server.hcl
$ sudo touch /etc/nomad.d/client.hcl
- Add this configuration to the
/etc/nomad.d/nomad.hclconfiguration file
datacenter = "dc1"
data_dir = "/opt/nomad"
- Add this configuration to the
/etc/nomad.d/client.hclconfiguration file
client {
enabled = true
host_volume "redis_data" {
path = "/opt/data/redis"
read_only = false
}
}
plugin "docker" {
config {
volumes {
enabled = true
selinuxlabel = "z"
}
}
}
- Add this configuration to the
/etc/nomad.d/server.hclconfiguration file
acl {
enabled = true
}
server {
enabled = true
bootstrap_expect = 1
}
- Create a nomad service file
$ sudo touch /etc/systemd/system/nomad.service
- Add this configuration to the nomad service file
/etc/systemd/system/nomad.service
[Unit]
Description=Nomad
Documentation=https://nomadproject.io/docs/
[Service]
ExecStart=/usr/local/bin/nomad agent -config /etc/nomad.d
Restart=on-failure
RestartSec=2
[Install]
WantedBy=multi-user.target
- Start nomad
sudo systemctl enable nomad
sudo systemctl start nomad
sudo systemctl status nomad
- Genertal ACL secrets
$ nomad acl bootstrap
Accessor ID = a8b724ef-b5eb-21c0-1a68-b0d3616e1e62
Secret ID = 07fe0ee6-59bc-8ea0-aeeb-9b4e9edcb555
Name = Bootstrap Token
Type = management
Global = true
Policies = n/a
Create Time = 2021-05-10 21:05:21.498072284 +0000 UTC
Create Index = 10
Modify Index = 10
$ export NOMAD_TOKEN=07fe0ee6-59bc-8ea0-aeeb-9b4e9edcb555
- Create your first job to deploy a stateless container from the server ui
http://127.0.0.1:4646/ui
job "api" {
datacenters = ["dc1"]
group "example" {
task "server" {
driver = "docker"
config {
image = "hashicorp/http-echo:0.2.1"
args = [
"-listen",
":5678",
"-text",
"hello world",
]
}
resources {
network {
mbits = 10
port "http" {
static = "5678"
}
}
}
}
}
}
- And another one for stateful container
job "cache" {
datacenters = ["dc1"]
group "redis" {
volume "redis_data" {
type = "host"
read_only = false
source = "redis_data"
}
task "server" {
driver = "docker"
volume_mount {
volume = "redis_data"
destination = "/data"
read_only = false
}
config {
image = "redis:4-alpine"
labels = {
"sh.hippo.service" = "redis"
"sh.hippo.service_type" = "cache"
}
port_map {
http = 6379
}
command = "redis-server"
args = [
"--requirepass",
"mystery",
]
}
env = {
HEALTHY_FOR = -1,
}
resources {
cpu = 100
memory = 256
network {
mbits = 10
port "http" {
static = "6379"
}
}
}
}
}
}
Multi Nodes Setup (Recommended):
To fully understand how nomad cluster should look like, please check this guide!
Assuming we have two servers, one for the nomad server (Leader) and another for the client. Both servers are in DC1. The leader server has public IP $SERVER_PUBLIC_IP and private IP $SERVER_PRIVATE_IP.
First we run the leader or the nomad server by following the next steps:
- Download nomad binary & make it executable:
$ wget https://releases.hashicorp.com/nomad/1.0.5/nomad_1.0.5_linux_amd64.zip
$ unzip nomad_1.0.5_linux_amd64.zip
$ mv nomad /usr/local/bin/
- Create configs directory & data directory:
$ sudo mkdir --parents /opt/nomad
$ sudo mkdir --parents /opt/data/redis
$ sudo mkdir --parents /etc/nomad.d
$ sudo chmod 700 /etc/nomad.d
$ sudo chmod 700 /opt/data
$ sudo touch /etc/nomad.d/nomad.hcl
$ sudo touch /etc/nomad.d/server.hcl
- Add this configuration to the
/etc/nomad.d/nomad.hclconfiguration file
datacenter = "dc1"
data_dir = "/opt/nomad"
- Add this configuration to the
/etc/nomad.d/server.hclconfiguration file
acl {
enabled = true
}
server {
enabled = true
bootstrap_expect = 1
}
bind_addr = "$SERVER_PUBLIC_IP"
addresses {
http = "$SERVER_PUBLIC_IP"
rpc = "$SERVER_PRIVATE_IP"
serf = "$SERVER_PRIVATE_IP"
}
advertise {
http = "$SERVER_PUBLIC_IP:4646"
rpc = "$SERVER_PRIVATE_IP:4647"
serf = "$SERVER_PRIVATE_IP:4648"
}
- Create a nomad service file
$ sudo touch /etc/systemd/system/nomad.service
- Add this configuration to the nomad service file
/etc/systemd/system/nomad.service
[Unit]
Description=Nomad
Documentation=https://nomadproject.io/docs/
[Service]
ExecStart=/usr/local/bin/nomad agent -config /etc/nomad.d
Restart=on-failure
RestartSec=2
[Install]
WantedBy=multi-user.target
- Start nomad
sudo systemctl enable nomad
sudo systemctl start nomad
sudo systemctl status nomad
- Genertal ACL secrets
$ nomad acl bootstrap -address=http://$SERVER_PUBLIC_IP:4646
Accessor ID = a8b724ef-b5eb-21c0-1a68-b0d3616e1e62
Secret ID = 07fe0ee6-59bc-8ea0-aeeb-9b4e9edcb555
Name = Bootstrap Token
Type = management
Global = true
Policies = n/a
Create Time = 2021-05-10 21:05:21.498072284 +0000 UTC
Create Index = 10
Modify Index = 10
$ export NOMAD_TOKEN=07fe0ee6-59bc-8ea0-aeeb-9b4e9edcb555
Then we run the client by following the next steps:
- Download nomad binary & make it executable:
$ wget https://releases.hashicorp.com/nomad/1.0.5/nomad_1.0.5_linux_amd64.zip
$ unzip nomad_1.0.5_linux_amd64.zip
$ mv nomad /usr/local/bin/
- Create configs directory & data directory:
$ sudo mkdir --parents /opt/nomad
$ sudo mkdir --parents /opt/data/redis
$ sudo mkdir --parents /etc/nomad.d
$ sudo chmod 700 /etc/nomad.d
$ sudo chmod 700 /opt/data
$ sudo touch /etc/nomad.d/nomad.hcl
$ sudo touch /etc/nomad.d/client.hcl
- Add this configuration to the
/etc/nomad.d/nomad.hclconfiguration file
datacenter = "dc1"
data_dir = "/opt/nomad"
- Add this configuration to the
/etc/nomad.d/client.hclconfiguration file
client {
enabled = true
servers = ["$SERVER_PRIVATE_IP:4647"]
host_volume "redis_data" {
path = "/opt/data/redis"
read_only = false
}
}
plugin "docker" {
config {
volumes {
enabled = true
selinuxlabel = "z"
}
}
}
- Create a nomad service file
$ sudo touch /etc/systemd/system/nomad.service
- Add this configuration to the nomad service file
/etc/systemd/system/nomad.service
[Unit]
Description=Nomad
Documentation=https://nomadproject.io/docs/
[Service]
ExecStart=/usr/local/bin/nomad agent -config /etc/nomad.d
Restart=on-failure
RestartSec=2
[Install]
WantedBy=multi-user.target
- Start nomad
sudo systemctl enable nomad
sudo systemctl start nomad
sudo systemctl status nomad
CNI Plugins in Nomad
Nomad uses CNI plugins when bridge networking is used. To install CNI plugins:
$ curl -L -o cni-plugins.tgz https://github.com/containernetworking/plugins/releases/download/v0.8.0/cni-plugins-linux-amd64-v0.8.0.tgz
$ mkdir -p /opt/cni/bin
$ tar -C /opt/cni/bin -xzf cni-plugins.tgz
job "clivern" {
datacenters = ["dc1"]
group "services" {
network {
port "toad0_srv" {
static = 8080
}
port "toad1_srv" {
static = 8081
}
}
task "toad0" {
driver = "docker"
config {
image = "clivern/toad:release-0.2.4"
labels = {
"com.clivern.service" = "toad"
"com.clivern.service_type" = "web"
}
ports = ["toad0_srv"]
command = "./toad"
args = [
"--port",
"${NOMAD_PORT_toad0_srv}",
]
}
env = {
IS_STATEFUL = "false",
TOAD0_ADDR = "${NOMAD_HOST_ADDR_toad0_srv}",
TOAD1_ADDR = "${NOMAD_HOST_ADDR_toad1_srv}",
}
resources {
network {
mbits = 10
}
}
}
task "toad1" {
driver = "docker"
config {
image = "clivern/toad:release-0.2.3"
labels = {
"com.clivern.service" = "toad"
"com.clivern.service_type" = "web"
}
ports = ["toad1_srv"]
command = "./toad"
args = [
"--port",
"${NOMAD_PORT_toad1_srv}",
]
}
env = {
IS_STATEFUL = "false",
TOAD0_ADDR = "${NOMAD_HOST_ADDR_toad0_srv}",
TOAD1_ADDR = "${NOMAD_HOST_ADDR_toad1_srv}",
}
resources {
network {
mbits = 10
}
}
}
}
}
Top comments (0)