Installing CT-VL on AWS Cloud

Installation Prerequisites

Following components are necessary for running a CT-VL in the cloud on Amazon Web Services (AWS):

• Minimum recommended settings for CT-VL VM: 4 CPUs, 16GB memory.

• A VPC (Amazon’s Virtual Private Cloud): If you plan to create a cluster of CT-VL machines, it is recommended that your cluster nodes use a VPC so that they communicate only with each other within the private cloud. Cluster communication does not need to be, and should not be, exposed on the Internet.

• A Subnet: If you choose to use a VPC, you will need to create a subnet and associate that subnet to that VPC. This subnet is where your CT-VL cluster nodes will get the IP addresses.

• A Security Group: Set your security group with the following minimum settings:

  • Incoming port 443 - Web and REST API access.

  • Incoming port 22 - CLI access.

  • Incoming port 5432 - Optional. Set this only if the machines in your cluster are not using a VPC to communicate with each other.

  If you will be accessing your CT-VL strictly inside the VPC, you will still need a security group but you can block all incoming ports.

• For best security, use SSH key pairs instead of passwords for SSH logins. If you choose to use an EC2 key pair when creating a CT-VL instance, the cliadmin will use that key (a private key) to log in by SSH. Password access will be disabled.

  • If you choose not to use an EC2 key pair, the cliadmin will use a password to log in by SSH.

  • Only newly-created instances from CT-VL 2.6.0 and above can use the SSH key pair in AWS.

Create the CT-VL Instance

Follow this procedure to create the CT-VL instance:

1. Choose your AWS region.

2. Locate the AMI of the CT-VL image.

3. Select the AMI image and launch an instance.

4. Select Instance type: m4.xlarge - with recommended minimums of 4 vCPUs and 16GB memory.

5. Select the VPC to use for the installation.

6. Select the subnet.

7. Select Auto-assign public IP, if applicable.

8. Set the primary IP address. This will be the IP address of the VPC subnet, and it will be used by the VM for its cluster node IP address.

9. In the Add Storage menu, select delete on termination, if applicable. Do not change the size of the root volume.

10. Choose whether to have cliadmin log in via SSH with a password or with an EC2 key pair.

    • If you choose not to use an EC2 key pair, the cliadmin will use a password to log in by SSH.

    • If you choose an EC2 key pair, the cliadmin will use that key (private key) to log in by SSH. Password access will be disabled. You are prompted to select an existing key pair.
      Select the private key file (in PEM format), and make sure to confirm your selection before launching the new instance.

Configuration Notes

To begin configuration, ssh into the instance as the cliadmin user using the public IP address or the VPC IP address, and follow the steps in Configuring CT-VL.

If you will be creating a cluster of CT-VL machines, create an instance for each node in the cluster. You would configure each node separately and join them in a cluster as described in Configuring CT-VL Nodes.