1 00:00:02,090 --> 00:00:03,110 So, first of all, 2 00:00:03,110 --> 00:00:05,800 what we need to do is we need to run this command 3 00:00:05,800 --> 00:00:09,830 which you find on the aws-efs-csi-driver 4 00:00:09,830 --> 00:00:13,160 GitHub page, under installation. 5 00:00:13,160 --> 00:00:16,193 This command here needs to be executed. 6 00:00:17,050 --> 00:00:19,510 It basically installed stats driver 7 00:00:19,510 --> 00:00:23,743 in your kubernetes cluster with the Kube + Ctrl command. 8 00:00:24,770 --> 00:00:28,830 So, simply copy this into your command prompt or terminal 9 00:00:28,830 --> 00:00:31,700 and run Kube + Ctrl applied -k 10 00:00:31,700 --> 00:00:32,853 and then this URL. 11 00:00:34,540 --> 00:00:37,810 And this installs this driver into your cluster, 12 00:00:37,810 --> 00:00:40,540 so that you can use it in the future. 13 00:00:40,540 --> 00:00:43,450 Now, with that out of the way 14 00:00:43,450 --> 00:00:46,560 we need to create an elastic file system, 15 00:00:46,560 --> 00:00:47,950 because at least at the moment, 16 00:00:47,950 --> 00:00:51,200 this will not be done automatically for us. 17 00:00:51,200 --> 00:00:53,310 We need to create it ahead of time, 18 00:00:53,310 --> 00:00:56,530 so that we can then use it in our pots. 19 00:00:56,530 --> 00:00:59,390 Therefore go to your AWS console 20 00:00:59,390 --> 00:01:03,660 and there to the EFS service page in a new tab. 21 00:01:03,660 --> 00:01:06,380 Here, we wanna create a new file system 22 00:01:06,380 --> 00:01:10,290 but actually before we do that open yet another new tab 23 00:01:10,290 --> 00:01:13,403 and go to the EC2 to service page here. 24 00:01:14,460 --> 00:01:19,050 And there go to security groups a little bit further below 25 00:01:19,050 --> 00:01:21,963 on the left side here, security groups. 26 00:01:22,940 --> 00:01:26,650 And click on create security group here, 27 00:01:26,650 --> 00:01:30,130 and give it any name of your choice like eks-efs 28 00:01:30,130 --> 00:01:31,880 that's the name I will choose here. 29 00:01:32,980 --> 00:01:37,320 On VPC make sure you choose your eksVPC, 30 00:01:37,320 --> 00:01:39,160 so that this security group, 31 00:01:39,160 --> 00:01:41,600 which allows you to control access 32 00:01:41,600 --> 00:01:46,600 in a certain VPC actually works on the VPC on the network, 33 00:01:46,620 --> 00:01:49,383 which was created for our kubernetes cluster. 34 00:01:50,650 --> 00:01:55,360 Then go to inbound rules and click on add rule. 35 00:01:55,360 --> 00:01:57,230 And here in the dropdown 36 00:01:57,230 --> 00:02:02,230 select the NFS rule 37 00:02:02,460 --> 00:02:05,983 which automatically fills in port 2049 here. 38 00:02:07,783 --> 00:02:11,310 Here on source select custom, 39 00:02:11,310 --> 00:02:16,070 and then here for it is cider range 40 00:02:16,070 --> 00:02:20,729 we need to go back to services, open the VPC service page 41 00:02:20,729 --> 00:02:25,030 and another new tab, and there go to VPCs 42 00:02:26,050 --> 00:02:28,363 and then to your eksVPC, 43 00:02:29,270 --> 00:02:34,120 and then copy this IPV for a cider here, 44 00:02:34,120 --> 00:02:37,513 close that page and paste that here into custom. 45 00:02:39,050 --> 00:02:41,070 And then leave the outbound rules 46 00:02:41,070 --> 00:02:44,530 as they are click create security group. 47 00:02:44,530 --> 00:02:47,590 And I need to add a description here, 48 00:02:47,590 --> 00:02:50,270 so I will just briefly enter something here, 49 00:02:50,270 --> 00:02:52,040 you might want to be a bit more descriptive 50 00:02:52,040 --> 00:02:55,563 than I am here and click create security group. 51 00:02:56,920 --> 00:02:59,260 Now, with that security group created 52 00:02:59,260 --> 00:03:03,820 we can close this page and go back to the EFS service page, 53 00:03:03,820 --> 00:03:07,100 and here click on create file system 54 00:03:07,100 --> 00:03:08,680 there give it any name of your choice, 55 00:03:08,680 --> 00:03:11,540 I will name it eks-efs, 56 00:03:11,540 --> 00:03:14,100 and on the VPC dropdown 57 00:03:14,100 --> 00:03:16,930 of course, choose your eksVPC. 58 00:03:16,930 --> 00:03:20,140 So, the network which was created for your cluster, 59 00:03:20,140 --> 00:03:23,550 so that this file system is part of the same network 60 00:03:23,550 --> 00:03:25,143 your cluster is running in. 61 00:03:26,440 --> 00:03:30,950 Then click on customize, not create but customize 62 00:03:30,950 --> 00:03:33,063 leave all the defaults here though, 63 00:03:34,170 --> 00:03:36,120 but then click on next. 64 00:03:36,120 --> 00:03:39,270 And on this page here on the network access page 65 00:03:39,270 --> 00:03:41,450 to remove the security groups here 66 00:03:42,650 --> 00:03:44,540 for these availability zones 67 00:03:44,540 --> 00:03:48,100 but instead in the security groups drop down, 68 00:03:48,100 --> 00:03:52,530 choose your security group the eks-efs security group 69 00:03:52,530 --> 00:03:55,020 you created in the last step 70 00:03:56,210 --> 00:03:59,830 and do this for both these availability zones, 71 00:03:59,830 --> 00:04:02,260 so that you use the security group you created 72 00:04:02,260 --> 00:04:03,593 in the last step. 73 00:04:04,990 --> 00:04:08,990 Then click next you don't need to enter anything here 74 00:04:08,990 --> 00:04:10,580 for file system policy 75 00:04:10,580 --> 00:04:14,890 and click next again, and then create. 76 00:04:14,890 --> 00:04:17,899 And now this creates a new file system for you, 77 00:04:17,899 --> 00:04:20,313 which you can use as a volume. 78 00:04:21,579 --> 00:04:24,450 Now, copied this file system ID here 79 00:04:24,450 --> 00:04:26,970 because we will need it in a second, 80 00:04:26,970 --> 00:04:27,960 and then let's go back 81 00:04:27,960 --> 00:04:31,333 to our code and into our kubernetes configuration.