8894bbf56e
deployment documentation. Here's a summary of what was created: 📁 AWS Managed Services Documentation Structure Main Documentation Files: 1. README.md - Comprehensive overview and decision guide 2. 00-prerequisites-managed.md - AWS setup, VPC, security, and managed services 3. 01-ecs-managed-deployment.md - Amazon ECS with Fargate deployment 4. 02-eks-managed-deployment.md - Amazon EKS deployment 5. 03-production-managed-setup.md - Production hardening and advanced features Kubernetes Manifests (kubernetes-manifests/): - namespace.yaml - Namespace with resource quotas and network policies - storage.yaml - EFS and EBS storage classes and PVCs - configmap.yaml - Application configuration and Nginx config - secrets.yaml - External Secrets Operator integration with AWS Secrets Manager - erpnext-backend.yaml - Backend deployment with RDS connectivity - erpnext-frontend.yaml - Frontend deployment with load balancing - erpnext-workers.yaml - Worker deployments for different queues - ingress.yaml - AWS Load Balancer Controller ingress configuration - jobs.yaml - Site creation and backup automation jobs Deployment Scripts (scripts/): - deploy-ecs.sh - Automated ECS deployment script - deploy-eks.sh - Automated EKS deployment script 🔄 Key AWS Managed Services Used: Instead of GCP → AWS Equivalent: - Cloud SQL → Amazon RDS for MySQL - Memorystore → Amazon MemoryDB for Redis - Cloud Run → Amazon ECS with Fargate - GKE → Amazon EKS - Cloud Storage → Amazon S3 - Secret Manager → AWS Secrets Manager - VPC Access Connector → VPC Endpoints/NAT Gateway 🎯 Key Features Included: Production-Ready Features: - ✅ High Availability - Multi-AZ RDS and MemoryDB deployment - ✅ Auto-scaling - ECS Service Auto Scaling and EKS HPA - ✅ Security - VPC isolation, IAM roles, WAF, encryption - ✅ Monitoring - CloudWatch, X-Ray, custom metrics - ✅ Backup & DR - Automated backups, cross-region replication - ✅ Cost Optimization - Reserved instances, spot instances, right-sizing Deployment Options: - 🚀 Amazon ECS with Fargate - Serverless containers, minimal ops - ⚙️ Amazon EKS - Full Kubernetes with advanced features - 🛡️ Production Hardening - WAF, enhanced monitoring, security Automation Scripts: - 📜 One-click deployment scripts for both ECS and EKS - 🔧 Infrastructure as Code approach - 📊 Cost estimation and optimization guidance The documentation provides a complete migration path from GCP to AWS with equivalent managed services, maintaining the same level of reliability and operational efficiency while leveraging AWS-native services and best practices. |
||
|---|---|---|
| .. | ||
| kubernetes-manifests | ||
| scripts | ||
| 00-prerequisites-managed.md | ||
| 01-ecs-managed-deployment.md | ||
| 02-eks-managed-deployment.md | ||
| 03-production-managed-setup.md | ||
| README.md | ||
ERPNext AWS Deployment with Managed Services
Overview
This directory contains comprehensive guides and resources for deploying ERPNext on Amazon Web Services (AWS) using managed database services: Amazon RDS for MySQL and Amazon MemoryDB for Redis. This approach provides better reliability, security, and operational efficiency compared to self-hosted databases.
🏗️ Architecture Overview
┌─────────────────────────────────────────────────────────────────┐
│ Amazon Web Services │
├─────────────────────────────────────────────────────────────────┤
│ │
│ ┌─────────────────┐ ┌─────────────────┐ │
│ │ Amazon ECS │ │ Amazon EKS │ │
│ │ (Fargate) │ │ (Kubernetes) │ │
│ │ │ │ │ │
│ │ ┌─────────────┐ │ │ ┌─────────────┐ │ │
│ │ │ Frontend │ │ │ │ Pods │ │ │
│ │ │ Backend │ │ │ │ - Frontend │ │ │
│ │ │ Workers │ │ │ │ - Backend │ │ │
│ │ │ Scheduler │ │ │ │ - Workers │ │ │
│ │ └─────────────┘ │ │ │ - Scheduler │ │ │
│ └─────────────────┘ │ └─────────────┘ │ │
│ └─────────────────┘ │
│ │ │
│ ┌─────────────────────────────┼─────────────────────────────┐ │
│ │ Managed Services │ │ │
│ │ │ │ │
│ │ ┌──────────────┐ ┌─────────────┐ ┌──────────────┐ │ │
│ │ │ Amazon RDS │ │ MemoryDB │ │ Amazon S3 │ │ │
│ │ │ (MySQL) │ │ (Redis) │ │ (Files) │ │ │
│ │ └──────────────┘ └─────────────┘ └──────────────┘ │ │
│ └─────────────────────────────────────────────────────────┘ │
└─────────────────────────────────────────────────────────────────┘
📁 Directory Structure
aws-managed/
├── README.md # This file
├── 00-prerequisites-managed.md # Prerequisites for managed services
├── 01-ecs-managed-deployment.md # ECS with managed databases
├── 02-eks-managed-deployment.md # EKS with managed databases
├── 03-production-managed-setup.md # Production hardening
├── kubernetes-manifests/ # K8s manifests for managed services
│ ├── namespace.yaml # Namespace with security policies
│ ├── storage.yaml # EFS and EBS storage classes
│ ├── configmap.yaml # Config for managed services
│ ├── secrets.yaml # External Secrets integration
│ ├── erpnext-backend.yaml # Backend with RDS connection
│ ├── erpnext-frontend.yaml # Optimized frontend
│ ├── erpnext-workers.yaml # Workers with managed DB
│ ├── ingress.yaml # ALB ingress controller
│ └── jobs.yaml # Site creation and backup jobs
└── scripts/ # Automation scripts
├── deploy-ecs.sh # ECS deployment script
└── deploy-eks.sh # EKS deployment script
🚀 Quick Start
Option 1: Amazon ECS with Fargate (Recommended for Simplicity)
# 1. Complete prerequisites
cd aws-managed/
# Follow 00-prerequisites-managed.md
# 2. Deploy to ECS
cd scripts/
export AWS_REGION="us-east-1"
export PROJECT_NAME="erpnext"
export DOMAIN_NAME="erpnext.yourdomain.com"
./deploy-ecs.sh --project-name $PROJECT_NAME --domain $DOMAIN_NAME
Option 2: Amazon EKS (Recommended for Production)
# 1. Complete prerequisites
cd aws-managed/
# Follow 00-prerequisites-managed.md
# 2. Deploy to EKS
cd scripts/
export AWS_REGION="us-east-1"
export PROJECT_NAME="erpnext"
export DOMAIN_NAME="erpnext.yourdomain.com"
./deploy-eks.sh --project-name $PROJECT_NAME --domain $DOMAIN_NAME
🎯 Key Benefits of AWS Managed Services
🛡️ Enhanced Reliability
- 99.95% SLA for RDS and MemoryDB
- Multi-AZ deployment with automatic failover
- Point-in-time recovery for databases
- Automated backups with cross-region replication
🔧 Operational Efficiency
- Zero database administration overhead
- Automatic security patches and updates
- Performance insights and optimization recommendations
- Built-in monitoring with CloudWatch
🔒 Enterprise Security
- VPC isolation with private subnets
- Encryption at rest and in transit by default
- IAM integration for access control
- AWS WAF for application protection
💰 Cost Optimization
- Pay-as-you-scale pricing model
- Reserved Instance discounts available
- Automatic storage scaling without downtime
- Spot instances for non-critical workloads
📊 Deployment Options Comparison
| Feature | ECS + Managed DB | EKS + Managed DB | Self-Hosted DB |
|---|---|---|---|
| Scalability | Auto (Fargate) | Manual/Auto HPA | Manual |
| Operational Overhead | Low | Medium | High |
| Database Reliability | 99.95% SLA | 99.95% SLA | Depends on setup |
| Cost (Small) | ~$250/month | ~$350/month | ~$200/month |
| Cost (Large) | ~$500/month | ~$700/month | ~$450/month |
| Cold Start | 1-2 seconds | None | None |
| Customization | Medium | High | Very High |
| Kubernetes Native | No | Yes | Yes |
| Multi-tenancy | Limited | Supported | Supported |
🛠️ Managed Services Configuration
Amazon RDS (MySQL)
- Instance Types: db.t3.micro to db.r5.24xlarge
- Storage: 20GB to 64TB, automatic scaling
- Backup: Automated daily backups with 35-day retention
- High Availability: Multi-AZ deployment with automatic failover
- Security: VPC isolation, encryption, IAM database authentication
Amazon MemoryDB for Redis
- Node Types: db.t4g.micro to db.r6g.16xlarge
- Features: Redis 6.x compatibility, persistence, clustering
- Performance: Up to 100+ million requests per second
- Monitoring: Built-in CloudWatch metrics and alerts
Additional AWS Services
- Amazon S3: File storage and backups
- AWS Secrets Manager: Secure credential management
- AWS Systems Manager: Parameter Store for configuration
- Amazon EFS: Shared file storage for EKS
- AWS Lambda: Automation and maintenance tasks
- Amazon EventBridge: Scheduled tasks and triggers
🔧 Advanced Features
Auto-scaling Configuration
- ECS: Service auto scaling based on CPU/memory
- EKS: Horizontal Pod Autoscaler + Cluster Autoscaler
- Database: Automatic storage scaling, manual compute scaling
- Redis: Manual scaling with zero-downtime
Security Hardening
- Network isolation with private subnets and security groups
- IAM roles for service accounts (IRSA for EKS)
- AWS WAF for application-layer protection
- VPC Flow Logs for network monitoring
- AWS Config for compliance monitoring
Monitoring & Observability
- CloudWatch for metrics, logs, and alerts
- AWS X-Ray for distributed tracing
- Custom dashboards for ERPNext-specific metrics
- Performance Insights for database monitoring
- Container Insights for ECS/EKS monitoring
Backup & Disaster Recovery
- RDS: Automated backups with point-in-time recovery
- Application files: Automated backup to S3
- Cross-region replication for disaster recovery
- Automated DR testing with validation
- Lambda-based backup automation
💰 Cost Estimation & Optimization
Typical Monthly Costs (US-East-1)
Small Deployment (< 50 users) - ECS
RDS (db.t3.medium): $67
MemoryDB (1 node): $45
ECS Fargate (2 tasks): $30
ALB: $22
EFS: $3
NAT Gateway: $45
Total: ~$212/month
Medium Deployment (50-200 users) - EKS
RDS (db.r5.large): $150
MemoryDB (2 nodes): $90
EKS Control Plane: $73
EC2 (3 t3.medium): $100
ALB: $22
EFS: $10
NAT Gateway: $45
Total: ~$490/month
Large Deployment (200+ users) - EKS
RDS (db.r5.xlarge): $300
MemoryDB (3 nodes): $135
EKS Control Plane: $73
EC2 (6 t3.large): $300
ALB: $22
EFS: $25
NAT Gateway: $90
Total: ~$945/month
Cost Optimization Strategies
- Use Reserved Instances (up to 75% savings for predictable workloads)
- Implement Spot Instances for non-critical worker nodes
- Right-size instances based on CloudWatch metrics
- Use S3 Intelligent Tiering for file storage
- Schedule scaling during off-hours
🚨 Migration Path from Self-Hosted
Phase 1: Assessment and Planning (Week 1)
- Audit current infrastructure and data size
- Identify custom configurations and dependencies
- Plan migration windows and rollback procedures
- Set up AWS managed services in parallel
Phase 2: Infrastructure Setup (Week 2)
- Deploy VPC, subnets, and security groups
- Create RDS and MemoryDB instances
- Set up ECS/EKS cluster and supporting services
- Configure monitoring and alerting
Phase 3: Data Migration (Week 3)
- Export data from existing MySQL/Redis
- Import to RDS/MemoryDB with validation
- Migrate file storage to S3/EFS
- Update connection strings and test thoroughly
Phase 4: Application Migration (Week 4)
- Deploy ERPNext with managed services
- Conduct comprehensive testing
- DNS cutover to new deployment
- Monitor performance and optimize
Phase 5: Optimization and Cleanup (Week 5)
- Optimize resource allocation based on metrics
- Implement cost optimization measures
- Decommission old infrastructure
- Update backup and DR procedures
🔍 Troubleshooting Common Issues
RDS Connection Issues
# Test connectivity from ECS/EKS
# For ECS
aws ecs run-task --cluster erpnext-cluster \
--task-definition erpnext-backend \
--overrides '{"containerOverrides":[{"name":"erpnext-backend","command":["mysql","-h","RDS_ENDPOINT","-u","admin","-p"]}]}'
# For EKS
kubectl run mysql-test --rm -i --tty --image=mysql:8.0 -- mysql -h RDS_ENDPOINT -u admin -p
MemoryDB Connection Issues
# Test Redis connectivity
# For EKS
kubectl run redis-test --rm -i --tty --image=redis:alpine -- redis-cli -h REDIS_ENDPOINT ping
# Check AUTH configuration
aws memorydb describe-clusters --cluster-name erpnext-redis --region us-east-1
Performance Issues
# Check RDS performance
aws rds describe-db-instances --db-instance-identifier erpnext-db
aws cloudwatch get-metric-statistics --namespace AWS/RDS --metric-name CPUUtilization
# Monitor MemoryDB metrics
aws cloudwatch get-metric-statistics --namespace AWS/MemoryDB --metric-name CPUUtilization
Cost Issues
# Analyze costs with AWS CLI
aws ce get-cost-and-usage --time-period Start=2024-01-01,End=2024-01-31 \
--granularity MONTHLY --metrics BlendedCost
# Get cost recommendations
aws support describe-trusted-advisor-checks --language en
📚 Additional Resources
AWS Documentation
- Amazon RDS User Guide
- Amazon MemoryDB User Guide
- Amazon ECS Developer Guide
- Amazon EKS User Guide
- AWS Well-Architected Framework
ERPNext Specific
AWS Tools and SDKs
Monitoring & Operations
🎯 Decision Matrix
Choose ECS + Managed Services if:
- ✅ Want minimal operational overhead
- ✅ Team has limited Kubernetes experience
- ✅ Need rapid deployment and scaling
- ✅ Prefer AWS-native container orchestration
- ✅ Want to minimize infrastructure complexity
Choose EKS + Managed Services if:
- ✅ Need advanced Kubernetes features
- ✅ Plan to run multiple applications
- ✅ Require fine-grained control over scheduling
- ✅ Have existing Kubernetes expertise
- ✅ Need advanced networking capabilities
- ✅ Want cloud-agnostic deployment patterns
📞 Support & Contributing
Getting Help
- Documentation Issues: Create issues in the repository
- AWS Support: Use AWS Support Center for service issues
- Community: ERPNext Community Forum and GitHub Discussions
- Professional Services: AWS Professional Services for complex deployments
Contributing
- Documentation improvements: Submit pull requests
- Script enhancements: Share automation improvements
- Best practices: Contribute lessons learned from production deployments
- Cost optimizations: Share optimization strategies and findings
Feedback
We welcome feedback on these deployment guides. Please open an issue or submit a pull request with:
- Improvements to documentation clarity
- Additional troubleshooting scenarios
- Cost optimization techniques
- Security enhancements
- Performance optimization tips
⚡ Quick Commands Reference
ECS Operations
# Check service status
aws ecs describe-services --cluster erpnext-cluster --services erpnext-backend
# View task logs
aws logs get-log-events --log-group-name /aws/ecs/erpnext-backend
# Scale service
aws ecs update-service --cluster erpnext-cluster --service erpnext-backend --desired-count 5
EKS Operations
# Check pod status
kubectl get pods -n erpnext
# View logs
kubectl logs -f deployment/erpnext-backend -n erpnext
# Scale deployment
kubectl scale deployment erpnext-backend --replicas=5 -n erpnext
Database Operations
# Create RDS snapshot
aws rds create-db-snapshot --db-instance-identifier erpnext-db --db-snapshot-identifier manual-backup-$(date +%Y%m%d)
# Monitor MemoryDB
aws memorydb describe-clusters --cluster-name erpnext-redis
⚠️ Important Notes:
- Managed services incur continuous costs even when applications are idle
- Always test deployments thoroughly in staging before production
- Monitor costs regularly using AWS Cost Explorer
- Keep credentials secure and rotate regularly
- Follow AWS security best practices and compliance requirements
- Review and update security groups and IAM policies regularly
🎯 Recommendation: For most production deployments, EKS with managed services provides the best balance of control, reliability, and operational efficiency, while ECS offers simplicity for teams new to container orchestration.
🔄 Maintenance: These guides are actively maintained. Check for updates regularly and ensure your AWS CLI, kubectl, and other tools are up to date.