Skip to Content

EC2 Prerequisites

The AWS instances of the SLES HAE will require policies which allow them to update Route53 A Records.

Add the following policy to your EC2 instances of the SLES HAE cluster

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "Stmt1471878724000",
            "Effect": "Allow",
            "Action": [
                "route53:ChangeResourceRecordSets",
                "route53:GetChange",
                "route53:ListResourceRecordSets",
            ],
            "Resource": [
                "*"
            ]
        }
    ]
}

Have an AWS Profile for your root User

The agent will call AWS CLI commands. It'll use an AWS profile. It'll work with the same profile as the Overlay IP agent. See "Creating a AWS CLI Profile on both Instances" in the Overlay IP documentation for details.

The profile name can be freely chosen. This solution uses the name cluster as default name. Change any occurence of it if you need to use a different profile

Have a Route 53 private hosted Zone

The agent will update an A Record in a Route 53 hosted zone. This means that you will need the required infrastructure in you AWS account. This AWS page shows how to create a private hosted zone.

You will need (with example values)

hostedzoneid: Z22XDORCGO4P3T

fullname: suse-service.awslab.cloud.mylab.corp.     (The very last dot matters!)



book | by Dr. Radut