![]() ![]() ![]() If you run a distribution other than Amazon Linux 2 and need installation instructions for amazon-efs-utils, see Using the amazon-efs-utils tools. Run the following command to install amazon-efs-utils: sudo yum install -y amazon-efs-utils Using access points and IAM policies on Amazon EFS requires the amazon-efs-utils tool. If umount isn't run, then I/O errors occur if you make a mistake when applying the EFS policy later on: sudo umount /efsĤ. If you test by mounting, then after it's mounted, run the umount command on your file system and on all of your EC2 instances. Note: Replace the example file system with your file system. The following command mounts your file system into both EC2 instances: sudo mount -t nfs4 -o nfsvers=4.1,rsize=1048576,wsize=1048576,hard,timeo=600,retrans=2,noresvport .com:/ /efs Mount the EFS as an NFS type using the EFS FQDN where amazon-efs-utils aren't required. ![]() To test the connection from your client system where you mount to the EFS FQDN or the short name, you must do one of the following: Or, if you have the file system ID, then construct the file system DNS name using the following example: .comģ. Get the file system DNS name from the console. The file system DNS name automatically resolves to the mount target’s IP address in the Availability Zone of the connecting EC2 instance. Note: It’s a best practice to use the file system's DNS name as your mounting option. For more information, see Using VPC security groups for Amazon EC2 instances and mount targets. Before mounting your file system, add a rule to the mount target security group that allows inbound NFS access from the Amazon EC2 security group. The security group attached to the instances must allow outbound access on port 2049 towards your Amazon EFS.Ģ. It’s a best practice to use the latest Amazon Linux 2 AMI. You must have two Amazon EC2 instances in the same VPC used for your file system-or, you must make sure that the instances can reach your file system. Create an Amazon EFS policy for your file system.Ĥ. Grant ClientMount and ClientWrite permissions to create IAM policies for each instance. Create Amazon EFS access points for your file system.Ģ. To use access points and IAM to control access to your directories, do the following:ġ. Use the same file system for different instances and grant access to specific directories with Amazon EFS access points. ![]()
0 Comments
|
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |