[vpc]
section
Specifies Amazon VPC configuration settings. For more information about VPCs, see What is Amazon VPC? and Security best practices for your VPC in the Amazon VPC User Guide.
The format is [vpc
. vpc-name
]vpc-name
must
start with a letter, contain no more than 30 characters, and only contain letters, numbers, hyphens (-), and
underscores (_).
[vpc public] vpc_id =
vpc-xxxxxx
master_subnet_id =subnet-xxxxxx
Topics
additional_sg
(Optional) Provides an additional Amazon VPC security group Id for all instances.
There is no default value.
additional_sg =
sg-xxxxxx
compute_subnet_cidr
(Optional) Specifies a Classless Inter-Domain Routing (CIDR) block. Use this parameter if you want Amazon ParallelCluster to create a compute subnet.
compute_subnet_cidr = 10.0.100.0/24
Update policy: If this setting is changed, the update is not allowed.
compute_subnet_id
(Optional) Specifies the ID of an existing subnet in which to provision the compute nodes.
If not specified, compute_subnet_id uses the value of master_subnet_id.
If the subnet is private, you must set up NAT for web access.
compute_subnet_id =
subnet-xxxxxx
Update policy: The compute fleet must be stopped for this setting to be changed for an update.
master_subnet_id
(Required) Specifies the ID of an existing subnet in which to provision the head node.
master_subnet_id =
subnet-xxxxxx
Update policy: If this setting is changed, the update is not allowed.
ssh_from
(Optional) Specifies a CIDR-formatted IP range to allow SSH access from.
This parameter is used only when Amazon ParallelCluster creates the security group.
The default value is 0.0.0.0/0
.
ssh_from = 0.0.0.0/0
Update policy: This setting can be changed during an update.
use_public_ips
(Optional) Defines whether to assign public IP addresses to compute instances.
If set to true
, an Elastic IP address is associated to the head node.
If set to false
, the head node has a public IP (or not) according to the value of the "Auto-assign
Public IP" subnet configuration parameter.
For examples, see networking configuration.
The default value is true
.
use_public_ips = true
Important
By default, all Amazon Web Services accounts are limited to five (5) Elastic IP addresses for each Amazon Web Services Region. For more information, see Elastic IP address limit in Amazon EC2 User Guide.
Update policy: The compute fleet must be stopped for this setting to be changed for an update.
vpc_id
(Required) Specifies the ID of the Amazon VPC in which to provision the cluster.
vpc_id =
vpc-xxxxxx
Update policy: If this setting is changed, the update is not allowed.
vpc_security_group_id
(Optional) Specifies the use of an existing security group for all instances.
There is no default value.
vpc_security_group_id =
sg-xxxxxx
The security group created by Amazon ParallelCluster allows SSH access using port 22 from the addresses specified in
the ssh_from setting, or all IPv4 addresses (0.0.0.0/0
) if
the ssh_from setting isn't specified. If Amazon DCV is enabled, then the
security group allows access to Amazon DCV using port 8443 (or whatever the port setting specifies) from the addresses specified in the access_from setting, or all IPv4 addresses
(0.0.0.0/0
) if the access_from
setting isn't specified.
Warning
You can change the value of this parameter and update the cluster if [cluster]
fsx_settings isn't specified or both fsx_settings
and an external existing FSx for Lustre file
system is specified for fsx-fs-id in [fsx
fs].
You can't change the value of this parameter if an Amazon ParallelCluster managed FSx for Lustre file system is specified in
fsx_settings
and [fsx
fs]
.