[vpc] section - Amazon ParallelCluster
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

[vpc] section

Specifies Amazon VPC configuration settings. For more information about VPCs, see What is Amazon VPC? and Security best practices for your VPC in the Amazon VPC User Guide.

The format is [vpc vpc-name]. vpc-name must start with a letter, contain no more than 30 characters, and only contain letters, numbers, hyphens (-), and underscores (_).

[vpc public] vpc_id = vpc-xxxxxx master_subnet_id = subnet-xxxxxx

additional_sg

(Optional) Provides an additional Amazon VPC security group Id for all instances.

There is no default value.

additional_sg = sg-xxxxxx

compute_subnet_cidr

(Optional) Specifies a Classless Inter-Domain Routing (CIDR) block. Use this parameter if you want Amazon ParallelCluster to create a compute subnet.

compute_subnet_cidr = 10.0.100.0/24

Update policy: If this setting is changed, the update is not allowed.

compute_subnet_id

(Optional) Specifies the ID of an existing subnet in which to provision the compute nodes.

If not specified, compute_subnet_id uses the value of master_subnet_id.

If the subnet is private, you must set up NAT for web access.

compute_subnet_id = subnet-xxxxxx

Update policy: The compute fleet must be stopped for this setting to be changed for an update.

master_subnet_id

(Required) Specifies the ID of an existing subnet in which to provision the head node.

master_subnet_id = subnet-xxxxxx

Update policy: If this setting is changed, the update is not allowed.

ssh_from

(Optional) Specifies a CIDR-formatted IP range to allow SSH access from.

This parameter is used only when Amazon ParallelCluster creates the security group.

The default value is 0.0.0.0/0.

ssh_from = 0.0.0.0/0

Update policy: This setting can be changed during an update.

use_public_ips

(Optional) Defines whether to assign public IP addresses to compute instances.

If set to true, an Elastic IP address is associated to the head node.

If set to false, the head node has a public IP (or not) according to the value of the "Auto-assign Public IP" subnet configuration parameter.

For examples, see networking configuration.

The default value is true.

use_public_ips = true
Important

By default, all Amazon Web Services accounts are limited to five (5) Elastic IP addresses for each Amazon Web Services Region. For more information, see Elastic IP address limit in Amazon EC2 User Guide.

Update policy: The compute fleet must be stopped for this setting to be changed for an update.

vpc_id

(Required) Specifies the ID of the Amazon VPC in which to provision the cluster.

vpc_id = vpc-xxxxxx

Update policy: If this setting is changed, the update is not allowed.

vpc_security_group_id

(Optional) Specifies the use of an existing security group for all instances.

There is no default value.

vpc_security_group_id = sg-xxxxxx

The security group created by Amazon ParallelCluster allows SSH access using port 22 from the addresses specified in the ssh_from setting, or all IPv4 addresses (0.0.0.0/0) if the ssh_from setting isn't specified. If Amazon DCV is enabled, then the security group allows access to Amazon DCV using port 8443 (or whatever the port setting specifies) from the addresses specified in the access_from setting, or all IPv4 addresses (0.0.0.0/0) if the access_from setting isn't specified.

Warning

You can change the value of this parameter and update the cluster if [cluster] fsx_settings isn't specified or both fsx_settings and an external existing FSx for Lustre file system is specified for fsx-fs-id in [fsx fs].

You can't change the value of this parameter if an Amazon ParallelCluster managed FSx for Lustre file system is specified in fsx_settings and [fsx fs].

Update policy: If Amazon ParallelCluster managed Amazon FSx for Lustre file systems aren't specified in the configuration, this setting can be changed during an update.