All Products
Search
Document Center

Pull Nginx image from the Alibaba Cloud image repository

Last Updated: Sep 20, 2019

This topic describes how to pull an image from the Alibaba Cloud image repository and quickly create a container group by using the default or minimal settings for some parameters.

Preparations

You must have activated the Elastic Container Instance (ECI) and Resource Access Management (RAM) services. In addition, you must have assigned an RAM role to ECI to allow access to your private image repository. ECI then automatically pulls your private images from the Alibaba Cloud image repository without using a password.

Specifically, you can use the VPC address of the Alibaba Cloud image repository to pull images.

When you create a container group in the console, the system automatically uses the VPC address to pull the image without your operation.

Procedure

Go to the ECI sales page

Go to the ECI sales page.

Step 1: Select a region and a zone

Select the region and zone where you want to deploy the container group. For more information about the supported regions and zones, see Regions and zones.

We recommend that you choose the most recent zones that meet your business requirements, as these have more resources.

C-1

Step 2: Select a VPC and a VSwitch

After you select a VPC and a VSwitch in the region and zone, the CIDR block and other information about the VPC are displayed on the page. If no VPC or VSwitch is available in the region and zone, create a VPC and a VSwitch in the console.

Click here to see how to create a VPC.

Click here to see how to create a VSwitch.

C-2

Step 3: Select a security group

Select a security group for the VPC. A security group is a virtual firewall that provides state detection and data packet filtering and isolates security zones in the cloud. You can set rules for a security group to allow or disallow access to the public or private network from container groups in the security group as well as access between different container groups.

To allow access to container groups in a VPC from the public network, you need to expose the corresponding service ports in the security group rules. For example, if an NGINX container is deployed in a container group, you need to allow access to port 80 from the public network in the security group rule.

Click here for more information about security groups.

C-4

Step 4: Select an image

Set names for the container group and the containers in the group. Then, select the image type and version from the image repository.

C-5-1

Step 5: Select the number of vCPUs and memory size for the container group

Select the number of vCPUs and memory size for the container group. The minimum specifications are 2 vCPUs and 4 GB memory.

C-6-1

Step 6: Confirm the configuration

Click Confirm Configuration. On the page that appears, verify that the configuration is correct, and then click Create ECI to submit the order.

C-7-1