All Products
Document Center

Create an elastic container instance by using an NGINX image

Last Updated: Apr 01, 2021

This topic describes how to pull an image from Container Registry to create an elastic container instance. NGINX is used in the examples.


Before you start, make sure that the following requirements are met:

  • Elastic Container Instance and Resource Access Management (RAM) are activated. The related RAM roles are authorized.

  • A VPC and a vSwitch are created. For more information, see Work with VPCs and Work with vSwitches.


This section describes the key configurations and procedure of using an NGINX image to create an elastic container instance. For some parameters, only the required or default configurations are used.

  1. Go to the Elastic Container Instance buy page.

  2. Select a region and a zone.

    As long as your business requirements can be met, we recommend that you select the zone that has sufficient resources. For more information, see Regions and zones.

  3. Select a VPC and a vSwitch.

    After you select the resources, the corresponding information including the CIDR block is displayed on the page.

  4. (Optional) Select an elastic IP address (EIP).


    If you want your elastic container instance to access the Internet, such as pulling images over the Internet, you must bind a NAT gateway to the VPC and configure source network address translation (SNAT) rules or associate an EIP with the elastic container instance. Otherwise, you cannot pull images over the Internet. For more information, see Enable Internet access.

  5. Select a security group. Security groups work as virtual firewalls that provide Stateful Packet Inspection (SPI) and packet filtering capabilities to isolate security domains on the cloud. You can configure security group rules to enable or disable the access to the Internet or internal network and access to or from specific IP addresses. For more information, see Overview.


    If you want to access elastic container instances in VPCs over the Internet, you must enable the corresponding ports in the security groups. For example, you must enable port 80 when you deploy the NGINX service. For more information, see Add security group rules.

  6. Configure the container group.

    1. Configure the restart policy.

    2. Enter the name of the container group.

    3. Add a container.


      The following table describes the key parameters.




      Container Name

      Customize a container name. The requirements for the parameter value are displayed on the buy page.



      Select a container image and the corresponding version based on your needs.

      nginx selected on the Common Image tab and latest as the version

      Image Pulling Policy

      Select an image pulling policy based on your needs.

      • Always: The image is pulled every time a container is created.

      • On-demand: Local images are preferentially used. If no local images exist, this image is pulled

      • Never: Only local images are used.


      vCPU and Memory

      Specify the vCPUs and memory of the container based on your needs.

      2 vCPUs and 4 GiB

  7. Click Preview.

  8. Confirm the configurations, read and select Elastic Container Instance Service Agreement, and then click Create ECI.

    After the elastic container instance is created, you can view it on the Container Group page.