Using Bottlerocket with Amazon ECS - Amazon Elastic Container Service

Using Bottlerocket with Amazon ECS

Bottlerocket is a Linux-based open source operating system that is purpose-built by AWS for running containers. For more information, see Bottlerocket on GitHub.

An Amazon ECS-optimized AMI variant of the Bottlerocket operating system is provided as an AMI you can use when launching Amazon ECS container instances. For a detailed walkthrough of how to get started with the Bottlerocket operating system on Amazon ECS, see Using a Bottlerocket AMI with Amazon ECS.

You can request new features on the GitHub page. For more information, see Bottlerocket on GitHub.

Considerations

The following should be considered when using the Bottlerocket AMI with Amazon ECS.

  • Bottlerocket is optimized for container workloads and has a focus on security. It does not include a package manager and is immutable by default. For information about the security features and guidance, see Security Features and Security Guidance on the GitHub website.

  • The Amazon ECS variant of the Bottlerocket AMI is not supported in the following Regions:

    • China (Beijing) (cn-north-1)

    • China (Ningxia) (cn-northwest-1)

  • Amazon EC2 instances with x86 or arm64 processors are supported. Amazon EC2 instances with GPUs or Inferentia chips are not supported.

  • The awsvpc network mode is supported when using Bottlerocket AMI version 1.1.0 or later.

  • The initProcessEnabled task definition parameter is not supported.

  • The following features are not supported:

    • App Mesh in task definitions

    • ECS Anywhere

    • ECS Exec

    • Amazon EFS file system volumes

    • Amazon EFS in encrypted mode and awsvpc network mode

    • Elastic Inference

    • FireLens in task definitions

The Amazon ECS variant of the Bottlerocket AMI can be retrieved using a Systems Manager parameter. The following is the format of the parameter name.

/aws/service/bottlerocket/aws-ecs-1/x86_64/latest

A specific version of the Bottlerocket AMI can be retrieved by using the version number in place of the latest tag. The following is an example.

aws ssm get-parameters --name "/aws/service/bottlerocket/aws-ecs-1/x86_64/1.1.0/image_id" --region us-east-1

You can retrieve the latest stable Bottlerocket AMI using the AWS CLI with the following command.

aws ssm get-parameters --name "/aws/service/bottlerocket/aws-ecs-1/x86_64/latest/image_id" --region us-east-1

The following table provides a link to retrieve the latest AMI ID of the Amazon ECS variant of the Bottlerocket operating system by Region.

Region Name

Region

AMI ID

US East (N. Virginia)

us-east-1

View AMI ID

US East (Ohio)

us-east-2

View AMI ID

US West (N. California)

us-west-1

View AMI ID

US West (Oregon)

us-west-2

View AMI ID

Africa (Cape Town)

af-south-1

View AMI ID

Asia Pacific (Hong Kong)

ap-east-1

View AMI ID

Asia Pacific (Tokyo)

ap-northeast-1

View AMI ID

Asia Pacific (Seoul)

ap-northeast-2

View AMI ID

Asia Pacific (Osaka)

ap-northeast-3

View AMI ID

Asia Pacific (Mumbai)

ap-south-1

View AMI ID

Asia Pacific (Singapore)

ap-southeast-1

View AMI ID

Asia Pacific (Sydney)

ap-southeast-2

View AMI ID

Asia Pacific (Jakarta)

ap-southeast-3

View AMI ID

Canada (Central)

ca-central-1

View AMI ID

Europe (Frankfurt)

eu-central-1

View AMI ID

Europe (Stockholm)

eu-north-1

View AMI ID

Europe (Ireland)

eu-west-1

View AMI ID

Europe (London)

eu-west-2

View AMI ID

Europe (Paris)

eu-west-3

View AMI ID

Europe (Milan)

eu-south-1

View AMI ID

Middle East (Bahrain)

me-south-1

View AMI ID

South America (São Paulo)

sa-east-1

View AMI ID

AWS GovCloud (US-East)

us-gov-east-1

View AMI ID

AWS GovCloud (US-West)

us-gov-west-1

View AMI ID