DevOps

AWS CodeDeploy Deployment Strategies - Blue/Green Deployments for EC2, ECS, and Lambda

Manage deployment strategies across three platforms - EC2, ECS, and Lambda - in a unified way. This article covers ECS blue/green deployments and automatic rollback triggered by CloudWatch alarms.

約 3 分で読めます

Supported Platforms and Deployment Types

CodeDeploy is a deployment service that supports three platforms: EC2/on-premises, ECS, and Lambda. For EC2/on-premises, you can choose between in-place deployment (sequentially updating existing instances) and blue/green deployment (creating a new instance group and switching over). For ECS, only blue/green deployment is supported, where a new task set is launched and the target group is switched. For Lambda, it provides gradual deployment through traffic shifting. CodeDeploy itself is free for deployments to EC2 and Lambda, with charges applying only for ECS deployments on a per-update basis.

Designing ECS Blue/Green Deployments

In ECS blue/green deployments, two target groups (production and test) are configured on the ALB. When a deployment starts, a new task set (Green) is launched and registered with the test target group. You verify the Green environment's behavior through the test listener port, and if there are no issues, production listener traffic is switched to Green. Even after the switch, the old task set (Blue) is retained for a specified wait time (default 1 hour), allowing immediate rollback if problems occur. The recommended configuration is to run automated tests in the AfterAllowTestTraffic hook of the AppSpec file and automatically roll back on test failure.

Automatic Rollback and Alarm Integration

CodeDeploy's automatic rollback operates on two triggers: deployment failure and CloudWatch alarm activation. With CloudWatch alarm integration, you monitor post-deployment error rates (percentage of 5xx responses), latency (p99 response time), and business metrics (order success rate, etc.), and automatically roll back to the previous version when thresholds are exceeded. For Lambda traffic shifting, Canary deployment routes 10% of traffic to the new version first, and if no alarms fire during the specified period (e.g., 10 minutes), the remaining 90% is switched over. Linear deployment gradually shifts traffic in 10% increments, monitoring alarms at each step. For a comprehensive guide to CodeDeploy pipeline design, refer to technical books on Amazon.

CodeDeploy Pricing

CodeDeploy is free for all deployments to EC2, ECS, and Lambda. While compute costs are incurred during the period when resources temporarily run at double capacity during blue/green deployments, there are no additional charges for CodeDeploy itself. In ECS blue/green deployments, both Blue and Green tasks run simultaneously from the time the Green task set launches until traffic is switched, so Fargate or EC2 charges apply for that period. You can reduce costs by shortening the retention time for the Blue task set after the switch.

Summary

CodeDeploy is a service that provides unified management of safe deployments to EC2, ECS, and Lambda. Blue/green deployments and traffic shifting minimize risk in production environments, and CloudWatch alarm integration enables automatic rollback when issues arise. By incorporating tests into the deployment process through AppSpec lifecycle hooks, you can build deployment automation that ensures quality.

Related Services

AWS CodeDeployA fully managed service that automates application deployments to EC2, Lambda, and ECSAmazon ECSA container orchestration service for easily running and managing containerized applicationsAWS LambdaA serverless compute service that runs code without server management

Related Articles

Automating Application Deployment with Elastic Beanstalk - From Environment Setup to Rolling DeploysAutomate everything from environment setup to rolling deployments. Learn the criteria for selecting deployment policies and customization techniques using .ebextensions.DevOps Notifications with AWS Chatbot - Integrating AWS Events with Slack and TeamsLearn how to deliver CloudWatch alarm and CodePipeline notifications to Slack and Teams, and build a ChatOps environment where you can operate AWS using @aws commands from chat.Unifying Development Workflows with Amazon CodeCatalyst - From Project Management to CI/CDThis article explains project management, blueprint-based environment setup, and CI/CD workflow integration with CodeCatalyst.

More on This Topic

Automated Deployment Strategies - Continuous Delivery with AWS CodeDeploy and CodePipelineLearn how to build automated deployments using AWS CodeDeploy and CodePipeline. This guide covers diverse deployment strategies for EC2, Lambda, and ECS, along with practical continuous delivery techniques using pipelines.Reading AWS's Next 3 Years from re:Invent Announcements - Service Lifecycles and the Rules of DeprecationFace the reality that AWS services have lifespans, examining cases like CodeCommit's enrollment freeze and SimpleDB's de facto end, and provide a technology selection perspective for identifying services that will endure.Chaos Engineering in Practice - Verifying Fault Tolerance with AWS Fault Injection SimulatorLearn about practicing chaos engineering with AWS Fault Injection Simulator (FIS). Covers designing fault injection scenarios, injecting faults into EC2, ECS, and RDS, and conducting safe experiments.CI/CD Pipeline Automation - Continuous Delivery with AWS CodePipelineLearn about CI/CD pipeline automation using AWS CodePipeline and CodeBuild.How Far Does CloudFormation Drift Detection See - How It Tracks Manual Changes and Its LimitationsLearn how CloudFormation drift detection internally compares the current state of resources with the expected state defined in templates, the boundary between detectable and undetectable changes, and strategies for drift remediation.What Happens During a CloudFormation Stack Update - Behind Change Sets, Rollbacks, and ReplacementsLearn about the internal processing flow when CloudFormation updates a stack, including how change sets detect differences, the logic behind resource update, replacement, and deletion decisions, and how rollbacks work.AWS CodeDeploy EC2/On-Premises Deployment - Designing AppSpec and Lifecycle HooksDeclaratively define deployment target paths and lifecycle hooks using AppSpec files. Learn about fleet management with tag-based deployment groups and Auto Scaling integration.Building CI/CD Pipelines with AWS CodePipeline - Automating from Source to DeploymentAutomate everything from source change detection to build, test, and deployment. Learn about V2 trigger filters, manual approval actions, and cross-account deployment design.

Similar Articles and Services

Automated Deployment Strategies - Continuous Delivery with AWS CodeDeploy and CodePipelineLearn how to build automated deployments using AWS CodeDeploy and CodePipeline. This guide covers diverse deployment strategies for EC2, Lambda, and ECS, along with practical continuous delivery techniques using pipelines.Building CI/CD Pipelines with AWS CodePipeline - Automating from Source to DeploymentAutomate everything from source change detection to build, test, and deployment. Learn about V2 trigger filters, manual approval actions, and cross-account deployment design.CI/CD Pipeline Automation - Continuous Delivery with AWS CodePipelineLearn about CI/CD pipeline automation using AWS CodePipeline and CodeBuild.AWS CodePipelineA fully managed CI/CD service that detects source code changes and automatically executes build, test, and deploy stages, enabling complete automation of the release process