docs: Usage Instructions for Zilla Plus AWS Marketplace AMIs (aklivity#317)

ankitk-me · web-flow · commit 7243e905d545 · 2025-05-05T21:35:15.000+05:30
diff --git a/src/.vuepress/sidebar/en.ts b/src/.vuepress/sidebar/en.ts
@@ -736,10 +736,17 @@ export const enSidebar = sidebar({
             },
             {
               text: "Virtual Clusters",
+              prefix: "virtual-clusters/",
               link: "virtual-clusters/README.md",
               children: [],
             },
             "zilla-plus-on-aws-ecs-fargate.md",
+            {
+              text: "AWS AMI",
+              prefix: "zilla-plus-via-aws-ami/",
+              link: "zilla-plus-via-aws-ami/README.md",
+              children: [],
+            },
           ],
         },
       ],
diff --git a/src/deployment/zilla-plus-in-production/zilla-plus-via-aws-ami/README.md b/src/deployment/zilla-plus-in-production/zilla-plus-via-aws-ami/README.md
@@ -0,0 +1,158 @@
+---
+shortTitle: AWS AMI
+---
+
+# Deploying Zilla Plus via AWS AMI
+
+[Available in Zilla Plus](https://www.aklivity.io/products/zilla-plus)
+{.zilla-plus-badge .hint-container .info}
+
+## Overview
+
+The [Zilla Plus](https://aws.amazon.com/marketplace/seller-profile?id=b9df13e8-d3bc-41d1-bf8a-4a07aaa96e62) is an enterprise-ready, Kafka-native edge, and service proxy. It is a flexible, secure, and reliable way of creating stateless, multi-protocol API entry points into your Kafka cluster for both native and non-native Kafka clients.
+
+This Guide will walk you through deploying Zilla Plus service using **AWS AMI**.
+
+## Subscribe via AWS Marketplace
+
+To launch a Zilla Plus instance, a subscription to the [Zilla Plus product on Amazon Marketplace](https://aws.amazon.com/marketplace/seller-profile?id=b9df13e8-d3bc-41d1-bf8a-4a07aaa96e62) is required.
+
+- To get started, visit the AWS Marketplace [Product Page](https://aws.amazon.com/marketplace/seller-profile?id=b9df13e8-d3bc-41d1-bf8a-4a07aaa96e62)
+- `Subscribe` to the appropriate **Zilla Plus** edition:
+  - [Zilla Plus for Amazon MSK](https://aws.amazon.com/marketplace/pp/prodview-jshnzslazfm44)
+  - [Zilla Plus for Confluent Cloud](https://aws.amazon.com/marketplace/pp/prodview-eblxkinsqbaks)
+  - [Zilla Plus for Redpanda](https://aws.amazon.com/marketplace/pp/prodview-sj4kquyndubiu)
+- You should see `Zilla Plus` listed in your [AWS Marketplace](https://console.aws.amazon.com/marketplace) subscriptions.
+
+You can skip this step if you have already subscribed to Zilla Plus via AWS Marketplace.
+
+## Launch Zilla Plus Instance via AMI
+
+![](zilla-plus-via-ami.gif)
+
+### Prerequisites
+
+- A Subscription to the [Zilla Plus product on Amazon Marketplace](https://aws.amazon.com/marketplace/seller-profile?id=b9df13e8-d3bc-41d1-bf8a-4a07aaa96e62)
+
+### Steps to launch a Zilla Plus instance
+
+1. **Sign in to the AWS Console**
+   - Navigate to the [EC2 Dashboard](https://console.aws.amazon.com/ec2/home#Instances:instanceState=running) in your preferred region.
+
+2. **Start a New Instance**
+   - Click `Launch Instance` and provide a name (e.g., `zilla-plus-proxy`).
+
+3. **Select the Zilla Plus AMI**
+   - Choose the subscribed **Zilla Plus AMI** from your list.
+
+4. **Choose an Instance Type**
+   - Select an instance type that fits your workload (e.g., `t3.medium` or `larger`).
+
+5. **Configure Networking**
+   - Create or select a `VPC security group` that allows access to the required ports for Zilla Plus.
+   - Ensure the instance is launched in a subnet with **Auto-assign public IP** enabled.
+
+6. **Add User Data**
+   - Expand `Advanced details` > `User data - optional`
+   - Paste [custom cloud-init script](#user-data) to initialize the Zilla Plus service with `zilla.yaml` configuration.
+   - You can also use `base64-encoded` input directly by selecting `User data has already been base64 encoded` option.
+
+7. **Launch the Instance**
+   - Click `Launch Instance`.
+
+### User Data
+
+::: tabs
+
+@tab Services Init
+
+```yaml:no-line-numbers
+<!-- @include: amazon-msk-secure-public-access-mtls-user-data.yaml#services_init  -->
+```
+
+@tab Zilla Config Init
+
+```yaml:no-line-numbers
+<!-- @include: amazon-msk-secure-public-access-mtls-user-data.yaml#config_init  -->
+```
+
+:::
+
+::: details Complete User Data for reference
+
+```yaml
+<!-- @include: amazon-msk-secure-public-access-mtls-user-data.yaml -->
+```
+
+:::
+
+### Verify Zilla Plus Service
+
+> This checks that the services and networking were properly configured.
+
+Navigate to the [EC2 running instances dashboard.](https://console.aws.amazon.com/ec2/home#Instances:instanceState=running)
+
+::: note Check your selected region
+Make sure you have selected the desired region, ex: `US East (N. Virginia) us-east-1`.
+:::
+
+Select the Zilla Plus instance launched to show the details.
+
+Find the `Public IPv4 Address` and then SSH into the instance.
+
+```bash
+ssh -i ~/.ssh/<key-pair.cer> ec2-user@<instance-public-ip-address>
+```
+
+After logging in via SSH, check the status of the `zilla-plus` system service.
+
+::: tabs
+
+@tab Service is running
+
+Verify that the `zilla-plus` service is active and logging output similar to that shown below.
+
+```bash
+systemctl status zilla-plus.service
+```
+
+```output:no-line-numbers
+zilla-plus.service - Zilla Plus
+   Loaded: loaded (/etc/systemd/system/zilla-plus.service; enabled; vendor preset: disabled)
+   Active: active (running) since...
+```
+
+@tab Check Zilla Logs
+
+You can get an stdout dump of the `zilla-plus.service` using `journalctl`.
+
+```bash
+journalctl -e -u zilla-plus.service | tee -a /tmp/zilla.log
+```
+
+```output:no-line-numbers
+systemd[1]: Started zilla-plus.service - Zilla Plus.
+...
+```
+
+@tab Check Cloud Init Logs
+
+All output from cloud-init is captured by default to `/var/log/cloud-init-output.log`. There shouldn't be any errors in this log.
+
+```bash
+cat /var/log/cloud-init-output.log
+```
+
+```output:no-line-numbers
+Cloud-init v. 22.2.2 running 'init'...
+```
+
+:::
+
+## Conclusion
+
+You have successfully deployed the [Zilla Plus](https://aws.amazon.com/marketplace/seller-profile?id=b9df13e8-d3bc-41d1-bf8a-4a07aaa96e62) using AWS AMI.
+
+::: tip
+Check out the [Troubleshooting](/support/troubleshooting-guides.md) guide if you run into any issues.
+:::
diff --git a/src/deployment/zilla-plus-in-production/zilla-plus-via-aws-ami/amazon-msk-secure-public-access-mtls-user-data.yaml b/src/deployment/zilla-plus-in-production/zilla-plus-via-aws-ami/amazon-msk-secure-public-access-mtls-user-data.yaml
@@ -0,0 +1,69 @@
+#cloud-config
+
+write_files:
+  - path: /etc/zilla/zilla.yaml
+    #region config_init
+    content: |
+      name: public
+      vaults:
+        secure:
+          type: aws-secrets
+      bindings:
+        tcp_server:
+          type: tcp
+          kind: server
+          options:
+            host: 0.0.0.0
+            port: {{ EXTERNAL_PORT }}
+          exit: tls_server
+        tls_server:
+          type: tls
+          kind: server
+          vault: secure
+          options:
+            keys:
+            - {{ EXTERNAL_KEY }}
+          routes:
+          - exit: kafka_proxy
+            when:
+            - authority: "{{ EXTERNAL_AUTHORITY }}"
+        kafka_proxy:
+          type: kafka-proxy
+          kind: proxy
+          options:
+            external:
+              host: "{{ EXTERNAL_HOST }}"
+              port: {{ EXTERNAL_PORT }}
+            internal:
+              host: "{{ INTERNAL_HOST }}"
+              port: {{ INTERNAL_PORT }}
+          exit: tls_client
+        tls_client:
+          type: tls
+          kind: client
+          vault: secure
+          options:
+            trustcacerts: true
+          exit: tcp_client
+        tcp_client:
+          type: tcp
+          kind: client
+          options:
+            host: "*"
+            port: {{ INTERNAL_PORT }}
+          routes:
+          - when:
+            - authority: "{{ INTERNAL_AUTHORITY }}"
+      telemetry:
+        exporters:
+          logs:
+            type: stdout
+    #endregion config_init
+
+#region services_init
+runcmd:
+  - systemctl enable amazon-ssm-agent
+  - systemctl start amazon-ssm-agent
+  - systemctl enable zilla-plus
+  - systemctl start zilla-plus
+#endregion services_init
diff --git a/src/deployment/zilla-plus-in-production/zilla-plus-via-aws-ami/zilla-plus-via-ami.gif b/src/deployment/zilla-plus-in-production/zilla-plus-via-aws-ami/zilla-plus-via-ami.gif
diff --git a/src/deployment/zilla-to-zilla-plus-upgrade/README.md b/src/deployment/zilla-to-zilla-plus-upgrade/README.md
@@ -30,11 +30,28 @@ To simplify deployment, we have curated templates for the following use cases:
 - [Secure Private Access](/deployment/zilla-plus-in-production/secure-private-access/README.md)
 - [Secure Public Access](/deployment/zilla-plus-in-production/secure-public-access/README.md)
 
-However, if you have a specific use-case implemented on Zilla using custom `zilla.yaml` or want to use your existing `zilla` setup, you can upgrade Zilla service to Zilla-plus on AWS ECS Fargate.
+However, if you have a specific use-case implemented on Zilla using custom `zilla.yaml` or want to use your existing `zilla` setup, you can upgrade Zilla service to Zilla-plus using these options:
+
+- [**AWS AMI**](#aws-ami)
+- [**AWS ECS Fargate**](#aws-ecs-fargate)
 
 ## Upgrade Process
 
-To migrate from Zilla to Zilla-Plus, transfer your existing zilla.yaml configuration and related files to the Zilla-Plus container using the COPY instruction.
+### AWS AMI
+
+[Zilla Plus](https://aws.amazon.com/marketplace/seller-profile?id=b9df13e8-d3bc-41d1-bf8a-4a07aaa96e62) is available as an **Amazon Machine Image** (AMI) through the AWS Marketplace.
+
+To use your custom` zilla.yaml`, you can pass the configuration as `user data` during instance launch:
+
+- Go to the `Launch Instance` wizard.
+- Expand `Advanced details`.
+- Add your `zilla.yaml` under the `User data` section using cloud-config.
+
+Refer to the full guide: [Deploying Zilla Plus via AWS AMI](/deployment/zilla-plus-in-production/zilla-plus-via-aws-ami/README.me)
+
+### AWS ECS Fargate
+
+To migrate from Zilla to Zilla-Plus, transfer your existing zilla.yaml configuration and related files to the **Zilla Plus** container using the COPY instruction.
 
 Example:
 
@@ -50,11 +67,11 @@ Copying an entire configuration directory:
 COPY ./etc /etc/zilla
 ```
 
-## Deployment on AWS ECS Fargate
+#### Deployment on AWS ECS Fargate
 
 For detailed deployment steps, refer to: [Deploy Zilla-Plus on AWS ECS Fargate](../../deployment/zilla-plus-in-production/zilla-plus-on-aws-ecs-fargate.md)
 
-## Verify Your Service is Running
+#### Verify Your Service is Running
 
 Once the service has started successfully, you should see the 'started' log message in the Zilla container logs.
 
