Creating Mount Targets

A mount target connects the EFS to a specific subnet in the VPC. The instances contained in the VPC can mount the target using the NFS protocol and utilize NFS.

In this section, you will create mount targets between the newly-created EFS and all three private subnets.

To create a mount target in a private subnet:

  1. Select one of your private subnets and run the following command:
    aws efs create-mount-target \
    --file-system-id <FileSystemId> \
    --security-groups <Intra VPC Security group Id> \
    --subnet-id <private subnet Id>

Where:

<FileSystemId>: The file system ID of the EFS you just created

<Intra VPC Security group Id>: The ID of the Intra VPC security group you previously created.

The command only accepts one subnet ID at a time. You must run this command separately for each private subnet which you are using for the cluster.
  1. The command will respond with a mount target description. From the output, record the MountTargetId in your AWS worksheet.
  2. Repeat Steps 1 and 2 for each of the other 2 private subnets (use the subnet IDs on your worksheet) and then record the values of MountTargetId for each in your AWS worksheet.

Example input and output:

aws efs create-mount-target \
--file-system-id fs-ebe456b3 \
--security-groups sg-07b302cbc0972c603 \
--subnet-id subnet-0fb2ebb5882c061f0
{
   "OwnerId":"115370811111",
   "MountTargetId":"fsmt-63eaae3a",
   "FileSystemId":"fs-ebe456b3",
   "SubnetId":"subnet-0fb2ebb5882c061f0",
   "LifeCycleState":"creating",
   "IpAddress":"10.0.10.131",
   "NetworkInterfaceId":"eni-03ecba7e5eb46dc9f",
   "AvailabilityZoneId":"euc1-az2",
   "AvailabilityZoneName":"eu-central-1a"
}

To check the creation status of a mount target:

  1. Run the following command:
    aws efs describe-mount-targets --mount-target-id <Mount target X Id>
  2. Record the value of MountTargetId in the AWS worksheet.

Immediately after creation, a mount target has a value for LifeCycleState value of creating. The transition to available usually takes approximately 3 minutes. To check the status, run the following command:
aws efs describe-mount-targets --mount-target-id <Mount target X Id>

Example input and output:

aws efs describe-mount-targets --mount-target-id fsmt-63eaae3a
{
   "OwnerId":"115370811111",
   "MountTargetId":"fsmt-63eaae3a",
   "FileSystemId":"fs-ebe456b3",
   "SubnetId":"subnet-0fb2ebb5882c061f0",
   "LifeCycleState":"creating",
   "IpAddress":"10.0.10.131",
   "NetworkInterfaceId":"eni-03ecba7e5eb46dc9f",
   "AvailabilityZoneId":"euc1-az2",
   "AvailabilityZoneName":"eu-central-1a"
}

Once all three mount targets are in the available state, you can proceed to the next step.

Next Step: Configuring EFS for the ArcSight Suite