Help Center/Cloud Container Engine/Best Practices/Node and Node Pool/Executing the Pre- or Post-installation Script During Node Creation
Updated on 2026-03-10 GMT+08:00
View PDF
Share

Executing the Pre- or Post-installation Script During Node Creation

Background

When creating a node, use the pre- or -installation script to install tools or perform security hardening on the node. This section provides guidance for you to correctly use the pre- or post-installation script. To use advanced installation scripts, store the scripts in OBS buckets to prevent problems such as excessive characters in the scripts. For details, see Using OBS Buckets to Implement Custom Script Injection During Node Creation.

Precautions

  • Do not use the pre- or post-installation script that takes a long time to execute.

    The pre-installation script has a 15-minute time limit, while the post-installation script has a 30-minute time limit. If the node is not available within the designated time, the node reclaim process will be initiated. Therefore, do not use pre- or post-installation scripts that take a long time to execute.

  • Do not directly use reboot in the script.

    CCE executes the post-installation script after installing mandatory components on a node. The node will be available only after the post-installation script is executed. If you run reboot directly, the node may be restarted before its status is reported. As a result, it cannot reach the running state within 30 minutes, and a rollback due to timeout will be triggered. Therefore, do not use reboot.

    If you need to restart a node, perform the following operations:

    • Run shutdown -r<time > in the script to delay the restart. For example, you can run shutdown -r 1 to delay the restart for 1 minute.
    • After the node is available, manually restart it.

Procedure

  1. Log in to the CCE console. In the navigation pane, choose Clusters. Click the cluster name to access the cluster console.
  2. In the navigation pane, choose Nodes. In the right pane, click the Nodes tab, click Create Node in the upper right corner, and configure the parameters.
  3. In the Advanced Settings area, enter the pre- or post-installation script.

    For example, you can create an iptables rule by executing the post-installation script to allow a maximum of 25 TCP data packets to be addressed to port 80 per minute, and allow up to 100 additional packets when the limit is exceeded to prevent DDoS attacks.

    iptables -A INPUT -p tcp --dport 80 -m limit --limit 25/minute --limit-burst 100 -j ACCEPT

    The example here is for reference only.

  4. After the configuration, enter the number of nodes to be purchased and click Next: Confirm.
  5. Click Submit.
Parent Topic: Node and Node Pool