Switching Colors in Production: Blue/Green Deployments with ECS + Terraform
Deepak Kumar
Blue/Green deployments have always felt like a magic trick β two identical environments running in parallel, one live, one in waiting, and with a single switch you move production traffic over without anyone noticing. This month, I implemented exactly that for our FeedbackHub application on AWS ECS Fargate using Terraform.
This is Phase 3 of my AWS-Learning roadmap β and itβs a milestone worth documenting.
π― Why Blue/Green?
Zero downtime: Swap environments without taking production offline.
Safe rollback: If the new version (Green) misbehaves, instantly flip back to Blue.
Confidence in release: Test Green in production without risking the main environment.
Before Blue/Green became common, around the 2015β2020 era, we used to create a full replica of production, deploy new code there, run quick smoke tests, and then switch the DNS. It worked, but it was clunky, risky, and stressful. Blue/Green eliminates that hassle.
Thatβs why I often say: βBefore DevOps was a buzzword, I was already scaling Drupal on EC2s. Now Iβm just rewriting it with the help of modern tools and techniques!β
π Architecture Overview (Pyramid View)
The setup:
ALB at the top routing all production traffic
Two Target Groups (Blue & Green) beneath it
Two ECS Services (Blue active, Green staging) beneath Target Groups
π Visual: Pyramid Flow
flowchart TD
UserRequests((User Requests)) --> ALBListener{{ALB Listener}}
ALBListener --> BlueTG[Blue Target Group - 90% Traffic]
ALBListener --> GreenTG[Green Target Group - 10% Traffic]
BlueTG --> BlueService[ECS Blue Service - Active Prod]
GreenTG --> GreenService[ECS Green Service - Staging Test]
BlueService -.->|Rollback| ALBListener
GreenService -.->|Promote| ALBListener
Legend:
User Requests β Incoming traffic from users
ALB Listener β Routes traffic based on weights
Blue Target Group β Current production service (receives majority traffic)
Green Target Group β New version under test (receives minority traffic)
Rollback Path β Instant switch back to Blue if needed
Promote to Prod β Switch Green to full production when stable
βοΈ Implementation Highlights
Terraform modules for clean separation:
albβ ALB, TGs, listener rulesecs/feedbackhub_serviceβ Blue serviceecs/feedbackhub_service_greenβ Green service
Weighted rule:
forward {
target_group {
arn = aws_lb_target_group.app.arn # Blue
weight = 90
}
target_group {
arn = aws_lb_target_group.feedbackhub_green_tg.arn # Green
weight = 10
}
}
- Rollout strategy: Shift gradually, monitor CloudWatch logs, rollback if needed
π§ͺ Testing the Cutover
Deploy new version to Green
Gradually increase traffic weight to Green
Validate health checks & logs in CloudWatch
If stable β shift 100% traffic to Green
If issues β rollback instantly to Blue
Fun fact: Our /green test URL had some Next.js quirks (redirects), so we validated Green by routing traffic through the ALB weighted rules instead β a very real production lesson in handling frontend routing.
π Lessons Learned
Blue/Green is less about URLs and more about traffic control at ALB level
Weighted rules are a powerful safety net
Clean Terraform modules make this setup repeatable and maintainable
Always have a rollback command ready
π Whatβs Next
This completes Phase 3 of my AWS-Learning roadmap. Next up:
Phase 3.5 β AWS Bedrock integration to analyze ECS CloudWatch logs (AI-powered observability!)
Phase 4 β CI/CD pipeline for Blue/Green deployments using GitHub Actions
Stay tuned β weβre bringing AI into the mix next.
π¬ Have you implemented Blue/Green with ECS or another platform? What was your biggest lesson?
π Resources & Links
π» Repo: GitHub Repository
π Live App: FeedbackHub Deployment (May be snoozing to save AWS bill!)
π Connect: LinkedIn Profile (Come for the DevOps talk, stay for the ECS nap jokes!)
Subscribe to my newsletter
Read articles from Deepak Kumar directly inside your inbox. Subscribe to the newsletter, and don't miss out.
Written by