finish ec2 instance handson

Author: bansikah22

terraform-basics/udemy/handson-ec2/.gitignore

@@ -0,0 +1,24 @@
+# Exclude Terraform files that shouldn't be shared
+*.tfstate
+*.tfstate.backup
+
+# Exclude local variables files (e.g., secrets, passwords, etc.)
+*.auto.tfvars
+*.terraform/
+*.terraform.lock.hcl
+*.tfvars
+
+# Ignore editor and system files
+*.swp
+*.bak
+*.tmp
+.DS_Store
+.idea/
+.vscode/
+*.log
+
+# Ignore Terraform plan files
+*.tfplan
+
+terraform.tfvars
+*.pem

terraform-basics/udemy/handson-ec2/datasources.tf

@@ -0,0 +1,9 @@
+data "aws_ami" "server_ami" {
+  most_recent = true
+  owners      = ["099720109477"] # Change to a list of strings
+
+  filter {
+    name   = "name"
+    values = ["ubuntu/images/hvm-ssd/ubuntu-bionic-18.04-amd64-server-*"]
+  }
+}

terraform-basics/udemy/handson-ec2/docs/deploy.md

@@ -0,0 +1,10 @@
+common commands
+Destroying the infrastructure.
+```bash
+tf destroy -auto-approve
+
+tf fmt ## formatting file
+
+ssh -i "auto-generated-key.pem" ubuntu@<public_ip_of instance>
+```
+A datasource is just a query to the aws api to receive information needed to deploy a resource

terraform-basics/udemy/handson-ec2/main.tf

@@ -0,0 +1,39 @@
+# Generate an RSA 4096-bit private key
+resource "tls_private_key" "rsa_4096" {
+  algorithm = "RSA"
+  rsa_bits  = 4096
+}
+
+# Create a local keypair with the private keypem format
+resource "local_file" "private_key" {
+  filename = "${path.module}/var.key_name.pem"
+  content  = tls_private_key.rsa_4096.private_key_pem
+}
+
+# Create an AWS Key Pair using the generated public key
+resource "aws_key_pair" "key_pair" {
+  key_name   = var.key_name
+  public_key = tls_private_key.rsa_4096.public_key_openssh
+}
+
+# Resource for instance
+resource "aws_instance" "nbt_node" {
+  ami             = data.aws_ami.server_ami.id
+  instance_type   = var.aws_instance_type
+  key_name        = aws_key_pair.key_pair.key_name
+  security_groups = [aws_security_group.nbt_security_group.id]
+  subnet_id       = aws_subnet.nbt_public_subnet.id
+
+  root_block_device {
+    volume_size = 20
+    #volume_type = "gp2"
+  }
+
+  # User data script to set up a development environment on the EC2 instance
+  user_data = file("userdata.tpl")
+  tags = {
+    Name = "nbt_node"
+  }
+
+
+}

terraform-basics/udemy/handson-ec2/network.tf

@@ -0,0 +1,58 @@
+# Create a VPC
+resource "aws_vpc" "nbt_vpc" {
+  cidr_block           = "10.123.0.0/16"
+  enable_dns_hostnames = true
+  enable_dns_support   = true
+
+  tags = {
+    Name = "nbt-vpc"
+  }
+}
+
+# Create a public subnet and referencing resource
+resource "aws_subnet" "nbt_public_subnet" {
+  vpc_id                  = aws_vpc.nbt_vpc.id
+  cidr_block              = "10.123.1.0/24"
+  map_public_ip_on_launch = true
+  availability_zone       = "eu-central-1a"
+
+  tags = {
+    Name = "nbt-public-subnet"
+  }
+}
+
+# Create an internet gateway 
+resource "aws_internet_gateway" "nbt_igw" {
+  vpc_id = aws_vpc.nbt_vpc.id
+
+  tags = {
+    Name = "nbt-igw"
+  }
+}
+
+# Create a route table
+resource "aws_route_table" "nbt_public_rt" {
+  vpc_id = aws_vpc.nbt_vpc.id
+
+  #   route {
+  #     cidr_block = "0.0.0.0/0"
+  #     gateway_id = aws_internet_gateway.nbt_igw.id    
+  #   }
+
+  tags = {
+    Name = "nbt-public-rt"
+  }
+}
+
+# Create a route but can be created directly in the route table
+resource "aws_route" "default_route" {
+  route_table_id         = aws_route_table.nbt_public_rt.id
+  destination_cidr_block = "0.0.0.0/0"
+  gateway_id             = aws_internet_gateway.nbt_igw.id
+}
+
+# Create a route table association
+resource "aws_route_table_association" "nbt_public_assoc" {
+  subnet_id      = aws_subnet.nbt_public_subnet.id
+  route_table_id = aws_route_table.nbt_public_rt.id
+}

terraform-basics/udemy/handson-ec2/outputs.tf

@@ -0,0 +1,30 @@
+output "key_name" {
+    value = aws_key_pair.key_pair.key_name
+    description = "Name of the key pair"
+}
+
+output "private_key" {
+    value     = file(aws_key_pair.key_pair.private_key_path)
+    sensitive = true
+    description = "Path to the private key file"
+}
+
+output "public_ip" {
+    value = aws_instance.nbt_node.public_ip
+    description = "Public IP address of the EC2 instance"
+}
+
+output "instance_id" {
+    value = aws_instance.nbt_node.id
+    description = "ID of the EC2 instance"
+}
+
+output "aws_ami_id" {
+    value = aws_instance.nbt_node.ami
+    description = "AMI ID of the EC2 instance"
+}
+
+output "aws_instance_type" {
+    value = aws_instance.nbt_node.instance_type
+    description = "Instance type of the EC2 instance"
+}

terraform-basics/udemy/handson-ec2/providers.tf

@@ -0,0 +1,15 @@
+terraform {
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = "~> 5.0"
+    }
+  }
+}
+
+# Configure the AWS Provider
+provider "aws" {
+  region     = var.aws_region
+  access_key = var.aws_access_key
+  secret_key = var.aws_secret_key
+}

terraform-basics/udemy/handson-ec2/security_groups.tf

@@ -0,0 +1,33 @@
+# Create a  security group
+resource "aws_security_group" "nbt_security_group" {
+  name        = "nbt-sg"
+  description = "Allow SSH and HTTP inbound traffic"
+  vpc_id      = aws_vpc.nbt_vpc.id
+
+  ingress {
+    description = "SSH"
+    from_port   = 22
+    to_port     = 22
+    protocol    = "tcp"
+    cidr_blocks = ["0.0.0.0/0"]
+  }
+
+  ingress {
+    description = "HTTP"
+    from_port   = 80
+    to_port     = 80
+    protocol    = "tcp"
+    cidr_blocks = ["0.0.0.0/0"]
+  }
+
+  egress {
+    from_port   = 0
+    to_port     = 0
+    protocol    = "-1"
+    cidr_blocks = ["0.0.0.0/0"]
+  }
+
+  tags = {
+    Name = "nbt-sg"
+  }
+}

terraform-basics/udemy/handson-ec2/userdata.tpl

@@ -0,0 +1,13 @@
+#!/bin/bash
+sudo apt-get update -y &&
+sudo apt-get install -y \
+apt-transport-https \
+ca-certificates \
+curl \
+gnupg-agent \
+software-properties-common &&
+curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add - &&
+sudo add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable" &&
+sudo apt-get update -y &&
+sudo sudo apt-get install docker-ce docker-ce-cli containerd.io -y &&
+sudo usermod -aG docker ubuntu

terraform-basics/udemy/handson-ec2/variables.tf

@@ -0,0 +1,39 @@
+# Define a variable for the AWS region
+variable "aws_region" {
+  description = "AWS region"
+  type        = string
+  default     = "eu-central-1"
+}
+
+# Define a variable for the key pair name
+variable "key_name" {
+  description = "Name of the key pair"
+  type        = string
+  default     = "auto-generated-key"
+}
+
+# aws access key
+variable "aws_access_key" {
+  description = "AWS access key"
+  type        = string
+}
+
+# aws secret key
+variable "aws_secret_key" {
+  description = "AWS secret key"
+  type        = string
+}
+
+# aws ami for instance
+variable "aws_ami" {
+  description = "AWS ami for instance"
+  type        = string
+  default     = "ami-03cea216f9d507835"
+}
+
+# aws instance type
+variable "aws_instance_type" {
+  description = "AWS instance type"
+  type        = string
+  default     = "t2.micro"
+}