About me Giovanni Toraldo Open Source Enthusiast, Java coder, writer of the OpenNebula book, lead developer & co-founder at @Cloudesire, shooting 2 euro coin at 36 meters with crossbow 2
Infrastructure as code? Design, implement, and deploy applications infrastructure with known software best practices: ● Code versioning ● Code reuse (modularization/abstraction) ● Code sharing In order to achieve: ● Repeatability ● Speed ● Reliability 5
What is Terraform? Terraform is a tool for building, changing, and versioning infrastructure safely and efficiently. ● Declarative approach ○ Infrastructure is described using a high-level configuration syntax ● Incremental changes ○ Automatically discover the steps required from current to desired infrastructure state ● Execution plan ○ See what Terraform will do when you apply configuration ● Dependency graph ○ automatically decide the order in which action are executed ● Automation 8
What is NOT Terraform? ● Configuration management tool ○ You still need Puppet, Chef, Ansible to manage software on VM ● Cloud abstraction layer ○ Doesn’t expose any API, just a CLI mean to be used by humans ○ Doesn’t hide the inner characteristics of each cloud provider via abstraction ● A solution to your lack of cloud knowledge 9
Install Terraform Terraform is distributed as a single Go binary without external dependencies. Download, unpack, execute. ● cd /tmp ● wget ● unzip || tar xvf ● sudo mv terraform /usr/local/bin ● sudo chmod +x /usr/local/bin/terraform 11
Create a new project Just create an empty folder with a file auth.tf: // Configure the Google Cloud provider provider "google" { credentials = "${file("account.json")}" project = "terraform-test-197317" region = "europe-west1 " } And run: $ terraform init 16
Terraform project files structure There isn’t any enforcement on how to arrange resources inside a terraform project: ● All .tf files in the current folder are automatically sources and merged together in memory $ ls -la total 108 drwxr-xr-x 4 gionn dev 4096 mar 8 15:47 . drwxr-xr-x 3 gionn dev 4096 mar 7 18:03 .. drwxr-xr-x 7 gionn dev 4096 mar 8 15:47 .git drwxr-xr-x 3 gionn dev 4096 mar 7 18:22 .terraform -rw-r--r-- 1 gionn dev 2333 mar 7 18:18 account.json -rw-r--r-- 1 gionn dev 175 mar 7 18:19 auth.tf -rw-r--r-- 1 gionn dev 406 mar 8 15:46 vm.tf 19
Plan output $ terraform plan Refreshing Terraform state in-memory prior to plan... The refreshed state will be used to calculate this plan, but will not be persisted to local or remote state storage. --------------------------------------------- An execution plan has been generated and is shown below. 21
Plan output Plan: 1 to add, 0 to change, 0 to destroy. ------------------------------------------------- - Note: You didn't specify an "-out" parameter to save this plan, so Terraform can't guarantee that exactly these actions will be performed if "terraform apply" is subsequently run. 23
Apply output $ terraform apply An execution plan has been generated and is shown below. Resource actions are indicated with the following symbols: + create Terraform will perform the following actions: + google_compute_instance.default 24
Apply output Summary of the actions to perform, waiting for confirmation Plan: 1 to add, 0 to change, 0 to destroy. Do you want to perform these actions? Terraform will perform the actions described above. Only 'yes' will be accepted to approve. Enter a value: ___ 25
terraform.tfstate A state file is required in order to: ● Map managed resources to terraform resources ● Persist additional metadata ● Cache, useful for large infrastructures JSON structure that can be modified (bugs happens) or inspected (custom integrations). State should be persistent and shared among developers. 28
Terraform.tfstate sharing and locking For solo developers or small teams: just commit to GIT. For bigger teams, tfstate locking is required. Multiple backends supported: ● Google cloud storage ● S3 ● Consul ● Etcd ● Terraform enterprise 29
Automatically print VM ip address Add to output.tf: output "ip" { value = "${google_compute_instance.default. network_interface.0.access_config.0.nat_ip}" } And run terraform apply: Outputs: ip = 104.155.126.70 32
Change infrastructure example: VM upscale Just change the terraform attribute machine_type (and configure allow_stopping_for_update) Now, when terraform apply is run, terraform discover that the machine_type of the existing resource doesn’t correspond to the desiderata. 33
40 Manage multiple instances with disks ● Define a variable resource ○ Set a default ● Define unique resource names to avoid conflicts ○ Leverage count.index variable ● Reference a difference disk for each instance ○ Use count.index variable as disk reference ● Override variable value via environment variable ○ TF_VAR_my_counter
gionn
taowata
twada
daipresents
shibe23
%20-%20%E3%82%B3%E3%83%94%E3%83%BC.png){kind=avatar}
picopico
shumpei0111
murajun1978
lhespanha
suzukihoge
ogiwarat
tsukushi
adammc331
colly
paigeccino
hatefulcrawdad
schacon
shlominoach
zakiyama
brettharned
62gerente
vanstee
jonyablonski
sugarenia
marcelosomers