Save 37% off PRO during our Black Friday Sale! »

辛くない CloudFormation

67683b0a8d24009c731787b49881a9de?s=47 tomuro
October 28, 2021
Technology
1
370

辛くない CloudFormation

2021/10/28(木)に行われた【JAWS-UG朝会 #26】にて発表した
「辛くない CloudFormation」
の資料です。

67683b0a8d24009c731787b49881a9de?s=128

tomuro

October 28, 2021
Tweet

More Decks by tomuro

See All by tomuro
67683b0a8d24009c731787b49881a9de?s=48 tomuro
1
32
67683b0a8d24009c731787b49881a9de?s=48 tomuro
1
190
67683b0a8d24009c731787b49881a9de?s=48 tomuro
0
420
67683b0a8d24009c731787b49881a9de?s=48 tomuro
0
380
67683b0a8d24009c731787b49881a9de?s=48 tomuro
0
530
67683b0a8d24009c731787b49881a9de?s=48 tomuro
2
460
67683b0a8d24009c731787b49881a9de?s=48 tomuro
3
1.1k
67683b0a8d24009c731787b49881a9de?s=48 tomuro
0
34

Other Decks in Technology

See All in Technology
5afa0b3a91d287fdf8b248a118a3975d?s=48 y503unavailable
0
190
6cca1b8a70137012c2bcfa0393189f89?s=48 unchamacom
3
600
73c9d1065e0075a9da6e404e08fe77fb?s=48 siroitori0413
0
170
23f4d5d797a91b6d17d627b90b5a42d9?s=48 kentaro
1
590
3282faa17a370dd254382f4bf2c7ba3a?s=48 yukiiiiikuma
6
2k
A13fd21165bce344d35fd1d1245e14f2?s=48 aachan5550
0
510
3cb071df50ed06febdfb3262fb5a67a3?s=48 hiashisan
0
530
B1dca90d4b3ffd2ccd918774e1ba170d?s=48 hmatsu47
PRO
0
2.1k
942bb606679caf4c57b38927f83178e1?s=48 qsona
16
6k
325ce6fcd0a74ff78990b8632817da55?s=48 yukihirochiba
0
150
0f4a27389318ca7087ae12b1593171c1?s=48 saoritakita
0
260
69f5ab96892df4d8cbe32189f2ed2d9d?s=48 heyinc
18
200k

Featured

See All Featured
5b9fe87ec1faa67a4599782930f45ec9?s=48 sstephenson
149
12k
D09fad3e36ae6841f54820be0e907f7a?s=48 rocio
156
12k
0bce06bd06ee7a2c4f5500f25dcf7f18?s=48 paulrobertlloyd
73
3.9k
027d1ebf66cc039a0bd3b55eeadbe75d?s=48 sachag
271
17k
25c7c18223fb42a4c6ae1c8db6f50f9b?s=48 mojombo
364
63k
3d4519fd34b76fb265fc0237f3792bd4?s=48 danielanewman
208
20k
95d9f37115fbb0d13135d0f77132f856?s=48 morganepeng
100
15k
2bb923c57a1fdc3a2eb484bb8d565fd2?s=48 ufuk
61
7.3k
3d6ace9554821d552146413bcdf874f6?s=48 trishagee
37
5.4k
F68cb25ae3e5c2106997454b13b7737d?s=48 brad_frost
163
6.9k
7edec06b5435e0dac07a353b2cc26253?s=48 geeforr
337
30k
1ce0eb06fd6a9e9566a0cb310cfee635?s=48 jrick
PRO
1
19k

Transcript

  1. ਏ͘ͳ͍$MPVE'PSNBUJPO גࣜձࣾϞϦαϫ খࣨو࢙

  2. ໊લɿখࣨو࢙ ࣗݾ঺հ ࢓ࣄɿςοΫϦʔυ "84ΠϯϑϥΤϯδχΞ ޷͖ͳαʔϏεɿ$PEF#VJME $MPVE'PSNBUJPO ॴଐɿגࣜձࣾϞϦαϫ γεςϜ։ൃ෦ Πϊϕʔγϣϯ։ൃ՝

  3. w $MPVE'PSNBUJPOͱ͸ w ࢲతਏ͍$MPVE'PSNBUJPO w ਏ͘ͳ͍$MPVE'PSNBUJPO w ·ͱΊ ΞδΣϯμ

  4. $MPVE'PSNBUJPOͷӡ༻͸ਏ͍ʁ

  5. ͦΜͳʹ΋ਏ͘ͳ͍Α

  6. $MPVE'PSNBUJPOͱ͸ $MPVE'PSNBUJPOͷ͓͞Β͍ IUUQTEPDTBXTBNB[PODPNKB@KQ"84$MPVE'PSNBUJPOMBUFTU6TFS(VJEFDGOXIBUJTIPXEPFTJUXPSLIUNMΑΓҾ༻ :".-+40/ͰςϯϓϨʔτϑΝΠϧΛ࡞੒͠ɺϦιʔεͷ ϓϩϏδϣχϯάΛߦ͏͜ͱ͕Ͱ͖ΔαʔϏεͰ͢ɻ "84ϦιʔεΛݸผʹ࡞੒ɺઃܭͯ͠ɺͦΕͧΕͷґଘؔ܎ Λߟ͑Δඞཁ͸͋Γ·ͤΜɻ ࡞੒͞ΕͨϦιʔε͸ɺελοΫͱ͍͏୯ҐͰ؅ཧ͞Ε·͢ɻ

  7. $MPVE'PSNBUJPOͱ͸ $MPVE'PSNBUJPOͷ͓͞Β͍ IUUQTEPDTBXTBNB[PODPNKB@KQ"84$MPVE'PSNBUJPOMBUFTU6TFS(VJEFDGOXIBUJTIPXEPFTJUXPSLIUNMΑΓҾ༻ :".-+40/ͰςϯϓϨʔτϑΝΠϧΛ࡞੒͠ɺϦιʔεͷ ϓϩϏδϣχϯάΛߦ͏͜ͱ͕Ͱ͖ΔαʔϏεͰ͢ɻ "84ϦιʔεΛݸผʹ࡞੒ɺઃܭͯ͠ɺͦΕͧΕͷґଘؔ܎ Λߟ͑Δඞཁ͸͋Γ·ͤΜɻ ࡞੒͞ΕͨϦιʔε͸ɺελοΫͱ͍͏୯ҐͰ؅ཧ͞Ε·͢ɻ ɹςϯϓϨʔτ಺ͰϦιʔεͷґଘؔ܎͸ ɹߟ͑Δඞཁ͕͋Γ·͢ɻ

  8. $MPVE'PSNBUJPOͱ͸ $MPVE'PSNBUJPOͷ͓͞Β͍ IUUQTEPDTBXTBNB[PODPNKB@KQ"84$MPVE'PSNBUJPOMBUFTU6TFS(VJEFDGOXIBUJTIPXEPFTJUXPSLIUNMΑΓҾ༻ :".-+40/ͰςϯϓϨʔτϑΝΠϧΛ࡞੒͠ɺϦιʔεͷ ϓϩϏδϣχϯάΛߦ͏͜ͱ͕Ͱ͖ΔαʔϏεͰ͢ɻ "84ϦιʔεΛݸผʹ࡞੒ɺઃܭͯ͠ɺͦΕͧΕͷґଘؔ܎ Λߟ͑Δඞཁ͸͋Γ·ͤΜɻ ࡞੒͞ΕͨϦιʔε͸ɺελοΫͱ͍͏୯ҐͰ؅ཧ͞Ε·͢ɻ ɹෳ਺ςϯϓϨʔτΛ࢖͏৔߹͸ɺෳ਺ͷελοΫ͕Ͱ͖·͢ɻ ɹελοΫؒͰͷґଘؔ܎͕ൃੜ͠·͢ɻ

  9. $MPVE'PSNBUJPOͱ͸ $MPVE'PSNBUJPOͷ͓͞Β͍ IUUQTEPDTBXTBNB[PODPNKB@KQ"84$MPVE'PSNBUJPOMBUFTU6TFS(VJEFDGOXIBUJTIPXEPFTJUXPSLIUNMΑΓҾ༻ :".-+40/ͰςϯϓϨʔτϑΝΠϧΛ࡞੒͠ɺϦιʔεͷ ϓϩϏδϣχϯάΛߦ͏͜ͱ͕Ͱ͖ΔαʔϏεͰ͢ɻ "84ϦιʔεΛݸผʹ࡞੒ɺઃܭͯ͠ɺͦΕͧΕͷґଘؔ܎ Λߟ͑Δඞཁ͸͋Γ·ͤΜɻ ࡞੒͞ΕͨϦιʔε͸ɺελοΫͱ͍͏୯ҐͰ؅ཧ͞Ε·͢ɻ ɹ"84Λ࢖͏Ҏ্ɺͲ͔͜Ͱґଘؔ܎͸ઈରʹग़͖ͯ·͢ɻ ɹґଘؔ܎ΛΘ͔Γ΍͘͢؅ཧ͢Δͷ͕؊ͩͱࢥ͍·͢ɻ

  10. ࢲతਏ͍$MPVE'PSNBUJPO

  11. ڊେͳςϯϓϨʔτ ࢲతਏ͍$MPVE'PSNBUJPO ಡΉͷ͕ΊͬͪΌେม w ͪΐͬͱͨ͠มߋͷσϓϩΠ͕ࠔ೉ w ࠓ͸Τϥʔ͕ग़ͯ΋ܧଓͰ͖Δ͔ΒϚγ w ॳճͷߏங΍ೲ඼ʹ͸༗༻͕ͩӡ༻ʹ͸ෆ޲͖ w

    ҰൃͰγεςϜΛϓϩϏδϣχϯάͰ͖Δ w ςϯϓϨʔτ֎ͷґଘؔ܎͸࠷௿ݶ w ൈ͚࿙Ε͕ͳ͘ͳΔ

  12. ͦͷ··౤ೖͰ͖ͳ͍΋ͷ ࢲతਏ͍$MPVE'PSNBUJPO ৽نελοΫ࡞੒Ͱಈ࡞͠ͳ͍ w ॳճͷΈͷରԠ͕ඞཁͰίϝϯτΞ΢τͱ͔ w ྫʣ3%4ͳΒॳճ͸6TFS1BTTͷࢦఆ͕ඞཁ w Ξοϓσʔτ࣌ʹෆཁʹͳͬͯίϝϯτΞ΢τ w

    $POEJUJPOT΍l"84/P7BMVFͰ͍͍ײ͡ʹ͢Δ w ςϯϓϨʔτ಺ʹϦιʔε͕௥Ճ͞Εͯґଘؔ܎͕ൃੜ w $'O಺Ͱ͸ฒߦͯ͠Ϧιʔε͕࡞੒͞ΕΔ w ௥ه͢Δͱॱ࣮࣍ߦ࣌͸໰୊ͳ͍ w ৽ن࡞੒Ͱ͸ґଘؔ܎ΛղܾͰ͖ͣʹΤϥʔͱͳΔ w %FQFOET0O΍3FGͰґଘؔ܎Λ໌ࣔ͢Δ

  13. ΫϩεελοΫࢀরͷଟ༻ ࢲతਏ͍$MPVE'PSNBUJPO ࢀরݩͷελοΫͷ࡟আ΍มߋ͕Ͱ͖ͳ͍ w ΫϩεελοΫࢀরͱ͸ w ࢀরݩͷςϯϓϨʔτ&YQPSUͰύϥϝʔλ໊Λ෇༩ w ࢀরઌͷςϯϓϨʔτ͸*NQPSU7BMVFͰࢀরͰ͖Δ w

    ࢀরݩͷελοΫͷ࡟আɺมߋ͕Ͱ͖ͳ͘ͳΔ w ӡ༻࣌ʹࠔΔέʔε͕ൃੜ͢ΔͷͰ஫ҙ w มߋ͕ଟ͍ελοΫͷ৔߹͸ҎԼΛར༻ w $MPVE'PSNBUJPOͷύϥϝʔλͰ౉͢ w "SOΛμΠφϛοΫࢀর͢Δ

  14. ਏ͘ͳ͍$MPVE'PSNBUJPO

  15. ςϯϓϨʔτ͸ఔΑ͍େ͖͞ ਏ͘ͳ͍$MPVE'PSNBUJPO ϦιʔεͷϥΠϑαΠΫϧͰ෼͚Δ w ॳظߏஙʹඞཁͳ΋ͷ w ؂ࠪܥɿ$MPVE5SBJM $POpH (VBSE%VUZͳͲ w

    *".ɿ*".6TFS (SPVQ 3PMF w ωοτϫʔΫɿ3PVUF 71$ *(8 /"5ͳͲ w ӡ༻ʹར༻͢Δ΋ͷ w 4/4 w $IBUCPU w Ӭଓతʹར༻͢Δ΋ͷ w 4 &$3 w 3%4 %ZOBNP%#

  16. ελοΫ࡞੒ॱ͸࢒͢ ਏ͘ͳ͍$MPVE'PSNBUJPO ΫϩεελοΫࢀরͰࠔΒͳ͍Α͏ʹ͢Δ w 3&"%.&Λ४උͯ͠هࡌ͢Δ w ϑΝΠϧʹ൪߸Λৼͬͯ΋͍͍ w ΫϩεελοΫࢀর͍ͯ͠Δ͜ͱΛղΔΑ͏ʹ͢Δ w

    (JUʹςϯϓϨʔτͱڞʹอଘ؅ཧ͢Δ w ESBXJPͰਤղ΋Ұॹʹίϛοτ͢Δͱ၆ᛌͰ͖Δ | テンプレート | 主なリソース | 説明 | | ------------- | ------------------------------ | ——————————————————————————————————————— | | Audit.yml | CloudTrail, Config, GuardDuty | 監査用 | | IAM.yml | IAM | IAM 作成 | | Network.yml | VPC, IGW, NAT, Route53 | VPC 作成, IPv4/IPv6, Route53 | | SNS.yml | SNS | 通知用 SNS Topics | | Chatbot.yml | Chatbot | Chatbot 通知作成, Audit/SNS 依存あり | | ECR.yml | ECR | ECR 作成 | | Datastore.yml | S3, KMS | ログ、リソース S3 | | DynamoDB.yml | DynamoDB | DynamoDB 作成 | | RDS.yml | RDS(Aurora Cluster), SG, SNS | Aurora 作成, VPC/SNS/Datastore 依存あり |

  17. $MPVE'PSNBUJPOΛ࢖Θͳ͍ ਏ͘ͳ͍$MPVE'PSNBUJPO શͯΛ$'OͰແཧʹ΍Βͳ͍ w ౓͔͠࡞ۀΛߦΘͳ͍΋ͷ͸$-*Ͱߦ͏ w $-*ͷίϚϯυΛ࢒ͯ͠࠶ར༻͢Δ w "1*ͳͲͷόοΫΤϯυҰࣜ͸ผπʔϧָ͕ w

    ։ൃऀ͕ΨϦΨϦ։ൃ͢Δ෦෼ w 4FSWFSMFTT'SBNFXPSL 4". $%,Λ࢖͏ w "1*(BUFXBZ -BNCEB w "-# &$4 w $*$%ύΠϓϥΠϯ

  18. ·ͱΊ

  19. ແཧͷͳ͍ൣғͰ$'OΛ࢖͓͏ ·ͱΊ w ςϯϓϨʔτ͸ఔΑ͍େ͖͞ʹ w ϥΠϑαΠΫϧͰ੾Γ෼͚Δ w มԽ͕গͳ͍΋ͷ͸ΫϩεελοΫࢀর͢Δ w ґଘؔ܎͕ग़ͯ͠·͏͕3&"%.&Ͱิ଍

    w ςϯϓϨʔτͷ࠶ར༻ੑΛ্͛Δ w $POEJUJPOT΍"84/P7BMVFΛ্खʹ࢖͏ w Ұ౓͔͠࢖Θͳ͍΋ͷ͸ผखஈ w $-*΋׆༻ w όοΫΤϯυ͸$'OΛੜ੒͢Δπʔϧָ͕ w 4FSWFSMFTT'SBNFXPSL 4". $%,

  20. ஥ؒืूத ΧδϡΞϧ໘ஊ΋ͯ͠·͢ w ϓϩδΣΫτϚωʔδϟʔ w 1.0#31%9ܦݧऀ w όοΫΤϯυΤϯδχΞ w "84

    (P1ZUIPO %PDLFSܦݧऀ 1IPUP1",65"40 'POU.PSJTBXB