首頁
註冊 登入
aashish-fiftyfive
/
infra-assessment
派生自 LiveLike/infra-assessment
複刻
檔案 合併請求
目錄樹: 93fe2b0756
分支列表 標籤列表
infra-assess...
/
modules
/
vpc
/
terraform.tf

terraform.tf 2.2 KB
文件歷史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192 
  1. ## VPC
    2. 

  2. resource "aws_vpc" "infra_vpc" {
    3. 

  3.   cidr_block           = var.cidr_block
    4. 

  4.   enable_dns_support   = var.enable_dns_support
    5. 

  5.   enable_dns_hostnames = var.enable_dns_hostnames
    6. 

  6. 

  7.   tags = var.tags
    8. 

  8. }
    9. 

  9. 

  10. ## Public Subnet for ALB
    11. 

  11. resource "aws_subnet" "infra_public_subnet" {
    12. 

  12.   count = length(var.public_subnet_az)
    13. 

  13. 

  14.   vpc_id            = aws_vpc.infra_vpc.id
    15. 

  15.   availability_zone = var.public_subnet_az[count.index]
    16. 

  16.   cidr_block        = var.public_subnet_cidr[count.index]
    17. 

  17. 

  18.   tags = var.tags
    19. 

  19. }
    20. 

  20. 

  21. ## Private Subnet for EC2
    22. 

  22. resource "aws_subnet" "infra_private_subnet" {
    23. 

  23.   vpc_id            = aws_vpc.infra_vpc.id
    24. 

  24.   availability_zone = var.private_subnet_az
    25. 

  25.   cidr_block        = var.private_subnet_cidr
    26. 

  26. 

  27.   tags = var.tags
    28. 

  28. }
    29. 

  29. 

  30. ## Internet Gateway
    31. 

  31. resource "aws_internet_gateway" "infra_internet_gateway" {
    32. 

  32.   vpc_id = aws_vpc.infra_vpc.id
    33. 

  33. 

  34.   tags = var.tags
    35. 

  35. }
    36. 

  36. 

  37. ## Route Table for Public Subnet and attach Internet Gateway to it
    38. 

  38. resource "aws_route_table" "infra_public_rt" {
    39. 

  39.   vpc_id = aws_vpc.infra_vpc.id
    40. 

  40. 

  41.   route {
    42. 

  42.     cidr_block = "0.0.0.0/0"
    43. 

  43.     gateway_id = aws_internet_gateway.infra_internet_gateway.id
    44. 

  44.   }
    45. 

  45. 

  46.   tags = var.tags
    47. 

  47. }
    48. 

  48. 

  49. ## Route Table Public Subnet Association
    50. 

  50. resource "aws_route_table_association" "infra_public_subnet_rt_association" {
    51. 

  51.   count = length(var.public_subnet_az)
    52. 

  52. 

  53.   subnet_id      = aws_subnet.infra_public_subnet[count.index].id
    54. 

  54.   route_table_id = aws_route_table.infra_public_rt.id
    55. 

  55. }
    56. 

  56. 

  57. ## Elastic IP for NAT Gateway
    58. 

  58. resource "aws_eip" "infra_nat_gateway_eip" {
    59. 

  59.   domain = "vpc"
    60. 

  60. 

  61.   tags = var.tags
    62. 

  62. }
    63. 

  63. 

  64. ## NAT Gateway
    65. 

  65. resource "aws_nat_gateway" "infra_nat_gateway" {
    66. 

  66.   allocation_id = aws_eip.infra_nat_gateway_eip.id
    67. 

  67.   subnet_id     = aws_subnet.infra_public_subnet[0].id
    68. 

  68. 

  69.   tags = var.tags
    70. 

  70. 

  71.   depends_on = [
    72. 

  72.     aws_internet_gateway.infra_internet_gateway
    73. 

  73.   ]
    74. 

  74. }
    75. 

  75. 

  76. ## Route Table for Private Subnet and attach NAT Gateway to it
    77. 

  77. resource "aws_route_table" "infra_private_rt" {
    78. 

  78.   vpc_id = aws_vpc.infra_vpc.id
    79. 

  79. 

  80.   route {
    81. 

  81.     cidr_block     = "0.0.0.0/0"
    82. 

  82.     nat_gateway_id = aws_nat_gateway.infra_nat_gateway.id
    83. 

  83.   }
    84. 

  84. 

  85.   tags = var.tags
    86. 

  86. }
    87. 

  87. 

  88. ## Route Table Private Subnet Association
    89. 

  89. resource "aws_route_table_association" "infra_private_subnet_rt_association" {
    90. 

  90.   subnet_id      = aws_subnet.infra_private_subnet.id
    91. 

  91.   route_table_id = aws_route_table.infra_private_rt.id
    92. 

  92. }
    93.