Terraform 12 dan Terragrunt serta cara penerapannya pada infrastruktur multi-cloud. Alexander Dovnar

Apa itu Terraform 12 dan Terragrunt dan bagaimana keduanya dapat diterapkan pada infrastruktur Multi-Cloud.

Kami akan berbicara tentang dampak IaC (Infrastruktur sebagai Kode) di dunia modern dan bagaimana Terraform membantu Anda bekerja dengan lingkungan yang heterogen. Saya ingin membahas sedikit tentang Terraform itu sendiri, masalah apa yang dimilikinya dan bagaimana Terragrunt menyelesaikannya. Kemudian saya akan berbicara tentang pengalaman saya dengan Terragrunt dan sedikit mengaitkan topik seperti Multi-Clouds. Di bagian kedua dari pembahasan topik, saya ingin menunjukkan hasil temuan saya dalam menggunakan Terraform + Terragrunt di lingkungan dengan tiga penyedia cloud (AWS, GCP, Azure) dan CloudFlare sebagai DNS.

• (Alexander) Hari ini saya ingin berbicara tentang bagaimana saya berhasil melakukan penerapan Multi-Cloud menggunakan Terraform dan Terragrunt, serta cara kerjanya secara khusus dan terpisah.

  
  
  
  
  
  
  

• () ! , . quiz. , quiz , Terraform .

  
  
  
  
  
  
  

quiz. , , , , , .

, quiz , DevOpsMinsk Chat. . .

, quiz. .

Terraform – :

1. configuration management
2. HashiCorp
3. Infrastructure is code
4. Infrastructure as code.

Terraform HCL. HCL?

• () HashiCorp Configuration Language. , . HashiCorp.

  
  
  
  
  
  
  

• () HCL YAML. YAML-Developers.

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () ? , HCL 2.0.

  
  
  
  
  
  
  

• () HCL 2.0 : YAML encode, decode JSON encode, decode, . HashiCorp.

  
  
  
  
  
  
  

VPC VM info:

1. Backend
2. Query
3. DataSource
4. Filter Source

DataSource?

• () , , Terraform. , subnets Amazon availability-. DataSource, availability-. exclude, include Terraform-.

  
  
  
  
  
  
  

• () , - , , DataSource?

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

Terraform ?

1. Terraform taint
2. Terraform destroy
3. Terraform apply
4. Terraform plain
5. Terraform refresh

, taint.

• () Taint . , , . , . . taint . Terraform, , , .

  
  
  
  
  
  
  

• () , , , , - ? , , - . ?

  
  
  
  
  
  
  

• () plan, apply, , , , , , . ID .

  
  
  
  
  
  
  

• () quiz. 19 5 . . . . 3 , , , . , .

  
  
  
  
  
  
  

• () ? , Terraform, Terragrunt Multi-Cloud deployment, .

  
  
  
  
  
  
  

:

• . EPAM Systems lead systems engineer.
• DevOps- 4 .
• 6 - .
• Automation fanatic – , , , , . .

?

• , .
• , . . , Terraform, Terragrunt Multi-Cloud. , .
• , .
• , . .
• Q&A.

QR-, . . PreProd Demo site. production. , . .

• () , , , , .

, , . «Terraform 12». . ?

• () Terraform, , 0., . . 0.11, 0.12, 0.13. , HashiCorp, , , 1.0. , Terraform.

HashiConf, . Packer. HashiCorp. , , HashiCorp , 1.0. , .

• () , Terraform , , , 12- .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

, . . , , , . - . , Terragrunt, Terraform Multi-Cloud . real production, . . environment .

, . , . .

, .

Terraform. . . , .

, , :

• - 3 clouds: Amazon, Azure GCP. , , . deployment-, 3 clouds , .
• , Terragrunt. .
• , . .
• challenges, :
• Azure . , Microsoft. .
• , . free tier AWS GCP. Azure , .

. . . :

• Multi-Cloud.
• Terraform.
• Terragrunt, Terraform.

Multi-Cloud, , . , . . , .

• () - : , .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• , Multi-Cloud , vender-lock, cloud manage-, . , , cloud - . , .

  
  
  
  
  
  
  

• – IT. enterprise- , - , , , Google Cloud, . Multi-Cloud , , , sandbox Google Cloud, . , , : «, Amazon».

  
  
  
  
  
  
  

• Performance and resiliency . performance , Google Cloud Active Directory Management Service, Azure. . . .

  
  
  
  
  
  
  

• , , Compliance, . . , - , Amazon , Azure , , Google Cloud, Azure . .

  
  
  
  
  
  
  

• () . , , . , , - sensitive, . , AWS , AWS.

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () , , .

  
  
  
  
  
  
  

• () , , , .

  
  
  
  
  
  
  

• () , mail.ru.

  
  
  
  
  
  
  

• () . , mail.ru, , . , .

  
  
  
  
  
  
  

challenges ?

• – , , , Amazon , , Google , Azure , , , , – . , - , , , , , .
• , , DevOps, , . , - size, , . Multi-Cloud, , . , .

Multii-Cloud , Terraform, , , .

, HCL. HashiCorp Configuration language.

? , , , Kubernetes Name Space . Terraform, Azure Terraform , , Cloud formation Azure template. . HCL . , , .

• , , , , : , - , . , clouds. . , , , HCL – YAML, , , . HCL 2.0 .

  
  
  
  
  
  
  

• () , clouds. . , clouds. .

  
  
  
  
  
  
  

• () ?

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () ?

  
  
  
  
  
  
  

• () . VPC.

  
  
  
  
  
  
  

• () -.

  
  
  
  
  
  
  

• () , , - . , , . , , .

  
  
  
  
  
  
  

Terraform? , cloud, , . . . , Terraform , - state. , S3 bucket. , . , , , , , state. , , . , . , install stipe .

• () . , S3. , , durability, .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () , , - , state, , , . , , Terraform 12- , , . state-, . , , durability, .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

Terraform , -, 10 remote state locations, . . S3 Cassandra, .

– Terraform state, Terraform Amazon Azure, . , . state , .

– Terraform 100 , . . Terraform – HCL API- . . . Amazon, OpenStack, Kubernetes, Helm, GitLab‑, .

• () . . API , ?

  
  
  
  
  
  
  

• () , . HashCorp’. , , - , . . . , , , .

  
  
  
  
  
  
  

Terraform . Terraform? .

• () , Thoughtworks Technology Radar.

  
  
  
  
  
  
  

• () . Technology Radar? , , . , .

  
  
  
  
  
  
  

Terraform , Technology Ragar, adopt , production .

. . , . . , . , . .

Terraform . cloud- Terraform-. , , .

• () , Azure , , , Terraform, infrastructure as code. .

  
  
  
  
  
  
  

• () , .

  
  
  
  
  
  
  

Terraform ?

• . . .
• Terraform CI/CD, – . lints. , .
• unit-. .

, . , .

CI? CI Terraform-, CI , . .

• () , . - , CI Terraform, Terraform plan, state, apply, . . . , . , , , build -, , . Terraform state, .

  
  
  
  
  
  
  

• () . . CI . linting, plan, apply, compliance, security. .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () . . (, ) Terraform . . Terraform , . tools, output. outputs - . .

  
  
  
  
  
  
  

best practices, . . , , , , cloud formation template Amazon, . . . , - , . , - .

. Terraform. , , , 2 Terraform.

:

• Terraform-, , HCL 2.0 , .

  
  
  
  
  
  
  

• , - , .

  
  
  
  
  
  
  

• () , , , , . . , 15 load balancing .

  
  
  
  
  
  
  

• () . . . .

  
  
  
  
  
  
  

11- 12- Terraform. , . . , Terraform , . , , .

11- Terraform, .

– , , . , . - , . , .

• () , 12- . , - , . . , - .

  
  
  
  
  
  
  

• () , . . . . .

  
  
  
  
  
  
  

, API clouds, Amazon, . , , API-. Terraform 11- . security group - , 11- Terraform . ingress rules . 2 environment, 25 , 22-, . 2 , - . .

– . 11- Terraform .

• () Count, .

  
  
  
  
  
  
  

• () , . . ? , . rules security groups. , , . .

  
  
  
  
  
  
  

2 rules plan. , . - : « ».

: , , . , Terraform , . rule, . , rule. , prod, . . , - downtime.

state , - , maintenance …, .

GitHub. 0.12- .

• () -, , stable.

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () , 2 beta 0.13. , .

  
  
  
  
  
  
  

• () 18- . , 12- , . . HashiCorp Configuration language 2.0, .

  
  
  
  
  
  
  

?

• -, . count, for_each, . - , . for_each .
• . , . , , - , - .
• Terraform- – dynamic-, , . . .

for_each . Terraform for_each , . . for_each . , key-value . , , - , , , for_each, Terraform , , . , .

12- Terraform .

• () , - rule , , ? – 36 ?

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () , 36 rules?

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

.

. , YAML. for, if. HCL, Terraform, , HCL. Packer. .

-. 11- Terraform string string, number string, boolean string, , , 1 0 -: - true, - 1, - .

. maps. string, number, boolean, . , .

maps .

, , , .

• () , , YAML anchors. . - , anchors . , , . . GitLab CI, Kubernetes .

  
  
  
  
  
  
  

• () null, values. 11- Terraform , , . - , . . null. Null – null, , , .

  
  
  
  
  
  
  

12- Terraform 11- . 11- Terraform : A B, C, D. 11- Terraform , , . . . - , , . , .

12- Terraform . . A B, C. A B, D, C . , Terraform.

Terraform 0.13 1.0 – , . - 13- .

, depends_on, . . .

– , , . Terraform- Terraform . Feature flags , . . , , cloud . cloud AWS, GCP, Azure, Terraform : « ».

, , Terraform , 1.0.

?

• , prod.
• , secure.
• , .
• , tool .

Terraform . 1.0, , . infrastructure as code. Terraform’, , .

• () Helm Kubernetes , Kubernetes-.

  
  
  
  
  
  
  

• () . , . Helm - , HCL Kubernetes- – .

  
  
  
  
  
  
  

• () -?

  
  
  
  
  
  
  

• () YAML , , . HCL, HCL. . . , Helm . Terraform Helm . . , load, kube-config, Helm , .

  
  
  
  
  
  
  

- 1.0, . 3 0.11- Terraform 19 . 12- 20--. , , . , 1.0.

• () , Terraform enterprise, - . , , , . enterprise-.

  
  
  
  
  
  
  

• () , .

  
  
  
  
  
  
  

Terraform, , ?

• Terraform, . VPC, environment – .
• environment, . . . , . variable staff, . . environment, remote state location. Terraform , remote state. . bucket-. , . , , policy, . .
• environment x*3 days. , , .
• . environment , , , , . - . . . , , , .
• , , Terraform . , .

Terraform, Bash, Python, , , 690 . Python, Terraform. Terragrunt.

, Terraform:

Multi-Cloud Terraform, , . Notepad, -. .

Terragrunt. Terragrunt – golang tool, cli, Terraform. Terraform, Terraform.

?

• . bucket name location. , , policy, secure. - .
• HCL 2.0.
• . , , HCL 2.0.
• stacks, . . - , . , environments. .
• Terragrunt? stack – HCL-. HCL- – , - , , . Terragrunt environments, environments, - , - .

. Terragrunt . . 12- Terraform . .

HCL-. - , . dependency, , states.

• () , environment, preprod, variable, , , cloud YAML HCL , — , environment ? . . , ? , , preprod 2 , prod 200 . - preprod , - prod , ?

  
  
  
  
  
  
  

• () . . Terraform. . Terragrunt, .

  
  
  
  
  
  
  

, , remote state , , . . stack . , - . location.

• () , location, , ? Azure, - , Azure folder?

  
  
  
  
  
  
  

• () , . - naming convention. bucket bucket.

  
  
  
  
  
  
  

46:56

?

, . .

, YAML, environment, .

, cloud abstractions, . , .

preprod. environment.yaml, environment, . . cidr, subnet, instance_size, location .

• () , ?
• () , .
• () , location – ? , , , . GCP – , Azure – .

• () . demo.hcl, . , Terraform .

. . .

pull request, templanding’ production. HCL- + YAML, . .

.

? 3 , Travis CI CloudFlare DNS-. Travis’ 3 . Travis credentials . .

, . VPC, subnet, , . .

prod . . , . production .

Travis, , -. . Booting VM. , , .

, . shell-, . , , CloudFlare DNS. , .

• () . : « , Terraform ? ARM, Azure , ?»

  
  
  
  
  
  
  

• () – , - cloud ?

  
  
  
  
  
  
  

• () . , , Azure, Azure , . Microsoft . , . , , Azure .

  
  
  
  
  
  
  

• () , Golang, , , Golang pull request , , - . , . Community . Azure , . terraform , cloudformation, , . Golang, , .

  
  
  
  
  
  
  

• () : « , ? : N-, . , ? , ?».

  
  
  
  
  
  
  

• () CI , - git commits. cmdb. . . configuration management – , . cmdb - , , , Grafana, , . - changelog, , . , prod , . Git diff , . - , , . , , .

  
  
  
  
  
  
  

• () environments, management- , Ansible, Puppet. , , - . Terraform , , , , .

  
  
  
  
  
  
  

: « state of staff cloud-, , cloud , ?». , GCP, storage?

• () . - on-premise . subnet, . . . - CI-, , . cloud, , , - .

  
  
  
  
  
  
  

• () Terraform cloud, states. workspaces.

  
  
  
  
  
  
  

: « Terraform ?».

• () Terraform.

  
  
  
  
  
  
  

• () foreach .

  
  
  
  
  
  
  

• () . Terragrunt .

  
  
  
  
  
  
  

• . , GCP -. , -, , map, - -. . - . foreach, .

  
  
  
  
  
  
  

• () . . , foreach , .

  
  
  
  
  
  
  

• () , . . , , ?

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () : « Terraform 13 ?». , . .

  
  
  
  
  
  
  

• () Count, foreach , depends_on , - . variables validation, , . , , , .

  
  
  
  
  
  
  

• () , - production , , , . 13- Terraform .

  
  
  
  
  
  
  

• () 12- 0.12.18. 18- .

  
  
  
  
  
  
  

• () : « setup -, Terraform-, state, , ? vendors ». , .

  
  
  
  
  
  
  

• () , , , state.

  
  
  
  
  
  
  

• () . , .

  
  
  
  
  
  
  

• () , Consul, .

  
  
  
  
  
  
  

• () , Consul state. , . , , lock-, .

  
  
  
  
  
  
  

• () . , - Azure , . . .

  
  
  
  
  
  
  

• () - ?

  
  
  
  
  
  
  

• () . 3 clouds, . , preprod, . . preprod. HAProxy, .

  
  
  
  
  
  
  

• () , ?

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () plan?

  
  
  
  
  
  
  

• () , plan.

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () clouds, . . cloud , health check HAproxy , . round-robin HAProxy. Multi-Cloud. , - 20 , Azure, .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () , .

  
  
  
  
  
  
  

• () , feedback ?

  
  
  
  
  
  
  

• () , .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () , , .

Terragrunt? environments , , , Terragrunt – , . , , Terragrunt. . - . ., , .

environments, , Terragrunt – . YAML , – , , . . ENV . , 3 . . . , . , . .

, . . Terraform tf-, HCL, , , Terragrunt .

? Google Cloud, Amazon – . Terraform , CLoudFlare – , . Azure - support Microsoft Azure . . GitHub, , , -, , community. , Azure API, , . .

?

• , open source, GitHub. issues. Golang, . . , .

  
  
  
  
  
  
  

• , , Terraform Terragrunt . , , - . , , .

  
  
  
  
  
  
  

• - , Terragrunt , . . , , . , – . . shell- Python.

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () . – «Terraform: Up & Running».

  
  
  
  
  
  
  

• () , .

  
  
  
  
  
  
  

• () , . . Terraform, , .

  
  
  
  
  
  
  

: « Terraform DK , cloud DK, Terraform, , ?»

• () , CDK, . HashiCorp Terraform CDK. Type-, Amazon.

  
  
  
  
  
  
  

• () -.

  
  
  
  
  
  
  

• () , – , . . - - . , Terraform , type-, . , , , CDK. State Terraform benefit , , , . state , . , . , cloud, .

  
  
  
  
  
  
  

, CDK. Terraform, . .

. , silver bullet. , .

• () : « Terragrunt? Vault?». , – .

  
  
  
  
  
  
  

• () Terragrunt . Terragrunt , - . . . , cloud , Azure, Amazon. , . , .

  
  
  
  
  
  
  

• () , , . , , Terragrunt , Terraform.

  
  
  
  
  
  
  

: « Terraform?»

• () ?

  
  
  
  
  
  
  

• () , .

  
  
  
  
  
  
  

• () open source , , , community, .

  
  
  
  
  
  
  

, , . , .

• () , , , .

: « , Terragrunt , . - ?». , . . , , . , .

• () , Terragrunt start. Terraform, . Terraform, Terraform Up and Running. Examples .

  
  
  
  
  
  
  

• () Terraform learns. cloud . cloud. .

  
  
  
  
  
  
  

, . , ?

• () environments , . . , - , , , . .

  
  
  
  
  
  
  

• () , ! , ! !

  
  
  
  
  
  
  

• https://community-z.com/communities/devopsminsk
• https://www.youtube.com/channel/UC3UB8hAvJ9QPLgP7ql9dE6w
• https://devopsminsk.by/