Terraform 12 und Terragrunt und wie es auf Multi-Cloud-Infrastrukturen angewendet werden kann. Alexander Dovnar

Was sind Terraform 12 und Terragrunt und wie können sie auf die Multi-Cloud-Infrastruktur angewendet werden?

Wir werden über die Auswirkungen von IaC (Infrastruktur als Code) auf die moderne Welt sprechen und darüber, wie Terraform Ihnen hilft, mit heterogenen Umgebungen zu arbeiten. Ich möchte ein wenig über Terraform selbst diskutieren, welche Probleme es hat und wie Terragrunt sie löst. Dann werde ich über meine Erfahrungen mit Terragrunt sprechen und mich ein wenig mit einem Thema wie Multi-Clouds befassen. Im zweiten Teil der Diskussion des Themas möchte ich das Ergebnis meiner Erkenntnisse zur Verwendung von Terraform + Terragrunt in einer Umgebung mit drei Cloud-Anbietern (AWS, GCP, Azure) und zeigen CloudFlare als DNS.

• (Alexander) Heute möchte ich darüber sprechen, wie ich es geschafft habe, eine Multi-Cloud-Bereitstellung mit Terraform und Terragrunt durchzuführen, und wie dies insbesondere und separat funktioniert.

  
  
  
  
  
  
  

• () ! , . quiz. , quiz , Terraform .

  
  
  
  
  
  
  

quiz. , , , , , .

, quiz , DevOpsMinsk Chat. . .

, quiz. .

Terraform – :

1. configuration management
2. HashiCorp
3. Infrastructure is code
4. Infrastructure as code.

Terraform HCL. HCL?

• () HashiCorp Configuration Language. , . HashiCorp.

  
  
  
  
  
  
  

• () HCL YAML. YAML-Developers.

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () ? , HCL 2.0.

  
  
  
  
  
  
  

• () HCL 2.0 : YAML encode, decode JSON encode, decode, . HashiCorp.

  
  
  
  
  
  
  

VPC VM info:

1. Backend
2. Query
3. DataSource
4. Filter Source

DataSource?

• () , , Terraform. , subnets Amazon availability-. DataSource, availability-. exclude, include Terraform-.

  
  
  
  
  
  
  

• () , - , , DataSource?

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

Terraform ?

1. Terraform taint
2. Terraform destroy
3. Terraform apply
4. Terraform plain
5. Terraform refresh

, taint.

• () Taint . , , . , . . taint . Terraform, , , .

  
  
  
  
  
  
  

• () , , , , - ? , , - . ?

  
  
  
  
  
  
  

• () plan, apply, , , , , , . ID .

  
  
  
  
  
  
  

• () quiz. 19 5 . . . . 3 , , , . , .

  
  
  
  
  
  
  

• () ? , Terraform, Terragrunt Multi-Cloud deployment, .

  
  
  
  
  
  
  

:

• . EPAM Systems lead systems engineer.
• DevOps- 4 .
• 6 - .
• Automation fanatic – , , , , . .

?

• , .
• , . . , Terraform, Terragrunt Multi-Cloud. , .
• , .
• , . .
• Q&A.

QR-, . . PreProd Demo site. production. , . .

• () , , , , .

, , . «Terraform 12». . ?

• () Terraform, , 0., . . 0.11, 0.12, 0.13. , HashiCorp, , , 1.0. , Terraform.

HashiConf, . Packer. HashiCorp. , , HashiCorp , 1.0. , .

• () , Terraform , , , 12- .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

, . . , , , . - . , Terragrunt, Terraform Multi-Cloud . real production, . . environment .

, . , . .

, .

Terraform. . . , .

, , :

• - 3 clouds: Amazon, Azure GCP. , , . deployment-, 3 clouds , .
• , Terragrunt. .
• , . .
• challenges, :
• Azure . , Microsoft. .
• , . free tier AWS GCP. Azure , .

. . . :

• Multi-Cloud.
• Terraform.
• Terragrunt, Terraform.

Multi-Cloud, , . , . . , .

• () - : , .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• , Multi-Cloud , vender-lock, cloud manage-, . , , cloud - . , .

  
  
  
  
  
  
  

• – IT. enterprise- , - , , , Google Cloud, . Multi-Cloud , , , sandbox Google Cloud, . , , : «, Amazon».

  
  
  
  
  
  
  

• Performance and resiliency . performance , Google Cloud Active Directory Management Service, Azure. . . .

  
  
  
  
  
  
  

• , , Compliance, . . , - , Amazon , Azure , , Google Cloud, Azure . .

  
  
  
  
  
  
  

• () . , , . , , - sensitive, . , AWS , AWS.

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () , , .

  
  
  
  
  
  
  

• () , , , .

  
  
  
  
  
  
  

• () , mail.ru.

  
  
  
  
  
  
  

• () . , mail.ru, , . , .

  
  
  
  
  
  
  

challenges ?

• – , , , Amazon , , Google , Azure , , , , – . , - , , , , , .
• , , DevOps, , . , - size, , . Multi-Cloud, , . , .

Multii-Cloud , Terraform, , , .

, HCL. HashiCorp Configuration language.

? , , , Kubernetes Name Space . Terraform, Azure Terraform , , Cloud formation Azure template. . HCL . , , .

• , , , , : , - , . , clouds. . , , , HCL – YAML, , , . HCL 2.0 .

  
  
  
  
  
  
  

• () , clouds. . , clouds. .

  
  
  
  
  
  
  

• () ?

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () ?

  
  
  
  
  
  
  

• () . VPC.

  
  
  
  
  
  
  

• () -.

  
  
  
  
  
  
  

• () , , - . , , . , , .

  
  
  
  
  
  
  

Terraform? , cloud, , . . . , Terraform , - state. , S3 bucket. , . , , , , , state. , , . , . , install stipe .

• () . , S3. , , durability, .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () , , - , state, , , . , , Terraform 12- , , . state-, . , , durability, .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

Terraform , -, 10 remote state locations, . . S3 Cassandra, .

– Terraform state, Terraform Amazon Azure, . , . state , .

– Terraform 100 , . . Terraform – HCL API- . . . Amazon, OpenStack, Kubernetes, Helm, GitLab‑, .

• () . . API , ?

  
  
  
  
  
  
  

• () , . HashCorp’. , , - , . . . , , , .

  
  
  
  
  
  
  

Terraform . Terraform? .

• () , Thoughtworks Technology Radar.

  
  
  
  
  
  
  

• () . Technology Radar? , , . , .

  
  
  
  
  
  
  

Terraform , Technology Ragar, adopt , production .

. . , . . , . , . .

Terraform . cloud- Terraform-. , , .

• () , Azure , , , Terraform, infrastructure as code. .

  
  
  
  
  
  
  

• () , .

  
  
  
  
  
  
  

Terraform ?

• . . .
• Terraform CI/CD, – . lints. , .
• unit-. .

, . , .

CI? CI Terraform-, CI , . .

• () , . - , CI Terraform, Terraform plan, state, apply, . . . , . , , , build -, , . Terraform state, .

  
  
  
  
  
  
  

• () . . CI . linting, plan, apply, compliance, security. .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () . . (, ) Terraform . . Terraform , . tools, output. outputs - . .

  
  
  
  
  
  
  

best practices, . . , , , , cloud formation template Amazon, . . . , - , . , - .

. Terraform. , , , 2 Terraform.

:

• Terraform-, , HCL 2.0 , .

  
  
  
  
  
  
  

• , - , .

  
  
  
  
  
  
  

• () , , , , . . , 15 load balancing .

  
  
  
  
  
  
  

• () . . . .

  
  
  
  
  
  
  

11- 12- Terraform. , . . , Terraform , . , , .

11- Terraform, .

– , , . , . - , . , .

• () , 12- . , - , . . , - .

  
  
  
  
  
  
  

• () , . . . . .

  
  
  
  
  
  
  

, API clouds, Amazon, . , , API-. Terraform 11- . security group - , 11- Terraform . ingress rules . 2 environment, 25 , 22-, . 2 , - . .

– . 11- Terraform .

• () Count, .

  
  
  
  
  
  
  

• () , . . ? , . rules security groups. , , . .

  
  
  
  
  
  
  

2 rules plan. , . - : « ».

: , , . , Terraform , . rule, . , rule. , prod, . . , - downtime.

state , - , maintenance …, .

GitHub. 0.12- .

• () -, , stable.

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () , 2 beta 0.13. , .

  
  
  
  
  
  
  

• () 18- . , 12- , . . HashiCorp Configuration language 2.0, .

  
  
  
  
  
  
  

?

• -, . count, for_each, . - , . for_each .
• . , . , , - , - .
• Terraform- – dynamic-, , . . .

for_each . Terraform for_each , . . for_each . , key-value . , , - , , , for_each, Terraform , , . , .

12- Terraform .

• () , - rule , , ? – 36 ?

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () , 36 rules?

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

.

. , YAML. for, if. HCL, Terraform, , HCL. Packer. .

-. 11- Terraform string string, number string, boolean string, , , 1 0 -: - true, - 1, - .

. maps. string, number, boolean, . , .

maps .

, , , .

• () , , YAML anchors. . - , anchors . , , . . GitLab CI, Kubernetes .

  
  
  
  
  
  
  

• () null, values. 11- Terraform , , . - , . . null. Null – null, , , .

  
  
  
  
  
  
  

12- Terraform 11- . 11- Terraform : A B, C, D. 11- Terraform , , . . . - , , . , .

12- Terraform . . A B, C. A B, D, C . , Terraform.

Terraform 0.13 1.0 – , . - 13- .

, depends_on, . . .

– , , . Terraform- Terraform . Feature flags , . . , , cloud . cloud AWS, GCP, Azure, Terraform : « ».

, , Terraform , 1.0.

?

• , prod.
• , secure.
• , .
• , tool .

Terraform . 1.0, , . infrastructure as code. Terraform’, , .

• () Helm Kubernetes , Kubernetes-.

  
  
  
  
  
  
  

• () . , . Helm - , HCL Kubernetes- – .

  
  
  
  
  
  
  

• () -?

  
  
  
  
  
  
  

• () YAML , , . HCL, HCL. . . , Helm . Terraform Helm . . , load, kube-config, Helm , .

  
  
  
  
  
  
  

- 1.0, . 3 0.11- Terraform 19 . 12- 20--. , , . , 1.0.

• () , Terraform enterprise, - . , , , . enterprise-.

  
  
  
  
  
  
  

• () , .

  
  
  
  
  
  
  

Terraform, , ?

• Terraform, . VPC, environment – .
• environment, . . . , . variable staff, . . environment, remote state location. Terraform , remote state. . bucket-. , . , , policy, . .
• environment x*3 days. , , .
• . environment , , , , . - . . . , , , .
• , , Terraform . , .

Terraform, Bash, Python, , , 690 . Python, Terraform. Terragrunt.

, Terraform:

Multi-Cloud Terraform, , . Notepad, -. .

Terragrunt. Terragrunt – golang tool, cli, Terraform. Terraform, Terraform.

?

• . bucket name location. , , policy, secure. - .
• HCL 2.0.
• . , , HCL 2.0.
• stacks, . . - , . , environments. .
• Terragrunt? stack – HCL-. HCL- – , - , , . Terragrunt environments, environments, - , - .

. Terragrunt . . 12- Terraform . .

HCL-. - , . dependency, , states.

• () , environment, preprod, variable, , , cloud YAML HCL , — , environment ? . . , ? , , preprod 2 , prod 200 . - preprod , - prod , ?

  
  
  
  
  
  
  

• () . . Terraform. . Terragrunt, .

  
  
  
  
  
  
  

, , remote state , , . . stack . , - . location.

• () , location, , ? Azure, - , Azure folder?

  
  
  
  
  
  
  

• () , . - naming convention. bucket bucket.

  
  
  
  
  
  
  

46:56

?

, . .

, YAML, environment, .

, cloud abstractions, . , .

preprod. environment.yaml, environment, . . cidr, subnet, instance_size, location .

• () , ?
• () , .
• () , location – ? , , , . GCP – , Azure – .

• () . demo.hcl, . , Terraform .

. . .

pull request, templanding’ production. HCL- + YAML, . .

.

? 3 , Travis CI CloudFlare DNS-. Travis’ 3 . Travis credentials . .

, . VPC, subnet, , . .

prod . . , . production .

Travis, , -. . Booting VM. , , .

, . shell-, . , , CloudFlare DNS. , .

• () . : « , Terraform ? ARM, Azure , ?»

  
  
  
  
  
  
  

• () – , - cloud ?

  
  
  
  
  
  
  

• () . , , Azure, Azure , . Microsoft . , . , , Azure .

  
  
  
  
  
  
  

• () , Golang, , , Golang pull request , , - . , . Community . Azure , . terraform , cloudformation, , . Golang, , .

  
  
  
  
  
  
  

• () : « , ? : N-, . , ? , ?».

  
  
  
  
  
  
  

• () CI , - git commits. cmdb. . . configuration management – , . cmdb - , , , Grafana, , . - changelog, , . , prod , . Git diff , . - , , . , , .

  
  
  
  
  
  
  

• () environments, management- , Ansible, Puppet. , , - . Terraform , , , , .

  
  
  
  
  
  
  

: « state of staff cloud-, , cloud , ?». , GCP, storage?

• () . - on-premise . subnet, . . . - CI-, , . cloud, , , - .

  
  
  
  
  
  
  

• () Terraform cloud, states. workspaces.

  
  
  
  
  
  
  

: « Terraform ?».

• () Terraform.

  
  
  
  
  
  
  

• () foreach .

  
  
  
  
  
  
  

• () . Terragrunt .

  
  
  
  
  
  
  

• . , GCP -. , -, , map, - -. . - . foreach, .

  
  
  
  
  
  
  

• () . . , foreach , .

  
  
  
  
  
  
  

• () , . . , , ?

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () : « Terraform 13 ?». , . .

  
  
  
  
  
  
  

• () Count, foreach , depends_on , - . variables validation, , . , , , .

  
  
  
  
  
  
  

• () , - production , , , . 13- Terraform .

  
  
  
  
  
  
  

• () 12- 0.12.18. 18- .

  
  
  
  
  
  
  

• () : « setup -, Terraform-, state, , ? vendors ». , .

  
  
  
  
  
  
  

• () , , , state.

  
  
  
  
  
  
  

• () . , .

  
  
  
  
  
  
  

• () , Consul, .

  
  
  
  
  
  
  

• () , Consul state. , . , , lock-, .

  
  
  
  
  
  
  

• () . , - Azure , . . .

  
  
  
  
  
  
  

• () - ?

  
  
  
  
  
  
  

• () . 3 clouds, . , preprod, . . preprod. HAProxy, .

  
  
  
  
  
  
  

• () , ?

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () plan?

  
  
  
  
  
  
  

• () , plan.

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () clouds, . . cloud , health check HAproxy , . round-robin HAProxy. Multi-Cloud. , - 20 , Azure, .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () , .

  
  
  
  
  
  
  

• () , feedback ?

  
  
  
  
  
  
  

• () , .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () , , .

Terragrunt? environments , , , Terragrunt – , . , , Terragrunt. . - . ., , .

environments, , Terragrunt – . YAML , – , , . . ENV . , 3 . . . , . , . .

, . . Terraform tf-, HCL, , , Terragrunt .

? Google Cloud, Amazon – . Terraform , CLoudFlare – , . Azure - support Microsoft Azure . . GitHub, , , -, , community. , Azure API, , . .

?

• , open source, GitHub. issues. Golang, . . , .

  
  
  
  
  
  
  

• , , Terraform Terragrunt . , , - . , , .

  
  
  
  
  
  
  

• - , Terragrunt , . . , , . , – . . shell- Python.

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () .

  
  
  
  
  
  
  

• () . – «Terraform: Up & Running».

  
  
  
  
  
  
  

• () , .

  
  
  
  
  
  
  

• () , . . Terraform, , .

  
  
  
  
  
  
  

: « Terraform DK , cloud DK, Terraform, , ?»

• () , CDK, . HashiCorp Terraform CDK. Type-, Amazon.

  
  
  
  
  
  
  

• () -.

  
  
  
  
  
  
  

• () , – , . . - - . , Terraform , type-, . , , , CDK. State Terraform benefit , , , . state , . , . , cloud, .

  
  
  
  
  
  
  

, CDK. Terraform, . .

. , silver bullet. , .

• () : « Terragrunt? Vault?». , – .

  
  
  
  
  
  
  

• () Terragrunt . Terragrunt , - . . . , cloud , Azure, Amazon. , . , .

  
  
  
  
  
  
  

• () , , . , , Terragrunt , Terraform.

  
  
  
  
  
  
  

: « Terraform?»

• () ?

  
  
  
  
  
  
  

• () , .

  
  
  
  
  
  
  

• () open source , , , community, .

  
  
  
  
  
  
  

, , . , .

• () , , , .

: « , Terragrunt , . - ?». , . . , , . , .

• () , Terragrunt start. Terraform, . Terraform, Terraform Up and Running. Examples .

  
  
  
  
  
  
  

• () Terraform learns. cloud . cloud. .

  
  
  
  
  
  
  

, . , ?

• () environments , . . , - , , , . .

  
  
  
  
  
  
  

• () , ! , ! !

  
  
  
  
  
  
  

• https://community-z.com/communities/devopsminsk
• https://www.youtube.com/channel/UC3UB8hAvJ9QPLgP7ql9dE6w
• https://devopsminsk.by/