Terraform: EC2 Instance with SSH Setup

In this post, I am going to use Terraform to create a EC2 instance with ssh setup.

If you have not installed Terraform yet, check https://web-quickstart.blogspot.com/2021/03/terraform-with-docker-compose.html


ssh key pair

First, create a key pair (as test & test.pub in this example)

% ssh-keygen
Generating public/private rsa key pair.
Enter file in which to save the key (/Users/tomo/.ssh/id_rsa): test
Enter passphrase (empty for no passphrase): 
Enter same passphrase again: 
...
% ls test*
test     test.pub


main.tf

Create main.tf with following contents: 

provider "aws" {
  region = "us-east-1"
}

data "aws_ami" "ami" {
  most_recent = true
  filter {
    name   = "name"
    values = ["amzn2-ami-hvm-*"]
  }
  owners = ["amazon"]
}

resource "aws_instance" "instance" {
  ami = data.aws_ami.ami.id
  instance_type = "t2.micro"
  key_name = aws_key_pair.key_pair.id
}

resource "aws_key_pair" "key_pair" {
  public_key = file("./test.pub")
}

resource "aws_security_group" "sg" {
  ingress {
    from_port   = 22
    to_port     = 22
    protocol    = "tcp"
    cidr_blocks = ["0.0.0.0/0"]
  }
}

resource "aws_network_interface_sg_attachment" "sg_attachment" {
  security_group_id    = aws_security_group.sg.id
  network_interface_id = aws_instance.instance.primary_network_interface_id
}

1. provider.aws.region (the first block) is optional, if you want to specify region in the code.

2. data.aws_ami (second block) is to search for the AMI

3. resource.aws_instance creates an instance with the key pair.

4. resource.aws_key_pair is where you pass the public key

5. resource.aws_security_group is SG for ssh

6. resource "aws_network_interface_sg_attachment attaches SG on the EC2 instance


create aws resources

% terraform init
% terraform plan
% terraform apply


ssh

You can get the ssh command by navigating on the AWS console:

AWS Console > N.Virginia(us-east-1) > EC2 > Instances > [instance] > Connect > SSH Client


% ssh -i test ec2-user@ec2-3-238-52-214.compute-1.amazonaws.com

If you prefer to see the IP on a command line tool, try:

% aws ec2 describe-instances | jq -r '.Reservations[].Instances[].PublicIpAddress'


cleanup

% terraform destroy


link

For more detail about security group with Terraform:


Comments

Post a Comment

Popular posts from this blog

Minikube Installation for M1 Mac

Image
In this post, I am going to try Minikube on Mac with M1 Chip. what is minikube Minikube is k8s tool running on a local machine. See also kind  for multi cluster implementation for local k8s. install % curl -LO https://storage.googleapis.com/minikube/releases/latest/minikube-darwin-arm64 % install minikube-darwin-arm64 /usr/local/bin/minikube % minikube version  minikube version: v1.20.0  Note: Installing with brew fails due to a different binary as of 2021-05-24. % brew install minikube % minikube version ❌  Exiting due to MK_WRONG_BINARY_M1: You are trying to run amd64 binary on M1 system. Please use darwin/arm64 binary instead (Download at https://github.com/kubernetes/minikube/releases/download/v1.20.0/minikube-darwin-amd64.) % brew uninstall minikube start The default driver 'virtualbox' is not supported on M1, but you can use 'docker' driver:  https://minikube.sigs.k8s.io/docs/drivers/docker/  . Make sure docker is running, and then specify the driver when starting
Read more

Selenide: Quick Start

Selenide is a Selenium wrapper in Java for testing.   This post describes how you can start using Selenide (using Gradle). 1. Setup Java Application # keep pressing enters to choose default values gradle init --type java-application # confirm that test succeeds gradle test 2. Add Selenide Dependency open build.gradle and edit as: dependencies {   ...   testImplementation 'com.codeborne:selenide:5.13.0' } 3. Write Test (replace the existing test with selenide code) src/test/java/selenide/AppTest.java package selenide; import static com.codeborne.selenide.Condition.text; import static com.codeborne.selenide.Selenide.$; import static com.codeborne.selenide.Selenide.open; import org.junit.Test;   public class AppTest { @Test public void test() { open("https://www.google.ca/"); $("input[type=text]").val("test").pressEnter(); $("body").shouldHave(text("test")); } } 4. Run Selenide gradle test This will open a browser t
Read more

PyCharm: Quick Start

Image
PyCharm is IDE for Python developed by JetBrains. In this post, I am going to show you how I installed it on Mac, did hello world, and used the debugging feature. 1. install You can install the Community Edition, which is free. $ brew install pycharm-ce 2. setup & create project Open the application: $ open /Applications/PyCharm\ CE.app/ and follow the instructions. Then, create a test project. 3. hello world (Hi, PyCharm) Click on the run button on the upper right. 4. debug Replace the code to test the debugging feature. add a breakpoint, then press the debug button. You will see that it stops at the breakpoint, and values in the variables are displayed.
Read more