AWS_LAB_3-4

Create a VPC with an App. LoadBalancer connected to 2 Public EC2 in a diff AZs with Nginx Configured as a proxy to pass traffic to an internal facing Network LB connected to 2 Private EC2s with a web app on them.

4 EC2s

ALB and NLB

Health Status of Target Groups

Subnets

NAT gateway to connect the private subnets to the internet

EC2s acting as reverse proxies

User data of Private EC2s

Output

LAB 4

Use the Previous Infrastructure and add Auto Scaling Group to the Private subnets that hosts the app

ASG Policy

Health Status

(Bonus) terraform file to create a vpc and subnets

# Create VPC
resource "aws_vpc" "example" {
  cidr_block       = "10.0.0.0/16"
  enable_dns_hostnames = true

  tags = {
    Name = "example-vpc"
  }
}

# Create public subnets
resource "aws_subnet" "public" {
  count             = 2
  vpc_id            = aws_vpc.example.id
  cidr_block        = "10.0.${count.index}.0/24"
  availability_zone = "us-west-2a"
  map_public_ip_on_launch = true

  tags = {
    Name = "example-public-${count.index+1}"
  }
}

# Create private subnets
resource "aws_subnet" "private" {
  count             = 2
  vpc_id            = aws_vpc.example.id
  cidr_block        = "10.0.${count.index+2}.0/24"
  availability_zone = "us-west-2a"
  map_public_ip_on_launch = false

  tags = {
    Name = "example-private-${count.index+1}"
  }
}

# Create security group for public subnets
resource "aws_security_group" "public" {
  name        = "public"
  description = "Allow HTTP and HTTPS traffic"
  vpc_id      = aws_vpc.example.id

  ingress {
    from_port   = 80
    to_port     = 80
    protocol    = "tcp"
    cidr_blocks = ["0.0.0.0/0"]
  }

  ingress {
    from_port   = 443
    to_port     = 443
    protocol    = "tcp"
    cidr_blocks = ["0.0.0.0/0"]
  }

  egress {
    from_port   = 0
    to_port     = 0
    protocol    = "-1"
    cidr_blocks = ["0.0.0.0/0"]
  }
}

# Create security group for private subnets
resource "aws_security_group" "private" {
  name        = "private"
  description = "Allow all traffic"
  vpc_id      = aws_vpc.example.id

  ingress {
    from_port   = 0
    to_port     = 0
    protocol    = "-1"
    cidr_blocks = ["0.0.0.0/0"]
  }

  egress {
    from_port   = 0
    to_port     = 0
    protocol    = "-1"
    cidr_blocks = ["0.0.0.0/0"]
  }
}

# Create Application Load Balancer
resource "aws_alb" "example" {
  name            = "example-alb"
  internal        = false
  security_groups = [aws_security_group.alb.id]
  subnets         = [aws_subnet.public.id]

  tags = {
    Name = "example-alb"
  }
}

# Create target group
resource "aws_alb_target_group" "example" {
  name     = "example-target-group"
  port     = 80
  protocol = "HTTP"
  vpc_id   = aws_vpc.example.id
}
resource "aws_alb_target_group_attachment" "example" {
  target_group_arn = aws_alb_target_group.example.arn
  target_id        = aws_instance.example.id
  port             = 80
}

resource "aws_alb_listener" "example" {
  load_balancer_arn = aws_alb.example.arn
  port              = "80"
  protocol          = "HTTP"

  default_action {
    type             = "forward"
    target_group_arn = aws_alb_target_group.example.arn
  }
}

alii2121 / aws_lab_3-4 Goto Github PK

aws_lab_3-4's Introduction

AWS_LAB_3-4

Create a VPC with an App. LoadBalancer connected to 2 Public EC2 in a diff AZs with Nginx Configured as a proxy to pass traffic to an internal facing Network LB connected to 2 Private EC2s with a web app on them.

4 EC2s

ALB and NLB

Health Status of Target Groups

Subnets

NAT gateway to connect the private subnets to the internet

EC2s acting as reverse proxies

User data of Private EC2s

Output

LAB 4

Use the Previous Infrastructure and add Auto Scaling Group to the Private subnets that hosts the app

ASG Policy

Health Status

(Bonus) terraform file to create a vpc and subnets

aws_lab_3-4's People

Contributors

Watchers

Recommend Projects

Recommend Topics

Recommend Org