tech
Defaultdeesfrzh

Terraform

基础设施即代码 - 声明式配置 AWS、Azure、GCP 云资源,带状态管理

TL;DR

是什么:用于配置云资源的基础设施即代码工具。

为什么用:声明式语法、多云支持、状态管理、可复现的基础设施。

Quick Start

安装

brew install terraform  # macOS
# 或从 terraform.io 下载

创建 main.tf

terraform {
  required_providers {
    aws = {
      source  = "hashicorp/aws"
      version = "~> 5.0"
    }
  }
}

provider "aws" {
  region = "us-east-1"
}

resource "aws_instance" "example" {
  ami           = "ami-0c55b159cbfafe1f0"
  instance_type = "t2.micro"

  tags = {
    Name = "example-instance"
  }
}

运行

terraform init
terraform plan
terraform apply

Cheatsheet

命令描述
terraform init初始化工作目录
terraform plan预览更改
terraform apply应用更改
terraform destroy销毁基础设施
terraform fmt格式化代码
terraform validate验证配置
terraform output显示输出
terraform state list列出状态中的资源

Gotchas

变量

# variables.tf
variable "instance_type" {
  description = "EC2 实例类型"
  type        = string
  default     = "t2.micro"
}

# main.tf
resource "aws_instance" "example" {
  instance_type = var.instance_type
}

# terraform.tfvars
instance_type = "t3.small"

输出

output "instance_ip" {
  value       = aws_instance.example.public_ip
  description = "实例的公网 IP"
}

数据源

data "aws_ami" "ubuntu" {
  most_recent = true
  filter {
    name   = "name"
    values = ["ubuntu/images/hvm-ssd/ubuntu-focal-20.04-amd64-server-*"]
  }
  owners = ["099720109477"]
}

resource "aws_instance" "example" {
  ami = data.aws_ami.ubuntu.id
}

模块

module "vpc" {
  source  = "terraform-aws-modules/vpc/aws"
  version = "5.0.0"

  name = "my-vpc"
  cidr = "10.0.0.0/16"
}

Next Steps