The ramblings of a computer geek
A potential scenario is to have a single Terraform template repository where you need to manage AWS resources across a number of different AWS Accounts. However, because each AWS Account is the edge of its authentication and authorisation profile, there is a need to be able cross this boundary within your Terraform to be able … Read more
You can force a replacement of an AWS EC2 instance within Terraform by issuing the following command. The previous command “taint” has now been deprecated. Where your instance is called “My-Instance-1” within the Terraform template. When you run this the instance will be destroyed and replaced (as if it was the first time it was … Read more
AWS CloudFront allows you to front your application (be it on EC2 instances or REST API etc.) so you can provide high availability, caching and protection (with WAF) to the workload. When configuring your application, you don’t want the application to be directly accessible without using CloudFront, so therefore you need to add some restrictions, … Read more
Here’s a little oddity with AWS Route Tables within Terraform, if you want to remove all of the routes in a route table, you can’t just delete or comment them out, otherwise it treats them as if nothing has changed. See the below example, you comment/remove the routes, then in its place add a blank … Read more
During my learning of AWS and its deployment via Terraform, I came across an issue where my EC2 instances kept getting destroyed, even when no changes had been made to them. For example in the plan output: Notice the “# forces replacement” on the security_groups directive. Turns it it was quite a simple fix, although … Read more
You can quickly create an Ansible Directory structure using something like the following example. In my example the Ansible directory is just within my Home Directory, I then have a directory called “Plays” where the Ansible Play files are stored and another one called “Roles” where the roles are stored. If say we wanted to … Read more
Following on from a previous article https://geekmungus.co.uk/?p=4510 we now investigate some more into using Ansible for configuration management and installations. As something we can use as an example, we’re going to setup a simple Bind DNS server, which we can use to explore how to manage the installation of Bind and it’s configuration within Ansible. … Read more
Although SSH is preferred, if you want to use Git’s credential helper here’s two simple options, note you’ll probably not want to use the Credentials Helper method, because it stores the credentials in a plain-text file, albeit in your home directory, but still. Using the Credentials Helper, you won’t have to re-enter your username and … Read more
I’m trying a simple example Ansible configuration, I have three Raspberry Pi, each with Ubuntu Linux 22.04.4 LTS installed, one I’m going to use as the Ansible Workstation, then use it to configure the other two servers for different use cases. Its a simple setup, but helps build understanding. My Ansible workstation is called dev1 … Read more
The Amazon Elastic Container Service (ECS), specifically Fargate allows you to run containers on an ad-hoc basis. The following guide assumes you have already deployed an Amazon Elastic Container Registry (ECR), built your image, pushed it to the ECR and have obtained the Repository URI. The guide also uses local Terraform state, please see the … Read more