ProHoster > Блог > Gudanarwa > Gabatar da shirin AWS Landing Zone a cikin tsarin Terraform

Gabatar da shirin AWS Landing Zone a cikin tsarin Terraform

Sannu duka! A watan Disamba, OTUS ta ƙaddamar da sabon kwas - Cloud Solution Architecture. A cikin tsammanin farkon wannan kwas, muna raba tare da ku fassarar abubuwa masu ban sha'awa akan batun.

Gabatar da shirin AWS Landing Zone a cikin tsarin Terraform

Yankin Saukowa AWS wani bayani ne wanda ke taimaka wa abokan ciniki da sauri kafa amintaccen, yanayin AWS mai yawan asusun ajiya dangane da mafi kyawun ayyuka.

Sama da shekaru biyar, ƙungiyarmu a Mitoc Group ta yi aiki tuƙuru don taimakawa manyan ƙungiyoyi cikin nasarar canzawa da ginawa ko ƙaura sawun dijital su zuwa gajimare na AWS. A wasu kalmomi, don faɗi abokanmu a AWS: "Abokan cinikinmu suna sake haɓaka kansu da AWS." Ƙoƙari ne wanda ba zai ƙare ba don sake ƙirƙira da sauƙaƙe injiniyoyi a madadin abokan cinikin kansu, kuma AWS yana yin babban aiki na warware matsaloli masu sarƙaƙiya tare da mafita mai sauƙin koya.

Gabatar da shirin AWS Landing Zone a cikin tsarin Terraform
Yankin Saukowa AWS (source)

Menene AWS Landing Zone?

A cewar bayanai daga majiyar hukuma:

AWS Landing Zone shine mafita wanda ke taimaka wa abokan ciniki da sauri kafa ingantaccen yanayin AWS tare da asusu da yawa dangane da mafi kyawun ayyuka na AWS. Tare da zaɓuɓɓuka da yawa, kafa yanayin asusun da yawa na iya ɗaukar lokaci, ya haɗa da daidaita asusu da ayyuka da yawa, kuma yana buƙatar zurfin fahimtar ayyukan AWS.

Yankin Saukowa na AWS ya rage mahimmanci da daidaituwar ƙirar ƙira iri ɗaya da aka ba abokan ciniki daban-daban. A gefe guda, ƙungiyarmu dole ne ta sake saita wasu abubuwan CloudFormation azaman kayan aikin Terraform don ƙarin amfani da su don sarrafa kansa.

Don haka mun tambayi kanmu, me yasa ba za mu gina duk hanyar AWS Landing Zone a cikin Terraform ba? Za mu iya yin wannan kuma zai magance matsalolin abokan cinikinmu? Mai ɓarna: zai kuma ya riga ya yanke shawara! 🙂

Yaushe bai kamata ku yi amfani da AWS Landing Zone ba?

Idan kuna ma'amala da sabis na girgije na yau da kullun da albarkatun girgije a cikin asusun AWS ɗaya ko biyu, waɗannan matakan na iya wuce kima. Duk wanda bai da alaƙa da wannan batu zai iya ci gaba da karantawa :)

Menene ya kamata ku yi la'akari kafin fara aiki?

Yawancin manyan ƙungiyoyin da muka yi aiki da su sun riga sun sami wasu nau'ikan dabarun girgije a wurin. Kamfanoni suna gwagwarmaya don samun nasarar aiwatar da ayyukan girgije ba tare da hangen nesa da tsammanin ba. Da fatan za a ɗauki lokaci don ayyana dabarun ku kuma ku fahimci yadda AWS ya dace da shi.

Lokacin saita dabara, abokan cinikin AWS Landing Zone masu nasara suna mai da hankali kan abubuwan da ke biyowa:

  • Automation kawai ba zaɓi ba ne. An fi son sarrafa kansa na asali na Cloud.
  • Ƙungiyoyi suna yin amfani da injiniyoyi iri ɗaya tare da saitin kayan aiki iri ɗaya don samar da albarkatun girgije. Yana da kyau a yi amfani da Terraform.
  • Mafi yawan masu amfani da gajimare suna da ikon ƙirƙirar hanyoyin da za a sake amfani da su da kuma isar da su azaman sabis na sake amfani da su maimakon lambar sake amfani da su. An fi son gine-gine mara amfani.

Gabatar da Module na Terraform don AWS Landing Zone

Bayan watanni da yawa na aiki tuƙuru, na ji daɗin gabatar muku Tsarin Terraform don AWS Landing Zone. Source ana adana shi akan GitHub, kuma barga versions wanda aka buga akan Terraform Module Registry.

Don farawa, kunna kawai main.tf ga code ku:

module "landing_zone" {
  source     = "TerraHubCorp/landing-zone/aws"
  version    = "0.0.6"
  root_path  = "${path.module}"
  account_id = "${var.account_id}"
  region     = "${var.region}"
  landing_zone_components = "${var.landing_zone_components}"
}

Lura: Tabbatar kun kunna variables.tf da duk abin da za ku iya buƙata daga gare su outputs.tf.

Don sauƙaƙan fahimta, mun ƙara tsoffin ƙima zuwa terraform.tfvars:

account_id = "123456789012"
region = "us-east-1"
landing_zone_components = {
  landing_zone_pipeline_s3_bucket = "s3://terraform-aws-landing-zone/mycompany/landing_zone_pipeline_s3_bucket/default.tfvars"
  [...]
}

Wannan yana nufin cewa lokacin amfani da wannan module terraform kuna buƙatar:

  1. Canja dabi'u account_id и region zuwa naka, wanda ya dace da bayanan da ke cikin Ƙungiyar AWS;
  2. Canja dabi'u landing_zone_components waɗanda suka dace da yankin AWS Landing na amfani da shari'ar;
  3. gyara s3://terraform-aws-landing-zone/mycompany zuwa toshe ku S3 da key prefix S3inda za ku adana fayilolin .tfvars (ko cikakkiyar hanyar zuwa fayiloli .tfvars a cikin ma'ajiyar ku).

Wannan tsarin yana iya samun dubun, ɗaruruwa, ko dubban abubuwan da za a iya turawa, amma ba duka ya kamata ko za a tura su ba. A lokacin aiki, abubuwan da ba sa cikin taswirar mai canzawa landing_zone_components za a yi watsi da su.

ƙarshe

Muna farin ciki da alfahari don raba sakamakon ƙoƙarinmu don taimaka wa abokan ciniki su gina ƙera na asali na girgije. Tsarin Terraform don AWS Landing Zone wani bayani ne wanda ke taimaka wa ƙungiyoyi da sauri kafa ingantaccen yanayin AWS tare da asusu da yawa dangane da mafi kyawun ayyuka na AWS. Muna sane da cewa AWS yana girma cikin sauri mai saurin hauhawa, kuma mun himmatu wajen haɓaka hanyar samar da mafita cikin sauri wanda ke rufe dukkan tushe kuma yana haɗawa da sauran hanyoyin samar da AWS.

Shi ke nan. Muna jiran ra'ayoyin ku kuma muna gayyatar ku zuwa webinar kyauta cikin wanda muke Bari mu yi nazarin ƙirar gine-ginen yanki na Cloud Landing Zone kuma mu yi la'akari da tsarin gine-gine na manyan yankuna..

source: www.habr.com

Add a comment