Skip to content

or-carmeli/DevOps-EKS-Terraform

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

59 Commits
Docker
Docker
Β 
Β 
kubernetes
kubernetes
Β 
Β 
terraform
terraform
Β 
Β 
.gitignore
.gitignore
Β 
Β 
README.md
README.md
Β 
Β 

Repository files navigation

AWS-EKS-Terraform-DNS-Project

Overview πŸ”

This project outlines the setup and deployment process for the DevOpsAssignment project. It includes detailed instructions for AWS infrastructure setup using Terraform, Docker containerization, Kubernetes deployment, and configuration for public access.

Table of Contents

AWS Architecture πŸ“Š

AWS Architecture

Prerequisites πŸ“

  • Install Terraform version v1.6.4.
  • Configure AWS with an IAM user with the appropriate permissions (aws configure).
  • Install Docker in your local machine.
  • Install AWS CLI in your local machine.

Repository Setup

Clone the repository to get started:

git clone https://github.com/or-carmeli/DevOpsAssignment.git
cd DevOpsAssignment

AWS Infrastructure Setup using Terraform βš™οΈ

Terraform Setup

  • Install Terraform and configure it to work with AWS.
  • Define your AWS provider and authentication details in Terraform.

Terraform Resources Created

Define a Terraform script (main.tf) to create the following resources:

  • Virtual Private Cloud (VPC) with DNS hostnames enabled.
  • Internet Gateway for the VPC.
  • Public Route Table with routes for external internet access.
  • Public Subnets in multiple availability zones with public IP mapping.
  • Private Subnet without public IP mapping.
  • EC2 instances for Kubernetes deployment and Bastion Host.
  • Security Groups for Kubernetes nodes, Bastion Host, and Application Load Balancer (ALB).
  • Application Load Balancer, Target Group, and Listener for routing external traffic.

The 'variables.tf' file declares and sets default values for variables used in the Terraform configuration. The 'outputs.tf' defines the output variables that Terraform will display at the end of the apply phase.

Execution

Navigate to the Terraform directory and execute:

cd terraform
terraform init # If you haven't initialized your Terraform working directory
terraform plan # To review the proposed changes
terraform apply # To apply the changes

Docker Containerization 🐳

Create Dockerfile

  • Write a Dockerfile to build an NGINX image.
  • Modify the web content (index.html) to display "yo this is nginx".

Build and Test Locally

  • Use docker build and docker run commands to build and test the NGINX container.
cd Docker
docker build -t devops-assignment:1.0.0 .
docker run -d -p 80:80 devops-assignment:1.0.0

Push to Docker Hub

After creating a repository in Docker Hub execute:

docker push orcarmeli/devops-assignment:1.0.0

Configuring the EC2 Instance πŸ’»

Configuration steps executed through SSH from the Bastion Host:

1. Update and Install Dependencies

Update the package list and upgrade the packages:

sudo apt-get update && sudo apt-get upgrade

2. Install Docker (Container Runtime)

Install and start Docker:

sudo apt-get install docker.io
sudo systemctl enable docker
sudo systemctl start docker

3. Install Kubernetes Components

Add Kubernetes Repository

sudo apt-get update && sudo apt-get install -y apt-transport-https gnupg2 curl
curl -s https://packages.cloud.google.com/apt/doc/apt-key.gpg | sudo apt-key add -

Install Kubernetes Components

sudo apt-get update
sudo apt-get install -y kubelet kubectl
sudo mkdir -m 755 /etc/apt/keyrings

Enable and start kubelet:

sudo systemctl enable kubelet && sudo systemctl start kubelet
kubectl version --client

Kubernetes Deployment using Minikube 🚒

Establish a Kubernetes cluster using Minikube and deploy a Dockerized NGINX application. Configure the NGINX to be assigned to port 80 on the instance using Kubernetes resources.

Install curl and Minikube

sudo apt update
sudo apt install curl
curl -LO https://storage.googleapis.com/minikube/releases/latest/minikube-linux-am

d64
sudo install minikube-linux-amd64 /usr/local/bin/minikube

Start Minikube and Verify Installation

minikube start
kubectl get nodes

Kubernetes Configuration Files

Create the following Kubernetes resource files:

  • deployment.yaml: For deploying NGINX to Kubernetes.
  • nginx-service.yaml: To define the NGINX service.
  • nginx-ingress.yaml: For setting up Ingress to manage external access to the services in the cluster.
  • alb-ingress-controller.yaml: To control the AWS Application Load Balancer behavior.

Deploying to Kubernetes

Apply the Kubernetes configuration files using kubectl:

cd kubernetes
kubectl apply -f deployment.yaml
kubectl apply -f nginx-service.yaml
kubectl apply -f nginx-ingress.yaml
kubectl apply -f alb-ingress-controller.yaml

Public Access and DNS Configuration 🌐

Domain

If you don't already have a domain name, you'll need to register one with a domain registrar (e.g., GoDaddy, Namecheap, Google Domains).

Configure DNS Records

Once you have your domain and the public IP address of your application, you need to configure DNS records:

  1. Go to Your Domain Registrar's Management Console: Log in to the website where you registered your domain name.
  2. Navigate to the DNS Management Section: Look for a section where you can manage DNS settings.
  3. Create a DNS Record:
    • Choose "CNAME Record".
    • Set the Host or Name field to your desired subdomain (like www) or @ for the root domain.
    • Set the Value or Points to field to the public IP address or DNS name of your load balancer/EC2 instance.

Wait for DNS Propagation

After setting up the DNS record, it can take anywhere from a few minutes to 48 hours for the changes to propagate throughout the internet.

Route53 for DNS

Set Up Route 53: Use Amazon Route 53 (or another DNS service) to create a DNS record that points to your load balancer. This is how users will access your application via a domain name.

Verify Access

Once the DNS changes have propagated:

  1. Open a Web Browser: Navigate to the domain you configured.
  2. Check for the NGINX Welcome Page or Your Application: If you see the expected content ("yo this is nginx"), your setup is correct.

Access The Application πŸ”—

Access the application via the domain: http://www.devopsassignment.space/

Following these steps should enable you to set up public access to your NGINX application via a DNS name and verify its functionality.

Additional Notes And Considerations πŸ“

  • Update and review Terraform state regularly (manually/CronJob).
  • Security: Make sure your security groups and firewall rules allow traffic on port 80 to your Kubernetes cluster.
  • DNS Propagation: Sometimes DNS changes can take a while to propagate; you can check the status using various online DNS lookup tools.
  • SSL/TLS Certificate: For a production application, it's important to secure your domain with an SSL/TLS certificate. Services like AWS Certificate Manager or Let’s Encrypt can be used to obtain a certificate.
  • Redundancy: For high availability, consider using multiple instances of your application and LoadBalancer settings that support failover and redundancy.
  • Monitoring and Logging: Implement monitoring and logging solutions to keep track of your application's health and performance.

Contact πŸ“¬

For any inquiries, please reach out to ocarmeli7@gmail.com.

Β© 2023 Or Carmeli All Rights Reserved. πŸ“œ

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages