Merge pull request #21 from Aswin-Vijayan/master

 [TEC-56][Add]- Added conditions to nat-gateway

Author: techiescamp

README.md

@@ -22,6 +22,31 @@ terraform destroy \
     -backend-config="dynamodb_table=terraform-state-lock"
 ```
 
+#### VPC Provisioning
+
+cd into the `environments/dev/vpc` directory and run the following commands:
+
+1. Init Terraform in the directory `environments/dev/vpc`
+
+```
+terraform init
+```
+2. To preview the changes in code
+
+```
+terraform plan -var-file=../../../vars/dev/vpc.tfvars
+```
+3. To apply the changes
+
+```
+terraform apply -var-file=../../../vars/dev/vpc.tfvars
+```
+4. To destroy the resources created using the code
+
+```
+terraform destroy -var-file=../../../vars/dev/vpc.tfvars
+
+
 #### RDS Provisioning
 
 cd into the `environments/dev/rds` directory and run the following commands:

environments/dev/vpc/main.tf

@@ -7,14 +7,22 @@ provider "aws" {
 
 module "vpc" {
   source                        = "../../../modules/vpc"
-  name                          = "eks-vpc"
-  region                        = "us-west-2"
-  project                       = "EKS Demo"
-  environment                   = "dev"
-  vpc_cidr_block                = "10.0.0.0/16"
-  public_subnet_cidr_blocks     = ["10.0.1.0/24", "10.0.2.0/24", "10.0.3.0/24"]
-  app_subnet_cidr_blocks        = ["10.0.4.0/24", "10.0.5.0/24", "10.0.6.0/24"]
-  db_subnet_cidr_blocks         = ["10.0.7.0/24", "10.0.8.0/24", "10.0.9.0/24"]
-  management_subnet_cidr_blocks = ["10.0.10.0/24", "10.0.11.0/24", "10.0.12.0/24"]
-  availability_zones            = ["us-west-2a", "us-west-2b", "us-west-2c"]
+  region                        = var.region
+  vpc_cidr_block                = var.vpc_cidr_block
+  instance_tenancy              = var.instance_tenancy
+  enable_dns_support            = var.enable_dns_support
+  enable_dns_hostnames          = var.enable_dns_hostnames
+  domain                        = var.domain
+  create_nat_gateway            = var.create_nat_gateway
+  destination_cidr_block        = var.destination_cidr_block
+  map_public_ip_on_launch       = var.map_public_ip_on_launch
+  public_subnet_cidr_blocks     = var.public_subnet_cidr_blocks
+  app_subnet_cidr_blocks        = var.app_subnet_cidr_blocks
+  db_subnet_cidr_blocks         = var.db_subnet_cidr_blocks
+  management_subnet_cidr_blocks = var.management_subnet_cidr_blocks
+  availability_zones            = var.availability_zones
+  owner                         = var.owner
+  environment                   = var.environment
+  cost_center                   = var.cost_center
+  application                   = var.application
 }

environments/dev/vpc/variables.tf

@@ -0,0 +1,103 @@
+# Common Variables
+
+variable "tags" {
+  default     = {}
+  type        = map(string)
+  description = "Extra tags to attach to the VPC resources"
+}
+
+variable "region" {
+  type        = string
+  description = "Region of the VPC"
+}
+
+# VPC Variables
+
+variable "vpc_cidr_block" {
+  type        = string
+  description = "CIDR block for the VPC"
+}
+
+# Subnet Varaibles
+
+variable "public_subnet_cidr_blocks" {
+  type        = list(any)
+  description = "List of public subnet CIDR blocks"
+}
+
+variable "app_subnet_cidr_blocks" {
+  type        = list(any)
+  description = "List of application subnet CIDR blocks"
+}
+
+variable "db_subnet_cidr_blocks" {
+  type        = list(any)
+  description = "List of Database subnet CIDR blocks"
+}
+
+variable "management_subnet_cidr_blocks" {
+  type        = list(any)
+  description = "List of management subnet CIDR blocks"
+}
+
+variable "availability_zones" {
+  type        = list(any)
+  description = "List of availability zones"
+}
+
+variable "create_nat_gateway" {
+  type        = bool
+  description = "whether to create a NAT gateway or not"
+}
+
+variable "owner" {
+  type        = string
+  description = "Name of owner"
+}
+
+variable "environment" {
+  type        = string
+  description = "The environment name for the resources."
+}
+
+variable "cost_center" {
+  type        = string
+  description = "Name of cost-center for this alb-asg"
+}
+
+variable "application" {
+  type        = string
+  description = "Name of the application"
+}
+
+variable "instance_tenancy" {
+  type        = string
+  description = "Set instance-tenancy"
+}
+
+variable "enable_dns_support" {
+  type        = bool
+  description = "whether to enable DNS support or not"
+}
+
+variable "enable_dns_hostnames" {
+  type        = bool
+  description = "whether to enable DNS hostnames or not"
+}
+
+variable "domain" {
+  type        = string
+  description = "Set the domain of eip"
+}
+
+variable "destination_cidr_block" {
+  type        = string
+  description = "Set the destination cidr block"
+}
+
+variable "map_public_ip_on_launch" {
+  type        = bool
+  description = "whether to map public ip on launch or not"
+}
+
+

modules/vpc/Untitled-1

@@ -3,9 +3,11 @@ resource "aws_internet_gateway" "main" {
 
   tags = merge(
     {
-      Name        = "InternetGateway",
-      Project     = var.project,
-      Environment = var.environment
+      Name        = "${var.environment}-${var.application}-internet-gateway",
+      Environment = var.environment,
+      Owner       = var.owner,
+      CostCenter  = var.cost_center,
+      Application = var.application
     },
     var.tags
   )

modules/vpc/internet-gateway.tf

@@ -1,19 +1,22 @@
 resource "aws_eip" "main" {
-  count = 3
-  domain = "vpc"
+  count = var.create_nat_gateway ? 1 : 0
+  domain = var.domain
 }
 
 resource "aws_nat_gateway" "main" {
-  count         = length(var.subnet_ids)
-  allocation_id = aws_eip.main[count.index].id
+  count = var.create_nat_gateway ? 1 : 0
+  allocation_id = aws_eip.main[0].id
   subnet_id     = aws_subnet.public[0].id
+  depends_on    = [aws_internet_gateway.main]
 
-    tags = merge(
+  tags = merge(
     {
-      Name        = "NATGateway",
-      Project     = var.project,
-      Environment = var.environment
+      Name        = "${var.environment}-${var.application}-nat-gateway",
+      Environment = var.environment,
+      Owner       = var.owner,
+      CostCenter  = var.cost_center,
+      Application = var.application
     },
     var.tags
   )
-}
+}

modules/vpc/nat-gateway.tf

@@ -3,102 +3,85 @@ resource "aws_route_table" "public" {
 
   tags = merge(
     {
-      Name        = "PublicRouteTable",
-      Project     = var.project,
-      Environment = var.environment
+      Name        = "${var.environment}-${var.application}-public-route-table",
+      Environment = var.environment,
+      Owner       = var.owner,
+      CostCenter  = var.cost_center,
+      Application = var.application
     },
     var.tags
   )
 }
 
 resource "aws_route" "public" {
   route_table_id         = aws_route_table.public.id
-  destination_cidr_block = "0.0.0.0/0"
+  destination_cidr_block = var.destination_cidr_block
   gateway_id             = aws_internet_gateway.main.id
 }
 
-
-resource "aws_route_table_association" "public" {
-  count          = length(var.public_subnet_cidr_blocks)
-  subnet_id      = aws_subnet.public[count.index].id
-  route_table_id = aws_route_table.public.id
-}
-
 resource "aws_route_table" "app" {
   vpc_id = aws_vpc.main.id
 
   tags = merge(
     {
-      Name        = "AppRouteTable",
-      Project     = var.project,
-      Environment = var.environment
+      Name        = "${var.environment}-${var.application}-app-route-table",
+      Environment = var.environment,
+      Owner       = var.owner,
+      CostCenter  = var.cost_center,
+      Application = var.application
     },
     var.tags
   )
 }
 
 resource "aws_route" "app" {
-  count                   = length(aws_nat_gateway.main)
-  route_table_id          = aws_route_table.app.id
-  destination_cidr_block  = "0.0.0.0/0"
-  gateway_id              = aws_nat_gateway.main[count.index].id
+  count = var.create_nat_gateway ? 1 : 0
+  route_table_id         = aws_route_table.app.id
+  destination_cidr_block = var.destination_cidr_block
+  nat_gateway_id         = aws_nat_gateway.main[count.index].id
 }
 
-resource "aws_route_table_association" "app" {
-  count          = length(var.app_subnet_cidr_blocks)
-  subnet_id      = aws_subnet.app[count.index].id
-  route_table_id = aws_route_table.app.id
-}
 
-#
 resource "aws_route_table" "db" {
   vpc_id = aws_vpc.main.id
 
   tags = merge(
     {
-      Name        = "DbRouteTable",
-      Project     = var.project,
-      Environment = var.environment
+      Name        = "${var.environment}-${var.application}-db-route-table",
+      Environment = var.environment,
+      Owner       = var.owner,
+      CostCenter  = var.cost_center,
+      Application = var.application
     },
     var.tags
   )
 }
 
 resource "aws_route" "db" {
-  count                   = length(aws_nat_gateway.main)
-  route_table_id          = aws_route_table.db.id
-  destination_cidr_block  = "0.0.0.0/0"
-  gateway_id              = aws_nat_gateway.main[count.index].id
-}
-
-resource "aws_route_table_association" "db" {
-  count          = length(var.db_subnet_cidr_blocks)
-  subnet_id      = aws_subnet.db[count.index].id
-  route_table_id = aws_route_table.db.id
+  count = var.create_nat_gateway ? 1 : 0
+  route_table_id         = aws_route_table.db.id
+  destination_cidr_block = var.destination_cidr_block
+  nat_gateway_id         = aws_nat_gateway.main[count.index].id
 }
 
 resource "aws_route_table" "management" {
   vpc_id = aws_vpc.main.id
 
   tags = merge(
     {
-      Name        = "ManagementRouteTable",
-      Project     = var.project,
-      Environment = var.environment
+      Name        = "${var.environment}-${var.application}-management-route-table",
+      Environment = var.environment,
+      Owner       = var.owner,
+      CostCenter  = var.cost_center,
+      Application = var.application
     },
     var.tags
   )
 }
 
 resource "aws_route" "management" {
-  count                   = length(aws_nat_gateway.main)
-  route_table_id          = aws_route_table.management.id
-  destination_cidr_block  = "0.0.0.0/0"
-  gateway_id              = aws_nat_gateway.main[count.index].id
-}
-
-resource "aws_route_table_association" "management" {
-  count          = length(var.management_subnet_cidr_blocks)
-  subnet_id      = aws_subnet.management[count.index].id
-  route_table_id = aws_route_table.management.id
+  count = var.create_nat_gateway ? 1 : 0
+  route_table_id         = aws_route_table.management.id
+  destination_cidr_block = var.destination_cidr_block
+  nat_gateway_id         = aws_nat_gateway.main[count.index].id
 }