brunch

매거진 테라폼 구글 클라우드

라이킷 댓글

You can make anything
by writing

C.S.Lewis

계정을 잊어버리셨나요?

by Master Seo Aug 06. 2023

3. GCP-테라폼-Modular LB

목표

load balancing modules

regional TCP load balancer

regional internal TCP load balancer

global HTTP load balancer with Kubernetes Engine

global HTTPS content-based load balancer

<1> 환경설정

<2> TCP LB

<1> 환경설정

gcloud auth list

gcloud config list project

<2> TCP LB

export GOOGLE_PROJECT=$(gcloud config get-value project)

$ ls *.tf

locals.tf main.tf network.tf outputs.tf provider.tf variables.tf versions.tf

$ more *.tf

::::::::::::::

locals.tf

::::::::::::::

locals {

health_check = {

check_interval_sec = 1

healthy_threshold = 4

timeout_sec = 1

unhealthy_threshold = 5

port = 8080

request_path = "/mypath"

host = "1.2.3.4"

}

::::::::::::::

main.tf

data "template_file" "instance_startup_script" {

template = file("${path.module}/templates/gceme.sh.tpl")

vars = {

PROXY_PATH = ""

}

resource "google_service_account" "instance-group" {

account_id = "instance-group"

}

module "instance_template" {

source = "terraform-google-modules/vm/google//modules/instance_template"

version = "~> 8.0"

subnetwork = google_compute_subnetwork.subnetwork.self_link

source_image_family = var.image_family

source_image_project = var.image_project

startup_script = data.template_file.instance_startup_script.rendered

service_account = {

email = google_service_account.instance-group.email

scopes = ["cloud-platform"]

}

module "managed_instance_group" {

source = "terraform-google-modules/vm/google//modules/mig"

version = "~> 8.0"

region = var.region

target_size = 2

hostname = "mig-simple"

instance_template = module.instance_template.self_link

target_pools = [

module.load_balancer_default.target_pool,

module.load_balancer_no_hc.target_pool,

module.load_balancer_custom_hc.target_pool

]

named_ports = [{

name = "http"

port = 80

}]

}

module "load_balancer_default" {

name = "basic-load-balancer-default"

source = "../../"

region = var.region

service_port = 80

network = google_compute_network.network.name

target_service_accounts = [google_service_account.instance-group.email]

}

module "load_balancer_no_hc" {

name = "basic-load-balancer-no-hc"

source = "../../"

region = var.region

service_port = 80

network = google_compute_network.network.name

disable_health_check = true

target_service_accounts = [google_service_account.instance-group.email]

}

module "load_balancer_custom_hc" {

name = "basic-load-balancer-custom-hc"

source = "../../"

region = var.region

service_port = 8080

network = google_compute_network.network.name

health_check = local.health_check

target_service_accounts = [google_service_account.instance-group.email]

}

::::::::::::::

network.tf

::::::::::::::

resource "google_compute_network" "network" {

name = "load-balancer-module-network"

auto_create_subnetworks = "false"

}

resource "google_compute_subnetwork" "subnetwork" {

name = "load-balancer-module-subnetwork"

region = var.region

network = google_compute_network.network.self_link

ip_cidr_range = "10.0.0.0/16"

}

resource "google_compute_router" "router" {

name = "load-balancer-module-router"

region = var.region

network = google_compute_network.network.self_link

}

module "cloud_nat" {

project_id = var.project_id

region = var.region

name = "load-balancer-module-nat"

source = "terraform-google-modules/cloud-nat/google"

version = "~> 2.2"

router = google_compute_router.router.name

}

::::::::::::::

outputs.tf

::::::::::::::

output "load_balancer_default_ip" {

description = "The external ip address of the forwarding rule for default lb."

value = module.load_balancer_default.external_ip

}

::::::::::::::

provider.tf

::::::::::::::

provider "google" {

project = var.project_id

}

provider "google-beta" {

project = var.project_id

}

::::::::::::::

variables.tf

::::::::::::::

variable "region" {

default = "us-central1"

}

variable "project_id" {

description = "GCP Project used to create resources."

}

variable "image_family" {

description = "Image used for compute VMs."

default = "debian-11"

}

variable "image_project" {

description = "GCP Project where source image comes from."

default = "debian-cloud"

}

::::::::::::::

versions.tf

::::::::::::::

terraform {

required_version = ">= 0.13"

required_providers {

google = {

source = "hashicorp/google"

version = ">= 3.53, < 5.0"

}

google-beta = {

source = "hashicorp/google-beta"

version = ">= 3.53, < 5.0"

}

template = {

source = "hashicorp/template"

}

10 lb.tf

terraform init

terraform plan

terraform apply

콘솔에서 보기

EXTERNAL_IP=$(terraform output | grep load_balancer_default_ip | cut -d = -f2 | xargs echo -n)

echo "

http://${EXTERNAL_IP}

다음과정

https://brunch.co.kr/@topasvga/3393

4. 테라폼 -GCP -Cloud SQL

<1> 환경설정 <2> Cloud SQL <1> 환경설정 1 gcloud auth list 2 gcloud config list project <2> Cloud SQL 1 cat main.tf $ more *.tf :::::::::::::: main.tf :::::::::::::: provider "google" { version = "~

brunch.co.kr/@topasvga/3393

전체보기

https://brunch.co.kr/@topasvga/3394

12탄-구글 클라우드-테라폼 2023

1 https://brunch.co.kr/@topasvga/3390 2 https://brunch.co.kr/@topasvga/3391 3 https://brunch.co.kr/@topasvga/3392 4 https://brunch.co.kr/@topasvga/3393 감사합니다.

brunch.co.kr/@topasvga/3394

감사합니다.

Master Seo 소속 클라우드전문가카페 직업 엔지니어

(전) 네이버 엔지니어 7년 , 네이버 클라우드 마스터, PRO , AWS 아키프로, Google프로아키, Azure어드민, CCNP, 맛집,여행 전문가, 좋은 기운을 주는사람

구독자 2,521

매거진의 이전글 2. GCP-테라폼- HTTPS LB 4. GCP-테라폼-Cloud SQL 매거진의 다음글

브런치는 최신 브라우저에 최적화 되어있습니다. IE chrome safari