[英]Creating different EC2 instances in separate AZs using for each terraform
我正在尝试使用 terraform 在单独的 AZ 中部署不同的 EC2 实例。然后我将 EC2 实例所在的 su.net 关联到带有 NAT 网关的路由表。 我在将 su.nets 与路由表上的 nat 网关相关联时遇到了困难。 以下是我的代码和错误。 任何意见将是有益的。
resource "aws_instance" "private" {
for_each = var.priv_subnet
ami = var.ec2_amis[var.region]
instance_type = each.key
key_name = aws_key_pair.main.key_name
subnet_id = aws_subnet.private[each.key].id
tags = {
Name = each.value.tag
}
}
resource "aws_route_table" "nat" {
for_each = var.pub_subnet
vpc_id = aws_vpc.main.id
route {
cidr_block = "0.0.0.0/0"
nat_gateway_id = aws_nat_gateway.main[each.key].id
}
tags = {
Name = "${var.vpc_tags}_${each.key}_PrivRT"
}
}
resource "aws_route_table_association" "nat" {
for_each = aws_subnet.private
route_table_id = aws_route_table.nat[each.key].id
subnet_id = each.value.id
}
resource "aws_subnet" "private" {
for_each = var.priv_subnet
vpc_id = aws_vpc.tableau.id
cidr_block = cidrsubnet(aws_vpc.main.cidr_block, 8, each.value.subnet)
availability_zone = each.value.availability_zone
map_public_ip_on_launch = false
tags = {
Name = "PrivSub-${each.value.availability_zone}"
}
}
resource "aws_eip" "main" {
for_each = aws_subnet.public
vpc = true
lifecycle {
create_before_destroy = true
}
}
resource "aws_nat_gateway" "tableau" {
for_each = aws_subnet.public
subnet_id = each.value.id
allocation_id = aws_eip.main[each.key].id
}
resource "aws_subnet" "public" {
for_each = var.pub_subnet
vpc_id = aws_vpc.main.id
cidr_block = cidrsubnet(aws_vpc.main.cidr_block, 8, each.value)
availability_zone = each.key
map_public_ip_on_launch = true
tags = {
Name = "PubSub-${each.key}"
}
}
变量
variable "priv_subnet" {
type = map(object({
availability_zone = string
subnet = string
tag = string
}))
default = {
"m5.2xlarge" = {
availability_zone = "us-west-2a"
subnet = 4
tag = "Primary"
}
"m5.4xlarge" = {
availability_zone = "us-west-2b"
subnet = 5
tag = "Worker1"
}
"m5.4xlarge" = {
availability_zone = "us-west-2c"
subnet = 6
tag = "Worker2"
}
}
}
variable "pub_subnet" {
default = {
"us-west-2a" = 1
"us-west-2b" = 2
"us-west-2c" = 3
}
}
错误
Error: Invalid index
on vpc.tf line 99, in resource "aws_route_table_association" "nat":
99: route_table_id = aws_route_table.nat[each.key].id
|----------------
| aws_route_table.nat is object with 3 attributes
| each.key is "m5.2xlarge"
The given key does not identify an element in this collection value.
Error: Invalid index
on vpc.tf line 99, in resource "aws_route_table_association" "nat":
99: route_table_id = aws_route_table.nat[each.key].id
|----------------
| aws_route_table.nat is object with 3 attributes
| each.key is "m5.4xlarge"
The given key does not identify an element in this collection value.
我理解错误消息,但不确定如何将路由适当地分配给该路由表。
each.key中的aws_route_table_association将是来自priv_su.net的实例类型,例如m5.2xlarge 。 但是, aws_route_table.nat键将是 AZ 名称,例如来自var.pub_su.net us-east-1a 。
显然,这是行不通的。 解决此问题的一种方法是修改priv_su.net变量以使用 su.net 名称作为键,而不是实例类型。 更改可能需要进一步更改您的代码。
variable "priv_subnet" {
type = map(object({
instance_type = string
subnet = string
tag = string
}))
default = {
"us-west-2a" = {
instance_type = "m5.2xlarge"
subnet = 4
tag = "Primary"
}
"us-west-2b" = {
instance_type = "m5.4xlarge"
subnet = 5
tag = "Worker1"
}
"us-west-2c" = {
instance_type = "m5.4xlarge"
subnet = 6
tag = "Worker2"
}
}
}
这样你就会在var.pub_su.net和var.priv_su.net之间建立一对一的关系,这在我看来会简化事情。
尝试使用 terraform 创建多个具有单独路由 53 记录的 EC2 实例
[英]Trying to use terraform to create multiple EC2 instances with separate route 53 records
如何使用 Terraform 从单个 VPC 启动多个 AWS EC2 实例?
[英]How to launch multiple AWS EC2 instances from a single VPC using Terraform?
使用 terraform 创建 ec2 实例时生成包含“IP 地址”的用户数据
[英]generate user_data including "IP Address" while creating ec2 instance using terraform
如何在 2 个 ec2 实例上连接 2 个不同的 docker 容器?
[英]How can I connect 2 different docker containers on 2 ec2 instances?
terraform 数据库实例和 ec2 安全组在不同的 vpc 中
[英]terraform the db instance and ec2 security group are in different vpcs
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.