- Install Terraform
- Download this gists & decompress
$ make init$ make apply
.
├── Makefile # Some useful commands
├── main.tf # Terraform configurations
└── terraform.tfvars # Variables for Terraform
Last active
October 10, 2021 12:05
-
-
Save task4233/789c7d96d86ebc4470cf8998f2ee389c to your computer and use it in GitHub Desktop.
Terraform configuration file for GCE free tier
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # ref: https://learn.hashicorp.com/collections/terraform/gcp-get-started | |
| # variables set in `terraform.tfvars` which should be contained `.gitignore`. | |
| variable "project" {} | |
| variable "credentials_file" {} | |
| variable "region" { | |
| default = "us-west1" | |
| } | |
| variable "zone" { | |
| default = "us-west1-b" | |
| } | |
| variable "gce_ssh_user" {} | |
| variable "gce_ssh_pub_key_file" {} | |
| terraform { | |
| required_providers { | |
| google = { | |
| source = "hashicorp/google" | |
| version = "3.5.0" | |
| } | |
| } | |
| } | |
| provider "google" { | |
| credentials = file(var.credentials_file) | |
| project = var.project | |
| region = var.region | |
| zone = var.zone | |
| } | |
| # ready vpc_network for terraform | |
| resource "google_compute_network" "vpc_network" { | |
| name = "terraform-network" | |
| } | |
| # firewall configuration for icmp & ssh | |
| resource "google_compute_firewall" "allow_icmp" { | |
| name = "allow-icmp" | |
| network = google_compute_network.vpc_network.name | |
| allow { | |
| protocol = "icmp" | |
| } | |
| } | |
| resource "google_compute_firewall" "allow_ssh" { | |
| name = "allow-ssh" | |
| network = google_compute_network.vpc_network.name | |
| allow { | |
| protocol = "tcp" | |
| ports = ["22"] # should be changed | |
| } | |
| } | |
| # use configuration in free tier | |
| # ref: https://cloud.google.com/free/docs/gcp-free-tier/#free-tier-usage-limits | |
| resource "google_compute_instance" "vm_instance" { | |
| name = "terraform-instance" | |
| machine_type = "e2-micro" | |
| boot_disk { | |
| initialize_params { | |
| size = 30 | |
| type = "pd-standard" | |
| image = "debian-cloud/debian-9" | |
| } | |
| } | |
| network_interface { | |
| network = google_compute_network.vpc_network.name | |
| access_config { | |
| } | |
| } | |
| metadata = { | |
| ssh-keys = "${var.gce_ssh_user}:${file(var.gce_ssh_pub_key_file)}" # use ssh-key set in `terraform.tfvars`. | |
| } | |
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| init: | |
| terraform init | |
| .PHONY: fmt | |
| fmt: | |
| terraform fmt | |
| .PHONY: validate | |
| validate: | |
| terraform validate | |
| plan: fmt validate | |
| terraform plan | |
| apply: fmt validate | |
| terraform apply | |
| destroy: | |
| terraform destroy |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| project = "PROJECT_NAME" | |
| credentials_file = "CREDENTIAL_FILE_PATH" # use credentials.json generated with your service account in GCP | |
| region = "REGION_NAME" | |
| zone = "ZONE_NAME" | |
| gce_ssh_user = "SSH_USER_NAME" | |
| gce_ssh_pub_key_file = "SSH_PUBLIC_KEY_PATH" # DO NOT SET YOUR SSH PRIVATE KEY |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment