VPC Solutions with EC2 for Production: AWS with Terraform

Create an AWS account by signing up in the console. Enjoy 12 months of free tier and sign up with billing info and four-digit phone verification.

Sign into the AWS console, switch regions, and explore account details, recent and frequently used services, cost explorer, billing insights, and policy-based organization controls for VPC and EC2 prep.

Create a dedicated identity and access management user for programmatic access, attach administrator-level policies, enable multifactor authentication, and securely store the generated access key and secret key for future use.

Install Terraform on Windows, extract the binary, and add its path to system and user environment variables. Install the Terraform plugin in IntelliJ and verify the plugin works.

Install the AWS CLI on Windows 10 64-bit, accept the license, and add the installation path to system and user PATHs to verify the CLI in a command prompt.

Configure the aws cli with your access key, secret key, eu-central-1, and json output to enable programmatic access to aws resources from code via the sdk without embedding credentials.

Install Terraform on mac os using homebrew, upgrade to the latest version, test the installation, then install and verify the terraform plugin for IntelliJ, restarting the IDE to finalize setup.

Install the AWS CLI with Homebrew, compare with pip or direct downloads, and configure access keys and secret keys across the command line and apps.

Configure AWS credentials with aws configure by entering the access key, secret key, region, and output format. Use an IAM user and install the boto3 library for Python.

Explore how to provision infrastructure as code with Terraform, defining providers, networks, and resources. Learn essential commands like init, plan, apply, and destroy, plus managing remote state with backends.

Create a key pair from the console to securely access EC2 instances, download the .pem private key, and prevent connection errors, then prepare an S3 bucket for Terraform remote state.

Create an S3 bucket in the eu ireland region to host Terraform remote state, named Terraform Remote State 2018, so Terraform can manage the state from now on.

Create a Terraform project from the command line by building a directory with main.tf and variables.tf, then prepare remote state configuration and verify plugin installation in the IDE.

Define the remote state configuration for the infrastructure layer and the platform layer, detailing networking resources like VPC, subnets, and security groups, and outlining auto scaling and instances on top.

Create a production VPC with Terraform on AWS, configuring region, backend as S3, and a CIDR block, enable DNS hostnames for public subnets, and tag with production-vpc.

Implement three public subnets in eu-west-1 across three availability zones using Terraform, with variable-driven CIDR blocks, subnet naming, and proper configuration.

Create private subnets in Terraform for an AWS VPC, configuring variables, descriptions, names, and availability zones.

Create a public route table by naming it and tagging it, then prepare to create a private route table in the next video.

Create a private route table with Terraform, name variable private route table and VPC IDs, add a tag, and plan to assign it to subnets for private and public use.

Associate public subnets with the public route table and private subnets with the private route table using Terraform, configuring route_table_id and subnet_id for each subnet.

Create and assign an elastic IP for a NAT gateway to enable private subnets to access the internet for content and updates while blocking inbound traffic.

Create a nat gateway with an elastic ip, attach it to the public subnet, and update the route table to direct private traffic to the internet, dependent on elastic ip.

Create and attach an internet gateway to the public route table, and configure a default route 0.0.0.0/0 to enable public resources to reach the internet with Terraform.

Execute Terraform in production to read remote state and output vital variables. Build and verify a production VPC with public and private subnets, gateways, and an elastic IP.

Define the backend for layer two infrastructure and read the remote state from layer one using Terraform, configuring an S3 backend and data terraform remote state to share outputs.

Create and configure security groups for EC2 instances and ELB using Terraform, defining public and private groups, ingress and egress rules, and health checking ports in a VPC.

Create an IAM role and inline policy in Terraform for EC2 instances, letting them assume the role to access AWS resources securely without access keys or secret keys.

Create an IAM role policy for EC2 instances by drafting a JSON policy with version 2012-10-17, allowing EC2, elastic load balancing, CloudWatch, and CloudWatch Logs access to all resources.

Create an IAM instance profile, name it, attach the IAM role and its policy, and apply it to two EC2 instances to grant the configured permissions.

Learn to fetch the most recent ami using a Terraform data source with an owner alias filter, then apply that latest ami to EC2 launch configurations.

Create a private EC2 launch configuration with Terraform, defining image id, instance type, key pair, and security groups, plus user data to install httpd and show the instance id.

Define a public launch configuration for EC2 instances, using a public IP, iam instance profile, security groups, and user data to host a web app.

Deploy a public web app load balancer in front of auto scaling groups to ensure high availability and scalability, with http health checks and Terraform-driven configuration.

Create an internal load balancer for private backend instances using terraform, attach the ilb security group and private subnets, and configure a port 80 http listener with health checks.

Configure a private auto scaling group in a VPC with private subnets, min/max instances, and a launch configuration, using an elastic load balancer for health checks and production backend tagging.

Configure a public auto scaling group for production web apps by defining subnets, a launch configuration, minimum and maximum sizes, health checks, a load balancer, and deployment tags.

Create a target tracking policy for the public auto scaling group, using the average CPU utilization metric with an 80 percent target to auto scale up or down.

Configure a private auto scaling group for the production backend, implement scale in and scale out policies, and set up SNS notifications for scaling actions.

Create an sns topic to monitor production web app auto-scaling events and alert when instances scale in or out.

Create an SMS subscription for an SNS topic to receive auto-scaling notifications, using a plus-signed phone number and the SMS protocol, linked to the webapp production multiskilling alert topic.

Define auto scaling notifications for scale up, scale down, launch, and terminate events tied to an auto scaling group, using an SNS topic for alerts and error monitoring.

Review and refine your AWS VPC and Terraform code before deployment, validating remote state, subnets, routing, security groups, AMI selection, and autoscaling configurations to prevent production issues.

Prepare production tfvars and configure remote state bucket and key for Terraform, initialize and plan. Fix policy naming and JSON syntax, then apply to create public and private scaling groups.

Validate the end-to-end production VPC setup, including public/private subnets, route tables, and gateways, and confirm traffic is balanced across six EC2 instances via two load balancers.

Finish a course on infrastructure as code with Terraform on AWS, covering VPC subnets, networking fundamentals, and launching two instances behind little balancers with traffic routing.