The project aimed to design and implement a scalable and resilient AWS infrastructure using Terraform for hosting containerized applications deployed with ECS Fargate. The infrastructure included network components, ECS clusters, and CI/CD automation using GitHub Actions.
Credentials: Need AWS Configure
S3 Bucket: You need to have a S3 Bucket to store Terraform State Files
Image: You need to upload a first image with tag to AWS ECR
For Terraform Root Module:
terraform init
terraform validate
terraform plan
terraform apply --auto-approveThe Network module was responsible for creating the foundational components of the architecture within the VPC. This included defining the VPC itself, along with the associated subnets, route tables, and Internet Gateway. Two public subnets were designated for the ALB and one for NAT Gateway, while two private subnets were established across different availability zones to host the Auto Scaling Group with Desired 2 EC2 Instances.
module "network" {
source = "./Network"
vpc_cidr_block = "10.200.0.0/16"
vpcname = "wlo-terraform-vpc"
subnet-name = "terraform-subnet"
wlo-terraform-igw-name = "wlo-terraform-igw"
natgw-name = "terraform-nat-gw"
publicrtname = "public-subnet-routetable"
privatertname = "private-subnet-routetable"
}In this module , I've used Terraform Function cidrsubnet for subnets.This function will generate subnetes with "10.200.0.0/24", "10.200.1.0/24", "10.200.2.0/24", "10.200.3.0/24".
You can play subnet ranges as you wish for least subnet ranges
locals {
subnet = cidrsubnets(var.vpc_cidr_block,11,11,8,8)
}The Load Balancer module was responsible for setting up the Application Load Balancer (ALB) to evenly distribute incoming traffic across ECS Containers. This component defined the ALB listeners, target groups, and health checks to ensure efficient routing of requests to healthy instances.And aslso Secured Connection with AWS Certificate Manager.
module "LoadBalancer" {
source = "./LoadBalancer"
public-subnetid = module.network.public-subnetid
alb-name = "terraform-ecs-alb"
ecs_sg_name = "terraform-ecs-sg"
ecs-alblogs3 = "terraform-ecs-alb-log-wlo"
vpcid = module.network.vpcid
ecs_tgb_name = "ecs-tgb-terraform"
}The ECS module was designed to orchestrate containerized applications using Amazon Elastic Container Service (ECS). It facilitated the deployment and management of Docker containers across a cluster of EC2 instances or Fargate tasks. This module handled tasks such as defining ECS services, task definitions, clusters, and container configurations, ensuring the seamless execution of containerized workloads. Additionally, it integrated with other modules like the Load Balancer module to enable efficient traffic distribution and secured connections through AWS Certificate Manager, enhancing the reliability and scalability of the overall architecture.
module "ecs" {
source = "./ECS"
family_name = "terraform_node_task_definition"
cpu = 1024
memory = 2048
container_name = "terraform_node"
container_port = 8080
image = "Your Image URL from ECR"
os = "LINUX"
osarchitecture = "X86_64"
task_role_arn = "arn:aws:iam::accountID:role/ecsTaskExecutionRole"
ecs_cluster_name = "terraform_ecs"
subnetid = module.network.subnetid
vpcid = module.network.vpcid
ecs_tgb_name = "ecs-tgb"
tgb_ecs_arn = module.LoadBalancer.tgb_ecs_arn
ecs_sg_id = module.LoadBalancer.ecs_sg_id
}We are using S3 Bucket to store Terraform state files for the purpose of collaboration, version control, and consistency across teams by providing a centralized location for storing and sharing infrastructure state. This prevents conflicts and enables concurrent modifications to infrastructure as code while maintaining integrity and facilitating rollbacks when necessary.
terraform {
backend "s3" {
bucket = "your S3 Bucket name to store state file"
key = "terraform.tfstate" # Replace with a unique key for each configuration
region = "ap-southeast-1"
encrypt = true
acl = "private"
#dynamodb_table = "terraform-lock" # Optional: Use DynamoDB for state locking
}
}In conclusion, the project's integration of ECS (Elastic Container Service) and Load Balancer modules, orchestrated through Terraform, has significantly enhanced the deployment and management of containerized applications within the AWS environment. Leveraging Terraform's infrastructure as code capabilities, the project achieved streamlined provisioning and configuration of ECS clusters, ensuring consistency and reproducibility across environments. The ECS integration provided seamless container orchestration, enabling efficient scaling, fault tolerance, and resource optimization for microservices-based architectures. Additionally, the Load Balancer module's integration ensured reliable traffic distribution and high availability, further enhancing the project's infrastructure. Overall, the combination of ECS, Load Balancer, and Terraform has empowered the project to build a resilient, scalable, and easily manageable microservices architecture on AWS.