Skip to content

GaryLouisStewart/ckad-google-cloud

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

16 Commits
Infrastructure
Infrastructure
 
 
modules
modules
 
 
scripts
scripts
 
 
vm-images
vm-images
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

ckad-google-cloud

CKAD materials with google cloud + terraform

Firstly inspiration for this has come from gruntwork on the following repo, this uses the modules there to define a management network + firewall + bastion host https://github.com/gruntwork-io/terraform-google-network

This repo also includes an image builder that will build GCP compute images using packer. The script is agnostic enough to allow you to build any GCP Compute image that you wish, it will just require the modification of the variables files that are located in the vm-images folder. please refer to the documentation that is in those locations which is called BUILD.md

Before you begin please make sure that the credentials file + profile you are using for google cloud has the correct permissions on your project. In order to deploy resources to google cloud with terraform you will need to at least have at a bare minimum editor permissions across your project. This will allow you to modify the state of all resources across your GCP project(s) where you wish to deploy this item. You will need to also enable additional gcloud apis as some of these might be switched off by default. For example if you wish to build the custom image that is included you will need to add a few additional apis in order to use packer remotley with our credentials files, instructions are located in build.md. Please do not use owner permissions as security wise it is a bad idea, ideally even using the editor permissions should be frowned upon but for the purpose of getting started quickly the compromise can be made. gcloud does have the option of other finely grained policies rather than the coarser editor roles, should you wish to spend the additional time configuring these restricted roles.

The two most important variables are the credentials-file and the project make sure these are filled in I have excluded them from the vars/ckad-infra file on purpose as they include personal information. You should also make sure the region variable matches the default region on your gcloud project.

run terraform commands with the following instructions:

  • requires python 3, make sure you have it installed
  • browse to the scripts folder
  • chmod +x provision.py
  • browse to the infrastructure folder
  • run ./scripts/bootstrap.sh to create the necessary symlink
  • run ./provision.py -i . to initialize the directory
  • run ./provision.py -p ckad-infra, this will output a terraform plan, please make sure to check over this as the next steps use the '-auto-approve' flag which will automatically run our terraform.
  • run ./provision.py -a ckad-infra this will begin the bootstrap process and bring up all required resources on GCP.

About

CKAD materials with google cloud + terraform

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

3 tags

Packages

No packages published

Languages