Skip to content

babakDoraniArab/Juri

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
k8s
k8s
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
eips.tf
eips.tf
 
 
eks-node-groups.tf
eks-node-groups.tf
 
 
eks.tf
eks.tf
 
 
internet-gateway.tf
internet-gateway.tf
 
 
main.tf
main.tf
 
 
nat-gateways.tf
nat-gateways.tf
 
 
output.tf
output.tf
 
 
provider.tf
provider.tf
 
 
route-table-association.tf
route-table-association.tf
 
 
routing-tables.tf
routing-tables.tf
 
 
security_group.tf
security_group.tf
 
 
subnets.tf
subnets.tf
 
 
vpc.tf
vpc.tf
 
 

Repository files navigation

How to configure VPC and EKS from scratch

There are a lot of solutions to do your task, but I decided to run a vpc with all the configuration of the subnets, routing tables. In this scenario, we have two availability zones in our vpc . Each available zone has its own public and private area with its own nat gateway. I used an internet gateway at the edge of my infrastructure and managed a routing table to add a default route to the public areas.

There are EKS and EKS node-group. When you run the AWS codes then, you have to add the Kube config to your OS then, you can go to the K8s folder, and run terraform apply once again. It will start a Kubernetes service and deployment with one replica, and also, you can check your AWS. Kubernetes will create a load balancer in your AWS and connect the Kubernetes with your EKS.

in this project to have HTTPS, we have to add codes below to Kubernetes service annotations and also it needs certificates.

  service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:... ,
  service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https

to add dns name to route53 we can use `external DNS`

all Services

VPC

high availability

subnets and routing tables

nat-gateways

internet-gateway

eip

eks and eks node group

security-groups

IAM

k8s services

k8s deployment

load balancer with K8s

tip

security groups are created and I've connected Kubernetes to the specified security groups with annotations. it goes and create a LoadBalancer on AWS and connect it to the Kubernetes.

other solution

ALB and Ingress controller

there are other solutions too. we can go for ALB with ingress controller . we need extra deployment for ingress controller

ECS and ECR

we can go for ECS and ECR but I prefer to use EKS and K8s because they are more powerful and we can do anything with this infrastructure .I prefer to use ECS in small projects

create kub config

before apply your K8s tf files please configure your kube config file. check your kube config first

cat ~/.kube/config

create your aws context

aws eks --region eu-west-1 update-kubeconfig --name eks --profile default

you have to add security group id named(nginx) to your k8s_services file before do terraform apply in the k8s folder

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

10 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages