![\"\"](\"https:\/\/artem.services\/wp-content\/uploads\/2018\/10\/terraform.png\")
<\/p>\n<\/p>\n
Terraform<\/strong> configuration example, which creates 2<\/strong> VPCs<\/strong> in different regions (EU<\/strong> and US<\/strong>) and creates connectivity between them.<\/span><\/span><\/p>\n <\/p>\nvariables.tf<\/h4>\n
\r\n\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/ FIRST VPC \/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\r\n\r\nvariable "VPC_1_REGION" {\r\n default = "us-east-1"\r\n}\r\n\r\nvariable "VPC_1_NAME" {\r\n default = "artem-terraform-US"\r\n}\r\n\r\nvariable "VPC_1_KEY_INSTANCE" { \r\n default = "artem.gatchenko"\r\n}\r\n\r\nvariable "VPC_1_SUBNET" { \r\n default = "192.168.1.0\/24"\r\n}\r\n\r\n\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/ SECOND VPC \/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\r\n\r\nvariable "VPC_2_REGION" {\r\n default = "eu-west-2"\r\n}\r\n\r\nvariable "VPC_2_NAME" {\r\n default = "artem-terraform-EU"\r\n}\r\n\r\nvariable "VPC_2_KEY_INSTANCE" { \r\n default = "artem.gatchenko"\r\n}\r\n\r\nvariable "VPC_2_SUBNET" { \r\n default = "192.168.2.0\/24"\r\n}\r\n\r\n\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/ OTHER \/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\r\n\r\nvariable "INSTANCE_TYPE" {\r\n default = "t2.micro"\r\n}\r\n\r\nvariable "AMI" {\r\n type = "map"\r\n default = {\r\n eu-west-1 = "ami-f90a4880"\r\n eu-west-2 = "ami-f976839e"\r\n eu-west-3 = "ami-0e55e373"\r\n us-east-1 = "ami-0ff8a91507f77f867"\r\n us-west-1 = "ami-0bdb828fd58c52235"\r\n eu-west-1 = "ami-047bb4163c506cd98"\r\n ap-northeast-1 = "ami-06cd52961ce9f0d85"\r\n ap-southeast-1 = "ami-08569b978cc4dfa10"\r\n }\r\n}\r\n<\/pre>\n<\/h4>\n
main.tf<\/h4>\n
\r\nprovider "aws" {\r\n region = "us-east-1"\r\n}\r\n\r\nprovider "aws" {\r\n alias = "vpc1"\r\n region = "${var.VPC_1_REGION}"\r\n}\r\n\r\nprovider "aws" {\r\n alias = "vpc2"\r\n region = "${var.VPC_2_REGION}"\r\n}\r\n<\/pre>\nvpc1.tf<\/h4>\n
\r\n\/\/ CREATE VPC\r\nresource "aws_vpc" "vpc1" {\r\n provider = "aws.vpc1"\r\n cidr_block = "${var.VPC_1_SUBNET}"\r\n enable_dns_hostnames = "true"\r\n enable_dns_support = "true"\r\n\r\n tags {\r\n Name = "${var.VPC_1_NAME}"\r\n }\r\n}\r\n\r\n\/\/ CREATE GATEWAY\r\nresource "aws_internet_gateway" "vpc1" {\r\n provider = "aws.vpc1"\r\n vpc_id = "${aws_vpc.vpc1.id}"\r\n\r\n tags {\r\n Name = "${var.VPC_1_NAME}"\r\n }\r\n}\r\n\r\n\/\/ CREATE ROUTE TABLE\r\nresource "aws_route_table" "vpc1" {\r\n provider = "aws.vpc1"\r\n vpc_id = "${aws_vpc.vpc1.id}"\r\n route {\r\n cidr_block = "0.0.0.0\/0"\r\n gateway_id = "${aws_internet_gateway.vpc1.id}"\r\n }\r\n\r\n route {\r\n cidr_block = "${var.VPC_2_SUBNET}"\r\n gateway_id = "${aws_vpc_peering_connection.vpc_peering.id}"\r\n }\r\n\r\n tags {\r\n Name = "${var.VPC_1_NAME}"\r\n }\r\n}\r\n\r\n\/\/ CREATE SUBNET\r\nresource "aws_subnet" "vpc1" {\r\n provider = "aws.vpc1"\r\n vpc_id = "${aws_vpc.vpc1.id}"\r\n cidr_block = "${var.VPC_1_SUBNET}"\r\n\r\n map_public_ip_on_launch = "true"\r\n\r\n tags {\r\n Name = "${var.VPC_1_NAME}"\r\n }\r\n}\r\n\r\nresource "aws_route_table_association" "vpc1" {\r\n provider = "aws.vpc1"\r\n subnet_id = "${aws_subnet.vpc1.id}"\r\n route_table_id = "${aws_route_table.vpc1.id}"\r\n}\r\n\r\n\/\/ CREATE SECURITY GROUP\r\nresource "aws_security_group" "vpc1" {\r\n provider = "aws.vpc1"\r\n vpc_id = "${aws_vpc.vpc1.id}"\r\n\r\n ingress {\r\n from_port = 22\r\n to_port = 22\r\n protocol = "tcp"\r\n cidr_blocks = ["0.0.0.0\/0"]\r\n description = "Allow input SSH"\r\n }\r\n\r\n ingress {\r\n from_port = 0\r\n to_port = 0\r\n protocol = "-1"\r\n cidr_blocks = ["${var.VPC_2_SUBNET}"]\r\n description = "Allow all input traffic from other VPC"\r\n }\r\n\r\n egress {\r\n from_port = 0\r\n to_port = 0\r\n protocol = "-1"\r\n cidr_blocks = ["0.0.0.0\/0"]\r\n description = "Allow all ouput traffic from other VPC"\r\n }\r\n\r\n tags {\r\n Name = "${var.VPC_1_NAME}"\r\n Description = "${var.VPC_1_NAME}"\r\n }\r\n\r\n}\r\n\r\n\r\n\/\/ CREATE INSTANCE\r\nresource "aws_instance" "vpc1" {\r\n provider = "aws.vpc1"\r\n\/\/ ami = "${lookup(var.AMI, var.region)}"\r\n ami = "ami-0ff8a91507f77f867"\r\n instance_type = "${var.INSTANCE_TYPE}"\r\n key_name = "${var.VPC_1_KEY_INSTANCE}"\r\n vpc_security_group_ids = ["${aws_security_group.vpc1.id}"]\r\n subnet_id = "${aws_subnet.vpc1.id}"\r\n associate_public_ip_address = true\r\n source_dest_check = false\r\n\r\n\r\n tags {\r\n Name = "${var.VPC_1_NAME}"\r\n }\r\n}\r\n\r\noutput "aws-id-subnet-artem-terraform-VPC1" {\r\n value = "${aws_subnet.vpc1.id}"\r\n}\r\n<\/pre>\nvpc2.tf<\/h4>\n
\r\n\/\/ CREATE VPC\r\nresource "aws_vpc" "vpc2" {\r\n provider = "aws.vpc2"\r\n cidr_block = "${var.VPC_2_SUBNET}"\r\n enable_dns_hostnames = "true"\r\n enable_dns_support = "true"\r\n\r\n tags {\r\n Name = "${var.VPC_2_NAME}"\r\n }\r\n}\r\n\r\n\/\/ CREATE GATEWAY\r\nresource "aws_internet_gateway" "vpc2" {\r\n provider = "aws.vpc2"\r\n vpc_id = "${aws_vpc.vpc2.id}"\r\n\r\n tags {\r\n Name = "${var.VPC_2_NAME}"\r\n }\r\n}\r\n\r\n\/\/ CREATE ROUTE TABLE\r\nresource "aws_route_table" "vpc2" {\r\n provider = "aws.vpc2"\r\n vpc_id = "${aws_vpc.vpc2.id}"\r\n route {\r\n cidr_block = "0.0.0.0\/0"\r\n gateway_id = "${aws_internet_gateway.vpc2.id}"\r\n }\r\n\r\n route {\r\n cidr_block = "${var.VPC_1_SUBNET}"\r\n gateway_id = "${aws_vpc_peering_connection.vpc_peering.id}"\r\n }\r\n\r\n tags {\r\n Name = "${var.VPC_2_NAME}"\r\n }\r\n}\r\n\r\n\/\/ CREATE SUBNET\r\nresource "aws_subnet" "vpc2" {\r\n provider = "aws.vpc2"\r\n vpc_id = "${aws_vpc.vpc2.id}"\r\n cidr_block = "${var.VPC_2_SUBNET}"\r\n\r\n map_public_ip_on_launch = "true"\r\n\r\n tags {\r\n Name = "${var.VPC_2_NAME}"\r\n }\r\n}\r\n\r\nresource "aws_route_table_association" "vpc2" {\r\n provider = "aws.vpc2"\r\n subnet_id = "${aws_subnet.vpc2.id}"\r\n route_table_id = "${aws_route_table.vpc2.id}"\r\n}\r\n\r\n\/\/ CREATE SECURITY GROUP\r\nresource "aws_security_group" "vpc2" {\r\n provider = "aws.vpc2"\r\n vpc_id = "${aws_vpc.vpc2.id}"\r\n\r\n ingress {\r\n from_port = 22\r\n to_port = 22\r\n protocol = "tcp"\r\n cidr_blocks = ["0.0.0.0\/0"]\r\n description = "Allow input SSH"\r\n }\r\n\r\n ingress {\r\n from_port = 0\r\n to_port = 0\r\n protocol = "-1"\r\n cidr_blocks = ["${var.VPC_1_SUBNET}"]\r\n description = "Allow all input traffic from other VPC"\r\n }\r\n\r\n egress {\r\n from_port = 0\r\n to_port = 0\r\n protocol = "-1"\r\n cidr_blocks = ["0.0.0.0\/0"]\r\n description = "Allow all ouput traffic from other VPC"\r\n }\r\n\r\n tags {\r\n Name = "${var.VPC_2_NAME}"\r\n Description = "${var.VPC_2_NAME}"\r\n }\r\n\r\n}\r\n\r\n\r\n\/\/ CREATE INSTANCE\r\nresource "aws_instance" "vpc2" {\r\n provider = "aws.vpc2"\r\n\/\/ ami = "${lookup(var.AMI, var.region)}"\r\n ami = "ami-f976839e"\r\n instance_type = "${var.INSTANCE_TYPE}"\r\n key_name = "${var.VPC_2_KEY_INSTANCE}"\r\n vpc_security_group_ids = ["${aws_security_group.vpc2.id}"]\r\n subnet_id = "${aws_subnet.vpc2.id}"\r\n associate_public_ip_address = true\r\n source_dest_check = false\r\n\r\n\r\n tags {\r\n Name = "${var.VPC_2_NAME}"\r\n }\r\n}\r\n\r\noutput "aws-id-subnet-artem-terraform-VPC2" {\r\n value = "${aws_subnet.vpc2.id}"\r\n}\r\n<\/pre>\npeering.tf<\/h4>\n
\r\n\/\/ CREATE PEERING BETWEEN VPC1 AND VPC2\r\n\r\nresource "aws_vpc_peering_connection" "vpc_peering" {\r\n provider = "aws.vpc1"\r\n peer_vpc_id = "${aws_vpc.vpc2.id}"\r\n vpc_id = "${aws_vpc.vpc1.id}"\r\n peer_region ="${var.VPC_2_REGION}"\r\n \r\n tags {\r\n Name = "VPC Peering VPC1 and VPC2"\r\n }\r\n}\r\n\r\nresource "aws_vpc_peering_connection_accepter" "peering-accepter" {\r\n provider = "aws.vpc2"\r\n provider = "aws"\r\n vpc_peering_connection_id = "${aws_vpc_peering_connection.vpc_peering.id}"\r\n auto_accept = true\r\n}\r\n<\/pre>\n