HomeTerraform in 5 DaysDay 3
Day 3 of 5
⏱ ~60 minutes
Terraform in 5 Days — Day 3

Resources and Data Sources

Define EC2 instances, security groups, and VPCs. Use data sources to reference existing infrastructure.

Real Resources: VPC + EC2

vpc.tf
# Create a VPC
resource "aws_vpc" "main" {
  cidr_block = "10.0.0.0/16"
  tags = { Name = "main-vpc" }
}

# Public subnet
resource "aws_subnet" "public" {
  vpc_id            = aws_vpc.main.id  # reference another resource
  cidr_block        = "10.0.1.0/24"
  availability_zone = "us-east-1a"
  map_public_ip_on_launch = true
}

# Security group
resource "aws_security_group" "web" {
  vpc_id = aws_vpc.main.id

  ingress {
    from_port   = 80
    to_port     = 80
    protocol    = "tcp"
    cidr_blocks = ["0.0.0.0/0"]
  }

  egress {
    from_port   = 0
    to_port     = 0
    protocol    = "-1"
    cidr_blocks = ["0.0.0.0/0"]
  }
}
ec2.tf
data "aws_ami" "amazon_linux" {
  most_recent = true
  owners      = ["amazon"]
  filter {
    name   = "name"
    values = ["al2023-ami-*-x86_64"]
  }
}

resource "aws_instance" "web" {
  ami                    = data.aws_ami.amazon_linux.id
  instance_type          = "t3.micro"
  subnet_id              = aws_subnet.public.id
  vpc_security_group_ids = [aws_security_group.web.id]

  user_data = <<-EOF
    #!/bin/bash
    yum install -y nginx
    systemctl start nginx
    EOF

  tags = { Name = "web-server" }
}
ℹ️
References like aws_vpc.main.id create implicit dependencies. Terraform builds a dependency graph and creates resources in the right order. The subnet waits for the VPC. The EC2 waits for the subnet. You don't have to specify the order.
📝 Day 3 Exercise
Build a VPC + EC2 Setup
  1. C
  2. r
  3. e
  4. a
  5. t
  6. e
  8. a
  10. V
  11. P
  12. C
  13. ,
  15. p
  16. u
  17. b
  18. l
  19. i
  20. c
  22. s
  23. u
  24. b
  25. n
  26. e
  27. t
  28. ,
  30. i
  31. n
  32. t
  33. e
  34. r
  35. n
  36. e
  37. t
  39. g
  40. a
  41. t
  42. e
  43. w
  44. a
  45. y
  46. ,
  48. s
  49. e
  50. c
  51. u
  52. r
  53. i
  54. t
  55. y
  57. g
  58. r
  59. o
  60. u
  61. p
  63. (
  64. a
  65. l
  66. l
  67. o
  68. w
  70. 8
  71. 0
  72. /
  73. 4
  74. 4
  75. 3
  76. )
  77. ,
  79. a
  80. n
  81. d
  83. a
  84. n
  86. E
  87. C
  88. 2
  90. i
  91. n
  92. s
  93. t
  94. a
  95. n
  96. c
  97. e
  99. w
  100. i
  101. t
  102. h
  104. N
  105. g
  106. i
  107. n
  108. x
  109. .
  111. U
  112. s
  113. e
  115. a
  117. d
  118. a
  119. t
  120. a
  122. s
  123. o
  124. u
  125. r
  126. c
  127. e
  129. f
  130. o
  131. r
  133. t
  134. h
  135. e
  137. A
  138. M
  139. I
  140. .
  142. S
  143. S
  144. H
  146. i
  147. n
  148. t
  149. o
  151. t
  152. h
  153. e
  155. i
  156. n
  157. s
  158. t
  159. a
  160. n
  161. c
  162. e
  164. a
  165. n
  166. d
  168. v
  169. e
  170. r
  171. i
  172. f
  173. y
  175. N
  176. g
  177. i
  178. n
  179. x
  181. i
  182. s
  184. r
  185. u
  186. n
  187. n
  188. i
  189. n
  190. g
  191. .

Day 3 Summary

  • Resources reference each other: resource_type.name.attribute. Terraform infers dependency order.
  • Data sources query existing resources. data.aws_ami.amazon_linux.id finds the latest Amazon Linux AMI.
  • user_data runs shell commands when the instance first boots.
  • depends_on for explicit dependencies when the implicit graph isn't enough.
← Previous
Day 2: Variables, Outputs, and State
Next →
Day 4: Modules: Reusable Infrastructure
Finished this lesson?