This is a Terraform plan geared towards standing up a production-ready ECS environment. Out of the box, it will create 2 VPCs:
ecs: This is where your ECS cluster will run.
persistent_data: By default, contains a Postgres RDS instance, Redis Elasticache Cluster, and a Memcached Elasticache Cluster.
The two VPCs are connected via a Peering Connection. The RDS instance and Elasticache clusters have security groups that allow inbound traffic from the VPC your ECS cluster runs in on the appropriate ports.
The intent is for application clusters to be to decoupled from their data stores. This allows environments to be created or destroyed, while ensuring that data is kept safe and isolated.
Make sure you have the Terraform binaries installed and available somewhere in your $PATH.
$ cp terraform.tfvars.example terraform.tfvarsThis file contains the following:
access_keysecret_keyregionvpc_peer_account_owner_idecs_cluster_name
The variable vpc_peer_account_owner_id is your AWS Account ID.
dockerhub_usernamedockerhub_passworddockerhub_email
These variables are Base64 encoded and inserted into the user data script used to boot up your ECS instances. This allows the ECS agent to access private Docker Hub images.
Generate a new SSH key pair and replace keys/my_key.pub with your new public key.
$ terraform plan
$ terraform applyReference the ECS Docs for info on how to create your ECS Task Definitions and Services.