Skip to content

98-Anas/test_aws_land_zone

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

48 Commits
.github/workflows
.github/workflows
 
 
diagrams
diagrams
 
 
environments
environments
 
 
modules
modules
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
remote_state_S3.sh
remote_state_S3.sh
 
 

Repository files navigation

AWS Landing Zone Terraform

AWS Landing Zone Architecture Diagram

Overview

This repository implements a proof-of-concept AWS Landing Zone using Terraform, designed to work within AWS Free Tier limits. The solution automates the provisioning of core infrastructure with GitHub Actions CI/CD pipelines.

Features

  • Core Networking: VPC, subnets, route tables, and internet gateway
  • Compute Resources: EC2 instances with security groups
  • Centralized Logging: VPC Flow Logs to S3 and CloudWatch
  • Environment Isolation: Separate pre-prod and prod environments
  • Automated Deployment: CI/CD pipeline via GitHub Actions

Repository Structure

test_aws_land_zone/
├── README.md
├── diagrams
│   ├── architecture.py
│   ├── aws_landing_zone_architecture.png
│   ├── workflow.mermaid
│   └── workflow.png
├── environments
│   ├── outputs.tf
│   ├── pre-prod
│   │   ├── backend.tf
│   │   ├── main.tf
│   │   ├── outputs.tf
│   │   ├── terraform.tfvars
│   │   └── variables.tf
│   ├── prod
│   │   ├── backend.conf
│   │   ├── main.tf
│   │   ├── outputs.tf
│   │   ├── terraform.tfvars
│   │   └── variables.tf
│   ├── providers.tf
│   └── variables.tf
├── modules
│   ├── compute
│   │   ├── main.tf
│   │   ├── outputs.tf
│   │   └── variables.tf
│   ├── logging
│   │   ├── main.tf
│   │   ├── outputs.tf
│   │   └── variables.tf
│   └── networking
│       ├── main.tf
│       ├── outputs.tf
│       └── variables.tf
└── remote_state_S3.sh

9 directories, 28 files

CI/CD Workflow

Workflow Diagram

The GitHub Actions pipeline:

  1. Triggers on pushes to pre-prod or prod branches
  2. Runs terraform init, validate, and plan
  3. Applies changes automatically after approval
  4. Maintains separate state files for each environment

Getting Started

Prerequisites

  • AWS account with Free Tier eligibility
  • Terraform installed (v1.0+)
  • GitHub repository access

Deployment Steps

  1. Clone the repository:
git clone https://github.com/98-Anas/test_aws_land_zone.git
cd test_aws_land_zone
  1. Deploy to pre-production:
cd envs/pre-prod
terraform init
terraform plan
terraform apply
  1. Deploy to production:
cd ../prod
terraform init
terraform plan
terraform apply

CI/CD Pipeline

  • Push to pre-prod branch deploys to pre-production environment
  • Merge to prod branch deploys to production environment

Terraform Commands

# Initialize Terraform
terraform init

# Validate configuration
terraform validate

# Show execution plan
terraform plan

# Apply changes
terraform apply

# Destroy infrastructure
terraform destroy

Resource Naming Convention

All resources follow the pattern: poc-<env>-<resource>

  • Example VPC: poc-pre-prod-vpc
  • Example EC2 instance: poc-prod-instance1
  • Example log group: poc-prod-logs

Future Enhancements

  1. Implement more granular IAM policies
  2. Add monitoring and alerting
  3. Expand logging capabilities
  4. Implement cost monitoring
  5. Add security scanning in CI/CD pipeline

License

MIT License - see LICENSE file for details.

About

AWS Landing Zone Terraform Infrastructure as code

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages