Question: Is anyone using code_deploy in AWS created with terraform? Question: What is wrong on this approach or what is the best approach to roll out an launch configuration change with terraform assuming I am using codedeploy too? 3 - Now I had to change the launch configuration (change the AMI), but when I apply it, terraform will create another ASG (as the on that was previously created is not there), but he will not be able to remove the old launch configuration as it is now part of the ASG automatically created by code deploy. 2 - After some deploys the CodeDeploy creates a copy of the ASG that terraform created 1 - I create an infrastructure with CodeDeploy (BlueGreen), ASG and Launch configuration in terraform I am having the following problem:

Asked By
jmbg.41
Asked At
2018-01-30 13:39:54

Found 15 possible answers.

User Answered At Possible Answer
i346 2018-01-30 13:42:27 the ASG which is created by code_deploy has different ID, from the one which was written down to terraform state file. that's why terraform will try to create a new one. the easiest way would be to import existing ASG created by code_deploy to terraform via terraform import
jmbg.41 2018-01-30 13:45:14 yap, it is an option, although I was trying to find a way to handle it with terraform without using the import, as if it is in CI it will not work thanks @i346 ;) but will try use terraform import
praveenssit 2018-01-30 13:56:36 Hello. Hope I can meet some architects here. I want to draw a deployment architecture for my company. Have created standard AWS architecture. But need to show HA and loadbalancing at every component level. Can anyone provide me or route me to a best AWS deployment architecture which contains all software components configured with HA,LB,redundancy etc ?
patrickdayton 2018-01-30 14:54:47 @praveenssit That's pretty hard to do without knowing anything about about what you're using your resources for. Are you using OpsWorks, ECS, Lambda? There are a lot of different services depending on what you're trying to serve. Load Balancers can be found in the EC2 resource, and content delivery can be found in the VPC resource.
aantunez 2018-01-30 14:55:39 +1
hartjepc 2018-01-30 17:04:16 @praveenssit check out https://cloudcraft.co/ You could draw them yourself if you have a good understanding of what you're working with It's also free, you can integrate with drive, and you can pay for some of the premium features, one of which, if Im not mistaken, is importing existing architecture
ghardy 2018-01-30 17:05:08 lucidchart is also a good option, it allows you to import from your aws cloud.
hartjepc 2018-01-30 17:06:00 I also like lucid, but I find cloudcraft more visually appealing
geekman2 2018-01-30 19:02:30 Yeah cloudcraft is definitely my favorite visually speakign
dudicusmaximus 2018-01-30 21:37:23 I am having trouble finding the right syntax to lock down an SQS bucket policy principal to the sns service. any guidance or document that shows how to do that?
mikeb 2018-01-31 00:46:11 @dudhat https://docs.aws.amazon.com/sns/latest/dg/SendMessageToSQS.html#SendMessageToSQS.sqs.permissions - though not sure what you mean by bucket policy? @dudicusmaximus sorry, tagged the wrong person the first time ^^ That’s the queue policy though that will allow an SNS Topic to send messages to an SQS queue (and only that SNS topic)
ghardy 2018-01-31 12:05:08 What instance type are people using for their Bastion Host My Bastion Host also has a VPN connection to my on-prem
subinmathew 2018-01-31 12:06:15 we use t2.micros
ghardy 2018-01-31 12:06:43 I was looking at using M4, as we need the enhanced networking for the VPN connection
joseluis.ledesma 2018-01-31 12:21:31 t2 network is awful depends if people will run something memory-hungry there M4/C4

Related Questions