Phu Bao
Back to Blog List
Introduction to Infrastructure as Code (IaC) with Terraform
July 18, 2024
DevOps
IaC
Terraform
AWS
Cloud Infrastructure

Infrastructure as Code (IaC) is a modern DevOps practice that enables you to provision and manage cloud infrastructure using code, rather than manual processes. This approach brings automation, repeatability, and version control to your infrastructure, just like you have for application code.

What is Terraform?

Terraform, developed by HashiCorp, is one of the most popular open-source IaC tools. It allows you to define infrastructure in a high-level configuration language (HCL) and supports a wide range of cloud providers, including AWS, Azure, Google Cloud, and many others.

Why Use IaC?

  • Automation: Provision, update, and destroy infrastructure automatically.
  • Consistency: Avoid configuration drift and ensure environments are identical.
  • Version Control: Track changes to infrastructure in Git, enabling rollbacks and collaboration.
  • Documentation: Code serves as living documentation for your infrastructure.

Basic Terraform Workflow

  1. Write configuration files describing your infrastructure resources.
  2. Initialize Terraform in your project directory: terraform init
  3. Preview changes with terraform plan
  4. Apply changes to create/update resources: terraform apply
  5. Destroy resources when no longer needed: terraform destroy

Example: Provisioning an AWS S3 Bucket

Here’s a simple Terraform configuration to create an S3 bucket on AWS:


  provider "aws" {
    region = "us-east-1"
  }

  resource "aws_s3_bucket" "my_bucket" {
    bucket = "my-unique-bucket-name-12345"
    acl    = "private"
  }

Save this as main.tf, run terraform init, then terraform apply to create the bucket.

State Management

Terraform keeps track of your infrastructure in a state file (terraform.tfstate). For team environments, use remote backends (like S3 with DynamoDB locking) to avoid conflicts.

Best Practices

  • Use variables and outputs for flexibility and reusability.
  • Organize code into modules for complex setups.
  • Store sensitive data securely (never commit secrets to Git).
  • Use remote state for collaboration.
  • Review plans before applying changes.

Conclusion

Terraform and IaC empower you to manage infrastructure efficiently, safely, and at scale. By treating infrastructure as code, you gain all the benefits of modern software engineering for your cloud resources.