-
Notifications
You must be signed in to change notification settings - Fork 2
/
logserver.tf
117 lines (97 loc) · 2.56 KB
/
logserver.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
# # resource "aws_eip" "logserver_ip" {
# # vpc = true
# # }
# resource "aws_security_group" "logserver"
# {
# name = "logserver_ingress"
# description = "Allow syslog and mgmt traffic"
# vpc_id = "${aws_vpc.logserver_vpc.id}"
# ingress {
# from_port = 80
# to_port = 80
# protocol = "tcp"
# cidr_blocks = ["0.0.0.0/0"]
# }
# ingress {
# from_port = 443
# to_port = 443
# protocol = "tcp"
# cidr_blocks = ["0.0.0.0/0"]
# }
# ingress {
# from_port = 10514
# to_port = 10514
# protocol = "tcp"
# cidr_blocks = ["10.0.0.0/0"]
# }
# ingress {
# from_port = 10514
# to_port = 10514
# protocol = "udp"
# cidr_blocks = ["10.0.0.0/0"]
# }
# }
# resource "aws_security_group" "loghost"
# {
# name = "loghost_ingress"
# description = "Allow syslog and mgmt traffic"
# vpc_id = "${aws_vpc.logserver_vpc.id}"
# ingress {
# from_port = 22
# to_port = 22
# protocol = "tcp"
# cidr_blocks = ["0.0.0.0/0"]
# }
# ingress {
# from_port = 514
# to_port = 514
# protocol = "tcp"
# security_groups = [ "${aws_security_group.logserver.id}" ]
# }
# }
# resource "aws_elb" "log_elb"
# {
# name = "logserver-elb"
# subnets = [ "${aws_subnet.logserver_subnet1.id}", "${aws_subnet.logserver_subnet2.id}" ]
# security_groups = [ "${aws_security_group.logserver.id}" ]
# listener {
# instance_port = 80
# instance_protocol = "http"
# lb_port = 80
# lb_protocol = "http"
# }
# listener {
# instance_port = 514
# instance_protocol = "tcp"
# lb_port = 10514
# lb_protocol = "tcp"
# }
# }
# resource "aws_autoscaling_group" "logserver_asg"
# {
# availability_zones = [ "${var.aws_az1}", "${var.aws_az2}" ]
# vpc_zone_identifier = [ "${aws_subnet.logserver_subnet1.id}", "${aws_subnet.logserver_subnet2.id}" ]
# name = "logserver_asg"
# max_size = 1
# min_size = 1
# desired_capacity = 1
# health_check_grace_period = 300
# health_check_type = "EC2"
# force_delete = true
# launch_configuration = "${aws_launch_configuration.logserver_launch_conf.id}"
# load_balancers = [ "${aws_elb.log_elb.name}" ]
# }
# resource "aws_launch_configuration" "logserver_launch_conf"
# {
# name = "logserver_config"
# image_id = "${lookup(var.amazon_linux_amis, var.aws_region)}"
# instance_type = "${var.aws_instance_type}"
# security_groups = [ "${aws_security_group.loghost.id}" ]
# key_name = "${var.key_name}"
# user_data = ""
# # provisioner "remote-exec" {
# # inline = [
# # "ls -la "
# # ]
# # }
# }