AWS Developer Guide
Use parameters for inputs https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/parameters-section-structure.html and mappings https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/mappings-section-structure.html for dictionary-like static key:value pairs
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ecs-service.html
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/sample-templates-services-us-west-2.html
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/cfn-using-cli.html
Use the CDK for Infrastructure as Code development for CloudFormation - AWS CDK
AWS-1
-
Getting issue details...
STATUS
Use CloudFormation Designer to map out the stack. VPC resources are in the EC2 section.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/working-with-templates-cfn-designer-walkthrough-createbasicwebserver.html
AWS-10
-
Getting issue details...
STATUS
see AWS Event Driven Architecture#AWS2subnetInventory
Start with
https://aws-quickstart.github.io/quickstart-aws-vpc/
https://github.com/aws-quickstart/quickstart-aws-vpc
|
|
|---|
Create / delete
CF stack |
biometric:cloudformation michaelobrien$ aws cloudformation deploy --template-file vpc-cfn.yaml --stack-name vpc --region=us-west-1
Waiting for changeset to be created..
Waiting for stack create/update to complete
Successfully created/updated stack - vpc
update the yaml - rerun deploy to UPDATE the stack
delete the stack
aws cloudformation delete-stack --stack-name vpc --region=us-west-1
|
| Example stack at https://aws-quickstart.github.io/quickstart-aws-vpc/
biometric:cloudformation michaelobrien$ aws s3 mb s3://cf-uswest1-packet-global --region=us-west-1
make_bucket: cf-uswest1-packet-global
biometric:cloudformation michaelobrien$ aws cloudformation deploy --template-file aws-vpc.template.yaml --parameter-overrides AvailabilityZones=us-west-1b,us-west-1c --stack-name vpc-aws --region=us-west-1 --s3-bucket cf-uswest1-packet-global
Waiting for changeset to be created..
Waiting for stack create/update to completeSuccessfully created/updated stack - vpc-aws
| Parameters |
|
|
|---|
|
|
|
|
| AvailabilityZones | us-west-2a,us-west-2b | - |
| CreateAdditionalPrivateSubnets | false | - |
| CreateNATGateways | true | - |
| CreatePrivateSubnets | true | - |
| CreatePublicSubnets | true | - |
| CreateVPCFlowLogsToCloudWatch | false | - |
| KeyPairName | deprecated | - |
| NATInstanceType | deprecated | - |
| NumberOfAZs | 2 | - |
| PrivateSubnet1ACIDR | 10.0.0.0/19 | - |
| PrivateSubnet1BCIDR | 10.0.192.0/21 | - |
| PrivateSubnet2ACIDR | 10.0.32.0/19 | - |
| PrivateSubnet2BCIDR | 10.0.200.0/21 | - |
| PrivateSubnet3ACIDR | 10.0.64.0/19 | - |
| PrivateSubnet3BCIDR | 10.0.208.0/21 | - |
| PrivateSubnet4ACIDR | 10.0.96.0/19 | - |
| PrivateSubnet4BCIDR | 10.0.216.0/21 | - |
| PrivateSubnetATag1 | Network=Private | - |
| PrivateSubnetATag2 | - | - |
| PrivateSubnetATag3 | - | - |
| PrivateSubnetBTag1 | Network=Private | - |
| PrivateSubnetBTag2 | - | - |
| PrivateSubnetBTag3 | - | - |
| PublicSubnet1CIDR | 10.0.128.0/20 | - |
| PublicSubnet2CIDR | 10.0.144.0/20 | - |
| PublicSubnet3CIDR | 10.0.160.0/20 | - |
| PublicSubnet4CIDR | 10.0.176.0/20 | - |
| PublicSubnetTag1 | Network=Public | - |
| PublicSubnetTag2 | - | - |
| PublicSubnetTag3 | - | - |
| VPCCIDR | 10.0.0.0/16 | - |
| VPCFlowLogsCloudWatchKMSKey | - | - |
| VPCFlowLogsLogFormat | ${version} ${account-id} ${interface-id} ${srcaddr} ${dstaddr} ${srcport} ${dstport} ${protocol} ${packets} ${bytes} ${start} ${end} ${action} ${log-status} | - |
| VPCFlowLogsLogGroupRetention | 14 | - |
| VPCFlowLogsMaxAggregationInterval | 600 | - |
| VPCFlowLogsTrafficType | REJECT | - |
| VPCTenancy | default | - |
Outputs
|
|
|
|
|
|---|
| NAT1EIP | 54.148.254.81 | NAT 1 IP address | Quick-Start-VPC-NAT1EIP |
| NAT2EIP | 54.185.136.217 | NAT 2 IP address | Quick-Start-VPC-NAT2EIP |
| NATGateway1ID | nat-0a7a0bb0f12d6ace6 | NATGateway 1 ID | Quick-Start-VPC-NATGateway1 |
| NATGateway2ID | nat-0183a5892397f5797 | NATGateway 2 ID | Quick-Start-VPC-NATGateway2 |
| PrivateSubnet1ACIDR | 10.0.0.0/19 | Private subnet 1A CIDR in Availability Zone 1 | Quick-Start-VPC-PrivateSubnet1ACIDR |
| PrivateSubnet1AID | subnet-0dd1caeb94290c5db | Private subnet 1A ID in Availability Zone 1 | Quick-Start-VPC-PrivateSubnet1AID |
| PrivateSubnet1ARouteTable | rtb-0107465a0eabe3923 | Private subnet 1A route table | Quick-Start-VPC-PrivateSubnet1ARouteTable |
| PrivateSubnet2ACIDR | 10.0.32.0/19 | Private subnet 2A CIDR in Availability Zone 2 | Quick-Start-VPC-PrivateSubnet2ACIDR |
| PrivateSubnet2AID | subnet-0cd9cd13a193b498a | Private subnet 2A ID in Availability Zone 2 | Quick-Start-VPC-PrivateSubnet2AID |
| PrivateSubnet2ARouteTable | rtb-0f197e86663162f8d | Private subnet 2A route table | Quick-Start-VPC-PrivateSubnet2ARouteTable |
| PublicSubnet1CIDR | 10.0.128.0/20 | Public subnet 1 CIDR in Availability Zone 1 | Quick-Start-VPC-PublicSubnet1CIDR |
| PublicSubnet1ID | subnet-0757564be2909ff71 | Public subnet 1 ID in Availability Zone 1 | Quick-Start-VPC-PublicSubnet1ID |
| PublicSubnet2CIDR | 10.0.144.0/20 | Public subnet 2 CIDR in Availability Zone 2 | Quick-Start-VPC-PublicSubnet2CIDR |
| PublicSubnet2ID | subnet-0eb4feabb4345b22e | Public subnet 2 ID in Availability Zone 2 | Quick-Start-VPC-PublicSubnet2ID |
| PublicSubnetRouteTable | rtb-0194deb3dbd42661a | Public subnet route table | Quick-Start-VPC-PublicSubnetRouteTable |
| S3VPCEndpoint | vpce-055c44c8d9ebae99b | S3 VPC Endpoint | Quick-Start-VPC-S3VPCEndpoint |
| VPCCIDR | 10.0.0.0/16 | VPC CIDR | Quick-Start-VPC-VPCCIDR |
| VPCID | vpc-0fad496920023472e | VPC ID | Quick-Start-VPC-VPCID |
|
CloudFormer is deprecated - see https://former2.com/ - get a minimum access admin account setup first before adding the CORS workaround
1 Comment
Michael O'Brien
check on k8s diagram gen from yaml