π Terraform Series β Day 6
Deploy EC2 with VPC, Security Group & SSH Access
Gujjar Apurv is a passionate DevOps Engineer in the making, dedicated to automating infrastructure, streamlining software delivery, and building scalable cloud-native systems. With hands-on experience in tools like AWS, Docker, Kubernetes, Jenkins, Git, and Linux, he thrives at the intersection of development and operations. Driven by curiosity and continuous learning, Apurv shares insights, tutorials, and real-world solutions from his journeyβmaking complex tech simple and accessible. Whether it's writing YAML, scripting in Python, or deploying on the cloud, he believes in doing it the right way. "Infrastructure is code, but reliability is art."
π― Objective
In this hands-on, we will:
Generate SSH key
Create key pair using Terraform
Configure VPC & Security Group
Launch EC2 instance
Connect via SSH
Clean up resources
π This is your first real-world Terraform task
𧩠Step 1: Generate SSH Key
ssh-keygen
β This creates:
terra-key-awsβ Private keyterra-key-ec2.pubβ Public key
π We will use this to access EC2
π Step 2: Create Terraform File
touch ec2.tf
𧱠Step 3: Add Terraform Code
# Create Key Pair
resource "aws_key_pair" "my_key" {
key_name = "terra-key-aws"
public_key = file("terra-key-aws.pub")
}
# Default VPC
resource "aws_default_vpc" "default" {}
# Security Group
resource "aws_security_group" "my_groups" {
name = "my-group"
description = "Security group for EC2"
vpc_id = aws_default_vpc.default.id
ingress {
from_port = 22
to_port = 22
protocol = "tcp"
cidr_blocks = ["0.0.0.0/0"]
description = "Allow SSH"
}
ingress {
from_port = 80
to_port = 80
protocol = "tcp"
cidr_blocks = ["0.0.0.0/0"]
description = "Allow HTTP"
}
egress {
from_port = 0
to_port = 0
protocol = "-1"
cidr_blocks = ["0.0.0.0/0"]
description = "Allow all outbound"
}
tags = {
Name = "automate-sg"
}
}
# EC2 Instance
resource "aws_instance" "my_instance" {
ami = "ami-0cb91c7de36eed2cb"
instance_type = "t2.micro"
key_name = aws_key_pair.my_key.key_name
vpc_security_group_ids = [aws_security_group.my_groups.id]
root_block_device {
volume_size = 10
volume_type = "gp3"
}
tags = {
Name = "terra-ec2"
}
}
βοΈ Step 4: Initialize Terraform
terraform init
β Downloads AWS provider
β Prepares working directory
β Step 5: Validate Configuration
terraform validate
β Ensures syntax is correct
π Step 6: Plan Execution
terraform plan
β Shows resources to be created:
Key Pair
VPC
Security Group
EC2 Instance
π Step 7: Apply (Create Infrastructure)
terraform apply
π Type yes to confirm
β Common Error: Not Authorized
π Reason:
- IAM user does not have required permissions
β Fix:
Go to AWS IAM β Attach Policy
AdministratorAccess(easy way)OR
EC2FullAccessVPCFullAccess
π₯ Step 8: Verify in AWS Console
Go to EC2 Dashboard:
β Instance running
β Security group attached
β Key pair created
π Step 9: Fix Key Permission
chmod 400 terra-key-aws
π Required before SSH
π Step 10: Connect to EC2
ssh -i terra-key-aws ubuntu@<your-public-ip>
π Now your server is live π
π§Ή Step 11: Destroy Resources (IMPORTANT)
terraform destroy
π Prevent unnecessary AWS charges πΈ
π¨βπ» About the Author
βA complete Terraform series covering everything from fundamentals to advanced real-world infrastructure automation in a DevOps environment.β
π¬ Let's Stay Connected
π§ Email: gujjarapurv181@gmail.com
π GitHub: github.com/ApurvGujjar07
πΌ LinkedIn: linkedin.com/in/apurv-gujjar
