A collection of sample Terraform configurations & Ansible playbooks for various infrastructure and application bootstrapping scenarios using Yandex Cloud platform

Each subdirectory in this repository contains the configuration files for a specific scenario

• Routing through a NAT instance
• Swarm Routing Mesh Demo
• Tutorial on Provisioning Basic NocoDB Stack

All the configurations are tailored for quickstart. The user does not need to install and configure Terraform and Ansible packages locally because each example comes with shell files, such as ./dterraform and occasionally ./dansible-playbook, that use "docker run" to run Terraform and Ansible within containers. To make the full setup work, you only need to have Docker installed. While aware that such a setup is not advised for use in production, this is done on purpose.

Additionally, if Terraform and Ansible are already installed locally, you can use the standard Terraform and Ansible instructions instead.

• Linux / MacOS / Windows with WSL2 machine connected to Internet
• Docker and optionally Compose
• Yandex Cloud account that has a payment method activated, see how-to
• Yandex Cloud CLI installed with curl -sSL https://storage.yandexcloud.net/yandexcloud-yc/install.sh | bash and initialized with yc init as explained in the Getting started with the YC CLI manual.
• A pair of ssh keys whereas a public key would be uploaded to the provisioned virtual machines. Please note that ./dansible-playbook will fail with passphrase protected keys, this is a known issue. The workaround is either to avoid passphrase-encrypted private keys or to have Ansible installed locally and use regular ansible-playbook command
• You will need to create a file ./terraform.tfvars with the following content:

token             = "<Yandex Cloud OAuth token, available from `yc config list` command>"
cloud_id          = "<ID of the cloud where the VPC would be spawned, available from `yc config list` command"
folder_id         = "<ID of the folder where the VPC would be spawned, available from `yc config list` command>"
default_user      = "non-root user to be created on the target VMs, defaulted to `ubuntu`"
private_key_file  = "not passphrase-encrypted private key file located in `~./ssh` directory, defaulted to `id_rsa`"

./dterraform init

This will pull Terraform image from Docker Hub, spawn the Terraform container and install the required Terraform providers

./dterraform apply -auto-approve

./dansible-playbook -i <playbook>.yml

The details of this step are determined by the scenario

Run ./dterraform destroy -auto-approve and look into cloud console to ensure that no unnecessary infrastructure is causing unexpected charges

Also time to time run docker container prune command to remove the exited containers as you will unlikely need them any more