5

我是 terraform 的新手,正在尝试构建具有两个子网和 VPC 的基础设施。我创建了两个模块

  • 专有网络
  • 子网

VPC 模块将创建一个 VPC 并将返回 vpc_id 作为输出,与我尝试在子网模块中使用的相同返回 vpc_id,但是当我运行 terraform 计划时,它会要求我输入 vpc_id 输入。

我想要 VPC 模块的输出值中的 vpc_id,任何人都可以帮助我。

下面是代码,

根tf文件,

 provider "aws" {
  shared_credentials_file = var.shared_cred
  profile                 = "default" 
  region                  = var.aws_region
}

module "vpc" {
  source = "./vpc"
  name   = "terraformVPC"
  cidr   = "10.50.40.0/27"
}

module "private_subnet" {
  source      = "./subnet"
  subnet_name = "private_subnet"
  subnet_cidr = "10.50.40.16/28"
  #VPC_id = aws_vpc.moduleVPC.id
  VPCid = module.vpc.outvpc_id # this is the issue
}

module "public_subnet" {
  source      = "./subnet"
  subnet_name = "public_subnet"
  subnet_cidr = "10.50.40.0/28"
  VPCid      = module.vpc.outvpc_id
}

子网资源

resource "aws_subnet" "module_subnet" {
  cidr_block = var.subnet_cidr
  vpc_id     = var.VPCid

  tags = {
    Name = var.subnet_name
  }
}

子网模块变量声明

variable "subnet_name" {
  description = " define th subnet name"
}

variable "subnet_cidr" {
  description = "define th subnet cidr block"
}

variable "VPCid" {
  description = "Assign VPC id to subnet"
}

VPC 输出

output "outvpc_id" {
  value = "${aws_vpc.moduleVPC.id}"
}
4

3 回答 3

5

这称为“模块组合”。要记住的重要一点是您引用了另一个模块的输出

格式为:module.<object-name>.<output-name>

module "network" {
  source = "./modules/aws-network"

  base_cidr_block = "10.0.0.0/8"
}

module "consul_cluster" {
  source = "./modules/aws-consul-cluster"

  vpc_id     = module.network.vpc_id       # < output of module.network
  subnet_ids = module.network.subnet_ids   # < output of module.network
}
于 2020-12-31T09:33:10.293 回答
0

当我将 terraform 用于 aws 时......我的模块名称是“network.ts”,我认为您不需要两个 tf 文件来管理您的 vpc 和该 VPC 的子网。

网络.tf

resource "aws_vpc" "vpc" {
  cidr_block           = "10.50.40.0/27"
  enable_dns_hostnames = true // only if you need
  tags                 = {
    Name = "desa-vpc-spotify" //Use your own name
  }
}

resource "aws_subnet" "private_subnet" {
  vpc_id            = aws_vpc.vpc.id
  availability_zone = "us-east-1a" //your own region
  cidr_block        = "10.50.40.16/28"
  tags = {
    Name = "desa-subnet-private-spotify"
  }
}

resource "aws_subnet" "public_subnet" {
  vpc_id            = aws_vpc.vpc.id
  availability_zone = "us-east-1a"//your own region
  cidr_block        = "10.50.40.0/28"
  tags = {
    Name = "desa-subnet-public-spotify"
  }
}

如果你想在另一个 tf 上使用 vpc

(如果你想有两个文件......只能像这样调用vpc)

另一个.tf

data "aws_vpc" "vpcs" {
  tags = {
    Name = "desa-vpc-spotify" //only put the name of the vpc of the network tf
  }
}
于 2020-09-25T15:10:03.827 回答
0

我注意到您列出了“VPCid =”。当您运行 terraform validate 时,它​​会引发错误吗?我会尝试将其更改为“vpc_id”,看看是否可行。

于 2020-11-19T16:30:54.520 回答