Skip to content

diegolakatos/terraform-ansible_elk-deploy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
01-json-template.conf
01-json-template.conf
 
 
10-logstash.conf
10-logstash.conf
 
 
30-elasticsearch-output.conf
30-elasticsearch-output.conf
 
 
60-output.conf
60-output.conf
 
 
README.md
README.md
 
 
elasticsearch.conf
elasticsearch.conf
 
 
elasticsearch.repo
elasticsearch.repo
 
 
elasticsearch.yml
elasticsearch.yml
 
 
hosts.yml
hosts.yml
 
 
htpasswd.users
htpasswd.users
 
 
install_elasticsearch.yml
install_elasticsearch.yml
 
 
install_elk.yml
install_elk.yml
 
 
install_kibana.yml
install_kibana.yml
 
 
install_logstash.yml
install_logstash.yml
 
 
install_nginx.yml
install_nginx.yml
 
 
logstash.conf
logstash.conf
 
 
nginx.conf
nginx.conf
 
 
ssh-key.private
ssh-key.private
 
 
ssh-key.pub
ssh-key.pub
 
 
terraform_install_elk.tf
terraform_install_elk.tf
 
 
vars.tf
vars.tf
 
 

Repository files navigation

Description

To fullfill the challenge I used a combination of terraform and ansible. This will create 5 machines: 1 elasticsearch server, 1 logstash server, 1 kibana server, 1 bastion host, 1 nginx proxy, also will create a Route 53 private zone, 2 subnets (1 private, 1 public), some security groups, and a ssh key-pair that is used to configure and access the instances. The region that is used is us-east-1.

Instructions

To execute the code you must clone this repo and edit the following files:

  • terraform_install_elk.tf : Please fill the fields access_key and secret_key with the credentials of an IAM user which have permissions to create the itens mentioned earlier. When I tried to use a variable to provide this parameter, using both a configuration file and passing the parameter on the command, I hit the issue described in hashicorp/terraform#13040

The access_key and secret_key should be configured as the example below (the credentials below doesn't work):

provider "aws" {
access_key = "AOfNAJP5SGSWF6BRTXGJ7"
secret_key = "2D0nMj756YXQf383uqfgnMj756YXQC1Ti"
region = "us-east-1"
}

  • vars.tf : To change the IPs that are allowed to send logs to logstash, for example
    variable "ip" {
    type = "list"
    default = ["192.167.9.32/32", "10.0.0.0/16"]
    }

Verify if the ssh-keys have the correct permissions (only the owner can read or write, group and others should not have access)

On the folder that contains the files from the repo just use the command
terraform apply

After the execution is finished you can access the kibana dashboard using the public IP of the instance "kibanaproxy" the proxy will request a username and password:
username: kibanaadmin
password: challenge

To connect on the instances use private key provided on this repo (this key will only work in the machines created by the code of this repo)

Know issues:

If you see the error: Error applying plan:

1 error(s) occurred:

  • aws_instance.kibanaproxy: 1 error(s) occurred:

  • Script exited with non-zero exit status: 2

Terraform does not automatically rollback in the face of errors. Instead, your Terraform state file has been partially updated with any resources that successfully completed. Please address the error above and apply again to incrementally change your infrastructure.

just execute the command "terraform apply" one more time

  • It may take some minutes to logstash send the logs to elasticsearch, so if you open the kibana console just after the creation maybe you won't be able to create the indexes patterns, wait a couple of minutes and try again.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages