通过Terraform创建基于阿里云的自定义私有网络_专有网络VPC_教程

本文介绍如何使用Terraform创建专有网络，交换机以及NAT网关。

前提条件

在开始之前，请您确保完成以下操作：

使用Terraform，您需要一个阿里云账号和访问密钥（AccessKey）。请在阿里云控制台中的AccessKey管理页面上创建和查看您的AccessKey。
已经安装并配置了Terraform，具体操作请参见在本地安装和配置Terraform和在Cloud Shell中使用Terraform。

操作步骤

创建专有网络和交换机。

创建terraform.tf文件，输入以下内容，并保存在当前在当前的执行目录中。

provider "alicloud" {
  configuration_source = "terraform-provider-alicloud/examples/vpc"
}

resource "alicloud_vpc" "main" {
  name       = var.long_name
  cidr_block = var.vpc_cidr
}

resource "alicloud_vswitch" "main" {
  vpc_id            = alicloud_vpc.main.id
  count             = length(var.cidr_blocks)
  cidr_block        = var.cidr_blocks["az${count.index}"]
  availability_zone = var.availability_zones

  depends_on = [alicloud_vpc.main]
}

运行terraform apply开始创建。出现类似下面的日志，说明创建成功。

alicloud_vpc.main: Creating...
  cidr_block:      "" => "10.1.0.0/21"
  name:            "" => "TFVPC"
  route_table_id:  "" => "<computed>"
  router_id:       "" => "<computed>"
  router_table_id: "" => "<computed>"
alicloud_vpc.main: Creation complete after 6s (ID: vpc-bp1xhaa5nw4ad43m7wdai)
alicloud_vswitch.main[1]: Creating...
  availability_zone: "" => "cn-hangzhou-b"
  cidr_block:        "" => "10.1.2.0/24"
  vpc_id:            "" => "vpc-bp1xhaa5nw4ad43m7wdai"
alicloud_vswitch.main[2]: Creating...
  availability_zone: "" => "cn-hangzhou-b"
  cidr_block:        "" => "10.1.3.0/24"
  vpc_id:            "" => "vpc-bp1xhaa5nw4ad43m7wdai"
alicloud_vswitch.main[0]: Creating...
  availability_zone: "" => "cn-hangzhou-b"
  cidr_block:        "" => "10.1.1.0/24"
  vpc_id:            "" => "vpc-bp1xhaa5nw4ad43m7wdai"
alicloud_vswitch.main[0]: Creation complete after 7s (ID: vsw-bp1h8hyscjq05o0xl0m5h)
alicloud_vswitch.main[1]: Creation complete after 8s (ID: vsw-bp1jdytzelq5p76f5mfpm)
alicloud_vswitch.main[2]: Creation complete after 8s (ID: vsw-bp1bl3pmxx1ub6vffqevj)

Apply complete! Resources: 4 added, 0 changed, 0 destroyed.

运行terraform show查看已创建的专有和专有网络。

创建NAT网关。

在terraform.tf文件中增加以下内容：

resource "alicloud_nat_gateway" "main" {
  vpc_id        = alicloud_vpc.main.id
  specification = "Small"
  name          = "from-tf-example"
}

resource "alicloud_eip" "foo" {
}

resource "alicloud_eip_association" "foo" {
  allocation_id = alicloud_eip.foo.id
  instance_id   = alicloud_nat_gateway.main.id
}

运行terraform apply开始创建。出现下面的日志，说明创建成功。

alicloud_eip.foo: Creating...
  bandwidth:            "" => "5"
  instance:             "" => "<computed>"
  instance_charge_type: "" => "PostPaid"
  internet_charge_type: "" => "PayByTraffic"
  ip_address:           "" => "<computed>"
  status:               "" => "<computed>"
alicloud_nat_gateway.main: Creating...
  bandwidth_package_ids: "" => "<computed>"
  forward_table_ids:     "" => "<computed>"
  name:                  "" => "from-tf-example"
  snat_table_ids:        "" => "<computed>"
  specification:         "" => "Small"
  vpc_id:                "" => "vpc-bp1xhaa5nw4ad43m7wdai"
alicloud_eip.foo: Creation complete after 2s (ID: eip-bp1y9pynihhurist6r1hk)
alicloud_nat_gateway.main: Creation complete after 2s (ID: ngw-bp1wiycnrxk04vqnorzuo)
alicloud_eip_association.foo: Creating...
  allocation_id: "" => "eip-bp1y9pynihhurist6r1hk"
  instance_id:   "" => "ngw-bp1wiycnrxk04vqnorzuo"
alicloud_eip_association.foo: Creation complete after 6s (ID: eip-bp1y9pynihhurist6r1hk:ngw-bp1wiycnrxk04vqnorzuo)

Apply complete! Resources: 3 added, 0 changed, 0 destroyed.

运行terraform show查看已经创建的NAT网关。