Day-16 | Infrastructure as Code | #terraform #IaC

00:01

hello everyone my name is Abhishek and

00:04

welcome back to my channel so today we

00:06

are at day 16 of our complete devops

00:08

course in the previous classes we talked

00:10

about configuration management we talked

00:11

about ansible and yeah I know few of you

00:14

have uh doubts with respect to Dynamic

00:16

inventory that is something that we did

00:18

not talk in the previous class so with

00:21

your request what I've decided is yeah

00:23

I'll make a completely dedicated video

00:25

on Dynamic inventory and I'll make sure

00:27

that all your doubts are cleared but for

00:29

today we'll be talking about

00:31

infrastructure as code okay so today's

00:34

topic is infrastructure as code and in

00:36

today's class we'll completely talk

00:38

about the theory part uh by Theory I

00:40

mean to say we'll try to understand what

00:42

is the problem right because first of

00:45

all we need to understand what is the

00:46

problem and then we will see what are

00:48

the use cases

00:52

and finally we'll try to understand what

00:54

is the solution okay

00:56

so without wasting any time let's

00:58

quickly start the video and try to

01:00

understand infrastructure as code

01:02

now let's say that you are a devops

01:05

engineer okay so you are a devops

01:07

engineer who is working for an

01:09

organization called uh let's say

01:11

Flipkart okay

01:14

so you're working for a Flipkart

01:19

so Flipkart as a company they can create

01:22

their compute resources anywhere right

01:24

so what is a compute resource compute

01:25

resource is nothing but uh CPU Ram or

01:29

you know any other Hardware resources

01:30

they can create on any of the cloud

01:33

platform or they can also create on

01:35

their on-premises that is Flipkart has

01:38

let's say 300 applications okay so to

01:40

deploy these 300 applications they would

01:42

need servers because servers is a player

01:44

where you deploy your applications and

01:46

expose to the customers now Flipkart can

01:49

deploy these applications on different

01:51

options like they can deploy these

01:53

applications on AWS

01:55

or they can deploy these applications on

01:57

azure

02:00

Google Cloud platform or they can also

02:03

deploy it on their physical servers that

02:05

is on-premises right

02:08

and there are a bunch of other options

02:09

these are not only the four options okay

02:11

this can exceed like you know you have

02:13

Oracle Cloud you have digital ocean

02:15

hundreds of options are there so as a

02:18

devops engineer let's say you have

02:19

decided that okay you evaluated all of

02:21

these things and you said that okay

02:23

so Flipkart will host all of their

02:25

infrastructure on AWS okay so let's say

02:28

as a devops engineer you have taken this

02:30

decision and this decision went very

02:32

well and what you have done is you know

02:34

you started to create servers on like it

02:37

can be easy to instances or it can be S3

02:40

buckets okay or it can be RDS database

02:43

all of these resources are required for

02:45

your organization and as a good devops

02:48

engineer what you have done is you have

02:49

automated the entire process on AWS like

02:52

instead of creating manually through the

02:54

console what you have decided is you

02:56

will use the AWS CLI okay or you can

03:00

also use something like AWS cloud

03:01

formation templates okay CFT let's say

03:04

cloudformation templates as CFT so in

03:07

the previous class when we talked about

03:08

AWS automation I already mentioned you

03:10

like there are multiple options you can

03:12

use AWS CLI you can use AWS CFT you can

03:15

use uh you know AWS cdk many options

03:18

right

03:19

so as a devops engineer you decided that

03:22

your organization will use AWS cloud

03:24

formation templates okay so what we have

03:26

done is you have used AWS cloud

03:30

formation templates which is called as

03:31

CFT and you have automated the

03:35

infrastructure on AWS Cloud platform

03:37

okay so let's say this is AWS cloud and

03:40

you have what you have you done you have

03:43

automated this stuff

03:47

so any developer who comes to you and

03:50

tells you okay Abhishek I want

03:53

10

03:55

ec2 instances so what you'll do you'll

03:57

say that yeah using cfts I already wrote

04:00

the script now I just need to execute

04:02

the CFT script for ec2 instances and you

04:04

have 10 ec2 instances will be generated

04:06

in no time similarly somebody comes to

04:08

it with S3 buckets everything okay so

04:11

you wrote some hundreds of scripts okay

04:13

so you wrote some hundreds of scripts

04:15

and all these hundreds of scripts are

04:17

stabilized and your work is going pretty

04:19

well okay now you don't have any

04:21

problems but what happened all of a

04:23

sudden is your AWS okay the decision

04:27

that you take in okay AWS your

04:29

management said that okay we were using

04:31

AWS till date but due to some reasons

04:33

like you know you are not happy with the

04:34

AWS support or you know the costing that

04:37

AWS is uh you know the cost that AWS is

04:41

uh giving to you you are not happy with

04:43

it so what you have decided is you will

04:45

shift from AWS to Microsoft azure okay

04:49

so what have you decided from AWS you

04:52

want to move to Microsoft Azure now all

04:55

these hundreds of scripts that you have

04:56

written will be of no use because again

04:59

if some developer comes to you and says

05:02

that Abhishek I would need 10 virtual

05:05

machines on your Azure platform okay so

05:08

you cannot say that I have written CFT

05:10

you can use the CFT because CFT is very

05:12

specific to your AWS cloud provider

05:15

right so CFT only belongs to your AWS

05:18

cloud provider

05:20

so again you have to put all the effort

05:23

and you have to migrate this hundreds of

05:25

scripts into Azure resource manager like

05:27

similar to AWS CFT as your support

05:30

something called as Azure resource

05:32

manager okay so you put a lot of effort

05:35

and again you converted the hundreds of

05:37

scripts into Azure resource manager and

05:39

you have again automated the entire

05:41

process okay let's say you have again

05:44

automated the entire process now what

05:47

your organization said is okay whether

05:50

it is Flipkart or any organization said

05:51

okay we moved to Azure as well and we

05:54

were not even happy with Azure okay so

05:56

again the support with Azure is not good

05:58

or you know you are not happy with the

06:00

costing so you wanted to move from Azure

06:02

this time you want to move to on-premise

06:05

okay so that means you want to maintain

06:08

your own infrastructure okay so on

06:11

premise so what you have done is you

06:13

purchase your own servers and on top of

06:16

the servers you used openstack okay

06:18

openstack is used to create your own

06:21

cloud okay so you created your entire

06:25

Data Center and on the data center you

06:26

installed openstack okay and you have

06:29

decided that okay anybody who comes with

06:31

a request for 10 VMS or 20 VMS or you

06:33

know for any kind of request we will say

06:35

that okay we have on-premise and we have

06:38

installed openstack so you will get it

06:40

but for that reason what you need to do

06:42

is you have to again migrate these

06:45

scripts okay that worked firstly on AWS

06:47

CFT now you migrated them to Azure

06:50

resource manager and now you have to

06:51

migrate them to heat templates

06:54

okay so heat templates is a way how

06:57

openstacks automates the process okay so

06:59

if you want to automate any

07:01

infrastructure on uh openstack you will

07:03

use something called as key templates so

07:06

again you waste a lot of time and you

07:07

migrated the entire thing to heat

07:09

templates so this was the process that

07:11

was going on and you know this is just

07:14

an example these days what usually

07:16

companies are doing is they are usually

07:18

operating in hybrid Cloud Model okay so

07:21

what is hybrid Cloud Model so any

07:24

organizations okay depending upon the

07:26

requirements what they can do is they

07:28

can host part of their infrastructure on

07:31

AWS and part of their infrastructure on

07:34

Azure now why is this happening this is

07:36

because okay this was scenario number

07:39

one okay so what I explained you here

07:41

this is scenario number one and in

07:43

scenario number two there is another

07:45

option that people are moving to hybrid

07:48

Cloud okay so what is hybrid Cloud

07:50

hybrid cloud is a way using which you

07:53

can create part of your infrastructure

07:55

on AWS and part of your infrastructure

07:57

on Azure that is because let's say AWS

07:59

is giving you good offers or you know

08:01

AWS is giving you good support with

08:04

respect to the uh let's say for example

08:07

it is giving good support with respect

08:08

to the storage Services okay so for

08:10

storage Services you have decided to use

08:12

AWS and for devops related services for

08:16

the build related services or you know

08:17

for the

08:18

um

08:20

the project management related Services

08:22

you want to use Azure devops okay so for

08:24

devops you want to use Azure and for the

08:27

build or sorry for the storage related

08:29

Services you want to use AWS this is

08:31

because AWS is good with the storage

08:33

Services just an example and Azure is

08:35

good with the

08:37

uh devops related services so your

08:40

organization that is Flipkart has

08:42

decided to go with this hybrid Cloud

08:44

architecture okay so now as a devops

08:47

engineer what you need to do is you need

08:49

to learn both

08:52

okay so you need to learn both AWS CFT

08:54

for writing the automation on AWS and

08:58

you need to learn Azure resource manager

09:01

for automating stuff on Azure and this

09:04

problem can vary from organization to

09:06

organization and also team to team uh

09:09

you know there might be some secure

09:10

Services even for a Flipkart where you

09:13

know you don't want to use AWS you don't

09:14

want to use Azure and you want to use

09:16

on-premise okay so again for that reason

09:18

you have to write heat templates or

09:19

something so to avoid all these problems

09:22

okay to solve the problem of learning

09:24

too many things okay to instead of uh I

09:28

just gave you an example with two

09:29

infrastructure resources that is two

09:31

Cloud providers that is AWS and Azure

09:33

this problem can go can grow leaps and

09:36

bonds right there can be hundreds of

09:38

cloud providers as a devops engineer

09:39

which tool will you learn so to solve

09:41

this problem what people have come with

09:44

is terraform okay so who is addressing

09:48

this problem terraform and the concept

09:51

here is

09:54

API

09:57

as code okay

10:00

so what all of the previous tools were

10:03

called so here for example AWS CFT or

10:06

Azure resource manager they were all

10:08

called as infrastructure as code because

10:10

you are writing your infrastructure as

10:12

code but the problem there was even you

10:15

are writing your infrastructure as code

10:17

you know you are not manually creating

10:19

the resources you are creating the

10:21

infrastructure using Code so that was

10:23

good but the problem was in the world of

10:26

hybrid cloud and in the world of

10:27

multiple crowd providers so you cannot

10:30

solve the problem with different

10:31

different options like you know AWS CFT

10:34

Azure resource manager you have to learn

10:36

hundreds of tools so terraform came who

10:38

is terraform terraform is a tool that is

10:40

developed by hashicor

10:42

okay so hashikov came ahead and said

10:46

that okay devops engine is don't learn

10:48

hundreds of tools okay so they said

10:50

devops Engineers that instead of

10:52

learning hundreds of tools just learn

10:54

one tool and that tool is called as

10:56

terraform okay now will telephone solve

10:59

all your problems or not that is uh you

11:01

know I'll explain you there are some

11:02

problems with terraform as well in the

11:04

future videos or I already created a

11:06

video on my Channel with respect to

11:07

terraform but the main purpose of

11:10

terraform is to solve the problem of

11:12

learning too many tools or you know

11:14

execution of too many tools now

11:16

terraform K header came ahead and said

11:18

that

11:19

okay if you are a devops engineer what

11:21

you can do is basically you can create

11:24

terraform scripts okay so write some

11:29

terraform Scripts

11:31

and terraform what it will basically do

11:34

is terraform will take care of

11:36

automating the resources whether it is

11:38

AWS whether it is azure whether it is uh

11:41

like you know

11:43

let's say this is AWS this is azure

11:47

and this is gcp okay so as a devops

11:50

engineer what you need to do is you need

11:52

to write the terraform scripts and

11:54

terraform will take care of automating

11:56

the resources on the cloud provider so

11:58

you just need to tell the terraform that

12:00

okay my provider is AWS

12:03

okay so once you say that my provider is

12:05

AWS so terraform will say that okay uh

12:08

give me the scripts for AWS and I can

12:10

automate the stuff related to AWS now

12:12

you might ask me okay so the problem is

12:14

the same even now if you want to migrate

12:16

from One Cloud provided to other cloud

12:18

provider you just have to modify I mean

12:21

you you still need to modify the

12:22

terraform scripts right so in the

12:24

previous slides I explained you that

12:27

if you want to move from one cloud

12:29

provider to the another cloud provider

12:31

the problem is that you have to migrate

12:33

your scripts but within terraform what

12:35

terraform tells you is that the

12:37

migration is very smooth like your

12:39

organization if it decides to migrate

12:41

from AWS to Azure you need to make some

12:44

minimum changes like you know you need

12:45

to update some modules or uni you know

12:47

you need to update the provider details

12:49

and once you do that you know you can

12:52

easily migrate from AWS to Azure okay so

12:55

this is how terraform solves the problem

12:57

and the other thing is instead of

12:59

learning too many tools okay so you

13:01

don't have to learn about AWS CFT you

13:03

don't have to learn about Azure resource

13:05

manager and again uh you know heat

13:07

templates or XYZ tools you can learn

13:09

just one tool and this one tool can take

13:13

care of creating new modules for you and

13:15

you know just looking at the terraform

13:16

documentation you can write automation

13:19

for any infrastructure so this concept

13:22

is called as API as code

13:24

okay so what is apis code so API as code

13:29

is a concept using which you can

13:31

automate any provider whether it is AWS

13:34

Azure or openstack anything using their

13:36

apis okay so what terraform does

13:39

internally is terraform will talk to the

13:41

API of azure terraform will talk to the

13:43

API of gcp or terraform will talk to the

13:47

API of openstack so using which like you

13:50

know you don't have to write any code so

13:52

once you write the terraform templating

13:54

or you write the terraform script files

13:55

terraform will convert them depending

13:58

upon the provider details that you have

13:59

provided so in one of the files called

14:01

provider.tf you say that the provider is

14:04

AWS so once you write the terraform

14:06

module terraform will convert that

14:07

script into AWS readable API okay or the

14:11

API request that AWS can understand and

14:14

it executes the action and gives you the

14:16

result back okay so this is how

14:18

terraform is one tool that can automate

14:21

your resources on any cloud provider

14:24

Okay so this is a concept of API as code

14:27

now when I explained a similar Concept

14:29

in the last class many people were

14:31

asking me what is API

14:34

okay so many people did not understand

14:36

what is API so let me take a moment and

14:39

explain you what is API so API is

14:41

nothing but application

14:46

interface okay so basically using API

14:50

you can talk to any application and you

14:53

can get the response back for example

14:55

okay let's take a basic example you want

14:57

to talk to Google

14:59

okay so what is the usual process you

15:02

open your laptop okay you open your

15:05

laptop and on your laptop you will open

15:07

your favorite browser and you will type

15:08

www dot google.com Okay so once you type

15:13

this what happens is you send your

15:15

request to Google and you get a browser

15:18

page and on the browser page you can

15:20

search the information related to Google

15:22

so this is basically a user interface

15:25

right so this is a way how you manually

15:27

do things but whenever you want to

15:30

automate things or you know whenever you

15:31

want to do things programmatically so

15:33

this way is not suitable right because

15:36

let's say you want to get some

15:37

information from Google in a

15:39

programmatical manner okay so instead of

15:41

logging into your laptop instead of you

15:43

know opening the browser and getting the

15:45

information from Google what you want to

15:47

do is you just want to run a script okay

15:50

and this script will talk to the Google

15:52

okay this script will talk to Google and

15:55

it executes the action and sends you the

15:57

result back

15:59

to perform this kind of things what

16:01

developers have come okay whether it is

16:03

Google or whether it is uh Argo CD or

16:06

whether it is any application what

16:07

developers have done is they have come

16:09

up with a concept called API okay so

16:11

using API you can programmatically talk

16:14

to any applications so whether it is

16:16

GitHub whether it is Google whether it

16:18

is uh Flip Flip I don't know if Flipkart

16:21

has an API sorry or any other

16:22

applications what they will do is Google

16:25

GitHub will expose their API okay so

16:27

GitHub will tell you that okay instead

16:30

of manually logging into GitHub

16:32

authenticating with me and you know

16:34

opening your browser and going through

16:35

the flows what you can do is you can

16:37

open your terminal okay once you open

16:40

the terminal you can use a curl request

16:42

or you know you can use a HTTP get

16:44

request and using this HTTP get request

16:47

or curl request you can talk to my API

16:49

and get whatever information that you

16:51

want and I'll send you the result

16:54

right so this way you can talk to any

16:57

applications programmatically using the

16:59

apis okay so that is the only difference

17:01

either you manually talk to the

17:03

applications using the user interface or

17:05

you talk to the applications using a

17:07

programmatic interface so the

17:08

programmatic interface in this case is

17:10

called as API that's the concept of API

17:13

now terraform uses the same concept okay

17:15

what terraform does is terraform AWS has

17:19

their own API okay and Azure has their

17:21

own API what terraform has done is

17:23

instead of okay instead of developers

17:26

directly talking to the apis because if

17:29

you want to talk to the apis you need to

17:30

know some programming language okay

17:31

sometimes get requests are easy but you

17:34

know you might want to create resources

17:35

on it and you might want to make some

17:36

post calls so instead of you writing

17:39

this calls in python or shell scripting

17:41

what terraform said is that okay we'll

17:43

actively look at this apis

17:45

okay

17:48

terraform will actively look at this

17:50

apis and terraform has written their own

17:53

modules or terraform has come across

17:56

let's say you want to create an ec2

17:57

instance on AWS so terraform said that

18:00

instead of you directly making API call

18:02

with AWS you can write some terraform

18:04

file okay and in this terraform file you

18:07

can go through the terraform

18:07

documentation which will definitely do

18:09

tomorrow so terraform will tell you that

18:12

okay there is a module called ec2 and

18:14

using this ec2 module you just write

18:16

bunch of lines just like you write in

18:18

English and what we will do is once user

18:21

submits this request okay in terraform

18:23

file once you do this uh terraform will

18:26

receive this request and it will take

18:28

your input and it will convert your

18:30

input into API call

18:33

okay this is happening at the back end

18:35

terraform will convert your request into

18:37

API call and it gets the request back

18:40

and again terraform will send you the

18:41

request back to you so as a user you are

18:44

not directly talking to the apis of AWS

18:46

and Azure but you are writing terraform

18:49

scripts and terraform is converting your

18:51

request into API calls okay so this is

18:53

concept of terraform and this is how

18:56

terraform utilizes the concept called

18:58

API

19:00

as code

19:02

so in tomorrow's class we will see

19:04

terraform live examples and you know we

19:07

will see a live project using terraform

19:09

we'll start with the installation we'll

19:11

try to create ec2 instances or any

19:14

specific stack on AWS and I'll show you

19:17

how exactly terraform works so what did

19:19

we learn today we learned about two two

19:21

concepts one is infrastructure as code

19:24

right IAC

19:27

and we talked about API as code

19:32

so infrastructure as code is a concept

19:35

using which

19:37

okay so infrastructure as a code is a

19:39

concept using which you can automate

19:41

your infrastructure

19:43

so it can be anything like you know you

19:45

can write your cloud formation templates

19:47

or you can write your Azure resource

19:48

manager or anything so all of these

19:50

things fall into the category of

19:53

infrastructure as code whereas terraform

19:56

is a concept which is used to solve all

19:58

of these problems like you know

19:59

terraform also works on the same concept

20:01

of infrastructure as code but terraform

20:04

has advanced capabilities called API as

20:06

code right instead of you writing all of

20:09

these things terraform says that okay

20:11

just learn one language instead of

20:13

learning uh AWS uh cloud formation

20:16

templates Azure resource manager just

20:18

learn one language that is called as

20:19

terraform and terraform will take care

20:21

of talking to all of those Cloud

20:23

providers using the concept of API as

20:25

code I hope you understood the concept

20:28

well and if you have any questions

20:30

please provide me the timestamp and tell

20:32

me okay Abhishek I did not understand

20:34

the concept here so that I can make a

20:36

Youtube short video or you know if it is

20:38

possible I can also explain you in the

20:39

comment section okay so this is a

20:41

concept which you did not understand and

20:43

uh yeah your feedback will definitely

20:45

help me to improve as well so if you

20:48

like the video click on the like button

20:49

and if you have any questions not not

20:51

just about today's class even in the

20:53

previous classes do post them in the

20:55

comment section and finally don't forget

20:58

to subscribe to our Channel if you

21:00

haven't I'll see in the next videos

21:01

thank you so much take care everyone