Book Image

Ansible 2 Cloud Automation Cookbook

By : Aditya Patawari, Vikas Aggarwal
Book Image

Ansible 2 Cloud Automation Cookbook

By: Aditya Patawari, Vikas Aggarwal

Overview of this book

Ansible has a large collection of inbuilt modules to manage various cloud resources. The book begins with the concepts needed to safeguard your credentials and explain how you interact with cloud providers to manage resources. Each chapter begins with an introduction and prerequisites to use the right modules to manage a given cloud provider. Learn about Amazon Web Services, Google Cloud, Microsoft Azure, and other providers. Each chapter shows you how to create basic computing resources, which you can then use to deploy an application. Finally, you will be able to deploy a sample application to demonstrate various usage patterns and utilities of resources.

Related Content you might be interested in

Current Title:

Small book image
Ansible 2 Cloud Automation Cookbook
Aditya Patawari | Vikas Aggarwal
Feb, 2018 | 200 pages
Small book image
Learning Ansible 2.7
Fabio Alessandro Locati
Apr, 2019 | 266 pages
Small book image
Practical Ansible 2
Fabio Alessandro Locati | Daniel Oh | James Freeman
Jun, 2020 | 410 pages
Small book image
Learn Ansible
Russ McKendrick
Jun, 2018 | 578 pages
Table of Contents (11 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Sections
Get in touch
Free Chapter
1
Getting Started with Ansible and Cloud Management
Getting Started with Ansible and Cloud Management
Introduction
Installing Ansible
Executing the Ansible command line to check connectivity
Working with cloud providers
Executing playbooks locally
Managing secrets with Ansible Vault
Understanding sample application
Using dynamic inventory
2
Using Ansible to Manage AWS EC2
Using Ansible to Manage AWS EC2
Introduction
Preparing Ansible to work with AWS
Creating and managing a VPC
Creating and managing security groups
Creating EC2 instances
Creating and assigning Elastic IPs
Attaching volumes to instances
Creating an Amazon Machine Image
Creating an Elastic Load Balancer and attaching to EC2 instances
Creating auto scaling groups
Deploying the phonebook application
3
Managing Amazon Web Services with Ansible
Managing Amazon Web Services with Ansible
Introduction
Creating an RDS instance
Creating and deleting records in Route53
Managing S3 objects
Managing Lambda
Managing IAM users
Using dynamic inventory
Deploying the sample application
4
Exploring Google Cloud Platform with Ansible
Exploring Google Cloud Platform with Ansible
Introduction
Preparing to work with Google Cloud Platform
Creating GCE instances
Attaching persistent disks
Creating snapshots for backup
Tagging an instance
Managing network and firewall rules
Managing load balancer
Managing GCE images
Creating instance templates
Creating managed instance groups
Managing objects in Google Cloud Storage
Creating a Cloud SQL instance (without Ansible module)
Using dynamic inventory
Deploying the phonebook application
5
Building Infrastructure with Microsoft Azure and Ansible
Building Infrastructure with Microsoft Azure and Ansible
Introduction
Preparing Ansible to work with Azure
Creating an Azure virtual machine
Managing network interfaces
Working with public IP addresses
Using public IP addresses with network interfaces and virtual machines
Managing an Azure network security group
Working with Azure Blob storage
Using a dynamic inventory
Deploying a sample application
6
Working with DigitalOcean and Ansible
Working with DigitalOcean and Ansible
Introduction
Preparing to work with DigitalOcean
Adding SSH keys to a DigitalOcean account
Creating Droplets
Managing Block Storage
Attaching a Floating IP
Using a Load Balancer
Adding an A DNS record
Using dynamic inventory
Deploying a sample application
7
Running Containers with Docker and Ansible
Running Containers with Docker and Ansible
Introduction
Preparing Ansible to work with Docker
Running a container
Downloading Docker images
Mounting volumes in containers
Setting up Docker Registry
Logging into Docker Registry
Using Docker Compose to manage services
Scaling up Compose-based service
Deploying a sample application
8
Diving into OpenStack with Ansible
Diving into OpenStack with Ansible
Introduction
Preparing Ansible to work with OpenStack
Adding a keypair
Managing security groups
Managing network resources
Managing a Nova compute instance
Creating a Cinder volume and attaching it to a Nova compute instance
Managing objects in Swift
User management
Creating a flavor
Adding an image
Dynamic inventory
Deploying the phonebook application
9
Ansible Tower
Ansible Tower
Introduction
Installing Ansible Tower
Getting started with Tower
Adding a machine credential
Building a simple inventory
Executing ad-hoc commands
Using Ansible Tower with a cloud provider
Integrating Ansible roles with tower
Scheduling jobs
Ansible Tower API
Autoscaling using Callback
10
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Managing network and firewall rules

By default, inbound connections are not allowed to any of the instances. One way to allow the traffic is by allowing incoming connections to a certain port of instances carrying a particular tag. For example, we can tag all the webservers as http and allow incoming connections to port 80 and 8080 for all the instances carrying the http tag.

How to do it...

  1. We will create a firewall rule with source tag using the gce_net module:
- name: Create Firewall Rule with Source Tags
  gce_net:
    name: my-network
    fwname: "allow-http"
    allowed: tcp:80,8080
    state: "present"
    target_tags: "http"
    subnet_region: us-west1
    service_account_email: "{{ service_account_email...
Previous Section
End of Section 8
Next Section