DEV Community

Cover image for Infrastructure as a Code (IaC); AWS CloudFormation: Automating Infrastructure Setup
BAKRE JAMIU
BAKRE JAMIU

Posted on

1

Infrastructure as a Code (IaC); AWS CloudFormation: Automating Infrastructure Setup

#aws #cloudformation #automation #devops

AWS CloudFormation is a powerful tool that allows you to define and provision AWS infrastructure as code. In this blog post, I’ll walk you through setting up a complete infrastructure using CloudFormation, including a VPC, Subnet, Route Table, Security Group, and EC2 Instance. I’ll also demonstrate how CloudFormation detects drift when resources are modified outside of the stack.

What I’ll Build

Using CloudFormation, we’ll create:

  • A VPC with DNS support enabled.
  • A Subnet within the VPC.
  • An Internet Gateway and a Route Table for public access.
  • A Security Group to allow SSH and HTTP traffic.
  • An EC2 Instance running Amazon Linux 2.
  • Drift detection to monitor changes made outside of CloudFormation.

CloudFormation Template

Here’s the YAML template used to define the infrastructure:

AWSTemplateFormatVersion: "2010-09-09"
Description: This is my first AWS CloudFormation template

Resources:
  myVPC:
    Type: AWS::EC2::VPC
    Properties:
      CidrBlock: 38.0.0.0/16
      EnableDnsSupport: 'true'
      EnableDnsHostnames: 'true'
      Tags:
        - Key: stack
          Value: production

  mySubnet:
    Type: AWS::EC2::Subnet
    Properties: 
      CidrBlock: 38.0.0.0/16
      VpcId: !Ref myVPC
      AvailabilityZone: us-east-1a
      MapPublicIpOnLaunch: 'true'
      Tags:
        - Key: stack
          Value: production

  myInternetGateway:
    Type: AWS::EC2::InternetGateway
    Properties:
      Tags:
        - Key: stack
          Value: production

  myInternetGatewayAttachment:
    Type: AWS::EC2::VPCGatewayAttachment
    Properties:
      VpcId: !Ref myVPC
      InternetGatewayId: !Ref myInternetGateway

  myRouteTable:
    Type: AWS::EC2::RouteTable
    Properties:
      VpcId: !Ref myVPC
      Tags:
        - Key: stack
          Value: production

  myRoute:
    Type: AWS::EC2::Route
    Properties:
      RouteTableId: !Ref myRouteTable
      DestinationCidrBlock: 0.0.0.0/0
      GatewayId: !Ref myInternetGateway

  mySubnetRouteTableAssociation:
    Type: AWS::EC2::SubnetRouteTableAssociation
    Properties:
      SubnetId: !Ref mySubnet
      RouteTableId: !Ref myRouteTable

  mySecurityGroup:
    Type: AWS::EC2::SecurityGroup
    Properties:
      GroupDescription: Allow SSH and HTTP access
      VpcId: !Ref myVPC
      SecurityGroupIngress:
        - IpProtocol: tcp
          FromPort: 22
          ToPort: 22
          CidrIp: 0.0.0.0/0
        - IpProtocol: tcp
          FromPort: 80
          ToPort: 80
          CidrIp: 0.0.0.0/0
      SecurityGroupEgress:
        - IpProtocol: -1
          FromPort: -1
          ToPort: -1
          CidrIp: 0.0.0.0/0
      Tags:
        - Key: stack
          Value: production

  myEC2Instance:
    Type: AWS::EC2::Instance
    Properties:
      InstanceType: t2.micro
      ImageId: ami-00a929b66ed6e0de6 
      SubnetId: !Ref mySubnet
      SecurityGroupIds:
        - !Ref mySecurityGroup
      Tags:
        - Key: Name
          Value: MyEC2Instance
Enter fullscreen mode Exit fullscreen mode

Image description

Image description

Image description

This snapshot shows; Deployment is completely created.

Deploying the Stack

  1. Save the template as cloudformation-template.yml.
  2. Use the AWS Management Console or CLI to deploy the stack: 
   aws cloudformation create-stack --stack-name MyStack --template-body file://cloudformation-template.yml
Enter fullscreen mode Exit fullscreen mode
  1. Once deployed, you’ll see the resources in the Stack Resources tab of the CloudFormation console.

Snapshots of the Setup

  • Table View: The CloudFormation console provides a detailed table view of all resources created by the stack, including their status and logical IDs.

Image description

  • EC2 Instance Running: After deployment, the EC2 instance will be running and accessible via SSH or HTTP, depending on the security group rules.

Image description

Image description

  • Canva View: The CloudFormation Designer offers a visual representation of the stack, showing the relationships between resources.

Image description

Drift Detection

CloudFormation Drift Detection is a feature that identifies changes made to stack resources outside of CloudFormation. For example, When I manually deleted the EC2 instance, CloudFormation will detect the drift.

Image description

This is when I purposely terminated to know if it will be drifted as you can see the snapshot.

  1. Trigger Drift Detection:

    • Go to the CloudFormation console.
    • Select the stack and click Drift Detection.

  2. Drifted Signal:

    • The EC2 instance is deleted, the stack will show a Drifted status.
    • The drift report will highlight the missing EC2 instance.

Image description

This is when it drifted as you can see the snapshot.

Conclusion

AWS CloudFormation simplifies infrastructure management by allowing you to define resources as code. With features like drift detection, you can ensure your infrastructure remains consistent with your template. This setup is a great starting point for automating your AWS environment.

Feel free to share your thoughts or ask questions in the comments below! 😊

AWS #CloudFormation #InfrastructureAsCode #DevOps #Automation #CloudComputing

profile
Stellar Development Foundation
 Promoted

Image of Stellar post

How a Hackathon Win Led to My Startup Getting Funded

In this episode, you'll see:

  • The hackathon wins that sparked the journey.
  • The moment José and Joseph decided to go all-in.
  • Building a working prototype on Stellar.
  • Using the PassKeys feature of Soroban.
  • Getting funded via the Stellar Community Fund.

Watch the video 🎥

Top comments (0)

profile
Sentry
 Promoted

Sentry image

See why 4M developers consider Sentry, “not bad.”

Fixing code doesn’t have to be the worst part of your day. Learn how Sentry can help.

Learn more

👋 Kindness is contagious

Engage with a wealth of insights in this thoughtful article, cherished by the supportive DEV Community. Coders of every background are encouraged to bring their perspectives and bolster our collective wisdom.

A sincere “thank you” often brightens someone’s day—share yours in the comments below!

On DEV, the act of sharing knowledge eases our journey and forges stronger community ties. Found value in this? A quick thank-you to the author can make a world of difference.

Okay