Terraform 模块
一、为什么需要模块化?
随着基础设施的扩展,单一目录不利于管理维护,模块化把资源抽象成模块,然后引入到代码中,避免大量重复定义
当前目录为根模块(Root Module)
$ tree
├── alicloud_security_group.tf
├── alicloud_vpc.tf
├── data
│ ├── alicloud_zones.json
│ ├── images.json
│ └── instance_types.json
├── dns.tf
├── ecs.tf
├── main.tf
├── outputs.tf
├── providers.tf
├── system-init-script.sh
├── terraform.tfstate
├── terraform.tfstate.backup
├── terraform.tfvars
├── variables.tf
└── versions.tf
1 directory, 16 files接下来,我们按照资源进行模块拆分(拆分目录)
二、模块工作原理
模块分类
terraform module 分为两类
远程模块:存储到
.terraform目录中,远程模块修改后,需要执行tf get、tf init本地模块:通过
.terraform/modules/modules.json文件查询本地模块路径{ "Modules": [ { "Key": "mydns", "Source": "../../modules/dns", "Dir": "../../modules/dns" }, { "Key": "myecs", "Source": "../../modules/ecs", "Dir": "../../modules/ecs" }, { "Key": "mysg", "Source": "../../modules/security_groups", "Dir": "../../modules/security_groups" }, { "Key": "myvpc", "Source": "../../modules/vpc", "Dir": "../../modules/vpc" }, { "Key": "", "Source": "", "Dir": "." } ] }
调用方式
最为常用主要也就是 2 种:
本地模块:使用相对路径即可
"../../modules/vpc"Git Repo:根据协议不同,语法不同
- HTTP(S):
git::http(s)://example.com/vpc.git - SSH:
git::ssh://git@xxx.net/username/xxx.git//vpc
PS:上述语法格式在某些 Git 平台不适用,Gitee 不支持,Coding.net 支持
git::ssh Terraform cannot detect a supported external module source type for ssh.- HTTP(S):
输入/输出变量
简单来说,模块的入参,首先通过 variables.tf 定义,资源配置中引用 var.<name>
模块的返回值,通过 outputs.tf 定义,作为其他模块的入参
模块实例化
一个模块可以多次被实例化
module "myecs1" {
name = "myecs1"
source = "../../modules/ecs/"
sg_id = module.mysg.sg_id
vsw_id = module.myvpc.vsw_id
}
module "myecs2" {
name = "myecs2"
source = "../../modules/ecs/"
sg_id = module.mysg.sg_id
vsw_id = module.myvpc.vsw_id
}三、上手体验模块化
模块化后的目录结构如下
$ tree -L 2 .
.
├── env
│ └── dev
└── modules
├── dns
├── ecs
├── security_groups
└── vpc首先,创建 env、modules 目录
- env:存放各环境的配置
- modules:存放公共模块的资源定义
3.1 编写资源模块
我们编写 modules 中各个资源模块,按照依赖关系的顺序进行
3.1.1 vpc
我们先编写 vpc
$ mkdir -p modules/vpc/
$ touch modules/vpc/{main.tf,outputs.tf,variables.tf}main.tf
locals {
name = "tf-demo4"
}
// VPC 网络定义
resource "alicloud_vpc" "default" {
vpc_name = local.name
cidr_block = var.vpc_cidr_block
}
//switch 交换机
resource "alicloud_vswitch" "default" {
// 参数资源引用:<resource type>.<name>.<attribute>
vswitch_name = local.name
vpc_id = alicloud_vpc.default.id
cidr_block = var.vsw_cidr_block
// 使用上面 data 查询到的 zone
zone_id = data.alicloud_zones.default.zones[0].id
}
// 获取可用区
data "alicloud_zones" "default" {
// 查询条件,拥有 ecs.s6-c1m1.small 的可用区
available_instance_type = "ecs.s6-c1m1.small"
// 展示详细信息
enable_details = true
# output_file = "data/alicloud_zones.json"
}variables.tf 声明变量
variable "vpc_cidr_block" {
type = string
description = "vpc 网段"
default = "172.16.0.0/12"
}
variable "vsw_cidr_block" {
type = string
description = "交换机网段"
default = "172.16.0.0/21"
}outputs.tf,在这里我们会定义模块的返回值,用以其他资源模块实例化时调用
output "vpc_id" {
# 模块返回值
# 返回 vpc_id 值,用以 sg 模块实例化时使用
value = alicloud_vpc.default.id
}
output "vsw_id" {
# 模块返回值
# 返回 vsw_id 值,用以 ecs 模块实例化时使用
value = alicloud_vswitch.default.id
}3.1.2 security_groups
创建目录结构及文件
$ mkdir -p modules/security_groups/
$ touch modules/security_groups/{main.tf,outputs.tf,variables.tf}main.tf
resource "alicloud_security_group" "default" {
name = "tf-demo4"
description = "terraform security group resource"
# 声明引用 vpc_id 变量,模块实例化时会被要求传入
vpc_id = var.vpc_id
# normal 普通级 enterprise 企业级
security_group_type = "normal"
}
resource "alicloud_security_group_rule" "allow_80_tcp" {
type = "ingress"
ip_protocol = "tcp"
nic_type = "intranet"
policy = "accept"
port_range = "80/80"
priority = 1
security_group_id = alicloud_security_group.default.id
cidr_ip = "0.0.0.0/0"
}
resource "alicloud_security_group_rule" "allow_22_tcp" {
type = "ingress"
ip_protocol = "tcp"
nic_type = "intranet"
policy = "accept"
port_range = "22/22"
priority = 1
security_group_id = alicloud_security_group.default.id
cidr_ip = "0.0.0.0/0"
}variables.tf
variable "vpc_id" {
type = string
}outputs.tf
output "sg_id" {
# 模块返回值
# 返回 sg_id 值,用以 ecs 模块实例化时使用
value = alicloud_security_group.default.id
}3.1.3 ecs
创建目录结构及文件
创建目录结构及文件
$ mkdir -p modules/ecs/
$ touch modules/ecs/{main.tf,outputs.tf,variables.tf}main.tf
locals {
name = "tf-demo4"
}
resource "alicloud_instance" "default" {
availability_zone = data.alicloud_zones.default.zones[0].id
# 声明引用 vsw_id、sg_id 变量,模块实例化时会被要求传入
vswitch_id = var.vsw_id
security_groups = [var.sg_id]
// 使用 data 查询结果中的第一个镜像
image_id = data.alicloud_images.images_ds.images[0].id
instance_type = data.alicloud_instance_types.default.instance_types[0].id
internet_max_bandwidth_out = var.instance_internet_max_bandwidth_out
# ECS 实例名称前缀
instance_name = local.name
# ECS 付费模式:PrePaid 包年包月、PostPaid 按量付费
instance_charge_type = var.instance_charge_type
# ECS 带宽计费模式:PayByTraffic 按使用流量、PayByBandwidth 按固定带宽
internet_charge_type = var.internet_charge_type
# ECS 实例登录密码
password = var.instance_password
/* ECS 系统磁盘类型:
cloud 普通云盘
cloud_efficiency 高效云盘
cloud_ssd 云 SSD
cloud_essd ESSD 云盘 */
system_disk_category = "cloud_efficiency"
user_data = data.template_file.shell.rendered
}
data "alicloud_zones" "default" {
// 查询条件,拥有 ecs.s6-c1m1.small 的可用区
available_instance_type = "ecs.s6-c1m1.small"
// 展示详细信息
enable_details = true
output_file = "data/alicloud_zones.json"
}
// 获取示例类型
data "alicloud_instance_types" "default" {
availability_zone = data.alicloud_zones.default.zones[0].id
cpu_core_count = 1
memory_size = 1
output_file = "data/instance_types.json"
}
# 查询系统镜像
data "alicloud_images" "images_ds" {
owners = "system"
name_regex = "^centos_7"
architecture = "x86_64"
output_file = "data/images.json"
}
# 系统初始化脚本
# file 函数起始为工作目录路径,所以 sh 文件要放入 env/dev/ 目录中
data "template_file" "shell" {
template = file("system-init-script.sh")
}variables.tf
# 需要通过 output 模块返回值获取的参数
variable "vsw_id" {
type = string
}
variable "sg_id" {}
#########################
# ECS 实例
# 通过 默认值 或 模块实例化时传递 皆可
variable "instance_password" {
description = "instance root password"
type = string
default = "L0tusCh1ng"
}
variable "instance_internet_max_bandwidth_out" {
default = "1"
description = "ECS internet max bandwidth out"
type = string
}
variable "internet_charge_type" {
default = "PayByTraffic"
description = "带宽计费方式"
type = string
}
variable "instance_charge_type" {
default = "PostPaid"
description = "实例计费方式"
type = string
}outputs.tf
output "ecs_public_ip" {
# 模块返回值
# 返回 ecs_public_ip 值,用以 dns 模块实例化时使用
value = alicloud_instance.default.public_ip
}3.1.4 dns
创建目录结构及文件
$ mkdir -p modules/dns/
$ touch modules/dns/{main.tf,outputs.tf,variables.tf}main.tf
resource "alicloud_alidns_record" "tf-demo" {
domain_name = var.domain_name
rr = var.dns_record["dev"]
type = "A"
# 声明引用 ecs_public_ip 变量,模块实例化时会被要求传入
value = var.ecs_public_ip
remark = "terraform alidns demo"
status = "ENABLE"
ttl = "600"
}variables.tf
variable "dns_record" {
type = map(string)
default = {
"dev" = "dev.tf-demo"
}
}
variable "domain_name" {
type = string
default = "yo-yo.fun"
}
variable "ecs_public_ip" {
type = string
}outputs.tf
3.2 编写引用模块
前面我们定义了各种资源模块,接下来,我们引用那些模块,首先来到 env/dev 目录
3.1 version 定义
老套路,指明我们所使用的 Terraform、Provider 版本
versions.tf
terraform {
required_version= "1.1.9"
required_providers {
alicloud = {
source = "hashicorp/alicloud"
version = "1.197.0"
}
}
}!!!有坑提醒!!!
我遇到了一个诡异的错误,与 provider 有关,具体错误提示如下
$ tf plan
Error: Invalid provider configuration
Provider "registry.terraform.io/hashicorp/alicloud" requires explicit configuration. Add a provider block to the root module and configure the provider's required arguments as described in the provider documentation.
Error: Invalid type option, support: access_key, sts, ecs_ram_role, ram_role_arn, rsa_key_pair
with provider["registry.terraform.io/hashicorp/alicloud"], on <empty> line 0: (source code not available)最初我以为是 AK、SK 之类的设置有误,但是经过反复检查,确定不是 AK/SK 的问题,后经几番查询 发现问题出在 provider 中下配置项
source = "aliyun/alicloud"于是,我按照错误提示对其调整,发现问题解决
source = "registry.terraform.io/hashicorp/alicloud"后来,发现可以进行简写
source = "hashicorp/alicloud"3.2 provider 配置
providers.tf
provider "alicloud" {
region = var.ALICLOUD_REGION
access_key = var.ALICLOUD_ACCESS_KEY
secret_key = var.ALICLOUD_SECRET_KEY
}3.3 variables 声明
variables.tf
#########################
# Aliyun Provider 认证信息
# 推荐使用环境变量 TF_VAR_*
variable "ALICLOUD_ACCESS_KEY" {
type = string
}
variable "ALICLOUD_SECRET_KEY" {
type = string
}
variable "ALICLOUD_REGION" {
type = string
}3.4 初始化脚本
system-init-script.sh
#!/bin/sh
yum -y install nginx
systemctl enable nginx --now
echo `hostname` > /usr/share/nginx/html/index.htmlPS:如果初始化脚本执行遇到问题,可以参考此文章进行排查
3.5 modules 引用模块
到这里,就开始重头戏了,通过 module 定义模块引用创建对应的资源
main.tf
locals {
# 如果 resource 配置项使用的是 variable 参数
# 那么既可以使用 default 默认值 又可以使用 module 进行传递
vpc_cidr_block = "172.0.0.0/12"
vsw_cidr_block = "172.0.0.0/21"
}
# 1. 创建 VPC 资源
# myvpc 模块执行完毕后会按照 outputs.tf 定义,返回 vpc_id
module "myvpc" {
# source 支持多种类型的源,本地、远程
source = "../../modules/vpc/"
vpc_cidr_block = local.vpc_cidr_block
vsw_cidr_block = local.vsw_cidr_block
}
# 2. 创建 security_groups 资源
# mysg 模块执行完毕后会按照 outputs.tf 定义,返回 sg_id
module "mysg" {
source = "../../modules/security_groups/"
# 使用 myvpc 模块返回值 vpc_id
vpc_id = module.myvpc.vpc_id
}
# 3. 创建 ecs 资源
# myecs 模块执行完毕后会按照 outputs.tf 定义,返回 ecs_public_ip
module "myecs" {
source = "../../modules/ecs/"
# 使用 myvpc、mysg 模块返回值 vsw_id、sg_id
sg_id = module.mysg.sg_id
vsw_id = module.myvpc.vsw_id
}
module "mydns" {
source = "../../modules/dns/"
# 使用 myecs 模块返回值 ecs_public_ip
ecs_public_ip = module.myecs.ecs_public_ip
}3.3 检查代码编写
检查代码语法
$ tf validate
Success! The configuration is valid.初始化 init
$ tf init生成执行计划
$ tf plan执行创建资源
$ terraform.exe apply
Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
+ create
Terraform will perform the following actions:
# module.mydns.alicloud_alidns_record.tf-demo will be created
+ resource "alicloud_alidns_record" "tf-demo" {
+ domain_name = "yo-yo.fun"
+ id = (known after apply)
+ line = "default"
+ remark = "terraform alidns demo"
+ rr = "dev.tf-demo"
+ status = "ENABLE"
+ ttl = 600
+ type = "A"
+ value = (known after apply)
}
# module.myecs.alicloud_instance.default will be created
+ resource "alicloud_instance" "default" {
+ availability_zone = "cn-beijing-g"
+ credit_specification = (known after apply)
+ deletion_protection = false
+ deployment_set_group_no = (known after apply)
+ dry_run = false
+ host_name = (known after apply)
+ http_endpoint = (known after apply)
+ http_put_response_hop_limit = (known after apply)
+ http_tokens = (known after apply)
+ id = (known after apply)
+ image_id = "centos_7_9_uefi_x64_20G_scc_20220906.vhd"
+ instance_charge_type = "PostPaid"
+ instance_name = "tf-demo4"
+ instance_type = "ecs.t5-lc1m1.small"
+ internet_charge_type = "PayByTraffic"
+ internet_max_bandwidth_in = (known after apply)
+ internet_max_bandwidth_out = 1
+ ipv6_address_count = (known after apply)
+ ipv6_addresses = (known after apply)
+ key_name = (known after apply)
+ maintenance_action = (known after apply)
+ password = (sensitive value)
+ private_ip = (known after apply)
+ public_ip = (known after apply)
+ role_name = (known after apply)
+ secondary_private_ip_address_count = (known after apply)
+ secondary_private_ips = (known after apply)
+ security_groups = (known after apply)
+ spot_duration = (known after apply)
+ spot_strategy = "NoSpot"
+ status = (known after apply)
+ stopped_mode = (known after apply)
+ subnet_id = (known after apply)
+ system_disk_category = "cloud_efficiency"
+ system_disk_performance_level = (known after apply)
+ system_disk_size = 40
+ user_data = <<-EOT
#!/bin/sh
yum -y install nginx
systemctl enable nginx --now
echo `hostname` > /usr/share/nginx/html/index.html
EOT
+ volume_tags = (known after apply)
+ vswitch_id = (known after apply)
}
# module.mysg.alicloud_security_group.default will be created
+ resource "alicloud_security_group" "default" {
+ description = "terraform security group resource"
+ id = (known after apply)
+ inner_access = (known after apply)
+ inner_access_policy = (known after apply)
+ name = "tf-demo4"
+ security_group_type = "normal"
+ vpc_id = (known after apply)
}
# module.mysg.alicloud_security_group_rule.allow_22_tcp will be created
+ resource "alicloud_security_group_rule" "allow_22_tcp" {
+ cidr_ip = "0.0.0.0/0"
+ id = (known after apply)
+ ip_protocol = "tcp"
+ nic_type = "intranet"
+ policy = "accept"
+ port_range = "22/22"
+ prefix_list_id = (known after apply)
+ priority = 1
+ security_group_id = (known after apply)
+ type = "ingress"
}
# module.mysg.alicloud_security_group_rule.allow_80_tcp will be created
+ resource "alicloud_security_group_rule" "allow_80_tcp" {
+ cidr_ip = "0.0.0.0/0"
+ id = (known after apply)
+ ip_protocol = "tcp"
+ nic_type = "intranet"
+ policy = "accept"
+ port_range = "80/80"
+ prefix_list_id = (known after apply)
+ priority = 1
+ security_group_id = (known after apply)
+ type = "ingress"
}
# module.myvpc.alicloud_vpc.default will be created
+ resource "alicloud_vpc" "default" {
+ cidr_block = "172.0.0.0/12"
+ id = (known after apply)
+ ipv6_cidr_block = (known after apply)
+ name = (known after apply)
+ resource_group_id = (known after apply)
+ route_table_id = (known after apply)
+ router_id = (known after apply)
+ router_table_id = (known after apply)
+ secondary_cidr_blocks = (known after apply)
+ status = (known after apply)
+ vpc_name = "tf-demo4"
}
# module.myvpc.alicloud_vswitch.default will be created
+ resource "alicloud_vswitch" "default" {
+ availability_zone = (known after apply)
+ cidr_block = "172.0.0.0/21"
+ id = (known after apply)
+ name = (known after apply)
+ status = (known after apply)
+ vpc_id = (known after apply)
+ vswitch_name = "tf-demo4"
+ zone_id = "cn-beijing-g"
}
Plan: 7 to add, 0 to change, 0 to destroy.
Do you want to perform these actions?
Terraform will perform the actions described above.
Only 'yes' will be accepted to approve.
Enter a value: yes
module.myvpc.alicloud_vpc.default: Creating...
module.myvpc.alicloud_vpc.default: Creation complete after 6s [id=vpc-2zekz28t34b0o7vov8h8i]
module.mysg.alicloud_security_group.default: Creating...
module.myvpc.alicloud_vswitch.default: Creating...
module.mysg.alicloud_security_group.default: Creation complete after 1s [id=sg-2zeag20fi42vfznmsoj7]
module.mysg.alicloud_security_group_rule.allow_80_tcp: Creating...
module.mysg.alicloud_security_group_rule.allow_22_tcp: Creating...
module.mysg.alicloud_security_group_rule.allow_22_tcp: Creation complete after 1s [id=sg-2zeag20fi42vfznmsoj7:ingress:tcp:22/22:intranet:0.0.0.0/0:accept:1]
module.mysg.alicloud_security_group_rule.allow_80_tcp: Creation complete after 1s [id=sg-2zeag20fi42vfznmsoj7:ingress:tcp:80/80:intranet:0.0.0.0/0:accept:1]
module.myvpc.alicloud_vswitch.default: Creation complete after 6s [id=vsw-2zen1y17q48krgwfq9sth]
module.myecs.alicloud_instance.default: Creating...
module.myecs.alicloud_instance.default: Still creating... [10s elapsed]
module.myecs.alicloud_instance.default: Creation complete after 13s [id=i-2ze2fupknpzmlfv9wkry]
module.mydns.alicloud_alidns_record.tf-demo: Creating...
module.mydns.alicloud_alidns_record.tf-demo: Creation complete after 1s [id=811082942137670656]
Apply complete! Resources: 7 added, 0 changed, 0 destroyed.
Process finished with exit code 0访问 web 访问
$ curl dev.tf-demo.yo-yo.fun
iZ2ze2fupknpzmlfv9wkryZOK,大功告成!~
删除测试资源
terraform.exe destroy
module.myvpc.alicloud_vpc.default: Refreshing state... [id=vpc-2zekz28t34b0o7vov8h8i]
module.mysg.alicloud_security_group.default: Refreshing state... [id=sg-2zeag20fi42vfznmsoj7]
module.mysg.alicloud_security_group_rule.allow_80_tcp: Refreshing state... [id=sg-2zeag20fi42vfznmsoj7:ingress:tcp:80/80:intranet:0.0.0.0/0:accept:1]
module.mysg.alicloud_security_group_rule.allow_22_tcp: Refreshing state... [id=sg-2zeag20fi42vfznmsoj7:ingress:tcp:22/22:intranet:0.0.0.0/0:accept:1]
module.myvpc.alicloud_vswitch.default: Refreshing state... [id=vsw-2zen1y17q48krgwfq9sth]
module.myecs.alicloud_instance.default: Refreshing state... [id=i-2ze2fupknpzmlfv9wkry]
module.mydns.alicloud_alidns_record.tf-demo: Refreshing state... [id=811082942137670656]
Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
- destroy
Terraform will perform the following actions:
# module.mydns.alicloud_alidns_record.tf-demo will be destroyed
- resource "alicloud_alidns_record" "tf-demo" {
- domain_name = "yo-yo.fun" -> null
- id = "811082942137670656" -> null
- line = "default" -> null
- priority = 0 -> null
- remark = "terraform alidns demo" -> null
- rr = "dev.tf-demo" -> null
- status = "ENABLE" -> null
- ttl = 600 -> null
- type = "A" -> null
- value = "60.205.176.172" -> null
}
# module.myecs.alicloud_instance.default will be destroyed
- resource "alicloud_instance" "default" {
- availability_zone = "cn-beijing-g" -> null
- credit_specification = "Standard" -> null
- deletion_protection = false -> null
- dry_run = false -> null
- host_name = "iZ2ze2fupknpzmlfv9wkryZ" -> null
- http_put_response_hop_limit = 0 -> null
- id = "i-2ze2fupknpzmlfv9wkry" -> null
- image_id = "centos_7_9_uefi_x64_20G_scc_20220906.vhd" -> null
- instance_charge_type = "PostPaid" -> null
- instance_name = "tf-demo4" -> null
- instance_type = "ecs.t5-lc1m1.small" -> null
- internet_charge_type = "PayByTraffic" -> null
- internet_max_bandwidth_in = 200 -> null
- internet_max_bandwidth_out = 1 -> null
- ipv6_address_count = 0 -> null
- ipv6_addresses = [] -> null
- maintenance_action = "AutoRecover" -> null
- maintenance_notify = false -> null
- password = (sensitive value)
- private_ip = "172.0.5.23" -> null
- public_ip = "60.205.176.172" -> null
- secondary_private_ip_address_count = 0 -> null
- secondary_private_ips = [] -> null
- security_groups = [
- "sg-2zeag20fi42vfznmsoj7",
] -> null
- spot_duration = 0 -> null
- spot_price_limit = 0 -> null
- spot_strategy = "NoSpot" -> null
- status = "Running" -> null
- stopped_mode = "Not-applicable" -> null
- subnet_id = "vsw-2zen1y17q48krgwfq9sth" -> null
- system_disk_category = "cloud_efficiency" -> null
- system_disk_encrypted = false -> null
- system_disk_size = 40 -> null
- tags = {} -> null
- user_data = <<-EOT
#!/bin/sh
yum -y install nginx
systemctl enable nginx --now
echo `hostname` > /usr/share/nginx/html/index.html
EOT -> null
- volume_tags = {} -> null
- vswitch_id = "vsw-2zen1y17q48krgwfq9sth" -> null
}
# module.mysg.alicloud_security_group.default will be destroyed
- resource "alicloud_security_group" "default" {
- description = "terraform security group resource" -> null
- id = "sg-2zeag20fi42vfznmsoj7" -> null
- inner_access = true -> null
- inner_access_policy = "Accept" -> null
- name = "tf-demo4" -> null
- security_group_type = "normal" -> null
- tags = {} -> null
- vpc_id = "vpc-2zekz28t34b0o7vov8h8i" -> null
}
# module.mysg.alicloud_security_group_rule.allow_22_tcp will be destroyed
- resource "alicloud_security_group_rule" "allow_22_tcp" {
- cidr_ip = "0.0.0.0/0" -> null
- id = "sg-2zeag20fi42vfznmsoj7:ingress:tcp:22/22:intranet:0.0.0.0/0:accept:1" -> null
- ip_protocol = "tcp" -> null
- nic_type = "intranet" -> null
- policy = "accept" -> null
- port_range = "22/22" -> null
- priority = 1 -> null
- security_group_id = "sg-2zeag20fi42vfznmsoj7" -> null
- type = "ingress" -> null
}
# module.mysg.alicloud_security_group_rule.allow_80_tcp will be destroyed
- resource "alicloud_security_group_rule" "allow_80_tcp" {
- cidr_ip = "0.0.0.0/0" -> null
- id = "sg-2zeag20fi42vfznmsoj7:ingress:tcp:80/80:intranet:0.0.0.0/0:accept:1" -> null
- ip_protocol = "tcp" -> null
- nic_type = "intranet" -> null
- policy = "accept" -> null
- port_range = "80/80" -> null
- priority = 1 -> null
- security_group_id = "sg-2zeag20fi42vfznmsoj7" -> null
- type = "ingress" -> null
}
# module.myvpc.alicloud_vpc.default will be destroyed
- resource "alicloud_vpc" "default" {
- cidr_block = "172.0.0.0/12" -> null
- id = "vpc-2zekz28t34b0o7vov8h8i" -> null
- name = "tf-demo4" -> null
- resource_group_id = "rg-acfmvnbiz7uawki" -> null
- route_table_id = "vtb-2zeusoqg151mmjmqk1qh0" -> null
- router_id = "vrt-2zec80qfnyre7gncns3lv" -> null
- router_table_id = "vtb-2zeusoqg151mmjmqk1qh0" -> null
- secondary_cidr_blocks = [] -> null
- status = "Available" -> null
- user_cidrs = [] -> null
- vpc_name = "tf-demo4" -> null
}
# module.myvpc.alicloud_vswitch.default will be destroyed
- resource "alicloud_vswitch" "default" {
- availability_zone = "cn-beijing-g" -> null
- cidr_block = "172.0.0.0/21" -> null
- id = "vsw-2zen1y17q48krgwfq9sth" -> null
- name = "tf-demo4" -> null
- status = "Available" -> null
- tags = {} -> null
- vpc_id = "vpc-2zekz28t34b0o7vov8h8i" -> null
- vswitch_name = "tf-demo4" -> null
- zone_id = "cn-beijing-g" -> null
}
Plan: 0 to add, 0 to change, 7 to destroy.
Do you really want to destroy all resources?
Terraform will destroy all your managed infrastructure, as shown above.
There is no undo. Only 'yes' will be accepted to confirm.
Enter a value: yes
module.mydns.alicloud_alidns_record.tf-demo: Destroying... [id=811082942137670656]
module.mysg.alicloud_security_group_rule.allow_80_tcp: Destroying... [id=sg-2zeag20fi42vfznmsoj7:ingress:tcp:80/80:intranet:0.0.0.0/0:accept:1]
module.mysg.alicloud_security_group_rule.allow_22_tcp: Destroying... [id=sg-2zeag20fi42vfznmsoj7:ingress:tcp:22/22:intranet:0.0.0.0/0:accept:1]
module.mydns.alicloud_alidns_record.tf-demo: Destruction complete after 0s
module.myecs.alicloud_instance.default: Destroying... [id=i-2ze2fupknpzmlfv9wkry]
module.mysg.alicloud_security_group_rule.allow_80_tcp: Destruction complete after 0s
module.mysg.alicloud_security_group_rule.allow_22_tcp: Destruction complete after 0s
module.myecs.alicloud_instance.default: Still destroying... [id=i-2ze2fupknpzmlfv9wkry, 10s elapsed]
module.myecs.alicloud_instance.default: Destruction complete after 12s
module.mysg.alicloud_security_group.default: Destroying... [id=sg-2zeag20fi42vfznmsoj7]
module.myvpc.alicloud_vswitch.default: Destroying... [id=vsw-2zen1y17q48krgwfq9sth]
module.mysg.alicloud_security_group.default: Still destroying... [id=sg-2zeag20fi42vfznmsoj7, 10s elapsed]
module.myvpc.alicloud_vswitch.default: Still destroying... [id=vsw-2zen1y17q48krgwfq9sth, 10s elapsed]
module.myvpc.alicloud_vswitch.default: Destruction complete after 16s
module.mysg.alicloud_security_group.default: Destruction complete after 17s
module.myvpc.alicloud_vpc.default: Destroying... [id=vpc-2zekz28t34b0o7vov8h8i]
module.myvpc.alicloud_vpc.default: Destruction complete after 6s
Destroy complete! Resources: 7 destroyed.
Process finished with exit code 0
