https://github.com/princecloudops/terraform-azure-core-infra

Infrastructure-as-Code project deploying core Azure resources using Terraform. Includes VNet, subnet, NSG, VM, NIC, Public IP, storage, and full deploy/teardown lifecycle.
https://github.com/princecloudops/terraform-azure-core-infra

azure-vm cloud-engineering devops infrastructure-as-code linux terraform virtual-network

Last synced: 2 months ago
JSON representation

Infrastructure-as-Code project deploying core Azure resources using Terraform. Includes VNet, subnet, NSG, VM, NIC, Public IP, storage, and full deploy/teardown lifecycle.

Host: GitHub
URL: https://github.com/princecloudops/terraform-azure-core-infra
Owner: PrinceCloudOps
License: mit
Created: 2025-11-18T02:58:31.000Z (7 months ago)
Default Branch: main
Last Pushed: 2025-11-18T04:09:36.000Z (7 months ago)
Last Synced: 2025-11-18T06:13:33.010Z (7 months ago)
Topics: azure-vm, cloud-engineering, devops, infrastructure-as-code, linux, terraform, virtual-network
Homepage:
Size: 5.86 KB
Stars: 0
Watchers: 0
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# 📘 Terraform Azure Core Infrastructure Deployment
Thumbnail (3)

## 🎥 Watch Me Build This!

### Part 1
👉 **[Watch Me Build This!](https://www.loom.com/share/d05bc2aa88bc4d8d98b1a178d7377cb6)**

### Part 2
👉 **[Watch Me Build This!](https://www.loom.com/share/131b286744154eee9d83d29234d7f06b)**

> This project is demonstrated through a short Loom video, showing the full build, verification in the Azure Portal, and complete teardown.

---

## 🚀 Overview

This project provisions a complete Azure environment using **Terraform Infrastructure-as-Code (IaC)**.

The deployment includes:

- Resource Group
- Virtual Network (VNet)
- Subnet
- Network Security Group (NSG) with SSH rule
- Public IP (Standard SKU)
- Network Interface (NIC)
- Storage Account (with globally unique name)
- Linux Virtual Machine (Ubuntu 22.04, password authentication)

It demonstrates the full lifecycle:

**Deploy → Verify → Destroy**

---

## 🧱 Architecture (Conceptual)

The Terraform config creates:

- A Resource Group as the container
- A VNet + Subnet for networking
- An NSG with an inbound SSH rule on port 22
- A Standard Public IP for external access
- A NIC attached to the subnet and public IP
- A Storage Account for general/infra usage
- A Linux VM running Ubuntu 22.04

---

## 📂 File Structure

```text
terraform-azure-core-infra/
├── main.tf
├── variables.tf
├── outputs.tf
├── README.md
└── LICENSE
```
🛠️ How to Use This Project
1. Prerequisites

- Terraform installed

- Azure CLI installed

- An Azure subscription

- Logged in via az login
2. Initialize Terraform
```text
terraform init
```
3. Format and Validate
```text
terraform fmt
terraform validate
```
4. Preview the Plan
```text
terraform plan -out tfplan
```
5. Apply the Deployment
```text
terraform apply tfplan
```
After this, you’ll have:

Resource Group: rg-coretf-lab

VM: coretf-vm

VNet, Subnet, NSG, NIC, Public IP, Storage Account
6. Destroy the Environment
```text
terraform destroy -auto-approve
```
This removes all resources that were created by this configuration.

---

🧪 Troubleshooting Notes

These are real issues encountered and resolved while building this lab:

Public IP SKU Error

Free-tier subscriptions often do not allow Basic IPv4 public IPs.

Fix:
Use
sku = "Standard" for azurerm_public_ip.
---
Storage Account Name Error

Storage account names must:

Be all lowercase

Use only letters and numbers

Be globally unique

Be 3–24 characters long

Fix:
Removed the dash and appended a random string:

```text
coretfstorage${random_string.storage_suffix.result}
```
---
SSH Key Path Error

Terraform couldn’t find the SSH key file referenced in the config.

Fix (for this lab):
Switched to password authentication to keep the demo simple and focused on Terraform.

---

Resource Renaming/Recreation

Changing naming (like name_prefix or hardcoded names) can cause Terraform to destroy and recreate resources.

Fix:
Accepted as normal behavior when refactoring; Terraform handled the replacements automatically.

---

## 🧠 What I Learned

This project helped me practice how real infrastructure is deployed in an enterprise setting.
Using Terraform forced me to think in terms of desired state, version-controlled configs, and repeatable builds instead of clicking around the Azure Portal.

Working through naming constraints, SKU limitations, and resource recreation showed how cloud teams handle real Azure errors and refactor infrastructure safely.
Deploying, validating, and destroying the environment reinforced the full IaC lifecycle — which is exactly how production teams avoid configuration drift.

## 🔧 How This Applies in Real Cloud Work

In enterprise environments, Terraform is essential for:

- Enforcing consistent resource standards across environments
- Automating Azure deployments with predictable outputs
- Rebuilding or scaling environments quickly
- Preventing manual mistakes common in portal-driven setups
- Managing cloud infrastructure as code through Git workflows

This lab reflects the same workflow used by Cloud, DevOps, and Platform Engineering teams in real organizations.

---

📦 Full Terraform Configuration

Below are the three main Terraform files used in this project for quick reference.

main.tf
```text

terraform {
required_version = ">= 1.3.0"

required_providers {
azurerm = {
source = "hashicorp/azurerm"
version = "~> 3.0"
}
random = {
source = "hashicorp/random"
version = "~> 3.0"
}
}
}

provider "azurerm" {
features {}
}

# Random suffix for globally unique storage account name
resource "random_string" "storage_suffix" {
length = 5
upper = false
special = false
}

# Resource Group
resource "azurerm_resource_group" "rg" {
name = "rg-coretf-lab"
location = var.location