LinkedInLearning · dElCIoGio · Jul 31, 2025 · Jul 31, 2025 · Jul 31, 2025
diff --git a/.idea/.gitignore b/.idea/.gitignore
diff --git a/.idea/learning-terraform-3087701.iml b/.idea/learning-terraform-3087701.iml
diff --git a/.idea/misc.xml b/.idea/misc.xml
diff --git a/.idea/modules.xml b/.idea/modules.xml
diff --git a/.idea/vcs.xml b/.idea/vcs.xml
diff --git a/main.tf b/main.tf
@@ -2,23 +2,70 @@ data "aws_ami" "app_ami" {
   most_recent = true
 
   filter {
-    name   = "name"
+    name = "name"
     values = ["bitnami-tomcat-*-x86_64-hvm-ebs-nami"]
   }
 
   filter {
-    name   = "virtualization-type"
+    name = "virtualization-type"
     values = ["hvm"]
   }
 
   owners = ["979382823631"] # Bitnami
+
+}
+
+data "aws_vpc" "default" {
+  default = true
 }
 
-resource "aws_instance" "web" {
+resource "aws_instance" "blog" {
   ami           = data.aws_ami.app_ami.id
-  instance_type = "t3.nano"
+  instance_type = var.instance_type
+
+  vpc_security_group_ids = [aws_security_group.blog.id]
 
   tags = {
     Name = "HelloWorld"
   }
 }
+
+resource "aws_security_group" "blog" {
+  name        = "blog"
+  description = "Allow HTTP inbound traffic. Allow everything out."
+
+  vpc_id = data.aws_vpc.default.id
+}
+
+resource "aws_security_group_rule" "blog_http_in" {
+  type      = "ingress"
+  from_port = 80
+  to_port   = 80
+  protocol  = "tcp"
+  cidr_blocks = ["0.0.0.0/0"]
+
+
+  security_group_id = aws_security_group.blog.id
+}
+
+resource "aws_security_group_rule" "blog_https_in" {
+  type      = "ingress"
+  from_port = 443
+  to_port   = 443
+  protocol  = "tcp"
+  cidr_blocks = ["0.0.0.0/0"]
+
+
+  security_group_id = aws_security_group.blog.id
+}
+
+resource "aws_security_group_rule" "blog_all_out" {
+  type      = "egress"
+  from_port = 0
+  to_port   = 0
+  protocol  = "-1"
+  cidr_blocks = ["0.0.0.0/0"]
+
+
+  security_group_id = aws_security_group.blog.id
+}
diff --git a/outputs.tf b/outputs.tf
@@ -1,7 +1,7 @@
-#output "instance_ami" {
-#  value = aws_instance.web.ami
-#}
+output "instance_ami" {
+  value = aws_instance.blog.ami
+}
 
-#output "instance_arn" {
-#  value = aws_instance.web.arn
-#}
+output "instance_arn" {
+  value = aws_instance.blog.arn
+}
diff --git a/variables.tf b/variables.tf
@@ -1,4 +1,9 @@
-#variable "instance_type" {
-#  description = "Type of EC2 instance to provision"
-#  default     = "t3.nano"
-#}
+variable "instance_type" {
+  description = "Type of EC2 instance to provision"
+  default     = "t3.nano"
+}
+
+variable "region" {
+  description = "AWS region to launch servers."
+  default     = "eu-west-1"
+}