感謝您提交詢問!我們的一位團隊成員將在短時間內與您聯繫。
感謝您提交預訂!我們的一位團隊成員將在短時間內與您聯繫。
課程簡介
Infrastructure-as-Code Sovereignty
- Understanding the risks of cloud consoles and SaaS IaC, including vendor lock-in and audit gaps.
- Deep dive into Terraform architecture: core components, providers, state management, and the plan/apply workflow.
- Comparative analysis of Terraform against alternatives like Pulumi, Ansible, and CloudFormation.
Configuration Language and Providers
- Mastering HCL syntax: defining resources, data sources, variables, and outputs.
- Configuring on-premise providers: Proxmox, libvirt, vSphere, and PowerDNS.
- Exploring community providers and the basics of custom provider development.
- Understanding resource dependencies and the underlying graph theory.
State Management
- Evaluating the security implications of local vs. remote state storage.
- Setting up self-hosted backends using PostgreSQL, S3-compatible storage (MinIO), Gitea, and etcd.
- Implementing state locking, encryption at rest, and robust backup strategies.
- Handling state migration and detecting configuration drift.
Modules and Workspaces
- Structuring modules with inputs, outputs, and versioning best practices.
- Building private module registries using Git tags.
- Ensuring isolation across dev, staging, and production environments via workspaces.
- Leveraging self-hosted alternatives to Terraform Cloud, such as Atlantis or Spacelift.
Provisioning and Lifecycle
- Integrating cloud-init and PXE for bare-metal provisioning.
- Utilizing provisioners: local-exec, remote-exec, and file transfer.
- Leveraging null resources and triggers for custom automation workflows.
- Managing resource destruction, planning, and tainting for safe rollbacks.
Security and Compliance
- Enforcing variable validation and marking sensitive data appropriately.
- Implementing policy-as-code for on-premise environments using Sentinel and OPA alternatives.
- Establishing robust audit logging and plan file review processes.
CI/CD Integration
- Automating plan and apply workflows in GitHub Actions or Woodpecker CI.
- Integrating
terraform fmt,validate, and linting tools in pre-commit hooks. - Setting up cost estimation and budget guardrails.
- Developing comprehensive rollback strategies and state recovery procedures.
最低要求
- Intermediate understanding of infrastructure-as-code concepts and cloud computing fundamentals.
- Practical experience with JSON, HCL (HashiCorp Configuration Language), and version control systems.
- Familiarity with on-premise virtualization platforms such as Proxmox and VMware.
Audience
- Infrastructure engineers responsible for provisioning bare metal servers and private cloud resources.
- DevOps teams managing on-premise resources through declarative configuration.
- Organizations actively seeking to avoid reliance on cloud control planes for managing infrastructure state.
14 小時
客戶評論 (3)
節奏總體非常出色。Michal非常擅長確保觀衆參與,並確保大部分人都能跟上進度。
Asif Shaikh - Carpmaels & Ransford
課程 - Terraform on Microsoft Azure
機器翻譯
通過編寫實際代碼,檢查所有細節
Michal Pipala - EY
課程 - Advanced Terraform: Efficient Infrastructure as Code
機器翻譯
講師準備得非常充分
Federico Biavati - CRIF S.P.A.
課程 - Terraform for Managing Cloud Infrastructure
機器翻譯
