2018年11月29日 BURZIN PATEL
HashiCorp 是今年AWS re:Invent 的黄金赞助商, 并在发布日宣布 Hashicorp Terraform 和 Hashicorp Consul 将支持 AWS 的多个新产品。以下是我们对这些新服务的概述, 以及会议期间的信息, 您可以在会上了解更多有关客户如何使用 HashiCorp 工具的信息。
HashiCorp Terraform 仍然是在 AWS 上配置和管理基础架构的首选工具。我们很高兴地宣布与 AWS 工程团队合作创建以下服务支持:
AWS 中转网关使用户能够跨区域和与本地网络连接
VPC。以前, 为了管理这些网络之间的通信, 需要为将要通信的所有实例启用 VPC 对等。这就要求用户在每个 VPC 和这些 VPC 中的每个 VPN 连接之间手动设置一个新的 "对等连接"。相反, 中转网关允许用户将其 VPC 和站点到站点 VPN 连接到单个网关, 使网络和 InfoSec 团队能够更轻松地管理和监视其组织中的网络连接。这些网关还可以跨 AWS 区域配对, 允许用户在全球范围内连接其 VPN 和内部部署网络。Terraform 可用于通过 terraform AWS Provider提供和管理中转网关。
有关 AWS EC2 中转网关的详细信息, 请参阅 Terraform AWS Provider 文档.
AWS 数据同步是一项服务, 它使用户能够自动在本地存储和基于 AWS 的存储服务 ,如 Amazon S3 或 Amazon Elastic File System (efs)之间传输数据。数据同步由四个主要组件组成: 同步代理、位置、任务和任务执行。对 Datasync 感兴趣的组织可以使用 Terraform 通过其 Terraform 配置文件配置这些组件。有关如何使用 Terraform AWS 提供商设置 AWS 数据同步的详细信息, 请参阅 Terraform AWS Provider 文档.
Terraform 还将通过 Terraform AWS 提供商支持以下资源:
有关如何配置这些资源的详细信息, 请参阅 Terraform AWS Provider文档: https://www.terraform.io/docs/providers/aws/index.html
在过去的一年里, 我们为 HashiCorp Consul 引入了许多新功能, 包括用于服务细分的 Consul connect 、用于管理 Kubernetes 的 Helm support ,以及对企业版的多数据中心支持。在 re:Invent 中, AWS 宣布了对 Consul 的集成, 该集成将帮助用户管理 AWS 和本地数据中心中的微服务。
AWS 云地图是一项新服务, 可为 AWS 环境提供服务发现。云地图使用户能够发现 AWS 环境中的资源和服务, 进行运行状况检查, 并与其他服务网格产品 (如 HashiCorp Consul ) 集成。云地图适用于在 Amazon EC2 实例或 Amazon ECS 任务上构建的任何应用程序服务。云地图管理部署在 Amazon API 网关之上的基于 ARN 的资源和 API 的配置。这意味着用户可以注册具有特定属性的资源, 然后将这些属性用于连接新的 AWS 服务或资源。为了确保只允许经过批准的连接, 云地图使用 AWS IAM credentials 对 API 调用进行身份验证。这些相同的 API 也可以直接提供给 Consul, Consul 可以管理 AWS 和非 AWS 资源之间的连接, 而不管环境是在 AWS 中、本地数据中心中还是在另一个云中。要了解有关 Consul 如何使用云地图的更多信息并查看示例配置, 请阅读此博客.
有许多 Sessions 的特点是客户在将应用程序部署到 AWS 时使用 HashiCorp 工具。参加这些会议, 看看像 Riot Games 、realtor. com 和 Moody’s 这样的公司是如何使用 HashiCorp 产品的:
如果您正在参加 aws re:Invent, 您可以找到我们的团队位于展位341号在展位。我们将有来自我们的工程和解决方案团队的一些团队成员在那里回答问题并进行产品的现场演示。以上是我们为发布日提供支持的新服务的概述, 以及会议期间的内容, 您可以在会议上了解更多有关客户如何使用 hashicorp 工具的信息。
我们很高兴提供上述发布日服务, 并期待着继续与 AWS 工程团队合作, 以改善 HashiCorp 和 AWS 用户的体验。
要了解更多关于 Hashicorp Terraform 和 Hashicorp Consul 的信息,请在我们的展位停留或访问我们的产品页面。
NOV 29 2018 BURZIN PATEL
</header>
HashiCorp is a gold sponsor of AWS re:Invent this year and has announced launch-day support for multiple of the new AWS offerings with HashiCorp Terraform and HashiCorp Consul. Below is an overview of our support for these new services as well as the conference sessions where you can learn more about how customers are using HashiCorp tools.
HashiCorp Terraform continues to be a preferred tool for provisioning and managing infrastructure on AWS. We are pleased to announce launch-day support for the following services, created in collaboration with the AWS engineering team:
AWS Transit Gateway enables users to interconnect VPCs across regions and with on-premises networks. Previously, in order to manage traffic between these networks, VPC-peering needed to be enabled for all the instances that would be communicating. This required users to manually setup a new “peering-connection” between each VPC and each VPN connection within those VPCs. Scaling a process like this can be very difficult. The Transit Gateway instead allows users to connect their VPCs and Site-to-Site VPNs to a single gateway making it easier for networking and InfoSec teams to manage and monitor network connectivity across their organization. These gateways can also be paired across AWS regions, allowing users to connect their VPCs and on-premise networks worldwide. Terraform can be used to provision and manage Transit Gateways through the Terraform AWS Provider.
For more information about the AWS EC2 Transit Gateway, please refer to the Terraform AWS provider docs.
AWS Datasync is a service that provides users with the ability to automate the transfer of data between on-premises storage and AWS-based storage services like Amazon S3 or Amazon Elastic File System (EFS). Datasync consists of four primary components: Sync Agents, Locations, Tasks, and Task Executions. Organizations interested in Datasync can use Terraform to configure these components through their Terraform configuration files. For more information about how to use the Terraform AWS Provider to set up AWS Datasync, please refer to the Terraform AWS provider docs.
Terraform will also support the following resources through the Terraform AWS Provider:
For more information about how to configure these resources, please refer to the Terraform AWS Provider documentation: https://www.terraform.io/docs/providers/aws/index.html
This past year we’ve introduced a number of new features for HashiCorp Consul including Consul Connect for service segmentation, Helm support for managing Kubernetes, and Multi-data Center support for enterprises. At re:Invent, AWS announced an integration for Consul that will help users manage microservices on AWS and in on-premises data centers.
AWS Cloud Map is a new service which enables service discovery for AWS environments. Cloud Map gives users the capability to discover resources and services within AWS environments, conduct health checks, and integrate with other service mesh offerings, like HashiCorp Consul. Cloud Map works for any application service built on Amazon EC2 instances or Amazon ECS tasks. Cloud Map manages the configurations for ARN-based resources and APIs deployed on top of Amazon API Gateway. This means that users can register resources with specific attributes, which are then used for connecting new AWS services or resources. To ensure that only approved connections are allowed, Cloud Map authenticates API calls with AWS IAM credentials. These same APIs can also be fed directly to Consul which can then manage the connection between AWS and non-AWS resources, regardless of whether the environments are in AWS, in on-premises data centers, or within another cloud. To learn more about how Consul works with Cloud Map and see an example configuration, please read this blog.
There are a number of sessions that feature customers that use HashiCorp tools in deploying applications to AWS. Join these sessions to see how companies like Riot Games, Realtor.com, and Moody’s are using HashiCorp products:
If you are attending AWS re:Invent, you can find our team located at Booth 341 on the expo floor. We will have a number of team members from both our engineering and solutions engineering team available there to answer questions and conduct live demonstrations of the products. Below is an overview of the new services that we are offering launch day support for as well as the conference sessions where you can learn more about how customers are using HashiCorp tools.
We are pleased to offer the launch-day services described above and look forward to continuing our work with the AWS engineering team to improve the experience for users of HashiCorp and AWS.
To learn more about HashiCorp Terraform and HashiCorp Consul, stop by our booth at re:Invent or visit our product pages.