Configure a Firewall and a Startup Script with Deployment Manager

 LAB NAME : Configure a Firewall and a Startup Script with Deployment Manager

You have been asked to develop a Deployment Manager template that will be used to deploy and configure the Google Cloud environment that is required to support this product. You must create this template and test your deployment.

Configure a Firewall and a Startup Script with Deployment Manager Lab Video 

Lab Link : https://youtu.be/tzvzea9-t_4

Configure a Firewall and a Startup Script with Deployment Manager Lab Steps 

Follow the video tutrorial if you struck at any point, here are the simple four steps to do in this Startup Script Lab :

Step 1 : Run these commands -

mkdir deployment_manager

cd deployment_manager

gsutil cp gs://spls/gsp302/* .

Step 2: Delete all the lines starting from line 24 in config file. ( Watch Video if Not clear )

Step 3: Put the below code by deleting all the previous code in jinga file.

resources:

- name: my-default-allow-http

  type: compute.v1.firewall

  properties:

    targetTags: ["http"]

    sourceRanges: ["0.0.0.0/0"]

    allowed:

      - IPProtocol: TCP

        ports: ["80"]

- type: compute.v1.instance

  name: vm-test

  properties:

    zone: {{ properties["zone"] }}

    tags:

      items: ["http"]

    machineType: https://www.googleapis.com/compute/v1/projects/{{ env["project"] }}/zones/{{ properties["zone"] }}/machineTypes/f1-micro

    # For examples on how to use startup scripts on an instance, see:

    #   https://cloud.google.com/compute/docs/startupscript

    disks:

    - deviceName: boot

      type: PERSISTENT

      boot: true

      autoDelete: true

      initializeParams:

        diskName: disk-{{ env["deployment"] }}

        sourceImage: https://www.googleapis.com/compute/v1/projects/debian-cloud/global/images/family/debian-9

    networkInterfaces:

    - network: https://www.googleapis.com/compute/v1/projects/{{ env["project"] }}/global/networks/default

      # Access Config required to give the instance a public IP address

      accessConfigs:

      - name: External NAT

        type: ONE_TO_ONE_NAT

    metadata:

      items:

      - key: startup-script

        value: |

          #!/bin/bash

          apt-get update && apt-get install -y apache2

Step 4: Run this command - 

gcloud deployment-manager deployments create vm-test --config qwiklabs.yaml

Subscribe TECH_ED on YOUTUBE 

KEEP LEARNING