Terraform is an open-source Infrastructure as Code (IaC) tool developed by HashiCorp, designed to provision and manage cloud infrastructure using a declarative configuration language. Introduced in 2014, Terraform quickly gained traction for its ability to unify infrastructure provisioning across multiple cloud providers, including AWS, Azure, Google Cloud, and more.
The tool emerged in response to the growing complexity of cloud-native environments, where manual configuration and provider-specific tools struggled to keep pace with scalability and consistency demands. HashiCorp, known for other infrastructure tools like Vagrant and Consul, built Terraform to bring a consistent, version-controlled, and automated approach to infrastructure management.
With its modular architecture and provider ecosystem, Terraform has become a key player in modern DevOps and platform engineering practices, enabling teams to treat infrastructure changes with the same rigor as application code.
Why Use Terraform
Using Terraform brings predictability, scalability, and automation to infrastructure management—key advantages in today’s dynamic cloud environments. By defining infrastructure as code, teams can version, review, and reuse configurations just like software code, reducing the risk of drift and manual errors.
For example, consider a team that needs to deploy identical environments for development, staging, and production in AWS. Manually configuring EC2 instances, VPCs, and load balancers in the console is time-consuming and error-prone. With Terraform, the team can write a single configuration file defining all required resources, then deploy it across multiple environments with minimal changes. If a change—like increasing instance size or adding a monitoring tool—is needed, it’s made once in the code and applied consistently everywhere, ensuring reliable and repeatable infrastructure updates.
Example code
To not get too bogged down in theory, let’s jump into a practical example and see Terraform in action. Below is a simple Terraform configuration that launches an EC2 instance on AWS. This setup includes a provider block to specify AWS, and a resource block to define the EC2 instance. It’s a minimal yet functional template that demonstrates how straightforward it is to declare cloud infrastructure with code.
provider "aws" {
region = "us-east-1"
}
resource "aws_instance" "example" {
ami = "ami-0c55b159cbfafe1f0" # Amazon Linux 2 AMI in us-east-1
instance_type = "t2.micro"
tags = {
Name = "TerraformExampleInstance"
}
}
To apply this configuration, save it to a file (e.g., main.tf), run terraform init to initialize the project, and then terraform apply to provision the instance. Within minutes, you’ll have an EC2 instance spun up, fully reproducible and managed by code.
Terraform commands
As we mentioned the terraform command, let’s take a closer look at a few of the most commonly used ones and what they do. These commands form the core of working with Terraform on a day-to-day basis.
-
terraform init– This initializes your working directory by downloading the necessary provider plugins and setting up the local backend. It must be run once before any other commands after writing or cloning a Terraform configuration. -
terraform plan– This command shows a preview of what Terraform will do based on your configuration. It checks for differences between the current state and your code and outlines the resources it will add, change, or destroy. It’s a safe way to verify changes before applying them. -
terraform apply– Once you’re confident with the plan,terraform applyexecutes those changes, provisioning or updating your infrastructure. It prompts for approval unless run with-auto-approve. -
terraform destroy– This command tears down everything defined in your configuration. It’s powerful and should be used cautiously, especially in production environments.
Together, these commands create a smooth workflow for managing infrastructure lifecycles in a repeatable, auditable, and automated manner.
State management
Terraform’s state management is a critical component that keeps track of the real-world infrastructure and maps it to your configuration code. This state is stored in a file called terraform.tfstate, which Terraform uses to determine what changes need to be applied during execution. Without this state, Terraform wouldn’t know the current status of your infrastructure, making updates or deletions unreliable.
For example, suppose you create an EC2 instance using Terraform. The details of that instance—such as its ID, IP address, and tags—are recorded in the state file. Later, if you update the instance type in your code, Terraform compares the current state with the desired configuration and generates a plan that updates only that specific attribute. This makes incremental, predictable changes possible.
In team environments, storing the state file remotely (e.g., in an S3 bucket with DynamoDB for locking) ensures that everyone is working with a consistent and up-to-date view of the infrastructure. This avoids conflicts and enables safe collaboration on infrastructure as code.
Modules
Modules in Terraform are a way to encapsulate and reuse infrastructure code, promoting consistency, scalability, and maintainability. A module is simply a directory containing Terraform configuration files that define a set of related resources. By abstracting common setups—like VPCs, EC2 instances, or databases—into modules, teams can enforce standards and reduce code duplication across environments.
For example, suppose you need to create multiple EC2 instances in different environments (development, staging, production). Instead of copying and pasting the same resource block repeatedly, you can create a module like this:
resource "aws_instance" "this" {
ami = var.ami
instance_type = var.instance_type
tags = {
Name = var.name
}
}variable "ami" {}
variable "instance_type" {}
variable "name" {}Then, in your root configuration:
module "dev_instance" {
source = "./modules/ec2-instance"
ami = "ami-0c55b159cbfafe1f0"
instance_type = "t2.micro"
name = "dev-ec2"
}
module "prod_instance" {
source = "./modules/ec2-instance"
ami = "ami-0c55b159cbfafe1f0"
instance_type = "t3.medium"
name = "prod-ec2"
}Variables & outputs
Variables and outputs in Terraform allow you to make your configurations flexible, reusable, and easier to manage. Variables let you parameterize your code, while outputs provide useful information about resources that have been created—ideal for sharing data between modules or exposing values after deployment.
Variables can be defined in a variables.tf file to avoid hardcoding values:
variable "instance_type" {
description = "EC2 instance type"
type = string
default = "t2.micro"
}
variable "environment" {
description = "Deployment environment"
type = string
}You can pass values using a terraform.tfvars file, command-line flags, or environment variables. And reference the variables in your resource definitions:
resource "aws_instance" "example" {
ami = "ami-0c55b159cbfafe1f0"
instance_type = var.instance_type
tags = {
Environment = var.environment
}
}Outputs are defined using output blocks and are useful for retrieving key resource attributes:
output "instance_ip" {
description = "Public IP of the EC2 instance"
value = aws_instance.example.public_ip
}After running terraform apply, Terraform will print the output:
Outputs:
instance_ip = "54.92.34.11"This is especially helpful when chaining modules together, sharing information with other tools, or simply verifying a deployment. Using variables and outputs together makes Terraform code cleaner, more maintainable, and production-ready.
Leave a Reply