The Crossplane course is not ready yet. I'm sorry about that. I see you have already canceled your subscription. I'll issue a refund for you.

-Sam

I purchased a subscription specifically for the Crossplane 101 course which you are advertising on your website http://legacy.tekanaid.com/course/crossplane-101/ .

However, I can't find the actual course for Crossplane. 
Can you please provide a link for it?

Thanks,

Alex

This is considered a stretch cluster and is an anit-pattern. According to the Vault with Integrated Storage Reference Architecture, in order for cluster members to stay properly in sync, network latency between availability zones should be less than eight milliseconds (8 ms). This is because Vault uses the Raft Consensus Algorithm to replicate data across all the nodes in the cluster. If the network latency is too high, it may cause Raft to lose quorum, trigger leader elections, or fail to commit log entries. Therefore, it is recommended to deploy Vault nodes within the same region or availability zone, or use a dedicated network link between them.

There are 2 issues with this approach:

1. Latency can render the whole cluster unstable

2. Since the cluster is split across 2 regions (us-east-1 has 3 nodes and us-east-2 has 2 nodes) if you lose the us-east-1 region you lose the entire cluster. So there is no point in having us-east-2

References:

• https://developer.hashicorp.com/vault/tutorials/day-one-raft/raft-reference-architecture
• https://discuss.hashicorp.com/t/network-latency-requirement-for-vault-with-raft/36006
• https://developer.hashicorp.com/vault/tutorials/day-one-raft/raft-reference-architecture#network-latency-and-bandwidth

Okay now that the disclaimer is out of the way let me answer.

This would require some significant modification to the code, but you can have it all done in one go.

You would need to have 2 VPCs one in each region and run peering between them. So create two VPC module blocks one for each region. You then need to create two auto-scaling groups per region. Basically will need to do 2 of each pretty much.

Also, you would have an ALB in each VPC in front of the Vault nodes. The ALB will have healthchecks that basically will return status code 200 for the active node and 429 for the standby nodes. One ALB will have a healthy node and the others are not healthy in one VPC. The other VPC will have all nodes unhealthy. Then use route53 to route the traffic to the ALB with the healthy node. You will need to get a route 53 healthcheck that checks the healthchecks of the ALBs. In theory, this could work, but I haven't tested it.

There shouldn't be too much difference. It's actually a good exercise to run it by ChatGPT. I tried it and it did a good job. Will have to be tested of course.

Here's a prompt to try:

convert this shell script from ubuntu to amazon linux. Give me the final result with no explanations. Don't try to improve the script

scenario: I want to create a vault cluster spanning across two regions (us-east1, us-east2).

0-I'll remove region parameter from user_data script to live

1-I'll run our existing code to create 3 nodes cluster in us-east1

2-I'll run the same code with us-east2 parameters with 2 nodes.

How can I do this in one run? How should I organize the code or folder structure?

thx,

Another option to use Amazon Linux. I think user_data script for ec2 is different than ubuntu. Can u pls share it? thx,

https://youtu.be/6Kl7rR0husk