diff --git a/terraform/aws-infrastructure/environments/production.tfvars b/terraform/aws-infrastructure/environments/production.tfvars
new file mode 100644
index 0000000..855dbd2
--- /dev/null
+++ b/terraform/aws-infrastructure/environments/production.tfvars
@@ -0,0 +1,41 @@
+# Production Environment Configuration
+# High availability and security
+
+aws_region   = "us-east-1"
+environment  = "production"
+project_name = "myapp"
+
+# VPC
+vpc_cidr            = "10.0.0.0/16"
+enable_nat_gateway  = true
+single_nat_gateway  = false  # HA - NAT per AZ
+
+# EC2 / ASG
+instance_type        = "t3.large"
+asg_min_size         = 3
+asg_max_size         = 20
+asg_desired_capacity = 3
+
+# ALB
+enable_alb_deletion_protection = true
+
+# RDS
+db_instance_class          = "db.r5.xlarge"
+db_allocated_storage       = 500
+db_username                = "admin"
+db_password                = "USE_AWS_SECRETS_MANAGER"  # DO NOT COMMIT REAL PASSWORD!
+db_multi_az                = true
+db_backup_retention_period = 30
+
+# Route53
+create_route53_zone = true
+domain_name         = "example.com"
+subdomain           = "app"
+
+# Monitoring
+alert_email_addresses = [
+  "devops-oncall@example.com",
+  "alerts@example.com"
+]
+
+# Cost: ~$500-1000/month