165 lines
6.8 KiB
Markdown
165 lines
6.8 KiB
Markdown
# Net Address Reservation Module
|
|
|
|
This module allows reserving Compute Engine external, global, and internal addresses.
|
|
|
|
## Examples
|
|
|
|
### External and global addresses
|
|
|
|
```hcl
|
|
module "addresses" {
|
|
source = "./fabric/modules/net-address"
|
|
project_id = var.project_id
|
|
external_addresses = {
|
|
one = { region = "europe-west1" }
|
|
two = { region = "europe-west2" }
|
|
}
|
|
global_addresses = {
|
|
app-1 = {}
|
|
app-2 = {}
|
|
}
|
|
}
|
|
# tftest modules=1 resources=4 inventory=external.yaml
|
|
```
|
|
|
|
### Internal addresses
|
|
|
|
```hcl
|
|
module "addresses" {
|
|
source = "./fabric/modules/net-address"
|
|
project_id = var.project_id
|
|
internal_addresses = {
|
|
ilb-1 = {
|
|
purpose = "SHARED_LOADBALANCER_VIP"
|
|
region = var.region
|
|
subnetwork = var.subnet.self_link
|
|
}
|
|
ilb-2 = {
|
|
address = "10.0.0.2"
|
|
region = var.region
|
|
subnetwork = var.subnet.self_link
|
|
}
|
|
}
|
|
}
|
|
# tftest modules=1 resources=2 inventory=internal.yaml
|
|
```
|
|
|
|
### IPv6 addresses
|
|
|
|
You can reserve both external and internal IPv6 addresses.
|
|
|
|
```hcl
|
|
module "addresses" {
|
|
source = "./fabric/modules/net-address"
|
|
project_id = var.project_id
|
|
external_addresses = {
|
|
nlb = {
|
|
region = var.region
|
|
subnetwork = var.subnet.self_link
|
|
ipv6 = {
|
|
endpoint_type = "NETLB"
|
|
}
|
|
}
|
|
}
|
|
internal_addresses = {
|
|
ilb = {
|
|
ipv6 = {}
|
|
purpose = "SHARED_LOADBALANCER_VIP"
|
|
region = var.region
|
|
subnetwork = var.subnet.self_link
|
|
}
|
|
vm = {
|
|
ipv6 = {}
|
|
region = var.region
|
|
subnetwork = var.subnet.self_link
|
|
}
|
|
}
|
|
}
|
|
# tftest modules=1 resources=3 inventory=ipv6.yaml
|
|
```
|
|
|
|
### PSA addresses
|
|
|
|
```hcl
|
|
module "addresses" {
|
|
source = "./fabric/modules/net-address"
|
|
project_id = var.project_id
|
|
psa_addresses = {
|
|
cloudsql-mysql = {
|
|
address = "10.10.10.0"
|
|
network = var.vpc.self_link
|
|
prefix_length = 24
|
|
}
|
|
}
|
|
}
|
|
# tftest modules=1 resources=1 inventory=psa.yaml
|
|
```
|
|
|
|
### PSC addresses
|
|
|
|
```hcl
|
|
module "addresses" {
|
|
source = "./fabric/modules/net-address"
|
|
project_id = var.project_id
|
|
psc_addresses = {
|
|
one = {
|
|
address = null
|
|
network = var.vpc.self_link
|
|
}
|
|
two = {
|
|
address = "10.0.0.32"
|
|
network = var.vpc.self_link
|
|
}
|
|
}
|
|
}
|
|
# tftest modules=1 resources=2 inventory=psc.yaml
|
|
```
|
|
|
|
# IPSec Interconnect addresses
|
|
|
|
```hcl
|
|
module "addresses" {
|
|
source = "./fabric/modules/net-address"
|
|
project_id = var.project_id
|
|
ipsec_interconnect_addresses = {
|
|
vpn-gw-range-1 = {
|
|
address = "10.255.255.0"
|
|
region = var.region
|
|
network = var.vpc.self_link
|
|
prefix_length = 29
|
|
}
|
|
vpn-gw-range-2 = {
|
|
address = "10.255.255.8"
|
|
region = var.region
|
|
network = var.vpc.self_link
|
|
prefix_length = 29
|
|
}
|
|
}
|
|
}
|
|
# tftest modules=1 resources=2 inventory=ipsec-interconnect.yaml
|
|
```
|
|
<!-- BEGIN TFDOC -->
|
|
## Variables
|
|
|
|
| name | description | type | required | default |
|
|
|---|---|:---:|:---:|:---:|
|
|
| [project_id](variables.tf#L83) | Project where the addresses will be created. | <code>string</code> | ✓ | |
|
|
| [external_addresses](variables.tf#L17) | Map of external addresses, keyed by name. | <code title="map(object({ region = string description = optional(string, "Terraform managed.") ipv6 = optional(object({ endpoint_type = string })) labels = optional(map(string), {}) name = optional(string) }))">map(object({…}))</code> | | <code>{}</code> |
|
|
| [global_addresses](variables.tf#L38) | List of global addresses to create. | <code title="map(object({ description = optional(string, "Terraform managed.") ipv6 = optional(map(string)) # To be left empty for ipv6 name = optional(string) }))">map(object({…}))</code> | | <code>{}</code> |
|
|
| [internal_addresses](variables.tf#L48) | Map of internal addresses to create, keyed by name. | <code title="map(object({ region = string subnetwork = string address = optional(string) description = optional(string, "Terraform managed.") ipv6 = optional(map(string)) # To be left empty for ipv6 labels = optional(map(string)) name = optional(string) purpose = optional(string) tier = optional(string) }))">map(object({…}))</code> | | <code>{}</code> |
|
|
| [ipsec_interconnect_addresses](variables.tf#L64) | Map of internal addresses used for HPA VPN over Cloud Interconnect. | <code title="map(object({ region = string address = string network = string description = optional(string, "Terraform managed.") name = optional(string) prefix_length = number }))">map(object({…}))</code> | | <code>{}</code> |
|
|
| [psa_addresses](variables.tf#L88) | Map of internal addresses used for Private Service Access. | <code title="map(object({ address = string network = string prefix_length = number description = optional(string, "Terraform managed.") name = optional(string) }))">map(object({…}))</code> | | <code>{}</code> |
|
|
| [psc_addresses](variables.tf#L101) | Map of internal addresses used for Private Service Connect. | <code title="map(object({ address = string network = string description = optional(string, "Terraform managed.") name = optional(string) }))">map(object({…}))</code> | | <code>{}</code> |
|
|
|
|
## Outputs
|
|
|
|
| name | description | sensitive |
|
|
|---|---|:---:|
|
|
| [external_addresses](outputs.tf#L17) | Allocated external addresses. | |
|
|
| [global_addresses](outputs.tf#L25) | Allocated global external addresses. | |
|
|
| [internal_addresses](outputs.tf#L33) | Allocated internal addresses. | |
|
|
| [ipsec_interconnect_addresses](outputs.tf#L41) | Allocated internal addresses for HA VPN over Cloud Interconnect. | |
|
|
| [psa_addresses](outputs.tf#L49) | Allocated internal addresses for PSA endpoints. | |
|
|
| [psc_addresses](outputs.tf#L57) | Allocated internal addresses for PSC endpoints. | |
|
|
<!-- END TFDOC -->
|