182 lines
4.1 KiB
HCL
182 lines
4.1 KiB
HCL
region = "eu01"
|
|
service_account_token = ""
|
|
project_id = ""
|
|
organization_id = "03a34540-3c1a-4794-b2c6-7111ecf824ef"
|
|
service_account_key_path = "/Users/schlenz/sa-key-dd5fa2c9-1651-4da7-8404-9ac4fe9bc3d5.json"
|
|
|
|
security_groups = {
|
|
ssh_ingress_group = {
|
|
name = "ssh-ingress-group"
|
|
description = "ALLOW SSH ingress"
|
|
rules = [
|
|
{ description = "SSH RULE 1"
|
|
direction = "ingress"
|
|
ether_type = "IPv4"
|
|
ip_range = "0.0.0.0/0"
|
|
protocol = {
|
|
name = "tcp"
|
|
}
|
|
port_range = {
|
|
min = 22
|
|
max = 22
|
|
}
|
|
},
|
|
]
|
|
},
|
|
|
|
# web_traffic_group = {
|
|
# name = "web-traffic-group"
|
|
# description = "ALLOW WEB TRAFFIC ingress"
|
|
# rules = [
|
|
# { description = "ALLOW ALL 80"
|
|
# direction = "ingress"
|
|
# ether_type = "IPv4"
|
|
# ip_range = "0.0.0.0/0"
|
|
# protocol = {
|
|
# name = "tcp"
|
|
# }
|
|
# port_range = {
|
|
# min = 80
|
|
# max = 80
|
|
# }
|
|
# },
|
|
# { description = "ALLOW ALL 443"
|
|
# direction = "ingress"
|
|
# ether_type = "IPv4"
|
|
# ip_range = "0.0.0.0/0"
|
|
# protocol = {
|
|
# name = "tcp"
|
|
# }
|
|
# port_range = {
|
|
# min = 443
|
|
# max = 443
|
|
# }
|
|
# },
|
|
# ]
|
|
# },
|
|
}
|
|
|
|
postgres_instances = {
|
|
dev = {
|
|
name = "pg-test-instance"
|
|
version = 17
|
|
flavor = {
|
|
cpu = 2,
|
|
ram = 4
|
|
}
|
|
storage = {
|
|
class = "premium-perf6-stackit",
|
|
size = 20
|
|
}
|
|
replicas = 1
|
|
acl = ["0.0.0.0/0"]
|
|
backup_schedule = "00 00 * * *"
|
|
|
|
users = [
|
|
{ username = "adminusr",
|
|
roles = ["login", "createdb"]
|
|
},
|
|
{ username = "testusr",
|
|
roles = ["login"]
|
|
}
|
|
]
|
|
|
|
databases = [
|
|
{
|
|
name = "testdb",
|
|
owner = "admin"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
|
|
networks = {
|
|
wan_network = {
|
|
name = "wan_network"
|
|
ipv4_nameservers = ["1.1.1.1", "8.8.8.8"]
|
|
ipv4_prefix_length = 24
|
|
ipv4_prefix = "10.219.0.0/24"
|
|
routed = true
|
|
}
|
|
lan_network1 = {
|
|
name = "lan_network1"
|
|
ipv4_prefix_length = 24
|
|
ipv4_prefix = "10.220.1.0/24"
|
|
routed = true
|
|
nics = {
|
|
p2_lan1 = {
|
|
nic_name = "P2LAN1"
|
|
nic_ipv4 = "10.220.1.32"
|
|
nic_security = true
|
|
nic_security_group_names = ["ssh-ingress-group"]
|
|
}
|
|
}
|
|
}
|
|
lan_network2 = {
|
|
name = "lan_network2"
|
|
ipv4_prefix_length = 24
|
|
ipv4_prefix = "10.221.0.0/24"
|
|
routed = true
|
|
}
|
|
lan_network3 = {
|
|
name = "lan_network3"
|
|
ipv4_nameservers = ["1.1.1.1", "8.8.8.8"]
|
|
ipv4_prefix_length = 24
|
|
ipv4_prefix = "10.223.3.0/24"
|
|
routed = true
|
|
}
|
|
wan = {
|
|
name = "MGMT"
|
|
ipv4_nameservers = ["1.1.1.1", "8.8.8.8"]
|
|
ipv4_prefix_length = 24
|
|
nic_ipv4 = "10.224.0.254"
|
|
}
|
|
|
|
db = {
|
|
name = "db-net"
|
|
nic_ipv4 = "10.0.0.126"
|
|
nic_security = true
|
|
}
|
|
}
|
|
|
|
# ske_clusters = {
|
|
# dev = {
|
|
# name = "dev-cluster"
|
|
# kubernetes_version_min = "1.31"
|
|
# node_pools = [
|
|
# { name = "default"
|
|
# machine_type = "c2.1"
|
|
# availability_zones = ["eu01-1", "eu01-2"]
|
|
# volume_size = 40
|
|
# minimum = 1
|
|
# maximum = 3
|
|
# }
|
|
# ]
|
|
# }
|
|
|
|
# staging = {
|
|
# name = "staging-cluster"
|
|
# kubernetes_version_min = "1.31"
|
|
# node_pools = [
|
|
# { name = "general"
|
|
# machine_type = "c2.2"
|
|
# availability_zones = ["eu03-1", "eu03-2"]
|
|
# volume_size = 80
|
|
# minimum = 2
|
|
# maximum = 4
|
|
# }
|
|
# ]
|
|
# }
|
|
# }
|
|
|
|
# observability_instances = {
|
|
# starter = {
|
|
# name = "Observability-1"
|
|
# plan_name = "Observability-Starter-EU01"
|
|
# }
|
|
|
|
# prod = {
|
|
# name = "Observability-2"
|
|
# plan_name = "Observability-Large-EU01"
|
|
# }
|
|
# }
|