2023-11-16 18:55:24 +01:00
|
|
|
#
|
2023-11-14 18:52:30 +01:00
|
|
|
variable "os_project_data" {
|
|
|
|
|
type = map(string)
|
|
|
|
|
default = {
|
|
|
|
|
id = "e8f8ca72f30648a8b389b4e745ac83a9"
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
variable "dns_zone" {
|
2023-11-24 09:51:04 +01:00
|
|
|
type = map(string)
|
2023-11-14 18:52:30 +01:00
|
|
|
default = {
|
2023-11-24 09:51:04 +01:00
|
|
|
zone_name = "cloud-dev.d4science.org."
|
|
|
|
|
email = "postmaster@isti.cnr.it"
|
2023-11-14 18:52:30 +01:00
|
|
|
description = "DNS primary zone for the d4s-dev-cloud project"
|
2023-11-24 09:51:04 +01:00
|
|
|
ttl = 8600
|
|
|
|
|
}
|
2023-11-14 18:52:30 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
variable "dns_zone_id" {
|
|
|
|
|
# Set with the correct value after the setup is complete
|
|
|
|
|
default = ""
|
|
|
|
|
}
|
|
|
|
|
|
2023-11-20 18:37:55 +01:00
|
|
|
variable "default_security_group_name" {
|
|
|
|
|
default = "default"
|
|
|
|
|
}
|
|
|
|
|
|
2023-11-14 18:52:30 +01:00
|
|
|
variable "main_private_network" {
|
|
|
|
|
type = map(string)
|
|
|
|
|
default = {
|
2023-11-24 09:51:04 +01:00
|
|
|
name = "d4s-dev-cloud-main"
|
2023-11-14 18:52:30 +01:00
|
|
|
description = "D4Science DEV private network (use this as the main network)"
|
2023-11-24 09:51:04 +01:00
|
|
|
}
|
2023-11-14 18:52:30 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
variable "main_private_subnet" {
|
|
|
|
|
type = map(string)
|
|
|
|
|
default = {
|
2023-11-24 09:51:04 +01:00
|
|
|
name = "d4s-dev-cloud-sub"
|
|
|
|
|
description = "D4Science DEV main private subnet"
|
|
|
|
|
cidr = "10.1.28.0/22"
|
|
|
|
|
gateway_ip = "10.1.28.1"
|
2023-11-14 18:52:30 +01:00
|
|
|
allocation_start = "10.1.28.30"
|
2023-11-24 09:51:04 +01:00
|
|
|
allocation_end = "10.1.31.254"
|
|
|
|
|
}
|
2023-11-14 18:52:30 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
variable "external_router" {
|
|
|
|
|
type = map(string)
|
|
|
|
|
default = {
|
2023-11-24 09:51:04 +01:00
|
|
|
name = "d4s-dev-cloud-external-router"
|
2023-11-14 18:52:30 +01:00
|
|
|
description = "D4Science DEV main router"
|
2023-11-24 09:51:04 +01:00
|
|
|
id = "2ae28c5f-036b-45db-bc9f-5bab8fa3e914"
|
|
|
|
|
}
|
2023-11-14 18:52:30 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
variable "main_haproxy_l7_ip" {
|
2023-11-24 09:51:04 +01:00
|
|
|
type = list(string)
|
2023-11-15 19:43:35 +01:00
|
|
|
default = ["10.1.28.50", "10.1.30.241"]
|
2023-11-14 18:52:30 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
variable "octavia_information" {
|
|
|
|
|
type = map(string)
|
|
|
|
|
default = {
|
2023-11-24 09:51:04 +01:00
|
|
|
main_lb_name = "lb-dev-l4"
|
2023-11-14 18:52:30 +01:00
|
|
|
main_lb_description = "Main L4 load balancer for the D4Science DEV"
|
2023-11-24 09:51:04 +01:00
|
|
|
octavia_flavor = "octavia_amphora-mvcpu-ha"
|
|
|
|
|
octavia_flavor_id = "394988b5-6603-4a1e-a939-8e177c6681c7"
|
|
|
|
|
main_lb_hostname = "main-lb"
|
2023-11-14 18:52:30 +01:00
|
|
|
}
|
|
|
|
|
}
|
2023-11-16 18:55:24 +01:00
|
|
|
|
2023-11-17 16:50:33 +01:00
|
|
|
variable "basic_services_ip" {
|
2023-11-16 18:55:24 +01:00
|
|
|
type = map(string)
|
|
|
|
|
default = {
|
2023-11-24 09:51:04 +01:00
|
|
|
ca = "10.1.29.247"
|
|
|
|
|
ca_cidr = "10.1.29.247/32"
|
|
|
|
|
ssh_jump = "10.1.29.164"
|
|
|
|
|
ssh_jump_cidr = "10.1.29.164/32"
|
|
|
|
|
prometheus = "10.1.30.129"
|
|
|
|
|
prometheus_cidr = "10.1.30.129/32"
|
|
|
|
|
haproxy_l7_1 = "10.1.28.50"
|
2023-11-17 16:50:33 +01:00
|
|
|
haproxy_l7_1_cidr = "10.1.28.50/32"
|
2023-11-24 09:51:04 +01:00
|
|
|
haproxy_l7_2 = "10.1.30.241"
|
2023-11-17 16:50:33 +01:00
|
|
|
haproxy_l7_2_cidr = "10.1.30.241/32"
|
2023-11-24 09:51:04 +01:00
|
|
|
octavia_main = "10.1.28.227"
|
2023-11-17 16:50:33 +01:00
|
|
|
octavia_main_cidr = "10.1.28.227/32"
|
2023-11-16 18:55:24 +01:00
|
|
|
}
|
|
|
|
|
}
|
2023-11-23 12:39:22 +01:00
|
|
|
|
|
|
|
|
variable "orientdb_net" {
|
|
|
|
|
type = map(string)
|
|
|
|
|
default = {
|
2023-11-24 09:51:04 +01:00
|
|
|
network_name = "orientdb-net"
|
|
|
|
|
network_description = "Network used by the OrientDB cluster and to access the service"
|
|
|
|
|
network_cidr = "192.168.10.0/24"
|
|
|
|
|
allocation_pool_start = "192.168.10.11"
|
|
|
|
|
allocation_pool_end = "192.168.10.254"
|
|
|
|
|
}
|
2023-11-23 12:39:22 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
variable "orientdb_se_net" {
|
|
|
|
|
type = map(string)
|
|
|
|
|
default = {
|
2023-11-24 09:51:04 +01:00
|
|
|
network_name = "orientdb-se-net"
|
|
|
|
|
network_description = "Network used by the OrientDB for Smart Executor"
|
|
|
|
|
network_cidr = "192.168.12.0/24"
|
|
|
|
|
allocation_pool_start = "192.168.12.11"
|
|
|
|
|
allocation_pool_end = "192.168.12.254"
|
|
|
|
|
}
|
2023-11-23 12:39:22 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
variable "orientdb_se_secgroup" {
|
2023-11-24 09:51:04 +01:00
|
|
|
default = "access_to_orientdb_se"
|
2023-11-23 12:39:22 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
variable "postgresql_secgroup" {
|
2023-11-24 09:51:04 +01:00
|
|
|
default = "PostgreSQL service"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#Added by Francesco
|
|
|
|
|
variable "security_group_list" {
|
|
|
|
|
type = map(string)
|
|
|
|
|
default = {
|
|
|
|
|
postgreSQL = "PostgreSQL service"
|
|
|
|
|
acaland = "acaland's dev machine"
|
|
|
|
|
haproxy = "HAPROXY L7"
|
|
|
|
|
access_to_orientdb = "access_to_orientdb"
|
|
|
|
|
dataminer-publish = "dataminer-publish"
|
|
|
|
|
docker_swarm_NFS = "Docker Swarm NFS"
|
|
|
|
|
public_HTTPS = "Public HTTPS"
|
|
|
|
|
haproxy = "HAPROXY L7"
|
|
|
|
|
orientdb_internal_docker_traffic = "orientdb_internal_docker_traffic"
|
|
|
|
|
limited_SSH_access = "Limited SSH access"
|
|
|
|
|
access_to_the_timescaledb_service = "access_to_the_timescaledb_service"
|
|
|
|
|
docker_swarm = "Docker Swarm"
|
|
|
|
|
http_and_https_from_the_load_balancers = "http and https from the load balancers"
|
|
|
|
|
limited_HTTPS_access = "Limited HTTPS access"
|
|
|
|
|
mongo = "mongo"
|
|
|
|
|
limited_SSH_access = "Limited SSH access"
|
|
|
|
|
default = "default"
|
|
|
|
|
cassandra = "Cassandra"
|
|
|
|
|
access_to_orientdb_se = "access_to_orientdb_se"
|
|
|
|
|
}
|
2023-11-23 12:39:22 +01:00
|
|
|
}
|
