github-personal/terraform-hcloud-talos
1
0
Fork 0
mirror of https://github.com/outbackdingo/terraform-hcloud-talos.git synced 2026-01-27 18:20:26 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
test
terraform-hcloud-talos/network.tf
Marcel Richter 9484dc8c3f fix(network): floating ip could not be generated
2024-06-03 15:46:25 +02:00

145 lines
5.1 KiB
HCL
Raw Permalink Blame History

locals {
# https://github.com/hetznercloud/hcloud-cloud-controller-manager/blob/main/docs/deploy_with_networks.md#considerations-on-the-ip-ranges
network_ipv4_cidr = var.network_ipv4_cidr
node_ipv4_cidr = var.node_ipv4_cidr
node_ipv4_cidr_mask_size = split("/", local.node_ipv4_cidr)[1] # 24
pod_ipv4_cidr = var.pod_ipv4_cidr
service_ipv4_cidr = var.service_ipv4_cidr
}
resource "hcloud_network" "this" {
name = var.cluster_name
ip_range = local.network_ipv4_cidr
labels = {
"cluster" = var.cluster_name
}
}
resource "hcloud_network_subnet" "nodes" {
network_id = hcloud_network.this.id
type = "cloud"
network_zone = data.hcloud_location.this.network_zone
ip_range = local.node_ipv4_cidr
}
locals {
create_floating_ip = var.enable_floating_ip && var.floating_ip == null
}
resource "hcloud_floating_ip" "control_plane_ipv4" {
count = local.create_floating_ip ? 1 : 0
name = "${local.cluster_prefix}control-plane-ipv4"
type = "ipv4"
home_location = data.hcloud_location.this.name
description = "Control Plane VIP"
delete_protection = false
labels = {
"cluster" = var.cluster_name,
"role" = "control-plane"
}
}
data "hcloud_floating_ip" "control_plane_ipv4" {
count = var.enable_floating_ip ? 1 : 0
id = coalesce(
can(var.floating_ip.id) ? var.floating_ip.id : null,
local.create_floating_ip ? hcloud_floating_ip.control_plane_ipv4[0].id : null
)
}
resource "hcloud_floating_ip_assignment" "this" {
count = var.control_plane_count > 0 && local.create_floating_ip ? 1 : 0
floating_ip_id = data.hcloud_floating_ip.control_plane_ipv4[0].id
server_id = hcloud_server.control_planes[local.control_planes[0].name].id
depends_on = [
hcloud_server.control_planes,
]
}
resource "hcloud_primary_ip" "control_plane_ipv4" {
count = var.control_plane_count > 0 ? var.control_plane_count : 1
# If control_plane_count is 0, we still need to create a primary IP for debugging purposes
name = "${local.cluster_prefix}control-plane-${count.index + 1}-ipv4"
datacenter = data.hcloud_datacenter.this.name
type = "ipv4"
assignee_type = "server"
auto_delete = false
labels = {
"cluster" = var.cluster_name,
"role" = "control-plane"
}
}
resource "hcloud_primary_ip" "control_plane_ipv6" {
count = var.enable_ipv6 ? var.control_plane_count > 0 ? var.control_plane_count : 1 : 0
name = "${local.cluster_prefix}control-plane-${count.index + 1}-ipv6"
datacenter = data.hcloud_datacenter.this.name
type = "ipv6"
assignee_type = "server"
auto_delete = false
labels = {
"cluster" = var.cluster_name,
"role" = "control-plane"
}
}
resource "hcloud_primary_ip" "worker_ipv4" {
count = var.worker_count > 0 ? var.worker_count : 1
name = "${local.cluster_prefix}worker-${count.index + 1}-ipv4"
datacenter = data.hcloud_datacenter.this.name
type = "ipv4"
assignee_type = "server"
auto_delete = false
labels = {
"cluster" = var.cluster_name,
"role" = "worker"
}
}
resource "hcloud_primary_ip" "worker_ipv6" {
count = var.enable_ipv6 ? var.worker_count > 0 ? var.worker_count : 1 : 0
name = "${local.cluster_prefix}worker-${count.index + 1}-ipv6"
datacenter = data.hcloud_datacenter.this.name
type = "ipv6"
assignee_type = "server"
auto_delete = false
labels = {
"cluster" = var.cluster_name,
"role" = "worker"
}
}
locals {
control_plane_public_ipv4_list = [
for ipv4 in hcloud_primary_ip.control_plane_ipv4 : ipv4.ip_address
]
control_plane_public_ipv6_list = [
for ipv6 in hcloud_primary_ip.control_plane_ipv6 : ipv6.ip_address
]
control_plane_public_ipv6_subnet_list = [
for ipv6 in hcloud_primary_ip.control_plane_ipv6 : ipv6.ip_network
]
worker_public_ipv4_list = [
for ipv4 in hcloud_primary_ip.worker_ipv4 : ipv4.ip_address
]
worker_public_ipv6_list = [
for ipv6 in hcloud_primary_ip.worker_ipv6 : ipv6.ip_address
]
worker_public_ipv6_subnet_list = [
for ipv6 in hcloud_primary_ip.worker_ipv6 : ipv6.ip_network
]
# https://docs.hetzner.com/cloud/networks/faq/#are-any-ip-addresses-reserved
# We may not use th following IP addresses:
# - The first IP address of your network IP range. For example, in 10.0.0.0/8, you cannot use 10.0.0.1.
# - The network and broadcast IP addresses of any subnet. For example, in 10.0.0.0/24, you cannot use 10.0.0.0 as well as 10.0.0.255.
# - The special private IP address 172.31.1.1. This IP address is being used as a default gateway of your server's public network interface.
control_plane_private_vip_ipv4 = cidrhost(hcloud_network_subnet.nodes.ip_range, 100)
control_plane_private_ipv4_list = [
for index in range(var.control_plane_count > 0 ? var.control_plane_count : 1) : cidrhost(hcloud_network_subnet.nodes.ip_range, index + 101)
]
worker_private_ipv4_list = [
for index in range(var.worker_count > 0 ? var.worker_count : 1) : cidrhost(hcloud_network_subnet.nodes.ip_range, index + 201)
]
}
Reference in New Issue View Git Blame Copy Permalink