provider/azurerm: Add example of VNET to VNET Peering (#14338)

* initial commit - 101-vm-from-user-image * changed branch name * not deploying - storage problems * provisions vm but image not properly prepared * storage not correct * provisions properly * changed main.tf to azuredeploy.tf * added tfvars and info for README * tfvars ignored and corrected file ext * added CI config; added sane defaults for variables; updated deployment script, added mac specific deployment for local testing * deploy.sh to be executable * executable deploy files * added CI files; changed vars * prep for PR * removal of old folder * prep for PR * wrong args for travis * more PR prep * updated README * commented out variables in terraform.tfvars * Topic 101 vm from user image (#2) * initial commit - 101-vm-from-user-image * added tfvars and info for README * added CI config; added sane defaults for variables; updated deployment script, added mac specific deployment for local testing * prep for PR * added new template * oops, left off master * prep for PR * correct repository for destination * renamed scripts to be more intuitive; added check for docker * merge vm simple; vm from image * initial commit * deploys locally * updated deploy * consolidated deploy and after_deploy into a single script; simplified ci process; added os_profile_linux_config * added terraform show * changed to allow http & https (like ARM tmplt) * changed host_name & host_name variable desc * added az cli check * on this branch, only build test_dir; master will aggregate all the examples * merge master * added new constructs/naming for deploy scripts, etc. * suppress az login output * suppress az login output * forgot about line breaks * breaking build as an example * fixing broken build example * merge of CI config * fixed grammar in readme * prep for PR * took out armviz button and minor README changes * changed host_name * fixed merge conflicts * changed host_name variable * updating Hashicorp's changes to merged simple linux branch * updating files to merge w/master and prep for Hashicorp pr * Revert "updating files to merge w/master and prep for Hashicorp pr" This reverts commit b850cd5d2a858eff073fc5a1097a6813d0f8b362. * Revert "updating Hashicorp's changes to merged simple linux branch" This reverts commit dbaf8d14a9cdfcef0281919671357f6171ebd4e6. * removing vm from user image example from this branch * removed old branch * vnet-to-vnet-peering initial commit * azure-2-vms-loadbalancer-lbrules (#13) * initial commit * need to change lb_rule & nic * deploys locally * updated README * updated travis and deploy scripts for Hari's repo * renamed deploy script * clean up * prep for PR * updated readme * fixing conflict in .travis.yml * cleaned up commented out section * validate peers via cli * add CI build tag * added graph * added graph; deleted out.tfplan * updating head * updating variable descriptions * added graph to README * updated graph in README * Prepping for Hashicorp PR * removing unneeded files * changed README
2017-05-11 11:40:03 -05:00 · 2017-05-11 11:40:03 -05:00 · 5ed7f16d1d
parent 0978b4f31e
commit 5ed7f16d1d
6 changed files with 141 additions and 0 deletions
--- a/examples/azure-vnet-to-vnet-peering/README.md
+++ b/examples/azure-vnet-to-vnet-peering/README.md
@ -0,0 +1,24 @@
+# VNET to VNET Peering
+
+This template creates two VNETs in the same location, each containing a single subnet, and creates connections between them using VNET Peering.
+
+## main.tf
+The `main.tf` file contains the actual resources that will be deployed. It also contains the Azure Resource Group definition and any defined variables.
+
+## outputs.tf
+This data is outputted when `terraform apply` is called, and can be queried using the `terraform output` command.
+
+## provider.tf
+You may leave the provider block in the `main.tf`, as it is in this template, or you can create a file called `provider.tf` and add it to your `.gitignore` file.
+
+Azure requires that an application is added to Azure Active Directory to generate the `client_id`, `client_secret`, and `tenant_id` needed by Terraform (`subscription_id` can be recovered from your Azure account details). Please go [here](https://www.terraform.io/docs/providers/azurerm/) for full instructions on how to create this to populate your `provider.tf` file.
+
+## terraform.tfvars
+If a `terraform.tfvars` file is present in the current directory, Terraform automatically loads it to populate variables. We don't recommend saving usernames and password to version control, but you can create a local secret variables file and use `-var-file` to load it.
+
+If you are committing this template to source control, please insure that you add this file to your `.gitignore` file.
+
+## variables.tf
+The `variables.tf` file contains all of the input parameters that the user can specify when deploying this Terraform template.
+
+![`terraform graph`](/examples/azure-vnet-to-vnet-peering/graph.png)
--- a/examples/azure-vnet-to-vnet-peering/deploy.ci.sh
+++ b/examples/azure-vnet-to-vnet-peering/deploy.ci.sh
@ -0,0 +1,37 @@
+#!/bin/bash
+
+set -o errexit -o nounset
+
+docker run --rm -it \
+  -e ARM_CLIENT_ID \
+  -e ARM_CLIENT_SECRET \
+  -e ARM_SUBSCRIPTION_ID \
+  -e ARM_TENANT_ID \
+  -v $(pwd):/data \
+  --workdir=/data \
+  --entrypoint "/bin/sh" \
+  hashicorp/terraform:light \
+  -c "/bin/terraform get; \
+      /bin/terraform validate; \
+      /bin/terraform plan -out=out.tfplan -var resource_group=$KEY; \
+      /bin/terraform apply out.tfplan; \
+      /bin/terraform show;"
+
+# cleanup deployed azure resources via azure-cli
+docker run --rm -it \
+  azuresdk/azure-cli-python \
+  sh -c "az login --service-principal -u $ARM_CLIENT_ID -p $ARM_CLIENT_SECRET --tenant $ARM_TENANT_ID > /dev/null; \
+         az network vnet peering show -g $KEY --vnet-name $KEY'-vnet1' -n vNet1-to-vNet2;
+         az network vnet peering show -g $KEY --vnet-name $KEY'-vnet2' -n vNet2-to-vNet1;"
+
+# cleanup deployed azure resources via terraform
+docker run --rm -it \
+  -e ARM_CLIENT_ID \
+  -e ARM_CLIENT_SECRET \
+  -e ARM_SUBSCRIPTION_ID \
+  -e ARM_TENANT_ID \
+  -v $(pwd):/data \
+  --workdir=/data \
+  --entrypoint "/bin/sh" \
+  hashicorp/terraform:light \
+  -c "/bin/terraform destroy -force -var resource_group=$KEY;"
--- a/examples/azure-vnet-to-vnet-peering/deploy.mac.sh
+++ b/examples/azure-vnet-to-vnet-peering/deploy.mac.sh
@ -0,0 +1,15 @@
+#!/bin/bash
+
+set -o errexit -o nounset
+
+if docker -v; then
+
+  # generate a unique string for CI deployment
+  export KEY=$(cat /dev/urandom | env LC_CTYPE=C tr -cd 'a-z' | head -c 12)
+  export PASSWORD=$KEY$(cat /dev/urandom | env LC_CTYPE=C tr -cd 'A-Z' | head -c 2)$(cat /dev/urandom | env LC_CTYPE=C tr -cd '0-9' | head -c 2)
+
+  /bin/sh ./deploy.ci.sh
+
+else
+  echo "Docker is used to run terraform commands, please install before run:  https://docs.docker.com/docker-for-mac/install/"
+fi
--- a/examples/azure-vnet-to-vnet-peering/graph.png
+++ b/examples/azure-vnet-to-vnet-peering/graph.png
--- a/examples/azure-vnet-to-vnet-peering/main.tf
+++ b/examples/azure-vnet-to-vnet-peering/main.tf
@ -0,0 +1,56 @@
+# provider "azurerm" {
+#   subscription_id = "REPLACE-WITH-YOUR-SUBSCRIPTION-ID"
+#   client_id       = "REPLACE-WITH-YOUR-CLIENT-ID"
+#   client_secret   = "REPLACE-WITH-YOUR-CLIENT-SECRET"
+#   tenant_id       = "REPLACE-WITH-YOUR-TENANT-ID"
+# }
+
+resource "azurerm_resource_group" "rg" {
+  name     = "${var.resource_group}"
+  location = "${var.location}"
+}
+
+resource "azurerm_virtual_network" "vnet1" {
+  name                = "${var.resource_group}-vnet1"
+  location            = "${var.location}"
+  address_space       = ["10.0.0.0/24"]
+  resource_group_name = "${azurerm_resource_group.rg.name}"
+
+  subnet {
+    name           = "subnet1"
+    address_prefix = "10.0.0.0/24"
+  }
+}
+
+resource "azurerm_virtual_network" "vnet2" {
+  name                = "${var.resource_group}-vnet2"
+  location            = "${var.location}"
+  address_space       = ["192.168.0.0/24"]
+  resource_group_name = "${azurerm_resource_group.rg.name}"
+
+  subnet {
+    name           = "subnet1"
+    address_prefix = "192.168.0.0/24"
+  }
+}
+
+resource "azurerm_virtual_network_peering" "peer1" {
+  name                         = "vNet1-to-vNet2"
+  resource_group_name          = "${azurerm_resource_group.rg.name}"
+  virtual_network_name         = "${azurerm_virtual_network.vnet1.name}"
+  remote_virtual_network_id    = "${azurerm_virtual_network.vnet2.id}"
+  allow_virtual_network_access = true
+  allow_forwarded_traffic      = false
+  allow_gateway_transit        = false
+}
+
+resource "azurerm_virtual_network_peering" "peer2" {
+  name                         = "vNet2-to-vNet1"
+  resource_group_name          = "${azurerm_resource_group.rg.name}"
+  virtual_network_name         = "${azurerm_virtual_network.vnet2.name}"
+  remote_virtual_network_id    = "${azurerm_virtual_network.vnet1.id}"
+  allow_virtual_network_access = true
+  allow_forwarded_traffic      = false
+  allow_gateway_transit        = false
+  use_remote_gateways          = false
+}
--- a/examples/azure-vnet-to-vnet-peering/variables.tf
+++ b/examples/azure-vnet-to-vnet-peering/variables.tf
@ -0,0 +1,9 @@
+variable "resource_group" {
+  description = "The name of the resource group in which the virtual networks are created"
+  default     = "myrg"
+}
+
+variable "location" {
+  description = "The location/region where the virtual networks are created. Changing this forces a new resource to be created."
+  default     = "southcentralus"
+}