Sha256: 6f13302d9071582941ac659064c299c9a082606076b27c60d900f5952b94ee4c
Contents?: true
Size: 1.24 KB
Versions: 4
Compression:
Stored size: 1.24 KB
Contents
provider "google" {
credentials = "${file("${var.credentials}")}"
project = "${var.project}"
region = "${var.region}"
}
# Allow SSH to Platform Bastion
resource "google_compute_firewall" "bastion" {
name = "bastion-rules"
network = "${google_compute_network.platform.name}"
allow {
protocol = "icmp"
}
allow {
protocol = "tcp"
ports = ["22"]
}
target_tags = ["bastion"]
}
# Bastion host
resource "google_compute_address" "bastion" {
name = "bastion-ip"
}
resource "google_compute_instance" "bastion" {
name = "bastion"
machine_type = "n1-standard-1"
zone = "${var.zone}"
tags = ["bastion", "platform-internal"]
boot_disk {
initialize_params {
image = "debian-cloud/debian-8"
}
}
network_interface {
subnetwork = "${google_compute_subnetwork.platform_net.name}"
access_config {
nat_ip = "${google_compute_address.bastion.address}"
}
}
can_ip_forward = true
metadata {
sshKeys = "kite:${file(var.public_key)}"
}
metadata_startup_script = <<EOT
#!/bin/bash
sh -c "echo 1 > /proc/sys/net/ipv4/ip_forward"
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
EOT
service_account {
scopes = ["userinfo-email", "compute-ro", "storage-ro"]
}
}
Version data entries
4 entries across 4 versions & 1 rubygems
| Version | Path |
|---|---|
| kite-0.0.9 | tpl/gcp/terraform/main.tf |
| kite-0.0.8 | tpl/gcp/terraform/main.tf |
| kite-0.0.7 | tpl/gcp/terraform/main.tf |
| kite-0.0.6 | tpl/gcp/terraform/main.tf |