Skip to content

Commit

Permalink
Merge pull request #485 from aztfmod/js-vmss
Browse files Browse the repository at this point in the history 
Add VMSS Module
  • Loading branch information
@arnaudlh
arnaudlh authored Jun 9, 2021
2 parents 5855979 + 9a29fda commit 2be7362
Show file tree
Hide file tree
Showing 22 changed files with 1,710 additions and 1 deletion.
2 changes: 2 additions & 0 deletions .github/workflows/master-standalone-tf13.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -48,6 +48,8 @@ jobs:
"compute/virtual_machine/106-marketplace-image-with-plan",
"compute/virtual_machine/210-vm-bastion-winrm",
"compute/virtual_machine/211-vm-bastion-winrm-agents",
"compute/virtual_machine_scale_set/100-linux-win-vmss-lb",
"compute/virtual_machine_scale_set/101-linux-win-vmss-agw",
"compute/windows_virtual_desktop/wvd_resources",
"cosmos_db/100-simple-cosmos-db-cassandra",
"cosmos_db/100-simple-cosmos-db-cassandra",
Expand Down
2 changes: 2 additions & 0 deletions .github/workflows/master-standalone-tf14.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -49,6 +49,8 @@ jobs:
"compute/virtual_machine/106-marketplace-image-with-plan",
"compute/virtual_machine/210-vm-bastion-winrm",
"compute/virtual_machine/211-vm-bastion-winrm-agents",
"compute/virtual_machine_scale_set/100-linux-win-vmss-lb",
"compute/virtual_machine_scale_set/101-linux-win-vmss-agw",
"compute/windows_virtual_desktop/wvd_resources",
"cosmos_db/100-simple-cosmos-db-cassandra",
"cosmos_db/100-simple-cosmos-db-gremlin",
Expand Down
2 changes: 2 additions & 0 deletions .github/workflows/master-standalone-tf15.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -56,6 +56,8 @@ jobs:
"compute/virtual_machine/106-marketplace-image-with-plan",
"compute/virtual_machine/210-vm-bastion-winrm",
"compute/virtual_machine/211-vm-bastion-winrm-agents",
"compute/virtual_machine_scale_set/100-linux-win-vmss-lb",
"compute/virtual_machine_scale_set/101-linux-win-vmss-agw",
"compute/windows_virtual_desktop/wvd_resources",
"cosmos_db/100-simple-cosmos-db-cassandra",
"cosmos_db/100-simple-cosmos-db-gremlin",
Expand Down
1 change: 1 addition & 0 deletions examples/compute/virtual_machine/100-single-linux-vm/configuration.tfvars
View file
Original file line number Diff line number Diff line change
Expand Up @@ -42,6 +42,7 @@ virtual_machines = {
# Value of the keys from networking.tfvars
vnet_key = "vnet_region1"
subnet_key = "example"
primary = true
name = "0"
enable_ip_forwarding = false
internal_dns_name_label = "nic0"
Expand Down
357 changes: 357 additions & 0 deletions examples/compute/virtual_machine_scale_set/100-linux-win-vmss-lb/configuration.tfvars
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,357 @@
global_settings = {
default_region = "region1"
prefix = "example"
regions = {
region1 = "southeastasia"
}
}

resource_groups = {
rg1 = {
name = "vmss-lb-exmp-rg"
}
}

managed_identities = {
example_mi = {
name = "example_mi"
resource_group_key = "rg1"
}
}

vnets = {
vnet1 = {
resource_group_key = "rg1"
vnet = {
name = "vmss"
address_space = ["10.100.0.0/16"]
}
specialsubnets = {}
subnets = {
subnet1 = {
name = "compute"
cidr = ["10.100.1.0/24"]
}
}

}
}


keyvaults = {
kv1 = {
name = "vmsslbexmpkv"
resource_group_key = "rg1"
sku_name = "standard"
creation_policies = {
logged_in_user = {
secret_permissions = ["Set", "Get", "List", "Delete", "Purge", "Recover"]
key_permissions = ["Get", "List", "Update", "Create", "Import", "Delete", "Recover", "Backup", "Restore", "Decrypt", "Encrypt", "UnwrapKey", "WrapKey", "Verify", "Sign", "Purge"]
}
}
}
}

keyvault_keys = {
key1 = {
keyvault_key = "kv1"
resource_group_key = "rg1"
name = "vmsskey"
key_type = "RSA"
key_size = "2048"
key_opts = ["encrypt", "decrypt", "sign", "verify", "wrapKey", "unwrapKey"]
}
}


diagnostic_storage_accounts = {
# Stores boot diagnostic for region1
bootdiag1 = {
name = "vmsslbexamplebootdiag1"
resource_group_key = "rg1"
account_kind = "StorageV2"
account_tier = "Standard"
account_replication_type = "LRS"
access_tier = "Cool"
}
}

# Application security groups
application_security_groups = {
app_sg1 = {
resource_group_key = "rg1"
name = "app_sg1"

}
}

# Load Balancer
public_ip_addresses = {
lb_pip1 = {
name = "lb_pip1"
resource_group_key = "rg1"
sku = "Basic"
# Note: For UltraPerformance ExpressRoute Virtual Network gateway, the associated Public IP needs to be sku "Basic" not "Standard"
allocation_method = "Dynamic"
# allocation method needs to be Dynamic
ip_version = "IPv4"
idle_timeout_in_minutes = "4"
}
lb_pip2 = {
name = "lb_pip12"
resource_group_key = "rg1"
sku = "Basic"
# Note: For UltraPerformance ExpressRoute Virtual Network gateway, the associated Public IP needs to be sku "Basic" not "Standard"
allocation_method = "Dynamic"
# allocation method needs to be Dynamic
ip_version = "IPv4"
idle_timeout_in_minutes = "4"
}
}

# Public Load Balancer will be created. For Internal/Private Load Balancer config, please refer 102-internal-load-balancer example.

load_balancers = {
lb1 = {
name = "lb-vmss"
sku = "basic"
resource_group_key = "rg1"
backend_address_pool_name = "vmss1"
frontend_ip_configurations = {
config1 = {
name = "config1"
public_ip_address_key = "lb_pip1"
}
}
}
lb2 = {
name = "lb-vmss2"
sku = "basic"
resource_group_key = "rg1"
backend_address_pool_name = "vmss1"
frontend_ip_configurations = {
config1 = {
name = "config1"
public_ip_address_key = "lb_pip2"
}
}
}
}


virtual_machine_scale_sets = {
vmss1 = {
resource_group_key = "rg1"
boot_diagnostics_storage_account_key = "bootdiag1"
os_type = "linux"
keyvault_key = "kv1"

vmss_settings = {
linux = {
name = "linux_vmss1"
computer_name_prefix = "lnx"
sku = "Standard_F2"
instances = 1
admin_username = "adminuser"
disable_password_authentication = true
provision_vm_agent = true
priority = "Spot"
eviction_policy = "Deallocate"
ultra_ssd_enabled = false # required if planning to use UltraSSD_LRS

upgrade_mode = "Manual" # Automatic / Rolling / Manual

# rolling_upgrade_policy = {
# # Only for upgrade mode = "Automatic / Rolling "
# max_batch_instance_percent = 20
# max_unhealthy_instance_percent = 20
# max_unhealthy_upgraded_instance_percent = 20
# pause_time_between_batches = ""
# }
# automatic_os_upgrade_policy = {
# # Only for upgrade mode = "Automatic"
# disable_automatic_rollback = false
# enable_automatic_os_upgrade = true
# }


os_disk = {
caching = "ReadWrite"
storage_account_type = "Standard_LRS"
disk_size_gb = 128
# disk_encryption_set_key = ""
# lz_key = ""
}

identity = {
# type = "SystemAssigned"
type = "UserAssigned"
managed_identity_keys = ["example_mi"]

remote = {
lz_key_name = {
managed_identity_keys = []
}
}
}

# custom_image_id = ""

source_image_reference = {
publisher = "Canonical"
offer = "UbuntuServer"
sku = "18.04-LTS"
version = "latest"
}

}
}

network_interfaces = {
# option to assign each nic to different LB/ App GW

nic0 = {

name = "0"
primary = true
vnet_key = "vnet1"
subnet_key = "subnet1"
load_balancers = {
lb1 = {
lb_key = "lb1"
# lz_key = ""
}
}

application_security_groups = {
asg1 = {
asg_key = "app_sg1"
# lz_key = ""
}
}

enable_accelerated_networking = false
enable_ip_forwarding = false
internal_dns_name_label = "nic0"
}
}


data_disks = {
data1 = {
caching = "None" # None / ReadOnly / ReadWrite
create_option = "Empty" # Empty / FromImage (only if source image includes data disks)
disk_size_gb = "10"
lun = 1
storage_account_type = "Standard_LRS" # UltraSSD_LRS only possible when > additional_capabilities { ultra_ssd_enabled = true }
disk_iops_read_write = 100 # only for UltraSSD Disks
disk_mbps_read_write = 100 # only for UltraSSD Disks
write_accelerator_enabled = false # true requires Premium_LRS and caching = "None"
# disk_encryption_set_key = "set1"
# lz_key = "" # lz_key for disk_encryption_set_key if remote
}
}

}

vmss2 = {
resource_group_key = "rg1"
provision_vm_agent = true
boot_diagnostics_storage_account_key = "bootdiag1"
os_type = "windows"
keyvault_key = "kv1"

vmss_settings = {
windows = {
name = "win"
computer_name_prefix = "win"
sku = "Standard_F2"
instances = 1
admin_username = "adminuser"
disable_password_authentication = true
priority = "Spot"
eviction_policy = "Deallocate"

upgrade_mode = "Manual" # Automatic / Rolling / Manual

# rolling_upgrade_policy = {
# # Only for upgrade mode = "Automatic / Rolling "
# max_batch_instance_percent = 20
# max_unhealthy_instance_percent = 20
# max_unhealthy_upgraded_instance_percent = 20
# pause_time_between_batches = ""
# }
# automatic_os_upgrade_policy = {
# # Only for upgrade mode = "Automatic"
# disable_automatic_rollback = false
# enable_automatic_os_upgrade = true
# }

os_disk = {
caching = "ReadWrite"
storage_account_type = "Standard_LRS"
disk_size_gb = 128
}

identity = {
type = "SystemAssigned"
managed_identity_keys = []
}

source_image_reference = {
publisher = "MicrosoftWindowsServer"
offer = "WindowsServer"
sku = "2016-Datacenter"
version = "latest"
}

}
}

network_interfaces = {
nic0 = {
# Value of the keys from networking.tfvars
name = "0"
primary = true
vnet_key = "vnet1"
subnet_key = "subnet1"

load_balancers = {
lb2 = {
lb_key = "lb2"
# lz_key = ""
}
}

application_security_groups = {
asg1 = {
asg_key = "app_sg1"
# lz_key = ""
}
}

enable_accelerated_networking = false
enable_ip_forwarding = false
internal_dns_name_label = "nic0"
}
}
ultra_ssd_enabled = false # required if planning to use UltraSSD_LRS

data_disks = {
data1 = {
caching = "None" # None / ReadOnly / ReadWrite
create_option = "Empty" # Empty / FromImage (only if source image includes data disks)
disk_size_gb = "10"
lun = 1
storage_account_type = "Standard_LRS" # UltraSSD_LRS only possible when > additional_capabilities { ultra_ssd_enabled = true }
disk_iops_read_write = 100 # only for UltraSSD Disks
disk_mbps_read_write = 100 # only for UltraSSD Disks
write_accelerator_enabled = false # true requires Premium_LRS and caching = "None"
# disk_encryption_set_key = "set1"
# lz_key = "" # lz_key for disk_encryption_set_key if remote
}
}

}

}
Loading

0 comments on commit 2be7362

Please sign in to comment.