-
Notifications
You must be signed in to change notification settings - Fork 12
Expand file tree
/
Copy pathmain.tf
More file actions
110 lines (94 loc) · 4.12 KB
/
main.tf
File metadata and controls
110 lines (94 loc) · 4.12 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
resource "random_string" "random" {
length = 6
special = false
upper = false
}
module "aks-westeurope" {
#source = "github.com/Azure/terraform-azurerm-aks.git?ref=2fdde3c4d1079ce7f8119f3caccc59d9d7d117a1"
source = "Azure/aks/azurerm"
version = "9.3.0"
resource_group_name = azurerm_resource_group.westeurope.name
kubernetes_version = var.kubernetes_version
orchestrator_version = var.kubernetes_version
prefix = azurerm_resource_group.westeurope.location
network_plugin = "azure"
vnet_subnet_id = module.network-westeurope.vnet_subnets[0]
os_disk_size_gb = 50
sku_tier = "Standard"
role_based_access_control_enabled = true
rbac_aad = false
private_cluster_enabled = false
azure_policy_enabled = true
enable_auto_scaling = true
enable_host_encryption = false
log_analytics_workspace_enabled = false
agents_min_count = 1
agents_max_count = 5
agents_count = null # Please set `agents_count` `null` while `enable_auto_scaling` is `true` to avoid possible `agents_count` changes.
agents_max_pods = 100
agents_pool_name = "system"
agents_availability_zones = ["1", "2"]
agents_type = "VirtualMachineScaleSets"
agents_size = var.agents_size
agents_labels = {
"nodepool" : "defaultnodepool"
}
agents_tags = {
"Agent" : "defaultnodepoolagent"
}
green_field_application_gateway_for_ingress = {
name = "aks-agw-westeurope"
subnet_id = module.network-westeurope.vnet_subnets[2]
}
network_policy = "azure"
net_profile_dns_service_ip = "10.0.0.10"
net_profile_service_cidr = "10.0.0.0/16"
key_vault_secrets_provider_enabled = true
secret_rotation_enabled = true
secret_rotation_interval = "3m"
node_pools = local.node_pools_west
depends_on = [module.network-westeurope]
}
module "aks-eastus" {
source = "Azure/aks/azurerm"
version = "7.5.0"
resource_group_name = azurerm_resource_group.eastus.name
kubernetes_version = var.kubernetes_version
orchestrator_version = var.kubernetes_version
prefix = azurerm_resource_group.eastus.location
network_plugin = "azure"
vnet_subnet_id = module.network-eastus.vnet_subnets[0]
os_disk_size_gb = 50
sku_tier = "Standard"
role_based_access_control_enabled = true
rbac_aad = false
private_cluster_enabled = false
http_application_routing_enabled = false
azure_policy_enabled = true
enable_auto_scaling = true
enable_host_encryption = false
log_analytics_workspace_enabled = false
agents_min_count = 1
agents_max_count = 5
agents_count = null # Please set `agents_count` `null` while `enable_auto_scaling` is `true` to avoid possible `agents_count` changes.
agents_max_pods = 100
agents_pool_name = "system"
agents_availability_zones = ["1", "2"]
agents_type = "VirtualMachineScaleSets"
agents_size = var.agents_size
agents_labels = {
"nodepool" : "defaultnodepool"
}
agents_tags = {
"Agent" : "defaultnodepoolagent"
}
ingress_application_gateway_enabled = false
network_policy = "azure"
net_profile_dns_service_ip = "10.1.0.10"
net_profile_service_cidr = "10.1.0.0/16"
key_vault_secrets_provider_enabled = true
secret_rotation_enabled = true
secret_rotation_interval = "3m"
node_pools = local.node_pools_east
depends_on = [module.network-eastus]
}