admin/infrastructure
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

added stuff
Some checks failed
Terraform Plan / plan (push) Failing after 0s
Details

Browse Source
This commit is contained in:
Noah
2025-12-24 15:03:36 +01:00
parent 108b6d1806
commit c48a89c768
9 changed files with 316 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
terraform/.terraform/modules/modules.json
View File

@@ -1 +1 @@
{"Modules":[{"Key":"","Source":"","Dir":"."},{"Key":"prod-firewall","Source":"./modules/firewall","Dir":"modules/firewall"}]} {"Modules":[{"Key":"","Source":"","Dir":"."},{"Key":"private-network","Source":"./modules/network","Dir":"modules/network"},{"Key":"prod-firewall","Source":"./modules/firewall","Dir":"modules/firewall"}]}

3
terraform/main.tf
View File

@@ -1,3 +1,6 @@
module "prod-firewall" { module "prod-firewall" {
source = "./modules/firewall" source = "./modules/firewall"
}
module "private-network" {
source = "./modules/network"
} }

0
terraform/modules/dns/main.tf Normal file
View File

0
terraform/modules/dns/output.tf Normal file
View File

0
terraform/modules/dns/variables.tf Normal file
View File

3
terraform/modules/firewall/main.tf
View File

@@ -13,6 +13,9 @@ terraform {
resource "hcloud_firewall" "prod-fw" { resource "hcloud_firewall" "prod-fw" {
name = "prod-fw" name = "prod-fw"
labels = {
environment = "production"
}
rule { rule {
direction = "in" direction = "in"
protocol = "tcp" protocol = "tcp"

27
terraform/modules/network/main.tf
View File

@@ -0,0 +1,27 @@
terraform {
required_providers {
hcloud = {
source = "hetznercloud/hcloud"
version = "1.57.0"
}
netbox = {
source = "e-breuninger/netbox"
version = "5.0.0"
}
}
}
resource "hcloud_network" "privnet" {
name = "privnet"
ip_range = "10.0.0.0/8"
labels = {
environment = "production"
}
}
resource "hcloud_network_subnet" "privsubnet" {
network_id = hcloud_network.privnet.id
type = "cloud"
network_zone = "eu-central"
ip_range = "10.0.1.0/24"
}

142
terraform/terraform.tfstate Normal file
View File

@@ -0,0 +1,142 @@
{
"version": 4,
"terraform_version": "1.14.3",
"serial": 10,
"lineage": "7c69e311-e46b-0d39-a679-49d13d742523",
"outputs": {},
"resources": [
{
"module": "module.private-network",
"mode": "managed",
"type": "hcloud_network",
"name": "privnet",
"provider": "provider[\"registry.terraform.io/hetznercloud/hcloud\"]",
"instances": [
{
"schema_version": 0,
"attributes": {
"delete_protection": false,
"expose_routes_to_vswitch": false,
"id": "11776424",
"ip_range": "10.0.0.0/8",
"labels": {
"environment": "production"
},
"name": "privnet"
},
"sensitive_attributes": [],
"identity_schema_version": 0,
"private": "bnVsbA=="
}
]
},
{
"module": "module.private-network",
"mode": "managed",
"type": "hcloud_network_subnet",
"name": "privsubnet",
"provider": "provider[\"registry.terraform.io/hetznercloud/hcloud\"]",
"instances": [
{
"schema_version": 0,
"attributes": {
"gateway": "10.0.0.1",
"id": "11776424-10.0.1.0/24",
"ip_range": "10.0.1.0/24",
"network_id": 11776424,
"network_zone": "eu-central",
"type": "cloud",
"vswitch_id": null
},
"sensitive_attributes": [],
"identity_schema_version": 0,
"private": "bnVsbA==",
"dependencies": [
"module.private-network.hcloud_network.privnet"
]
}
]
},
{
"module": "module.prod-firewall",
"mode": "managed",
"type": "hcloud_firewall",
"name": "prod-fw",
"provider": "provider[\"registry.terraform.io/hetznercloud/hcloud\"]",
"instances": [
{
"schema_version": 0,
"attributes": {
"apply_to": [],
"id": "10325524",
"labels": {
"environment": "production"
},
"name": "prod-fw",
"rule": [
{
"description": "Allow HTTP",
"destination_ips": [],
"direction": "in",
"port": "80",
"protocol": "tcp",
"source_ips": [
"0.0.0.0/0",
"::/0"
]
},
{
"description": "Allow HTTP/S",
"destination_ips": [],
"direction": "in",
"port": "443",
"protocol": "tcp",
"source_ips": [
"0.0.0.0/0",
"::/0"
]
},
{
"description": "Allow SSH",
"destination_ips": [],
"direction": "in",
"port": "22",
"protocol": "tcp",
"source_ips": [
"0.0.0.0/0",
"::/0"
]
},
{
"description": "Allow all outbound TCP traffic",
"destination_ips": [
"0.0.0.0/0",
"::/0"
],
"direction": "out",
"port": "",
"protocol": "tcp",
"source_ips": []
},
{
"description": "Allow all outbound UDP traffic",
"destination_ips": [
"0.0.0.0/0",
"::/0"
],
"direction": "out",
"port": "",
"protocol": "udp",
"source_ips": []
}
]
},
"sensitive_attributes": [],
"identity_schema_version": 0,
"private": "bnVsbA=="
}
]
}
],
"check_results": null
}

140
terraform/terraform.tfstate.backup Normal file
View File

@@ -0,0 +1,140 @@
{
"version": 4,
"terraform_version": "1.14.3",
"serial": 7,
"lineage": "7c69e311-e46b-0d39-a679-49d13d742523",
"outputs": {},
"resources": [
{
"module": "module.private-network",
"mode": "managed",
"type": "hcloud_network",
"name": "privnet",
"provider": "provider[\"registry.terraform.io/hetznercloud/hcloud\"]",
"instances": [
{
"schema_version": 0,
"attributes": {
"delete_protection": false,
"expose_routes_to_vswitch": false,
"id": "11776424",
"ip_range": "10.0.0.0/8",
"labels": null,
"name": "privnet"
},
"sensitive_attributes": [],
"identity_schema_version": 0,
"private": "bnVsbA=="
}
]
},
{
"module": "module.private-network",
"mode": "managed",
"type": "hcloud_network_subnet",
"name": "privsubnet",
"provider": "provider[\"registry.terraform.io/hetznercloud/hcloud\"]",
"instances": [
{
"schema_version": 0,
"attributes": {
"gateway": "10.0.0.1",
"id": "11776424-10.0.1.0/24",
"ip_range": "10.0.1.0/24",
"network_id": 11776424,
"network_zone": "eu-central",
"type": "cloud",
"vswitch_id": null
},
"sensitive_attributes": [],
"identity_schema_version": 0,
"private": "bnVsbA==",
"dependencies": [
"module.private-network.hcloud_network.privnet"
]
}
]
},
{
"module": "module.prod-firewall",
"mode": "managed",
"type": "hcloud_firewall",
"name": "prod-fw",
"provider": "provider[\"registry.terraform.io/hetznercloud/hcloud\"]",
"instances": [
{
"schema_version": 0,
"attributes": {
"apply_to": [],
"id": "10325524",
"labels": {
"environment": "production"
},
"name": "prod-fw",
"rule": [
{
"description": "Allow HTTP",
"destination_ips": [],
"direction": "in",
"port": "80",
"protocol": "tcp",
"source_ips": [
"0.0.0.0/0",
"::/0"
]
},
{
"description": "Allow HTTP/S",
"destination_ips": [],
"direction": "in",
"port": "443",
"protocol": "tcp",
"source_ips": [
"0.0.0.0/0",
"::/0"
]
},
{
"description": "Allow SSH",
"destination_ips": [],
"direction": "in",
"port": "22",
"protocol": "tcp",
"source_ips": [
"0.0.0.0/0",
"::/0"
]
},
{
"description": "Allow all outbound TCP traffic",
"destination_ips": [
"0.0.0.0/0",
"::/0"
],
"direction": "out",
"port": "",
"protocol": "tcp",
"source_ips": []
},
{
"description": "Allow all outbound UDP traffic",
"destination_ips": [
"0.0.0.0/0",
"::/0"
],
"direction": "out",
"port": "",
"protocol": "udp",
"source_ips": []
}
]
},
"sensitive_attributes": [],
"identity_schema_version": 0,
"private": "bnVsbA=="
}
]
}
],
"check_results": null
}