diff --git a/.DS_Store b/.DS_Store new file mode 100644 index 0000000..c98b1c7 Binary files /dev/null and b/.DS_Store differ diff --git a/terraform/lb.tf b/terraform/lb.tf index 3bb640f..0f565fb 100644 --- a/terraform/lb.tf +++ b/terraform/lb.tf @@ -14,8 +14,8 @@ resource "ncloud_lb_target_group" "jh-ncloud-test-lb-group" { health_check { protocol = "HTTPS" http_method = "GET" - port = 6443 - url_path = "/livez?verbose" + port = 8081 + url_path = "/" cycle = 30 up_threshold = 3 down_threshold = 3 diff --git a/terraform/ncp_acg.tf b/terraform/ncp_acg.tf new file mode 100644 index 0000000..79573c3 --- /dev/null +++ b/terraform/ncp_acg.tf @@ -0,0 +1,23 @@ +resource "ncloud_access_control_group" "exem-dsk-acg" { + name = "exem-dsk-acg" + vpc_no = ncloud_vpc.jh-test-ncloud-vpc.id +} + +resource "ncloud_access_control_group_rule" "exem-dsk-acg-rule" { + access_control_group_no = ncloud_access_control_group.exem-dsk-acg.id + + inbound { + protocol = "TCP" + ip_block = "10.40.0.0/16" + port_range = "1-65535" + description = "all inbound" + } + + outbound { + protocol = "TCP" + ip_block = "0.0.0.0/0" + port_range = "1-65535" + description = "all outbound" + } + +} \ No newline at end of file diff --git a/terraform/ncp_acl.tf b/terraform/ncp_acl.tf new file mode 100644 index 0000000..b7b158a --- /dev/null +++ b/terraform/ncp_acl.tf @@ -0,0 +1,33 @@ +resource "ncloud_network_acl" "jh-test-ncloud-acl" { //접근 제어 목록 + vpc_no = ncloud_vpc.jh-test-ncloud-vpc.id + name = "jh-test-ncloud-acl" +} + +resource "ncloud_network_acl_rule" "jh-test-ncloud-acl-list" { // 접근 제어 룰 + network_acl_no = ncloud_network_acl.jh-test-ncloud-acl.id + + inbound { // 인바운드 규칙 + priority = 0 + protocol = "TCP" + rule_action = "ALLOW" + ip_block = "118.223.123.161/32" + port_range = "22" + } + + inbound { // 인바운드 규칙 + priority = 1 + protocol = "TCP" + rule_action = "ALLOW" + ip_block = "0.0.0.0/0" + port_range = "443" + } + + outbound { // 아웃바운드 규칙 + priority = 0 + protocol = "TCP" + rule_action = "ALLOW" + ip_block = "0.0.0.0/0" + port_range = "1-65535" + } + +} \ No newline at end of file diff --git a/terraform/server.tf b/terraform/server.tf index 8a10f6a..a1e7442 100644 --- a/terraform/server.tf +++ b/terraform/server.tf @@ -1,8 +1,3 @@ -resource "ncloud_init_script" "dsk-node-ssh-key" { - name = "dsk-node-ssh-key" - content = "echo 'ssh-rsa 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 byeonjunghun@byeonjeonghun-ui-Macmini.local' >> ~/.ssh/authorized_keys" -} - resource "ncloud_login_key" "dsk-test-key" { // 인증키 설정 key_name = "dsk-test-key" } @@ -16,17 +11,16 @@ resource "ncloud_server" "jh-test-ncloud-bastion" { subnet_no = ncloud_subnet.jh-test-ncloud-subnet-public.id name = "bastion" #server_image_product_code = "SW.VSVR.OS.LNX64.UBNTU.SVR2004.B050" - member_server_image_no = 20108119 + member_server_image_no = 20109481 server_product_code = "SVR.VSVR.HICPU.C002.M004.NET.SSD.B050.G002" login_key_name = ncloud_login_key.dsk-test-key.key_name - init_script_no = ncloud_init_script.dsk-node-ssh-key.init_script_no } resource "ncloud_server" "jh-test-ncloud-master" { subnet_no = ncloud_subnet.jh-test-ncloud-subnet.id name = "master" #server_image_product_code = "SW.VSVR.OS.LNX64.UBNTU.SVR2004.B050" - member_server_image_no = 20108119 + member_server_image_no = 20109481 server_product_code = "SVR.VSVR.HICPU.C002.M004.NET.SSD.B050.G002" login_key_name = ncloud_login_key.dsk-test-key.key_name } @@ -35,7 +29,7 @@ resource "ncloud_server" "jh-test-ncloud-worker-1" { subnet_no = ncloud_subnet.jh-test-ncloud-subnet.id name = "worker-1" #server_image_product_code = "SW.VSVR.OS.LNX64.UBNTU.SVR2004.B050" - member_server_image_no = 20108119 + member_server_image_no = 20109481 server_product_code = "SVR.VSVR.HICPU.C002.M004.NET.SSD.B050.G002" login_key_name = ncloud_login_key.dsk-test-key.key_name } @@ -44,7 +38,7 @@ resource "ncloud_server" "jh-test-ncloud-worker-2" { subnet_no = ncloud_subnet.jh-test-ncloud-subnet.id name = "worker-2" #server_image_product_code = "SW.VSVR.OS.LNX64.UBNTU.SVR2004.B050" - member_server_image_no = 20108119 + member_server_image_no = 20109481 server_product_code = "SVR.VSVR.HICPU.C002.M004.NET.SSD.B050.G002" login_key_name = ncloud_login_key.dsk-test-key.key_name } \ No newline at end of file diff --git a/terraform/terraform.tfstate b/terraform/terraform.tfstate index 7feddab..390e2b5 100644 --- a/terraform/terraform.tfstate +++ b/terraform/terraform.tfstate @@ -1,7 +1,7 @@ { "version": 4, "terraform_version": "1.4.6", - "serial": 294, + "serial": 457, "lineage": "cbcad2ae-0d6e-3dd6-8d21-54b24fd937e0", "outputs": {}, "resources": [], diff --git a/terraform/terraform.tfstate.backup b/terraform/terraform.tfstate.backup index bd94ead..9d9e2c1 100644 --- a/terraform/terraform.tfstate.backup +++ b/terraform/terraform.tfstate.backup @@ -1,7 +1,7 @@ { "version": 4, "terraform_version": "1.4.6", - "serial": 266, + "serial": 430, "lineage": "cbcad2ae-0d6e-3dd6-8d21-54b24fd937e0", "outputs": {}, "resources": [ @@ -14,18 +14,18 @@ { "schema_version": 0, "attributes": { - "content": "-----BEGIN RSA PRIVATE KEY-----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\nYsCbWNybzZHFnPeW60FqaroUfKDD7K6mIKqvmOHbRsB438KDdSlF\n-----END RSA PRIVATE KEY-----", + "content": "-----BEGIN RSA PRIVATE KEY-----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\n5K2ViVPzu/qob2tPXLlc8JcpL7GJ4y+sS0bF86vH9UONm92GhBk=\n-----END RSA PRIVATE KEY-----", "content_base64": null, - "content_base64sha256": "NzpYvQt9ZxIFhdA/qwGWOwwrA/x9/tTxt6fY9FzG4s4=", - "content_base64sha512": "HS18rnn6ieN2n0PGLpzyLSdsIq7ubrn6Rcw3zKI/QFlp8ApFp6c3IRHTh+htPZw/cUPHBp1coiCMOW21v7Mqrw==", - "content_md5": "dbe88eec82c1562ca97a014e171c2e42", - "content_sha1": "d4cdf705ec7176e1da5e11e316d95e1298c17ea4", - "content_sha256": "373a58bd0b7d67120585d03fab01963b0c2b03fc7dfed4f1b7a7d8f45cc6e2ce", - "content_sha512": "1d2d7cae79fa89e3769f43c62e9cf22d276c22aeee6eb9fa45cc37cca23f405969f00a45a7a7372111d387e86d3d9c3f7143c7069d5ca2208c396db5bfb32aaf", + "content_base64sha256": "bLn4cdwE7XHxFxJX1fx+o0pkkTu8WxbscW+DCYhyX90=", + "content_base64sha512": "iXY34Vq3/KRPOjbGt7f7NMJd02cwxJF7lbvW8s+sTnNb+4o04nOLV8ja2p5OY3T2S/u0n4IqsWQeKIHV+JWBaw==", + "content_md5": "83df14edc5e34c18a083938c7a47e538", + "content_sha1": "5f0811a6964dccc1dc78f8ee6c8e9f20834daaa5", + "content_sha256": "6cb9f871dc04ed71f1171257d5fc7ea34a64913bbc5b16ec716f830988725fdd", + "content_sha512": "897637e15ab7fca44f3a36c6b7b7fb34c25dd36730c4917b95bbd6f2cfac4e735bfb8a34e2738b57c8dada9e4e6374f64bfbb49f822ab1641e2881d5f895816b", "directory_permission": "0777", "file_permission": "0777", "filename": "dsk-test-key.pem", - "id": "d4cdf705ec7176e1da5e11e316d95e1298c17ea4", + "id": "5f0811a6964dccc1dc78f8ee6c8e9f20834daaa5", "sensitive_content": null, "source": null }, @@ -43,27 +43,6 @@ } ] }, - { - "mode": "managed", - "type": "ncloud_init_script", - "name": "dsk-node-ssh-key", - "provider": "provider[\"registry.terraform.io/navercloudplatform/ncloud\"]", - "instances": [ - { - "schema_version": 0, - "attributes": { - "content": "echo 'ssh-rsa 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 byeonjunghun@byeonjeonghun-ui-Macmini.local' \u003e\u003e ~/.ssh/authorized_keys", - "description": "", - "id": "58518", - "init_script_no": "58518", - "name": "dsk-node-ssh-key", - "os_type": "LNX" - }, - "sensitive_attributes": [], - "private": "bnVsbA==" - } - ] - }, { "mode": "managed", "type": "ncloud_lb", @@ -74,28 +53,30 @@ "schema_version": 0, "attributes": { "description": null, - "domain": "kube-api-server-lb-20108229-db796d21ba50.kr.lb.naverncp.com", - "id": "20108229", + "domain": "kube-api-server-lb-20179600-1471a90da019.kr.lb.naverncp.com", + "id": "20179600", "idle_timeout": 60, "ip_list": [ "10.40.40.8" ], "listener_no_list": [], - "load_balancer_no": "20108229", + "load_balancer_no": "20179600", "name": "kube-api-server-lb", "network_type": "PRIVATE", "subnet_no_list": [ - "109065" + "109836" ], "throughput_type": "SMALL", "timeouts": null, "type": "APPLICATION", - "vpc_no": "48720" + "vpc_no": "49013" }, "sensitive_attributes": [], "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozNjAwMDAwMDAwMDAwLCJkZWxldGUiOjMwMDAwMDAwMDAwMCwidXBkYXRlIjo2MDAwMDAwMDAwMDB9fQ==", "dependencies": [ - "ncloud_subnet.loadbalancer_subnet" + "ncloud_network_acl.jh-test-ncloud-acl", + "ncloud_subnet.loadbalancer_subnet", + "ncloud_vpc.jh-test-ncloud-vpc" ] } ] @@ -109,16 +90,16 @@ { "schema_version": 0, "attributes": { - "id": "96908", - "listener_no": "96908", - "load_balancer_no": "20108229", + "id": "100140", + "listener_no": "100140", + "load_balancer_no": "20179600", "port": 6443, "protocol": "HTTPS", "rule_no_list": [ - "119750" + "123100" ], "ssl_certificate_no": "20941", - "target_group_no": "380903", + "target_group_no": "388427", "timeouts": null, "tls_min_version_type": null, "use_http2": false @@ -128,6 +109,7 @@ "dependencies": [ "ncloud_lb.jh-ncloud-test-lb", "ncloud_lb_target_group.jh-ncloud-test-lb-group", + "ncloud_network_acl.jh-test-ncloud-acl", "ncloud_subnet.loadbalancer_subnet", "ncloud_vpc.jh-test-ncloud-vpc" ] @@ -156,17 +138,17 @@ "url_path": "/livez?verbose" } ], - "id": "380903", + "id": "388427", "load_balancer_instance_no": "", - "name": "tg18b46dd97db", + "name": "tg18b5ffa0c0e", "port": 6443, "protocol": "HTTPS", - "target_group_no": "380903", + "target_group_no": "388427", "target_no_list": [], "target_type": "VSVR", "use_proxy_protocol": false, "use_sticky_session": false, - "vpc_no": "48720" + "vpc_no": "49013" }, "sensitive_attributes": [], "private": "bnVsbA==", @@ -185,10 +167,10 @@ { "schema_version": 0, "attributes": { - "id": "2023-10-19 07:41:58.247348 +0000 UTC", - "target_group_no": "380903", + "id": "2023-10-24 04:43:38.586085 +0000 UTC", + "target_group_no": "388427", "target_no_list": [ - "20108237" + "20179611" ], "timeouts": null }, @@ -197,6 +179,7 @@ "dependencies": [ "ncloud_lb_target_group.jh-ncloud-test-lb-group", "ncloud_login_key.dsk-test-key", + "ncloud_network_acl.jh-test-ncloud-acl", "ncloud_server.jh-test-ncloud-master", "ncloud_subnet.jh-test-ncloud-subnet", "ncloud_vpc.jh-test-ncloud-vpc" @@ -213,10 +196,10 @@ { "schema_version": 0, "attributes": { - "fingerprint": "66:cd:6d:d4:ef:20:8d:9a:40:88:f8:cd:fb:b5:23:c1", + "fingerprint": "e6:0b:50:bd:71:84:8c:74:5c:e4:69:32:f9:7e:89:22", "id": "dsk-test-key", "key_name": "dsk-test-key", - "private_key": "-----BEGIN RSA PRIVATE KEY-----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\nYsCbWNybzZHFnPeW60FqaroUfKDD7K6mIKqvmOHbRsB438KDdSlF\n-----END RSA PRIVATE KEY-----", + "private_key": "-----BEGIN RSA PRIVATE KEY-----\nMIIEogIBAAKCAQEAgjUP5XD456I+9D4rEzl6sv4if01E4EwKHO+5Ntr2zg4W6QmS\netfZ10AeuhgVSe2zr3UePs2oHNkry3+p4mOWEvbw2i0h1dBJLRdO3Z2LWRGcBZkl\nT9QwjVzj3qgJUHWlUlhUU70TLGUuIjHzRI0uTHVp6MxwmaUCzrZJeLGypVpMymY8\nzUEh/TY9KjoXP16isWi8BwRRfv8L9Oa1yYH+i2PmxxNPRTqLe/JFfP03LPsmo0mc\nsf0QfHE5lelIe6xZoTpLpQEq51CWp/P5ypSIWFOc3r5eyXEhj7xIuIF80zyR/7U6\ntYDO9bvruypFzKpMG3DLwcImOL82n37hWqfr5QIDAQABAoIBAHBSAbJ1L+HxLclX\nz6S30saRP4T9TMsIDTlE+kr9vCWoNc81OKzLgtmSMG9r0wGBEZ3rs/mNQtYP6R2U\ntSHbslwNtVsfz644DMfe8WNvQgPFkwepQmyIqJFpbhBmeBJ2SfSsyaGq2t1TMubA\nnA+okiXWq1Ps970ygSd8TAjXkTndWimI/dWeGqD6nNfqxZQuL97BQECSrPUNXux+\nCZ3jhHrpsaGjwBwlELwEp7IxiHCR9/w5tCZTKoB6SQOydQ4qosO0ELdgID9Xhe0M\n23Fm5HjdBdhUEWc0rNNyKhZT3UhCM/ys0SjA1w+mInOqsmoUyKFPqkQtjLnTezui\nj+9meMkCgYEA1/1OgT9jQBj+AywxjsfDoUqJP7mEs1oHo1Ze7rT3kdZXvZ7+pY7h\nik8DMRaFLFwwi//TGYX7TQnBTnktW5XLu8SEVh0aKB/zRqTT5V4HwibhSOV/fdOr\nxABukl/R2kIxNEOf0BPZrPozRu4ARdvcFRAGa+etuRxmV+VYFMcIOrMCgYEAmlPG\nlIk4lQPZLe056VAlu5Acd6qmQUDN+/8Khpt8h8HMWvPDnhM+cBqIq4yi8KRQKF8v\n+oujNbvJpCL1UnIVGpiC+Bis/NJuvZWMFdg/jM2gz9L7ePMQDeOkaYk6p23qpNej\nkWwhBBNmugowyrGogCOfSM3F2RN4iSpV1yxE6wcCgYAEVk3RQpiXnOjc33JPT6uZ\n/YksAmmrwE8O9JkLag7emtNAN4UdhfT5dgS2Y6Fg9qjy5rwycwJM1blP/hbvE973\nckbGA+eWjq2v6Xdnz6+QMn+rmxAoUqvMT8XooovwOgwK5KC86OkiFBQbhIP04ylU\nMvIuEITohq13bl+Ka0S7CQKBgHqQLhWpJRazh7fBv0xcKptbSECBdqg8H1sSofll\nYvEuKG3TSngwMFY3vHMBriYPWNm3PxNr8qKqEOoaGVrw33HPzbPbZQck2G4YZriy\nlUXtyNlEZhMYdpeRQvHN2pc95CwmVfEYPuBNyDfYAAf6MCgUIlxfj9FmdUP6K1JI\nBjPhAoGAU8S+0Vfsa6jAIQoA+TFcKhjc8nVPnKz4KM6XC+ME7iHRtKrNwzH9tn2h\n2i3lMX1M/ykPhvOl2m7ouXNuy4f8yhjEpK8E8aF0a5Mo5iCnm1EnmgoUElqeTGd1\n5K2ViVPzu/qob2tPXLlc8JcpL7GJ4y+sS0bF86vH9UONm92GhBk=\n-----END RSA PRIVATE KEY-----", "timeouts": null }, "sensitive_attributes": [], @@ -234,15 +217,15 @@ "schema_version": 0, "attributes": { "description": "", - "id": "20106584", + "id": "20179601", "name": "jh-test-ncloud-netgw", - "nat_gateway_no": "20106584", + "nat_gateway_no": "20179601", "private_ip": "10.40.30.6", - "public_ip": "223.130.131.167", - "public_ip_no": "20106586", + "public_ip": "101.79.9.11", + "public_ip_no": "20179614", "subnet_name": "natgateway-subnet", - "subnet_no": "109067", - "vpc_no": "48720", + "subnet_no": "109839", + "vpc_no": "49013", "zone": "KR-2" }, "sensitive_attributes": [], @@ -265,11 +248,11 @@ "schema_version": 0, "attributes": { "description": "", - "id": "74573", + "id": "74925", "is_default": false, "name": "jh-test-ncloud-acl", - "network_acl_no": "74573", - "vpc_no": "48720" + "network_acl_no": "74925", + "vpc_no": "49013" }, "sensitive_attributes": [], "private": "bnVsbA==", @@ -288,7 +271,7 @@ { "schema_version": 0, "attributes": { - "id": "74573", + "id": "74925", "inbound": [ { "deny_allow_group_no": "", @@ -309,7 +292,7 @@ "rule_action": "ALLOW" } ], - "network_acl_no": "74573", + "network_acl_no": "74925", "outbound": [ { "deny_allow_group_no": "", @@ -341,22 +324,23 @@ "schema_version": 0, "attributes": { "description": "", - "id": "20108452", - "instance_no": "20108452", + "id": "20179687", + "instance_no": "20179687", "internet_line_type": null, "kind_type": null, - "public_ip": "175.106.96.120", - "public_ip_no": "20108452", - "server_instance_no": "20108234", + "public_ip": "223.130.132.200", + "public_ip_no": "20179687", + "server_instance_no": "20179602", "zone": null }, "sensitive_attributes": [], "private": "bnVsbA==", "dependencies": [ - "ncloud_init_script.dsk-node-ssh-key", "ncloud_login_key.dsk-test-key", + "ncloud_network_acl.jh-test-ncloud-acl", "ncloud_server.jh-test-ncloud-bastion", - "ncloud_subnet.jh-test-ncloud-subnet-public" + "ncloud_subnet.jh-test-ncloud-subnet-public", + "ncloud_vpc.jh-test-ncloud-vpc" ] } ] @@ -371,13 +355,13 @@ "schema_version": 0, "attributes": { "destination_cidr_block": "0.0.0.0/0", - "id": "route-1215077076", + "id": "route-288779823", "is_default": false, - "route_table_no": "102803", + "route_table_no": "103430", "target_name": "jh-test-ncloud-netgw", - "target_no": "20106584", + "target_no": "20179601", "target_type": "NATGW", - "vpc_no": "48720" + "vpc_no": "49013" }, "sensitive_attributes": [], "private": "bnVsbA==", @@ -401,12 +385,12 @@ "schema_version": 0, "attributes": { "description": "", - "id": "102803", + "id": "103430", "is_default": false, "name": "jh-test-cloud-rt-private", - "route_table_no": "102803", + "route_table_no": "103430", "supported_subnet_type": "PRIVATE", - "vpc_no": "48720" + "vpc_no": "49013" }, "sensitive_attributes": [], "private": "bnVsbA==", @@ -426,12 +410,12 @@ "schema_version": 0, "attributes": { "description": "", - "id": "102802", + "id": "103429", "is_default": false, "name": "jh-test-cloud-rt-public", - "route_table_no": "102802", + "route_table_no": "103429", "supported_subnet_type": "PUBLIC", - "vpc_no": "48720" + "vpc_no": "49013" }, "sensitive_attributes": [], "private": "bnVsbA==", @@ -450,9 +434,9 @@ { "schema_version": 0, "attributes": { - "id": "102803:109065", - "route_table_no": "102803", - "subnet_no": "109065" + "id": "103430:109836", + "route_table_no": "103430", + "subnet_no": "109836" }, "sensitive_attributes": [], "private": "bnVsbA==", @@ -474,9 +458,9 @@ { "schema_version": 0, "attributes": { - "id": "102802:109067", - "route_table_no": "102802", - "subnet_no": "109067" + "id": "103429:109839", + "route_table_no": "103429", + "subnet_no": "109839" }, "sensitive_attributes": [], "private": "bnVsbA==", @@ -498,9 +482,9 @@ { "schema_version": 0, "attributes": { - "id": "102803:109068", - "route_table_no": "102803", - "subnet_no": "109068" + "id": "103430:109837", + "route_table_no": "103430", + "subnet_no": "109837" }, "sensitive_attributes": [], "private": "bnVsbA==", @@ -522,9 +506,9 @@ { "schema_version": 0, "attributes": { - "id": "102802:109066", - "route_table_no": "102802", - "subnet_no": "109066" + "id": "103429:109838", + "route_table_no": "103429", + "subnet_no": "109838" }, "sensitive_attributes": [], "private": "bnVsbA==", @@ -553,23 +537,23 @@ "cpu_count": 2, "description": "", "fee_system_type_code": null, - "id": "20108234", - "init_script_no": "58518", - "instance_no": "20108234", + "id": "20179602", + "init_script_no": "", + "instance_no": "20179602", "internet_line_type": null, "is_encrypted_base_block_storage_volume": null, "is_fee_charging_monitoring": null, "is_protect_server_termination": false, "login_key_name": "dsk-test-key", - "member_server_image_no": "20108119", + "member_server_image_no": "20109481", "memory_size": 4294967296, "name": "bastion", "network_interface": [ { - "network_interface_no": "3476696", + "network_interface_no": "3489939", "order": 0, "private_ip": "10.40.20.6", - "subnet_no": "109066" + "subnet_no": "109838" } ], "placement_group_no": "", @@ -584,19 +568,20 @@ "server_image_name": null, "server_image_product_code": "SW.VSVR.OS.LNX64.UBNTU.SVR2004.B050", "server_product_code": "SVR.VSVR.HICPU.C002.M004.NET.SSD.B050.G002", - "subnet_no": "109066", + "subnet_no": "109838", "tag_list": [], "timeouts": null, "user_data": null, - "vpc_no": "48720", + "vpc_no": "49013", "zone": "KR-2" }, "sensitive_attributes": [], "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozNjAwMDAwMDAwMDAwLCJkZWxldGUiOjMwMDAwMDAwMDAwMH19", "dependencies": [ - "ncloud_init_script.dsk-node-ssh-key", "ncloud_login_key.dsk-test-key", - "ncloud_subnet.jh-test-ncloud-subnet-public" + "ncloud_network_acl.jh-test-ncloud-acl", + "ncloud_subnet.jh-test-ncloud-subnet-public", + "ncloud_vpc.jh-test-ncloud-vpc" ] } ] @@ -617,23 +602,23 @@ "cpu_count": 2, "description": "", "fee_system_type_code": null, - "id": "20108237", + "id": "20179611", "init_script_no": "", - "instance_no": "20108237", + "instance_no": "20179611", "internet_line_type": null, "is_encrypted_base_block_storage_volume": null, "is_fee_charging_monitoring": null, "is_protect_server_termination": false, "login_key_name": "dsk-test-key", - "member_server_image_no": "20108119", + "member_server_image_no": "20109481", "memory_size": 4294967296, "name": "master", "network_interface": [ { - "network_interface_no": "3476697", + "network_interface_no": "3489941", "order": 0, - "private_ip": "10.40.10.7", - "subnet_no": "109068" + "private_ip": "10.40.10.8", + "subnet_no": "109837" } ], "placement_group_no": "", @@ -648,18 +633,20 @@ "server_image_name": null, "server_image_product_code": "SW.VSVR.OS.LNX64.UBNTU.SVR2004.B050", "server_product_code": "SVR.VSVR.HICPU.C002.M004.NET.SSD.B050.G002", - "subnet_no": "109068", + "subnet_no": "109837", "tag_list": [], "timeouts": null, "user_data": null, - "vpc_no": "48720", + "vpc_no": "49013", "zone": "KR-2" }, "sensitive_attributes": [], "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozNjAwMDAwMDAwMDAwLCJkZWxldGUiOjMwMDAwMDAwMDAwMH19", "dependencies": [ "ncloud_login_key.dsk-test-key", - "ncloud_subnet.jh-test-ncloud-subnet" + "ncloud_network_acl.jh-test-ncloud-acl", + "ncloud_subnet.jh-test-ncloud-subnet", + "ncloud_vpc.jh-test-ncloud-vpc" ] } ] @@ -680,23 +667,23 @@ "cpu_count": 2, "description": "", "fee_system_type_code": null, - "id": "20108231", + "id": "20179605", "init_script_no": "", - "instance_no": "20108231", + "instance_no": "20179605", "internet_line_type": null, "is_encrypted_base_block_storage_volume": null, "is_fee_charging_monitoring": null, "is_protect_server_termination": false, "login_key_name": "dsk-test-key", - "member_server_image_no": "20108119", + "member_server_image_no": "20109481", "memory_size": 4294967296, "name": "worker-1", "network_interface": [ { - "network_interface_no": "3476694", + "network_interface_no": "3489940", "order": 0, "private_ip": "10.40.10.6", - "subnet_no": "109068" + "subnet_no": "109837" } ], "placement_group_no": "", @@ -711,18 +698,20 @@ "server_image_name": null, "server_image_product_code": "SW.VSVR.OS.LNX64.UBNTU.SVR2004.B050", "server_product_code": "SVR.VSVR.HICPU.C002.M004.NET.SSD.B050.G002", - "subnet_no": "109068", + "subnet_no": "109837", "tag_list": [], "timeouts": null, "user_data": null, - "vpc_no": "48720", + "vpc_no": "49013", "zone": "KR-2" }, "sensitive_attributes": [], "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozNjAwMDAwMDAwMDAwLCJkZWxldGUiOjMwMDAwMDAwMDAwMH19", "dependencies": [ "ncloud_login_key.dsk-test-key", - "ncloud_subnet.jh-test-ncloud-subnet" + "ncloud_network_acl.jh-test-ncloud-acl", + "ncloud_subnet.jh-test-ncloud-subnet", + "ncloud_vpc.jh-test-ncloud-vpc" ] } ] @@ -743,23 +732,23 @@ "cpu_count": 2, "description": "", "fee_system_type_code": null, - "id": "20108240", + "id": "20179608", "init_script_no": "", - "instance_no": "20108240", + "instance_no": "20179608", "internet_line_type": null, "is_encrypted_base_block_storage_volume": null, "is_fee_charging_monitoring": null, "is_protect_server_termination": false, "login_key_name": "dsk-test-key", - "member_server_image_no": "20108119", + "member_server_image_no": "20109481", "memory_size": 4294967296, "name": "worker-2", "network_interface": [ { - "network_interface_no": "3476695", + "network_interface_no": "3489942", "order": 0, - "private_ip": "10.40.10.8", - "subnet_no": "109068" + "private_ip": "10.40.10.7", + "subnet_no": "109837" } ], "placement_group_no": "", @@ -774,18 +763,20 @@ "server_image_name": null, "server_image_product_code": "SW.VSVR.OS.LNX64.UBNTU.SVR2004.B050", "server_product_code": "SVR.VSVR.HICPU.C002.M004.NET.SSD.B050.G002", - "subnet_no": "109068", + "subnet_no": "109837", "tag_list": [], "timeouts": null, "user_data": null, - "vpc_no": "48720", + "vpc_no": "49013", "zone": "KR-2" }, "sensitive_attributes": [], "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozNjAwMDAwMDAwMDAwLCJkZWxldGUiOjMwMDAwMDAwMDAwMH19", "dependencies": [ "ncloud_login_key.dsk-test-key", - "ncloud_subnet.jh-test-ncloud-subnet" + "ncloud_network_acl.jh-test-ncloud-acl", + "ncloud_subnet.jh-test-ncloud-subnet", + "ncloud_vpc.jh-test-ncloud-vpc" ] } ] @@ -799,14 +790,14 @@ { "schema_version": 0, "attributes": { - "id": "109068", + "id": "109837", "name": "private-subnet", - "network_acl_no": "74573", + "network_acl_no": "74925", "subnet": "10.40.10.0/24", - "subnet_no": "109068", + "subnet_no": "109837", "subnet_type": "PRIVATE", "usage_type": "GEN", - "vpc_no": "48720", + "vpc_no": "49013", "zone": "KR-2" }, "sensitive_attributes": [], @@ -827,14 +818,14 @@ { "schema_version": 0, "attributes": { - "id": "109066", + "id": "109838", "name": "public-subnet", - "network_acl_no": "74573", + "network_acl_no": "74925", "subnet": "10.40.20.0/24", - "subnet_no": "109066", + "subnet_no": "109838", "subnet_type": "PUBLIC", "usage_type": "GEN", - "vpc_no": "48720", + "vpc_no": "49013", "zone": "KR-2" }, "sensitive_attributes": [], @@ -855,14 +846,14 @@ { "schema_version": 0, "attributes": { - "id": "109065", + "id": "109836", "name": "loadbalancer-subnet", - "network_acl_no": "74573", + "network_acl_no": "74925", "subnet": "10.40.40.0/24", - "subnet_no": "109065", + "subnet_no": "109836", "subnet_type": "PRIVATE", "usage_type": "LOADB", - "vpc_no": "48720", + "vpc_no": "49013", "zone": "KR-2" }, "sensitive_attributes": [], @@ -883,14 +874,14 @@ { "schema_version": 0, "attributes": { - "id": "109067", + "id": "109839", "name": "natgateway-subnet", - "network_acl_no": "74573", + "network_acl_no": "74925", "subnet": "10.40.30.0/24", - "subnet_no": "109067", + "subnet_no": "109839", "subnet_type": "PUBLIC", "usage_type": "NATGW", - "vpc_no": "48720", + "vpc_no": "49013", "zone": "KR-2" }, "sensitive_attributes": [], @@ -911,14 +902,14 @@ { "schema_version": 0, "attributes": { - "default_access_control_group_no": "135939", - "default_network_acl_no": "74572", - "default_private_route_table_no": "102801", - "default_public_route_table_no": "102800", - "id": "48720", + "default_access_control_group_no": "136791", + "default_network_acl_no": "74924", + "default_private_route_table_no": "103428", + "default_public_route_table_no": "103427", + "id": "49013", "ipv4_cidr_block": "10.40.0.0/16", "name": "jh-test-cidr", - "vpc_no": "48720" + "vpc_no": "49013" }, "sensitive_attributes": [], "private": "bnVsbA==" diff --git a/terraform/vpc.tf b/terraform/vpc.tf index d2eef8e..9def6d7 100644 --- a/terraform/vpc.tf +++ b/terraform/vpc.tf @@ -3,40 +3,6 @@ resource "ncloud_vpc" "jh-test-ncloud-vpc" { //VPC 생성 name = "jh-test-cidr" } -resource "ncloud_network_acl" "jh-test-ncloud-acl" { //접근 제어 목록 - vpc_no = ncloud_vpc.jh-test-ncloud-vpc.id - name = "jh-test-ncloud-acl" -} - -resource "ncloud_network_acl_rule" "jh-test-ncloud-acl-list" { // 접근 제어 룰 - network_acl_no = ncloud_network_acl.jh-test-ncloud-acl.id - - inbound { // 인바운드 규칙 - priority = 0 - protocol = "TCP" - rule_action = "ALLOW" - ip_block = "118.223.123.161/32" - port_range = "22" - } - - inbound { // 인바운드 규칙 - priority = 1 - protocol = "TCP" - rule_action = "ALLOW" - ip_block = "0.0.0.0/0" - port_range = "443" - } - - outbound { // 아웃바운드 규칙 - priority = 0 - protocol = "TCP" - rule_action = "ALLOW" - ip_block = "0.0.0.0/0" - port_range = "1-65535" - } - -} - resource "ncloud_subnet" "jh-test-ncloud-subnet" { // node용 프라이빗 서브넷 생성 vpc_no = ncloud_vpc.jh-test-ncloud-vpc.id subnet = "10.40.10.0/24"