resource "ncloud_vpc" "jh-test-ncloud-vpc" { //VPC 생성
  ipv4_cidr_block = "10.40.0.0/16"
  name = "jh-test-cidr"
}

resource "ncloud_network_acl" "jh-test-ncloud-acl" { //접근 제어 목록
  vpc_no = ncloud_vpc.jh-test-ncloud-vpc.id
  name = "jh-test-ncloud-acl"
}

resource "ncloud_network_acl_rule" "jh-test-ncloud-acl-list" { // 접근 제어 룰
  network_acl_no = ncloud_network_acl.jh-test-ncloud-acl.id

  inbound { // 인바운드 규칙
    priority = 0
    protocol = "TCP"
    rule_action = "ALLOW"
    ip_block = "118.223.123.161/32"
    port_range = "22"
  }

  inbound { // 인바운드 규칙
    priority = 1
    protocol = "TCP"
    rule_action = "ALLOW"
    ip_block = "0.0.0.0/0"
    port_range = "443"
  }

  outbound { // 아웃바운드 규칙
    priority = 0
    protocol = "TCP"
    rule_action = "ALLOW"
    ip_block = "0.0.0.0/0"
    port_range = "1-65535"
  }

}

resource "ncloud_subnet" "jh-test-ncloud-subnet" { // node용 프라이빗 서브넷 생성
  vpc_no = ncloud_vpc.jh-test-ncloud-vpc.id
  subnet = "10.40.10.0/24"
  zone = "KR-2"
  subnet_type = "PRIVATE"
  name = "private-subnet"
  usage_type = "GEN"
  network_acl_no = ncloud_network_acl.jh-test-ncloud-acl.id
}

resource "ncloud_subnet" "jh-test-ncloud-subnet-public" { // node용 퍼블릭 서브넷 생성
  vpc_no = ncloud_vpc.jh-test-ncloud-vpc.id
  subnet = "10.40.20.0/24"
  zone = "KR-2"
  subnet_type = "PUBLIC"
  name = "public-subnet"
  usage_type = "GEN"
  network_acl_no = ncloud_network_acl.jh-test-ncloud-acl.id
}

resource "ncloud_subnet" "natgateway_subnet" { // NATGW용 퍼블릭 서브넷 생성
  vpc_no = ncloud_vpc.jh-test-ncloud-vpc.id
  subnet = "10.40.30.0/24"
  zone = "KR-2"
  subnet_type = "PUBLIC"
  name = "natgateway-subnet"
  usage_type = "NATGW"
  network_acl_no = ncloud_network_acl.jh-test-ncloud-acl.id
}

resource "ncloud_subnet" "loadbalancer_subnet" { // LoadBalancer용 퍼블릭 서브넷
  vpc_no = ncloud_vpc.jh-test-ncloud-vpc.id
  subnet = "10.40.40.0/24"
  zone = "KR-2"
  subnet_type = "PRIVATE"
  name = "loadbalancer-subnet"
  usage_type = "LOADB"
  network_acl_no = ncloud_network_acl.jh-test-ncloud-acl.id
}

resource "ncloud_nat_gateway" "jh-test-ncloud-netgw" { //NATGW 생성
  vpc_no = ncloud_vpc.jh-test-ncloud-vpc.id
  subnet_no = ncloud_subnet.natgateway_subnet.id
  zone = "KR-2"
  name = "jh-test-ncloud-netgw"
}