diff --git a/emine_vexx.sh b/emine_vexx.sh new file mode 100755 index 0000000..80ddd25 --- /dev/null +++ b/emine_vexx.sh @@ -0,0 +1,5 @@ +#!/bin/bash +export OS_CLOUD="vexxhost_sjc1" +export PULUMI_STACK="staging" +export PULUMI_SUB_STACK="emine_vexx" +export PULUMI_CONFIG_PASSPHRASE_FILE="/etc/ansible/pulumi_passphrase" diff --git a/infra/emine_vexx.json b/infra/emine_vexx.json new file mode 100644 index 0000000..efe22f3 --- /dev/null +++ b/infra/emine_vexx.json @@ -0,0 +1,107 @@ +{ + "application_name": "emine", + "network": [{ + "name": "emine_network", + "bastion_access": "yes", + "subnet": { + "name":"emine_network_subnet", + "ip_version": 4, + "cidr": "172.39.14.0/24", + "dns_servers": ["8.8.8.8"], + "linked_router": [{"router_name": "emine_router"}] + }, + "port": [ + ] + }], + "router": [{ + "router_name": "emine_router", + "router_external_gateway": "0048fce6-c715-4106-a810-473620326cb0", + "linked_subnets": [{ + "router_interface_name": "emine_router_interface", + "subnet_name": "emine_network_subnet"}] + }], + "security_group": [{ + "name": "all_open", + "description": "Emine DEV environment is security group", + "rules": [ + {"name": "Ingress_ssh", + "description": "ssh traffic", + "direction": "ingress", + "port_range_max": 22, + "port_range_min": 22, + "protocol": "tcp", + "remote_ip_prefix": "0.0.0.0/0"}, + {"name": "Ingress_http", + "description": "http traffic", + "direction": "ingress", + "port_range_max": 80, + "port_range_min": 80, + "protocol": "tcp", + "remote_ip_prefix": "0.0.0.0/0"}, + {"name": "Ingress_https", + "description": "https traffic", + "direction": "ingress", + "port_range_max": 443, + "port_range_min": 443, + "protocol": "tcp", + "remote_ip_prefix": "0.0.0.0/0"}, + {"name": "Ingress_squid", + "description": "Squid Proxy traffic", + "direction": "ingress", + "port_range_max": 3128, + "port_range_min": 3128, + "protocol": "tcp", + "remote_ip_prefix": "0.0.0.0/0"}, + {"name": "Ingress_ping", + "description": "icmp traffic", + "direction": "ingress", + "port_range_max": 0, + "port_range_min": 0, + "protocol": "icmp", + "remote_ip_prefix": "0.0.0.0/0"}, + {"name": "Ingress_nosqlclient", + "description": "nosqlclient traffic", + "direction": "ingress", + "port_range_max": 3000, + "port_range_min": 3000, + "protocol": "tcp", + "remote_ip_prefix": "0.0.0.0/0"}, + {"name": "Ingress_nexus", + "description": "nexus repository traffic", + "direction": "ingress", + "port_range_max": 8081, + "port_range_min": 8081, + "protocol": "tcp", + "remote_ip_prefix": "0.0.0.0/0"}, + {"name": "Ingress_nexus_docker_registry", + "description": "nexus repository traffic", + "direction": "ingress", + "port_range_max": 8082, + "port_range_min": 8082, + "protocol": "tcp", + "remote_ip_prefix": "0.0.0.0/0"}, + {"name": "Ingress_mongodb", + "description": "mongodb traffic", + "direction": "ingress", + "port_range_max": 27017, + "port_range_min": 27017, + "protocol": "tcp", + "remote_ip_prefix": "0.0.0.0/0"} + ] + } + ], + "instance": [{ + "name": "stg-emine-vexxtest-00", + "az": "nova", + "flavor": "v3-starter-1", + "image": "Ubuntu 20.04.3 LTS (x86_64) [2021-10-04]", + "keypair": "dell XPS", + "security_group": ["all_open"], + "inventory_group": "emine", + "network": [{"name": "emine_network"}], + "fip": [] + } + ], + "volume": [ + ] +}