Skip to content

mahmoud-m-selim/GCP-Terraform

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
gke
gke
 
 
images
images
 
 
kubernetes
kubernetes
 
 
network
network
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
backend.tf
backend.tf
 
 
firewall.tf
firewall.tf
 
 
main.tf
main.tf
 
 
output.tf
output.tf
 
 
provider.tf
provider.tf
 
 
variables.tf
variables.tf
 
 
variables.tfvars
variables.tfvars
 
 
vm.tf
vm.tf
 
 

Repository files navigation

GCP-Terraform

VPC

Subnets (management subnet & restricted subnet):

  1. Management subnet has the following:
  • NAT gateway
  • Private VM
  1. Restricted subnet has the following:
  • Private standard GKE cluster (private control plan)

Notes:

  1. Restricted subnet must not have access to internet
  2. All images deployed on GKE must come from GCR or Artifacts registry.
  3. The VM must be private.
  4. Deployment must be exposed to public internet with a public HTTP load balancer.
  5. All infra is to be created on GCP using terraform.
  6. Deployment on GKE can be done by terraform or manually by kubectl tool.
  7. The code to be build/dockerized and pushed to GCR is on here: https://github.com/atefhares/DevOps-Challenge-Demo-Code
  8. Don’t use default compute service account while creating the gke cluster, create custom SA and attach it to your nodes.
  9. Only the management subnet can connect to the gke cluster.

About

No description or website provided.

Topics

python docker cloud terraform gcp bastion-host

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages