Giters

itlinux / ctl-only-class

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Avi Controller

AWS CREDENTIALS

Set the following:

export AWS_ACCESS_KEY_ID=
export AWS_SECRET_ACCESS_KEY=
export AWS_DEFAULT_REGION=us-west-2

From the UDF select AWS Cloud Account Starter Blueprint once your env is up and running go to the cloud-accounts tab.

Select the:

API Key:
API Secret:

Those maps to KEY_ID and the Access_Key maps to the Secret. If you want to use a diff region pick your region.

Note
 If you do use the UDF disposable env, keep in mind that you have to set the etcd to 0, LB to 0 and only use 2 workers not 3. This is because of the limit IP allowed in that blueprint.

You Must create and use your own IAM role for Avi otherwise it will fail.

variable "iam_profile" {
  default = "remo-avi-controller"
}

The full schema can be checked from: Full Role Settings Here is a very basic version to allow deployment.

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "s3:GetBucketLocation",
                "s3:ListBucket"
            ],
            "Resource": "arn:aws:s3:::avi-se-*"
        },
        {
            "Effect": "Allow",
            "Action": [
                "s3:GetObject"
            ],
            "Resource": "arn:aws:s3:::avi-se-*/*"
        },
        {
            "Effect": "Allow",
            "Action": [
                "ec2:ModifySnapshotAttribute",
                "ec2:CopySnapshot",
                "ec2:RegisterImage",
                "ec2:Describe*"
            ],
            "Resource": "*"
        }
    ]
}

Avi Controller

It deploys Avi Controller with the config of the basic with NTP, SMTP, admin password and backup password. Still missing a few more options, but it will create a sep VPC, network and subnets for each.
a deployment of two blocks.
❯ tf output
VPC_Name = [
  "bdba-k8s",
  "dd7f-k8s",
]
VPC_id = [
  "vpc-09bba6b796c6570a6",
  "vpc-0af68bcb50970c1de",
]
avi-controller_private_ip = [
  "10.0.1.50",
  "10.0.1.109",
  "10.0.2.55",
  "10.0.2.119",
]
avi-controller_public_dns_name = [
  "ec2-130-57-104-50.us-west-2.compute.amazonaws.com",
  "ec2-180-144-139-197.us-west-2.compute.amazonaws.com",
  "ec2-52-53-193-160.us-west-2.compute.amazonaws.com",
  "ec2-54-241-111-73.us-west-2.compute.amazonaws.com",
]
avi-controller_public_ip = [
  "130.57.104.50",
  "180.144.139.197",
  "52.53.193.160",
  "54.241.111.73",
]
aws_subnet = [
  "bdba-k8s",
  "dd7f-k8s",
]

About

Languages

Language:HCL 83.2%Language:Shell 16.8%