This repository contains Terraform code to deploy a sample Terraform foundation for Google Cloud VMware Engine. In this repository you can find Terraform modules, deployment examples as well as a set of deployment stages to set up you foundational infrastructure.
This repository currently supports the creation of private clouds, their integration with Cloud Logging (vCenter, NSX-T Syslog) and Monitoring, NSX-T configuration (segments, firewalls, load balancers) and vCenter configuration (folders, permissions, resource pools).
This is not an officially supported Google product. This code is intended to help users setting up their foundational Infrastructure-as-code deployment for Google Cloud VMware Engine. This code is not certified by VMware.
The repository has the following structure
├── examples
│ ├── nsxt-gateway-firewall
│ ├── nsxt-load-balancer-pool
│ ├── nsxt-load-balancer-service
│ ├── ...
├── modules
│ ├── nsxt-gateway-firewall
│ ├── nsxt-load-balancer-pool
│ ├── nsxt-load-balancer-service
│ ├── ...
└── stages
├── 01-privatecloud
├── 02a-nsxt
├── 02b-vcenter
├── 03-vms
└── 04-load-balancing
examplescontains modular example deployments for each individual module that this repository provides.modulescontains all modules that are used in the deployment stages.stagescontains sample deployments for different stages of the foundational deployment which should be executed in the order they are listed.
For an end-to-end deployment of the GCVE IaC Foundation deploy all stages in this repository in the given order. Should you only be interested in a particular use case (e.g. NSX-T management) you can deploy this stage in isolation as long the necessary prerequisites exist (e.g. Private Cloud has been deployed).
The stages are separated by the management component they interact with (Google Cloud, NSX-T, vCenter) as well as the Terraform provider that they are using. The stages are also suggested as an ordered sequence of deployment tasks (e.g. deploy vCenter folder hierarchy as a prerequisite for application VM deployments).
This stage contains the Terraform content to deploy a private cloud and configure the integration with Cloud Monitoring.
This stage contains the Terraform content for a foundational NSX-T setup (segments, firewalls). This stage can be deployed in parallel with stage 02b-vcenter.
This stage contains the Terraform content for a foundational vCenter setup (folders, resource pools, roles). This stage can be deployed in parallel with stage 02a-nsxt.
This stage contains the Terraform content for deploying VMs into vCenter.
This stage contains the Terraform content to deploy load balancers for the previously created VMs.
The stages and examples in this repository use modules in the modules directory. You can reuse the modules individually:
- GCVE Monitoring
- GCVE Private Cloud
- GCVE Service Networking
- NSX-T Distributed Firewall Manager
- NSX-T Distributed Firewall Policy
- NSX-T Gateway Firewall
- NSX-T Load Balancer Pools
- NSX-T Load Balancer Service
- NSX-T Load Balancer Virtual Server
- NSX-T Policy Group
- NSX-T Segment
- NSX-T Tier1 Gateway
- vCenter Folder
- vCenter Resource Pool
- vCenter Role
- vCenter Tag Factory
- vCenter VM
The example directory contains sample code to deploy individual modules. For each example there is a directory where the variables are passed as tfvars file and as a yaml file. The following examples are available in the examples directory:
- GCVE Monitoring
- GCVE Private Cloud
- GCVE Service Networking
- NSX-T Distributed Firewall Manager
- NSX-T Distributed Firewall Policy
- NSX-T Gateway Firewall
- NSX-T Load Balancer Pools
- NSX-T Load Balancer Service
- NSX-T Load Balancer Virtual Server
- NSX-T Policy Group
- NSX-T Segment
- NSX-T Tier1 Gateway
- vCenter Folder
- vCenter Resource Pool
- vCenter Role
- vCenter Tag Factory
- vCenter VM