Skip to content

Latest commit

 

History

History
26 lines (19 loc) · 3.35 KB

BYOnetwork.md

File metadata and controls

26 lines (19 loc) · 3.35 KB

Supported Scenarios and Requirements for Using Existing Network Resources

You have the option to use existing network resources with SAS Viya 4 Terraform scripts. The table below summarizes the supported scenarios, requirements, and remaining resources that must still be created using the viya4-iac-aws project.

NOTE: We refer to the use of existing resources as "bring your own" or "BYO" resources.

Scenario Required Variables Additional Requirements Resources to be Created
1. You must work with an existing VPC. vpc_id
  • VPC does not contain any subnets or other network components. See the AWS guide to VPC Networking for more information
  • VPC block size must be IPv4 with '/16' subnet mask (supports 65,536 IP addresses)
  • DNS hostnames and DNS resolution are enabled
  • The values for the subnets variable must match the VPC IPv4 CIDR block
 Subnets, NAT gateway, and Security Group
2. You want to configure all components of your VPC network — subnets, routes and associations, internet and NAT gateways. vpc_id,
subnet_ids, and
nat_id
  • This must be a fully functional AWS VPC Network
  • VPC block size must be IPv4 with '/16' subnet mask (supports 65,536 IP addresses)
  • AWS DNS hostnames and DNS resolution settings must be enabled
  • The CIDR blocks defined for subnet_ids must match the VPC IPv4 CIDR block
  • Subnet Availability Zones must be within the location defined in CONFIG-VARS
  • AWS tags with <prefix> value replaced with the prefix input value for
    - Public Subnets:
    • {"kubernetes.io/role/elb"="1"}
    • {"kubernetes.io/cluster/<prefix>-eks"="shared"}
    - Private Subnets:
    • {"kubernetes.io/role/internal-elb"="1"}
    • {"kubernetes.io/cluster/<prefix>-eks"="shared"}
    See the AWS user documentation for information about subnet tag requirements to match the EKS cluster name.
 Security Group
3. You want to configure all components of your VPC network and Security Group. vpc_id,
subnet_ids,
nat_id, and
security_group_id		 All requirements from Scenario #2 and the Security Group. None

Helpful Resources

When creating your BYO network resources, consult with your Network Administrator and use any of the methods documented in the following resources to create a working AWS VPC network:

AWS documentation for reference:

To plan your subnet CIDR blocks for IP address ranges, here are some helpful links: