|
1 | | -/* |
2 | | -# Virtual Network |
3 | | -resource "azurerm_virtual_network" "default" { |
4 | | - name = "vnet-${var.name}-${var.environment}" |
5 | | - address_space = var.vnet_address_space |
6 | | - location = azurerm_resource_group.default.location |
7 | | - resource_group_name = azurerm_resource_group.default.name |
8 | | -} |
9 | | -
|
10 | | -resource "azurerm_subnet" "snet-training" { |
11 | | - name = "snet-training" |
12 | | - resource_group_name = azurerm_resource_group.default.name |
13 | | - virtual_network_name = azurerm_virtual_network.default.name |
14 | | - address_prefixes = var.training_subnet_address_space |
15 | | - enforce_private_link_endpoint_network_policies = true |
16 | | -} |
17 | | -
|
18 | | -resource "azurerm_subnet" "snet-aks" { |
19 | | - name = "snet-aks" |
20 | | - resource_group_name = azurerm_resource_group.default.name |
21 | | - virtual_network_name = azurerm_virtual_network.default.name |
22 | | - address_prefixes = var.aks_subnet_address_space |
23 | | - enforce_private_link_endpoint_network_policies = true |
24 | | -} |
25 | | -
|
26 | | -resource "azurerm_subnet" "snet-workspace" { |
27 | | - name = "snet-workspace" |
28 | | - resource_group_name = azurerm_resource_group.default.name |
29 | | - virtual_network_name = azurerm_virtual_network.default.name |
30 | | - address_prefixes = var.ml_subnet_address_space |
31 | | - enforce_private_link_endpoint_network_policies = true |
32 | | -} |
33 | | -
|
34 | | -# Private DNS Zones |
35 | | -resource "azurerm_private_dns_zone" "dnsvault" { |
36 | | - name = "privatelink.vaultcore.azure.net" |
37 | | - resource_group_name = azurerm_resource_group.default.name |
38 | | -} |
39 | | -
|
40 | | -resource "azurerm_private_dns_zone_virtual_network_link" "vnetlinkvault" { |
41 | | - name = "dnsvaultlink" |
42 | | - resource_group_name = azurerm_resource_group.default.name |
43 | | - private_dns_zone_name = azurerm_private_dns_zone.dnsvault.name |
44 | | - virtual_network_id = azurerm_virtual_network.default.id |
45 | | -} |
46 | | -
|
47 | | -resource "azurerm_private_dns_zone" "dnsstorageblob" { |
48 | | - name = "privatelink.blob.core.windows.net" |
49 | | - resource_group_name = azurerm_resource_group.default.name |
50 | | -} |
51 | | -
|
52 | | -resource "azurerm_private_dns_zone_virtual_network_link" "vnetlinkblob" { |
53 | | - name = "dnsblobstoragelink" |
54 | | - resource_group_name = azurerm_resource_group.default.name |
55 | | - private_dns_zone_name = azurerm_private_dns_zone.dnsstorageblob.name |
56 | | - virtual_network_id = azurerm_virtual_network.default.id |
57 | | -} |
58 | | -
|
59 | | -
|
60 | | -resource "azurerm_private_dns_zone" "dnsstoragefile" { |
61 | | - name = "privatelink.file.core.windows.net" |
62 | | - resource_group_name = azurerm_resource_group.default.name |
63 | | -} |
64 | | -
|
65 | | -resource "azurerm_private_dns_zone_virtual_network_link" "vnetlinkfile" { |
66 | | - name = "dnsfilestoragelink" |
67 | | - resource_group_name = azurerm_resource_group.default.name |
68 | | - private_dns_zone_name = azurerm_private_dns_zone.dnsstoragefile.name |
69 | | - virtual_network_id = azurerm_virtual_network.default.id |
70 | | -} |
71 | | -
|
72 | | -resource "azurerm_private_dns_zone" "dnscontainerregistry" { |
73 | | - name = "privatelink.azurecr.io" |
74 | | - resource_group_name = azurerm_resource_group.default.name |
75 | | -} |
76 | | -
|
77 | | -resource "azurerm_private_dns_zone_virtual_network_link" "vnetlinkcr" { |
78 | | - name = "dnscrlink" |
79 | | - resource_group_name = azurerm_resource_group.default.name |
80 | | - private_dns_zone_name = azurerm_private_dns_zone.dnscontainerregistry.name |
81 | | - virtual_network_id = azurerm_virtual_network.default.id |
82 | | -} |
83 | | -
|
84 | | -resource "azurerm_private_dns_zone" "dnsazureml" { |
85 | | - name = "privatelink.api.azureml.ms" |
86 | | - resource_group_name = azurerm_resource_group.default.name |
87 | | -} |
88 | | -
|
89 | | -resource "azurerm_private_dns_zone_virtual_network_link" "vnetlinkml" { |
90 | | - name = "dnsazuremllink" |
91 | | - resource_group_name = azurerm_resource_group.default.name |
92 | | - private_dns_zone_name = azurerm_private_dns_zone.dnsazureml.name |
93 | | - virtual_network_id = azurerm_virtual_network.default.id |
94 | | -} |
95 | | -
|
96 | | -resource "azurerm_private_dns_zone" "dnsnotebooks" { |
97 | | - name = "privatelink.azureml.notebooks.net" |
98 | | - resource_group_name = azurerm_resource_group.default.name |
99 | | -} |
100 | | -
|
101 | | -resource "azurerm_private_dns_zone_virtual_network_link" "vnetlinknbs" { |
102 | | - name = "dnsnotebookslink" |
103 | | - resource_group_name = azurerm_resource_group.default.name |
104 | | - private_dns_zone_name = azurerm_private_dns_zone.dnsnotebooks.name |
105 | | - virtual_network_id = azurerm_virtual_network.default.id |
106 | | -} |
107 | | -*/ |
108 | | - |
109 | 1 | # Network Security Groups |
110 | 2 |
|
111 | 3 | resource "azurerm_network_security_group" "nsg-training" { |
|
0 commit comments