infrastructure/terraform/casey_vps.tf

locals {
  casey_open_ports = toset([
    "80/tcp",
    "443/tcp",
    "51820/udp",
    "4242/tcp",
    "8448/tcp",
    "6328/udp"
  ])
}


resource "vultr_instance" "casey" {
  plan              = "" # On a plan unsupported by API
  region            = "lhr"
  hostname          = "casey"
  firewall_group_id = vultr_firewall_group.casey.id
}

resource "vultr_firewall_group" "casey" {
  description = "casey"
}

resource "vultr_firewall_rule" "casey_ping" {
  firewall_group_id = vultr_firewall_group.casey.id
  protocol          = "icmp"
  ip_type           = "v4"
  subnet            = "0.0.0.0"
  subnet_size       = 0
}

resource "vultr_firewall_rule" "casey_pingv6" {
  firewall_group_id = vultr_firewall_group.casey.id
  protocol          = "icmp"
  ip_type           = "v6"
  subnet            = "::"
  subnet_size       = 0
}

resource "vultr_firewall_rule" "casey_v4" {
  for_each = local.casey_open_ports

  firewall_group_id = vultr_firewall_group.casey.id
  protocol          = split("/", each.value)[1]
  port              = split("/", each.value)[0]
  ip_type           = "v4"
  subnet            = "0.0.0.0"
  subnet_size       = 0
}

resource "vultr_firewall_rule" "casey_v6" {
  for_each = local.casey_open_ports

  firewall_group_id = vultr_firewall_group.casey.id
  protocol          = split("/", each.value)[1]
  port              = split("/", each.value)[0]
  ip_type           = "v6"
  subnet            = "::"
  subnet_size       = 0
}
Iterate over firewall ports I'll convert this to a module some day, honest! 2021-03-23 22:09:48 +00:00			`locals {`
			`casey_open_ports = toset([`
			`"80/tcp",`
			`"443/tcp",`
			`"51820/udp",`
			`"4242/tcp",`
			`"8448/tcp",`
			`"6328/udp"`
			`])`
			`}`


Update vultr provider This was a pretty breaking change which required re-importing most of its state 2021-03-23 21:22:31 +00:00			`resource "vultr_instance" "casey" {`
			`plan = "" # On a plan unsupported by API`
			`region = "lhr"`
Add casey firewall config 2020-02-22 22:13:44 +00:00			`hostname = "casey"`
			`firewall_group_id = vultr_firewall_group.casey.id`
			`}`

			`resource "vultr_firewall_group" "casey" {`
			`description = "casey"`
			`}`

			`resource "vultr_firewall_rule" "casey_ping" {`
			`firewall_group_id = vultr_firewall_group.casey.id`
			`protocol = "icmp"`
Update vultr provider This was a pretty breaking change which required re-importing most of its state 2021-03-23 21:22:31 +00:00			`ip_type = "v4"`
			`subnet = "0.0.0.0"`
			`subnet_size = 0`
Add casey firewall config 2020-02-22 22:13:44 +00:00			`}`

Iterate over firewall ports I'll convert this to a module some day, honest! 2021-03-23 22:09:48 +00:00			`resource "vultr_firewall_rule" "casey_pingv6" {`
Add casey firewall config 2020-02-22 22:13:44 +00:00			`firewall_group_id = vultr_firewall_group.casey.id`
Iterate over firewall ports I'll convert this to a module some day, honest! 2021-03-23 22:09:48 +00:00			`protocol = "icmp"`
			`ip_type = "v6"`
			`subnet = "::"`
Update vultr provider This was a pretty breaking change which required re-importing most of its state 2021-03-23 21:22:31 +00:00			`subnet_size = 0`
Add casey firewall config 2020-02-22 22:13:44 +00:00			`}`

Iterate over firewall ports I'll convert this to a module some day, honest! 2021-03-23 22:09:48 +00:00			`resource "vultr_firewall_rule" "casey_v4" {`
			`for_each = local.casey_open_ports`
Add casey firewall config 2020-02-22 22:13:44 +00:00
			`firewall_group_id = vultr_firewall_group.casey.id`
Iterate over firewall ports I'll convert this to a module some day, honest! 2021-03-23 22:09:48 +00:00			`protocol = split("/", each.value)[1]`
			`port = split("/", each.value)[0]`
Update vultr provider This was a pretty breaking change which required re-importing most of its state 2021-03-23 21:22:31 +00:00			`ip_type = "v4"`
			`subnet = "0.0.0.0"`
			`subnet_size = 0`
Add casey firewall config 2020-02-22 22:13:44 +00:00			`}`

Iterate over firewall ports I'll convert this to a module some day, honest! 2021-03-23 22:09:48 +00:00			`resource "vultr_firewall_rule" "casey_v6" {`
			`for_each = local.casey_open_ports`
Expose MC server It's just a local temp config for now, i'll do something proper later 2020-04-07 18:43:40 +01:00
Init some skeleton nebula stuff 2021-01-25 21:53:04 +00:00			`firewall_group_id = vultr_firewall_group.casey.id`
Iterate over firewall ports I'll convert this to a module some day, honest! 2021-03-23 22:09:48 +00:00			`protocol = split("/", each.value)[1]`
			`port = split("/", each.value)[0]`
			`ip_type = "v6"`
			`subnet = "::"`
Update vultr provider This was a pretty breaking change which required re-importing most of its state 2021-03-23 21:22:31 +00:00			`subnet_size = 0`
Init some skeleton nebula stuff 2021-01-25 21:53:04 +00:00			`}`