ホーム エクスプローラ ヘルプ
登録 サインイン
AFS
/
xdr-terraform-modules
2
0
フォーク 0
ファイル 課題 0 プルリクエスト 0 Wiki
ツリー: 853fcc2ef5
ブランチ タグ
xdr-terraform-m...
/
base
/
splunk_servers
/
indexer_cluster
/
nlb-splunk-data.tf

nlb-splunk-data.tf 2.2 KB
履歴 Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 
  1. #------------------------------------------------------------------------------
    2. 

  2. # An external NLB for the indexers for splunk-2-splunk
    3. 

  3. #------------------------------------------------------------------------------
    4. 

  4. resource "aws_eip" "nlb" {
    5. 

  5.   count = "3" # Could be local.nlb_endpoint_count, but I'd rather reserve all 3
    6. 

  6. 

  7.   vpc  = true
    8. 

  8.   tags = merge(local.standard_tags, var.tags, { "Name" : "${var.prefix}-nlb" })
    9. 

  9. }
    10. 

  10. 

  11. module "public_dns_record_nlb" {
    12. 

  12.   source = "../../../submodules/dns/public_A_record"
    13. 

  13. 

  14.   name         = "${var.prefix}-splunk-indexers"
    15. 

  15.   ip_addresses = aws_eip.nlb.*.public_ip
    16. 

  16.   dns_info     = var.dns_info
    17. 

  17. 

  18.   providers = {
    19. 

  19.     aws.mdr-common-services-commercial = aws.mdr-common-services-commercial
    20. 

  20.   }
    21. 

  21. }
    22. 

  22. 

  23. resource "aws_lb" "nlb" {
    24. 

  24.   tags               = merge(local.standard_tags, var.tags, { "Name" : "${var.prefix}-splunk-indexers-nlb" })
    25. 

  25.   name               = "${var.prefix}-splunk-indexers-nlb"
    26. 

  26.   internal           = false # tfsec:ignore:aws-elb-alb-not-public
    27. 

  27.   load_balancer_type = "network"
    28. 

  28.   #subnets            = data.terraform_remote_state.infra.public_subnets
    29. 

  29.   enable_cross_zone_load_balancing = true
    30. 

  30. 

  31.   subnet_mapping {
    32. 

  32.     subnet_id     = element(var.public_subnets, 0)
    33. 

  33.     allocation_id = element(aws_eip.nlb.*.id, 0)
    34. 

  34.   }
    35. 

  35. 

  36.   subnet_mapping {
    37. 

  37.     subnet_id     = element(var.public_subnets, 1)
    38. 

  38.     allocation_id = element(aws_eip.nlb.*.id, 1)
    39. 

  39.   }
    40. 

  40. 

  41.   subnet_mapping {
    42. 

  42.     subnet_id     = element(var.public_subnets, 2)
    43. 

  43.     allocation_id = element(aws_eip.nlb.*.id, 2)
    44. 

  44.   }
    45. 

  45. 

  46.   access_logs {
    47. 

  47.     bucket  = "xdr-elb-${var.environment}"
    48. 

  48.     enabled = true
    49. 

  49.   }
    50. 

  50. }
    51. 

  51. 

  52. resource "aws_lb_target_group" "nlb_targets" {
    53. 

  53.   name     = "${var.prefix}-nlb-targets"
    54. 

  54.   port     = 9998
    55. 

  55.   protocol = "TCP"
    56. 

  56.   vpc_id   = var.vpc_id
    57. 

  57. }
    58. 

  58. 

  59. resource "aws_autoscaling_attachment" "nlb_asg_attachments" {
    60. 

  60.   for_each               = toset([module.indexer0.asg_name[0], module.indexer1.asg_name[0], module.indexer2.asg_name[0]])
    61. 

  61.   lb_target_group_arn    = aws_lb_target_group.nlb_targets.arn
    62. 

  62.   autoscaling_group_name = each.key
    63. 

  63. }
    64. 

  64. 

  65. resource "aws_lb_listener" "nlb_targets" {
    66. 

  66.   load_balancer_arn = aws_lb.nlb.arn
    67. 

  67.   port              = 9998
    68. 

  68.   protocol          = "TCP"
    69. 

  69. 

  70.   default_action {
    71. 

  71.     target_group_arn = aws_lb_target_group.nlb_targets.arn
    72. 

  72.     type             = "forward"
    73. 

  73.   }
    74. 

  74. }
    75.