kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Removes legacy FAST networking stages (#3479)

Browse Source 
Removes the legacy networking stages, superseded by 2-networking.

**Breaking Changes**

```upgrade-note
`fast/stages/2-networking-legacy-a-simple`: The stage is being removed, and superseded by the `2-networking` FAST stage, introduced in #3435 
`fast/stages/2-networking-legacy-b-nva`: The stage is being removed, and superseded by the `2-networking` FAST stage, introduced in #3435 
`fast/stages/2-networking-legacy-c-separate-envs`: The stage is being removed, and superseded by the `2-networking` FAST stage, introduced in #3435 
```
This commit is contained in:
Simone Ruffilli
2025-10-27 15:38:28 +01:00
committed by GitHub
parent 4b15741144
commit 4a41a4237a
176 changed files with 2 additions and 21330 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
tests/fast/stages/s2_networking_a_simple/__init__.py
View File

@@ -1,13 +0,0 @@
# Copyright 2025 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

76
tests/fast/stages/s2_networking_a_simple/ncc.tfvars
View File

@@ -1,76 +0,0 @@
automation = {
outputs_bucket = "test"
}
billing_account = {
id = "000000-111111-222222"
}
custom_roles = {
project_iam_viewer = "organizations/123456789012/roles/bar"
service_project_network_admin = "organizations/123456789012/roles/foo"
}
dns = {
onprem_domains = [
{ domain = "onprem.example.com" }
]
resolvers = ["10.10.10.10"]
}
environments = {
dev = {
is_default = false
name = "Development"
tag_name = "development"
}
prod = {
is_default = true
name = "Production"
tag_name = "production"
}
}
essential_contacts = "gcp-network-admins@fast.example.com"
folder_ids = {
networking = "folders/12345"
networking-dev = null
networking-prod = null
}
groups = {
gcp-network-admins = "gcp-vpc-network-admins"
}
organization = {
domain = "fast.example.com"
id = 123456789012
customer_id = "C00000000"
}
prefix = "fast2"
service_accounts = {
data-platform-dev = "string"
data-platform-prod = "string"
gke-dev = "string"
gke-prod = "string"
project-factory = "string"
project-factory-dev = "string"
project-factory-prod = "string"
}
spoke_configs = {
ncc_configs = {}
}
tag_values = {
"environment/development" = "tagValues/12345"
"environment/production" = "tagValues/12346"
}
vpc_configs = {
dev = {
cloudnat = {
enable = true
}
}
landing = {
cloudnat = {
enable = true
}
}
prod = {
cloudnat = {
enable = true
}
}
}

45
tests/fast/stages/s2_networking_a_simple/ncc.yaml
View File

@@ -1,45 +0,0 @@
# Copyright 2025 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
counts:
google_compute_firewall: 4
google_compute_firewall_policy: 1
google_compute_firewall_policy_association: 1
google_compute_firewall_policy_rule: 4
google_compute_network: 3
google_compute_route: 12
google_compute_router: 2
google_compute_router_nat: 2
google_compute_shared_vpc_host_project: 3
google_compute_subnetwork: 5
google_dns_managed_zone: 10
google_dns_policy: 3
google_dns_record_set: 3
google_dns_response_policy: 1
google_dns_response_policy_rule: 42
google_essential_contacts_contact: 1
google_monitoring_alert_policy: 2
google_monitoring_dashboard: 3
google_monitoring_monitored_project: 2
google_network_connectivity_hub: 1
google_network_connectivity_spoke: 2
google_project: 3
google_project_iam_binding: 2
google_project_iam_member: 22
google_project_service: 28
google_project_service_identity: 22
google_storage_bucket_object: 2
google_tags_tag_binding: 3
modules: 23
resources: 189

134
tests/fast/stages/s2_networking_a_simple/simple.tfvars
View File

@@ -1,134 +0,0 @@
automation = {
outputs_bucket = "test"
}
billing_account = {
id = "000000-111111-222222"
}
custom_roles = {
project_iam_viewer = "organizations/123456789012/roles/bar"
service_project_network_admin = "organizations/123456789012/roles/foo"
}
dns = {
onprem_domains = [
{ domain = "onprem.example.com" }
]
resolvers = ["10.10.10.10"]
}
environments = {
dev = {
is_default = false
name = "Development"
tag_name = "development"
}
prod = {
is_default = true
name = "Production"
tag_name = "production"
}
}
essential_contacts = "gcp-network-admins@fast.example.com"
folder_ids = {
networking = "folders/12345"
networking-dev = null
networking-prod = null
}
groups = {
gcp-network-admins = "gcp-vpc-network-admins"
}
service_accounts = {
data-platform-dev = "string"
data-platform-prod = "string"
gke-dev = "string"
gke-prod = "string"
project-factory = "string"
project-factory-dev = "string"
project-factory-prod = "string"
}
organization = {
domain = "fast.example.com"
id = 123456789012
customer_id = "C00000000"
}
prefix = "fast2"
stage_config = {
networking = {
iam_delegated_principals = {
dev = [
"serviceAccount:fast2-dev-resman-gcve-0@fast2-prod-iac-core-0.iam.gserviceaccount.com",
"serviceAccount:fast2-dev-resman-pf-0@fast2-prod-iac-core-0.iam.gserviceaccount.com"
]
prod = [
"serviceAccount:fast2-prod-resman-gcve-0@fast2-prod-iac-core-0.iam.gserviceaccount.com",
"serviceAccount:fast2-prod-resman-pf-0@fast2-prod-iac-core-0.iam.gserviceaccount.com"
]
}
iam_viewer_principals = {
dev = [
"serviceAccount:fast2-dev-resman-gcve-0r@fast2-prod-iac-core-0.iam.gserviceaccount.com",
"serviceAccount:fast2-dev-resman-pf-0r@fast2-prod-iac-core-0.iam.gserviceaccount.com"
]
prod = [
"serviceAccount:fast2-prod-resman-gcve-0r@fast2-prod-iac-core-0.iam.gserviceaccount.com",
"serviceAccount:fast2-prod-resman-pf-0r@fast2-prod-iac-core-0.iam.gserviceaccount.com"
]
}
short_name = "net"
}
}
tag_values = {
"environment/development" = "tagValues/12345"
"environment/production" = "tagValues/12346"
}
vpc_configs = {
dev = {
cloudnat = {
enable = true
}
}
landing = {
cloudnat = {
enable = true
}
}
prod = {
cloudnat = {
enable = true
}
}
}
# spoke_configs defaults to peering
vpn_onprem_primary_config = {
peer_external_gateways = {
default = {
redundancy_type = "SINGLE_IP_INTERNALLY_REDUNDANT"
interfaces = ["8.8.8.8"]
}
}
router_config = {
asn = 65501
custom_advertise = {
all_subnets = false
ip_ranges = { "10.1.0.0/16" = "gcp" }
}
}
tunnels = {
"0" = {
bgp_peer = {
address = "169.254.1.1"
asn = 65500
}
bgp_session_range = "169.254.1.2/30"
shared_secret = "foo"
vpn_gateway_interface = 0
}
"1" = {
bgp_peer = {
address = "169.254.2.1"
asn = 64513
}
bgp_session_range = "169.254.2.2/30"
shared_secret = "foo"
vpn_gateway_interface = 1
}
}
}

50
tests/fast/stages/s2_networking_a_simple/simple.yaml
View File

@@ -1,50 +0,0 @@
# Copyright 2025 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
counts:
google_compute_external_vpn_gateway: 1
google_compute_firewall: 6
google_compute_firewall_policy: 1
google_compute_firewall_policy_association: 1
google_compute_firewall_policy_rule: 4
google_compute_ha_vpn_gateway: 1
google_compute_network: 3
google_compute_network_peering: 4
google_compute_route: 12
google_compute_router: 4
google_compute_router_interface: 2
google_compute_router_nat: 3
google_compute_router_peer: 2
google_compute_shared_vpc_host_project: 3
google_compute_subnetwork: 5
google_compute_vpn_tunnel: 2
google_dns_managed_zone: 10
google_dns_policy: 3
google_dns_record_set: 3
google_dns_response_policy: 1
google_dns_response_policy_rule: 42
google_essential_contacts_contact: 1
google_monitoring_alert_policy: 2
google_monitoring_dashboard: 3
google_monitoring_monitored_project: 2
google_project: 3
google_project_iam_binding: 2
google_project_iam_member: 22
google_project_service: 28
google_project_service_identity: 22
google_storage_bucket_object: 2
google_tags_tag_binding: 3
modules: 28
random_id: 3
resources: 206

21
tests/fast/stages/s2_networking_a_simple/tftest.yaml
View File

@@ -1,21 +0,0 @@
# Copyright 2025 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
module: fast/stages/2-networking-legacy-a-simple
tests:
# peering (default) is implemented in simple.tfvars
ncc:
simple:
vpn:

76
tests/fast/stages/s2_networking_a_simple/vpn.tfvars
View File

@@ -1,76 +0,0 @@
automation = {
outputs_bucket = "test"
}
billing_account = {
id = "000000-111111-222222"
}
custom_roles = {
project_iam_viewer = "organizations/123456789012/roles/bar"
service_project_network_admin = "organizations/123456789012/roles/foo"
}
dns = {
onprem_domains = [
{ domain = "onprem.example.com" }
]
resolvers = ["10.10.10.10"]
}
environments = {
dev = {
is_default = false
name = "Development"
tag_name = "development"
}
prod = {
is_default = true
name = "Production"
tag_name = "production"
}
}
essential_contacts = "gcp-network-admins@fast.example.com"
folder_ids = {
networking = "folders/12345"
networking-dev = null
networking-prod = null
}
groups = {
gcp-network-admins = "gcp-vpc-network-admins"
}
organization = {
domain = "fast.example.com"
id = 123456789012
customer_id = "C00000000"
}
prefix = "fast2"
service_accounts = {
data-platform-dev = "string"
data-platform-prod = "string"
gke-dev = "string"
gke-prod = "string"
project-factory = "string"
project-factory-dev = "string"
project-factory-prod = "string"
}
spoke_configs = {
vpn_configs = {}
}
tag_values = {
"environment/development" = "tagValues/12345"
"environment/production" = "tagValues/12346"
}
vpc_configs = {
dev = {
cloudnat = {
enable = true
}
}
landing = {
cloudnat = {
enable = true
}
}
prod = {
cloudnat = {
enable = true
}
}
}

48
tests/fast/stages/s2_networking_a_simple/vpn.yaml
View File

@@ -1,48 +0,0 @@
# Copyright 2025 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
counts:
google_compute_firewall: 6
google_compute_firewall_policy: 1
google_compute_firewall_policy_association: 1
google_compute_firewall_policy_rule: 4
google_compute_ha_vpn_gateway: 5
google_compute_network: 3
google_compute_route: 12
google_compute_router: 8
google_compute_router_interface: 12
google_compute_router_nat: 3
google_compute_router_peer: 12
google_compute_shared_vpc_host_project: 3
google_compute_subnetwork: 5
google_compute_vpn_tunnel: 12
google_dns_managed_zone: 10
google_dns_policy: 3
google_dns_record_set: 3
google_dns_response_policy: 1
google_dns_response_policy_rule: 42
google_essential_contacts_contact: 1
google_monitoring_alert_policy: 2
google_monitoring_dashboard: 3
google_monitoring_monitored_project: 2
google_project: 3
google_project_iam_binding: 2
google_project_iam_member: 22
google_project_service: 28
google_project_service_identity: 22
google_storage_bucket_object: 2
google_tags_tag_binding: 3
modules: 30
random_id: 17
resources: 253

143
tests/fast/stages/s2_networking_b_nva/ncc-ra.tfvars
View File

@@ -1,143 +0,0 @@
automation = {
outputs_bucket = "test"
}
billing_account = {
id = "000000-111111-222222"
}
custom_roles = {
project_iam_viewer = "organizations/123456789012/roles/bar"
service_project_network_admin = "organizations/123456789012/roles/foo"
}
dns = {
onprem_domains = [
{ domain = "onprem.example.com" }
]
resolvers = ["10.10.10.10"]
}
enable_test_instances = true
environments = {
dev = {
is_default = false
name = "Development"
tag_name = "development"
}
prod = {
is_default = true
name = "Production"
tag_name = "production"
}
}
essential_contacts = "gcp-network-admins@fast.example.com"
folder_ids = {
networking = "folders/12345"
networking-dev = null
networking-prod = null
}
groups = {
gcp-network-admins = "gcp-vpc-network-admins"
}
network_mode = "ncc_ra"
organization = {
domain = "fast.example.com"
id = 123456789012
customer_id = "C00000000"
}
prefix = "fast2"
service_accounts = {
data-platform-dev = "string"
data-platform-prod = "string"
gke-dev = "string"
gke-prod = "string"
project-factory = "string"
project-factory-dev = "string"
project-factory-prod = "string"
}
vpc_configs = {
dmz = {
cloudnat = {
enable = true
}
}
}
tag_values = {
"environment/development" = "tagValues/12345"
"environment/production" = "tagValues/12346"
}
vpn_onprem_primary_config = {
peer_external_gateways = {
default = {
redundancy_type = "SINGLE_IP_INTERNALLY_REDUNDANT"
interfaces = ["8.8.8.8"]
}
}
router_config = {
asn = 65501
custom_advertise = {
all_subnets = false
ip_ranges = {
"10.1.0.0/16" = "gcp"
"35.199.192.0/19" = "gcp-dns"
"199.36.153.4/30" = "gcp-restricted"
}
}
}
tunnels = {
"0" = {
bgp_peer = {
address = "169.254.1.1"
asn = 65500
}
bgp_session_range = "169.254.1.2/30"
shared_secret = "foo"
vpn_gateway_interface = 0
}
"1" = {
bgp_peer = {
address = "169.254.2.1"
asn = 64513
}
bgp_session_range = "169.254.2.2/30"
shared_secret = "foo"
vpn_gateway_interface = 1
}
}
}
vpn_onprem_secondary_config = {
peer_external_gateways = {
default = {
redundancy_type = "SINGLE_IP_INTERNALLY_REDUNDANT"
interfaces = ["8.8.4.4"]
}
}
router_config = {
asn = 65501
custom_advertise = {
all_subnets = false
ip_ranges = {
"10.1.0.0/16" = "gcp"
"35.199.192.0/19" = "gcp-dns"
"199.36.153.4/30" = "gcp-restricted"
}
}
}
tunnels = {
"0" = {
bgp_peer = {
address = "169.254.1.1"
asn = 65500
}
bgp_session_range = "169.254.3.2/30"
shared_secret = "foo"
vpn_gateway_interface = 0
}
"1" = {
bgp_peer = {
address = "169.254.2.1"
asn = 64513
}
bgp_session_range = "169.254.4.2/30"
shared_secret = "foo"
vpn_gateway_interface = 1
}
}
}

53
tests/fast/stages/s2_networking_b_nva/ncc-ra.yaml
View File

@@ -1,53 +0,0 @@
# Copyright 2025 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
counts:
google_compute_address: 8
google_compute_external_vpn_gateway: 2
google_compute_firewall: 12
google_compute_firewall_policy: 1
google_compute_firewall_policy_association: 1
google_compute_firewall_policy_rule: 4
google_compute_ha_vpn_gateway: 2
google_compute_instance: 4
google_compute_network: 4
google_compute_network_peering: 4
google_compute_route: 10
google_compute_router: 8
google_compute_router_interface: 12
google_compute_router_nat: 2
google_compute_router_peer: 20
google_compute_shared_vpc_host_project: 3
google_compute_subnetwork: 10
google_compute_vpn_tunnel: 4
google_dns_managed_zone: 10
google_dns_policy: 4
google_dns_record_set: 3
google_dns_response_policy: 1
google_dns_response_policy_rule: 42
google_essential_contacts_contact: 1
google_monitoring_alert_policy: 2
google_monitoring_dashboard: 3
google_monitoring_monitored_project: 2
google_network_connectivity_hub: 2
google_network_connectivity_spoke: 4
google_project: 3
google_project_iam_binding: 2
google_project_iam_member: 22
google_project_service: 28
google_project_service_identity: 22
google_storage_bucket_object: 2
google_tags_tag_binding: 3
modules: 38
random_id: 6
resources: 273

143
tests/fast/stages/s2_networking_b_nva/regional.tfvars
View File

@@ -1,143 +0,0 @@
automation = {
outputs_bucket = "test"
}
billing_account = {
id = "000000-111111-222222"
}
custom_roles = {
project_iam_viewer = "organizations/123456789012/roles/bar"
service_project_network_admin = "organizations/123456789012/roles/foo"
}
dns = {
onprem_domains = [
{ domain = "onprem.example.com" }
]
resolvers = ["10.10.10.10"]
}
enable_test_instances = true
environments = {
dev = {
is_default = false
name = "Development"
tag_name = "development"
}
prod = {
is_default = true
name = "Production"
tag_name = "production"
}
}
essential_contacts = "gcp-network-admins@fast.example.com"
folder_ids = {
networking = "folders/12345"
networking-dev = null
networking-prod = null
}
groups = {
gcp-network-admins = "gcp-vpc-network-admins"
}
network_mode = "regional_vpc"
organization = {
domain = "fast.example.com"
id = 123456789012
customer_id = "C00000000"
}
prefix = "fast2"
service_accounts = {
data-platform-dev = "string"
data-platform-prod = "string"
gke-dev = "string"
gke-prod = "string"
project-factory = "string"
project-factory-dev = "string"
project-factory-prod = "string"
}
tag_values = {
"environment/development" = "tagValues/12345"
"environment/production" = "tagValues/12346"
}
vpc_configs = {
dmz = {
cloudnat = {
enable = true
}
}
}
vpn_onprem_primary_config = {
peer_external_gateways = {
default = {
redundancy_type = "SINGLE_IP_INTERNALLY_REDUNDANT"
interfaces = ["8.8.8.8"]
}
}
router_config = {
asn = 65501
custom_advertise = {
all_subnets = false
ip_ranges = {
"10.1.0.0/16" = "gcp"
"35.199.192.0/19" = "gcp-dns"
"199.36.153.4/30" = "gcp-restricted"
}
}
}
tunnels = {
"0" = {
bgp_peer = {
address = "169.254.1.1"
asn = 65500
}
bgp_session_range = "169.254.1.2/30"
shared_secret = "foo"
vpn_gateway_interface = 0
}
"1" = {
bgp_peer = {
address = "169.254.2.1"
asn = 64513
}
bgp_session_range = "169.254.2.2/30"
shared_secret = "foo"
vpn_gateway_interface = 1
}
}
}
vpn_onprem_secondary_config = {
peer_external_gateways = {
default = {
redundancy_type = "SINGLE_IP_INTERNALLY_REDUNDANT"
interfaces = ["8.8.4.4"]
}
}
router_config = {
asn = 65501
custom_advertise = {
all_subnets = false
ip_ranges = {
"10.1.0.0/16" = "gcp"
"35.199.192.0/19" = "gcp-dns"
"199.36.153.4/30" = "gcp-restricted"
}
}
}
tunnels = {
"0" = {
bgp_peer = {
address = "169.254.1.1"
asn = 65500
}
bgp_session_range = "169.254.3.2/30"
shared_secret = "foo"
vpn_gateway_interface = 0
}
"1" = {
bgp_peer = {
address = "169.254.2.1"
asn = 64513
}
bgp_session_range = "169.254.4.2/30"
shared_secret = "foo"
vpn_gateway_interface = 1
}
}
}

55
tests/fast/stages/s2_networking_b_nva/regional.yaml
View File

@@ -1,55 +0,0 @@
# Copyright 2025 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
counts:
google_compute_external_vpn_gateway: 2
google_compute_firewall: 18
google_compute_firewall_policy: 1
google_compute_firewall_policy_association: 1
google_compute_firewall_policy_rule: 4
google_compute_forwarding_rule: 6
google_compute_ha_vpn_gateway: 2
google_compute_health_check: 10
google_compute_instance_group_manager: 4
google_compute_instance_template: 2
google_compute_network: 6
google_compute_network_peering: 4
google_compute_region_backend_service: 6
google_compute_route: 26
google_compute_router: 4
google_compute_router_interface: 4
google_compute_router_nat: 2
google_compute_router_peer: 4
google_compute_shared_vpc_host_project: 3
google_compute_subnetwork: 12
google_compute_vpn_tunnel: 4
google_dns_managed_zone: 10
google_dns_policy: 6
google_dns_record_set: 3
google_dns_response_policy: 1
google_dns_response_policy_rule: 42
google_essential_contacts_contact: 1
google_monitoring_alert_policy: 2
google_monitoring_dashboard: 3
google_monitoring_monitored_project: 2
google_project: 3
google_project_iam_binding: 2
google_project_iam_member: 22
google_project_service: 28
google_project_service_identity: 22
google_storage_bucket_object: 2
google_tags_tag_binding: 3
modules: 46
random_id: 6
resources: 283

143
tests/fast/stages/s2_networking_b_nva/simple.tfvars
View File

@@ -1,143 +0,0 @@
automation = {
outputs_bucket = "test"
}
billing_account = {
id = "000000-111111-222222"
}
custom_roles = {
project_iam_viewer = "organizations/123456789012/roles/bar"
service_project_network_admin = "organizations/123456789012/roles/foo"
}
dns = {
onprem_domains = [
{ domain = "onprem.example.com" }
]
resolvers = ["10.10.10.10"]
}
enable_test_instances = true
environments = {
dev = {
is_default = false
name = "Development"
tag_name = "development"
}
prod = {
is_default = true
name = "Production"
tag_name = "production"
}
}
essential_contacts = "gcp-network-admins@fast.example.com"
folder_ids = {
networking = "folders/12345"
networking-dev = null
networking-prod = null
}
groups = {
gcp-network-admins = "gcp-vpc-network-admins"
}
network_mode = "simple"
organization = {
domain = "fast.example.com"
id = 123456789012
customer_id = "C00000000"
}
prefix = "fast2"
service_accounts = {
data-platform-dev = "string"
data-platform-prod = "string"
gke-dev = "string"
gke-prod = "string"
project-factory = "string"
project-factory-dev = "string"
project-factory-prod = "string"
}
tag_values = {
"environment/development" = "tagValues/12345"
"environment/production" = "tagValues/12346"
}
vpc_configs = {
dmz = {
cloudnat = {
enable = true
}
}
}
vpn_onprem_primary_config = {
peer_external_gateways = {
default = {
redundancy_type = "SINGLE_IP_INTERNALLY_REDUNDANT"
interfaces = ["8.8.8.8"]
}
}
router_config = {
asn = 65501
custom_advertise = {
all_subnets = false
ip_ranges = {
"10.1.0.0/16" = "gcp"
"35.199.192.0/19" = "gcp-dns"
"199.36.153.4/30" = "gcp-restricted"
}
}
}
tunnels = {
"0" = {
bgp_peer = {
address = "169.254.1.1"
asn = 65500
}
bgp_session_range = "169.254.1.2/30"
shared_secret = "foo"
vpn_gateway_interface = 0
}
"1" = {
bgp_peer = {
address = "169.254.2.1"
asn = 64513
}
bgp_session_range = "169.254.2.2/30"
shared_secret = "foo"
vpn_gateway_interface = 1
}
}
}
vpn_onprem_secondary_config = {
peer_external_gateways = {
default = {
redundancy_type = "SINGLE_IP_INTERNALLY_REDUNDANT"
interfaces = ["8.8.4.4"]
}
}
router_config = {
asn = 65501
custom_advertise = {
all_subnets = false
ip_ranges = {
"10.1.0.0/16" = "gcp"
"35.199.192.0/19" = "gcp-dns"
"199.36.153.4/30" = "gcp-restricted"
}
}
}
tunnels = {
"0" = {
bgp_peer = {
address = "169.254.1.1"
asn = 65500
}
bgp_session_range = "169.254.3.2/30"
shared_secret = "foo"
vpn_gateway_interface = 0
}
"1" = {
bgp_peer = {
address = "169.254.2.1"
asn = 64513
}
bgp_session_range = "169.254.4.2/30"
shared_secret = "foo"
vpn_gateway_interface = 1
}
}
}

55
tests/fast/stages/s2_networking_b_nva/simple.yaml
View File

@@ -1,55 +0,0 @@
# Copyright 2025 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
counts:
google_compute_external_vpn_gateway: 2
google_compute_firewall: 12
google_compute_firewall_policy: 1
google_compute_firewall_policy_association: 1
google_compute_firewall_policy_rule: 4
google_compute_forwarding_rule: 4
google_compute_ha_vpn_gateway: 2
google_compute_health_check: 8
google_compute_instance_group_manager: 4
google_compute_instance_template: 4
google_compute_network: 4
google_compute_network_peering: 4
google_compute_region_backend_service: 4
google_compute_route: 18
google_compute_router: 4
google_compute_router_interface: 4
google_compute_router_nat: 2
google_compute_router_peer: 4
google_compute_shared_vpc_host_project: 3
google_compute_subnetwork: 10
google_compute_vpn_tunnel: 4
google_dns_managed_zone: 10
google_dns_policy: 4
google_dns_record_set: 3
google_dns_response_policy: 1
google_dns_response_policy_rule: 42
google_essential_contacts_contact: 1
google_monitoring_alert_policy: 2
google_monitoring_dashboard: 3
google_monitoring_monitored_project: 2
google_project: 3
google_project_iam_binding: 2
google_project_iam_member: 22
google_project_service: 28
google_project_service_identity: 22
google_storage_bucket_object: 2
google_tags_tag_binding: 3
modules: 42
random_id: 6
resources: 259

20
tests/fast/stages/s2_networking_b_nva/tftest.yaml
View File

@@ -1,20 +0,0 @@
# Copyright 2025 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
module: fast/stages/2-networking-legacy-b-nva
tests:
simple:
ncc-ra:
regional:

147
tests/fast/stages/s2_networking_c_separate_envs/simple.tfvars
View File

@@ -1,147 +0,0 @@
automation = {
outputs_bucket = "test"
}
billing_account = {
id = "000000-111111-222222"
}
custom_roles = {
project_iam_viewer = "organizations/123456789012/roles/bar"
service_project_network_admin = "organizations/123456789012/roles/foo"
}
dns = {
onprem_domains = [
{ domain = "onprem.example.com" }
]
dev_resolvers = ["10.10.10.10"]
prod_resolvers = ["10.20.10.10"]
}
environments = {
dev = {
is_default = false
name = "Development"
tag_name = "development"
}
prod = {
is_default = true
name = "Production"
tag_name = "production"
}
}
essential_contacts = "gcp-network-admins@fast.example.com"
folder_ids = {
networking = "folders/12345"
networking-dev = null
networking-prod = null
}
groups = {
gcp-network-admins = "gcp-vpc-network-admins"
}
service_accounts = {
data-platform-dev = "string"
data-platform-prod = "string"
gke-dev = "string"
gke-prod = "string"
project-factory = "string"
project-factory-dev = "string"
project-factory-prod = "string"
}
organization = {
domain = "fast.example.com"
id = 123456789012
customer_id = "C00000000"
}
prefix = "fast2"
tag_values = {
"environment/development" = "tagValues/12345"
"environment/production" = "tagValues/12346"
}
vpc_configs = {
dev = {
cloudnat = {
enable = true
}
}
prod = {
cloudnat = {
enable = true
}
}
}
vpn_onprem_dev_primary_config = {
peer_external_gateways = {
default = {
redundancy_type = "SINGLE_IP_INTERNALLY_REDUNDANT"
interfaces = ["8.8.8.8"]
}
}
router_config = {
asn = 65501
custom_advertise = {
all_subnets = false
ip_ranges = {
"10.1.0.0/16" = "gcp"
"35.199.192.0/19" = "gcp-dns"
"199.36.153.4/30" = "gcp-restricted"
}
}
}
tunnels = {
"0" = {
bgp_peer = {
address = "169.254.1.1"
asn = 65500
}
bgp_session_range = "169.254.1.2/30"
shared_secret = "foo"
vpn_gateway_interface = 0
}
"1" = {
bgp_peer = {
address = "169.254.2.1"
asn = 64513
}
bgp_session_range = "169.254.2.2/30"
shared_secret = "foo"
vpn_gateway_interface = 1
}
}
}
vpn_onprem_prod_primary_config = {
peer_external_gateways = {
default = {
redundancy_type = "SINGLE_IP_INTERNALLY_REDUNDANT"
interfaces = ["8.8.4.4"]
}
}
router_config = {
asn = 65501
custom_advertise = {
all_subnets = false
ip_ranges = {
"10.1.0.0/16" = "gcp"
"35.199.192.0/19" = "gcp-dns"
"199.36.153.4/30" = "gcp-restricted"
}
}
}
tunnels = {
"0" = {
bgp_peer = {
address = "169.254.1.1"
asn = 65500
}
bgp_session_range = "169.254.3.2/30"
shared_secret = "foo"
vpn_gateway_interface = 0
}
"1" = {
bgp_peer = {
address = "169.254.2.1"
asn = 64513
}
bgp_session_range = "169.254.4.2/30"
shared_secret = "foo"
vpn_gateway_interface = 1
}
}
}

48
tests/fast/stages/s2_networking_c_separate_envs/simple.yaml
View File

@@ -1,48 +0,0 @@
# Copyright 2025 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
counts:
google_compute_external_vpn_gateway: 2
google_compute_firewall: 4
google_compute_firewall_policy: 1
google_compute_firewall_policy_association: 1
google_compute_firewall_policy_rule: 4
google_compute_ha_vpn_gateway: 2
google_compute_network: 2
google_compute_route: 8
google_compute_router: 5
google_compute_router_interface: 4
google_compute_router_nat: 3
google_compute_router_peer: 4
google_compute_shared_vpc_host_project: 2
google_compute_subnetwork: 4
google_compute_vpn_tunnel: 4
google_dns_managed_zone: 8
google_dns_policy: 2
google_dns_record_set: 2
google_dns_response_policy: 2
google_dns_response_policy_rule: 84
google_essential_contacts_contact: 1
google_monitoring_alert_policy: 4
google_monitoring_dashboard: 6
google_project: 2
google_project_iam_binding: 2
google_project_iam_member: 18
google_project_service: 22
google_project_service_identity: 18
google_storage_bucket_object: 2
google_tags_tag_binding: 2
modules: 23
random_id: 6
resources: 231

18
tests/fast/stages/s2_networking_c_separate_envs/tftest.yaml
View File

@@ -1,18 +0,0 @@
# Copyright 2024 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
module: fast/stages/2-networking-legacy-c-separate-envs
tests:
simple: