mmv1/products/compute/Interconnect.yaml (398 lines of code) (raw):
# Copyright 2024 Google Inc.
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
---
name: 'Interconnect'
kind: 'compute#Interconnect'
description: |
Represents an Interconnect resource. The Interconnect resource is a dedicated connection between
Google's network and your on-premises network.
references:
guides:
'Create a Dedicated Interconnect': 'https://cloud.google.com/network-connectivity/docs/interconnect/concepts/dedicated-overview'
api: 'https://cloud.google.com/compute/docs/reference/rest/v1/interconnects'
docs:
base_url: 'projects/{{project}}/global/interconnects'
self_link: 'projects/{{project}}/global/interconnects/{{name}}'
update_verb: 'PATCH'
timeouts:
insert_minutes: 20
update_minutes: 20
delete_minutes: 20
async:
actions: ['create', 'delete', 'update']
type: 'OpAsync'
operation:
base_url: '{{op_id}}'
result:
resource_inside_response: false
custom_code:
constants: 'templates/terraform/constants/interconnect.go.tmpl'
post_create: 'templates/terraform/post_create/labels.tmpl'
examples:
- name: 'compute_interconnect_basic'
primary_resource_id: 'example-interconnect'
vars:
interconnect_name: 'example-interconnect'
customer_name: 'example_customer'
deletion_protection: 'true'
test_vars_overrides:
'deletion_protection': 'false'
exclude_test: true
- name: 'compute_interconnect_basic_test'
primary_resource_id: 'example-interconnect'
vars:
interconnect_name: 'example-interconnect'
exclude_docs: true
parameters:
properties:
- name: 'description'
type: String
description: |
An optional description of this resource. Provide this property when you create the resource.
- name: 'creationTimestamp'
type: Time
description: |
Creation timestamp in RFC3339 text format.
output: true
- name: 'name'
type: String
description: |
Name of the resource. Provided by the client when the resource is created. The name must be
1-63 characters long, and comply with RFC1035. Specifically, the name must be 1-63 characters
long and match the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?` which means the first
character must be a lowercase letter, and all following characters must be a dash,
lowercase letter, or digit, except the last character, which cannot be a dash.
required: true
immutable: true
validation:
regex: '^[a-z]([-a-z0-9]*[a-z0-9])?$'
- name: 'location'
type: ResourceRef
description: |
URL of the InterconnectLocation object that represents where this connection is to be provisioned.
Specifies the location inside Google's Networks.
immutable: true
resource: 'InterconnectLocations'
imports: 'selfLink'
required: true
- name: 'linkType'
type: Enum
description: |
Type of link requested. Note that this field indicates the speed of each of the links in the
bundle, not the speed of the entire bundle. Can take one of the following values:
- LINK_TYPE_ETHERNET_10G_LR: A 10G Ethernet with LR optics.
- LINK_TYPE_ETHERNET_100G_LR: A 100G Ethernet with LR optics.
- LINK_TYPE_ETHERNET_400G_LR4: A 400G Ethernet with LR4 optics
required: true
immutable: true
enum_values:
- 'LINK_TYPE_ETHERNET_10G_LR'
- 'LINK_TYPE_ETHERNET_100G_LR'
- 'LINK_TYPE_ETHERNET_400G_LR4'
- name: 'requestedLinkCount'
type: Integer
description: |
Target number of physical links in the link bundle, as requested by the customer.
required: true
immutable: true
- name: 'interconnectType'
type: Enum
description: |
Type of interconnect. Note that a value IT_PRIVATE has been deprecated in favor of DEDICATED.
Can take one of the following values:
- PARTNER: A partner-managed interconnection shared between customers though a partner.
- DEDICATED: A dedicated physical interconnection with the customer.
required: true
immutable: true
diff_suppress_func: 'InterconnectTypeDiffSuppress'
enum_values:
- 'DEDICATED'
- 'PARTNER'
- 'IT_PRIVATE'
- name: 'adminEnabled'
type: Boolean
description: |
Administrative status of the interconnect. When this is set to true, the Interconnect is
functional and can carry traffic. When set to false, no packets can be carried over the
interconnect and no BGP routes are exchanged over it. By default, the status is set to true.
send_empty_value: true
default_value: true
- name: 'nocContactEmail'
type: String
description: |
Email address to contact the customer NOC for operations and maintenance notifications
regarding this Interconnect. If specified, this will be used for notifications in addition to
all other forms described, such as Cloud Monitoring logs alerting and Cloud Notifications.
This field is required for users who sign up for Cloud Interconnect using workforce identity
federation.
- name: 'customerName'
type: String
description: |
Customer name, to put in the Letter of Authorization as the party authorized to request a
crossconnect. This field is required for Dedicated and Partner Interconnect, should not be specified
for cross-cloud interconnect.
immutable: true
- name: 'operationalStatus'
type: Enum
description: |
The current status of this Interconnect's functionality, which can take one of the following:
- OS_ACTIVE: A valid Interconnect, which is turned up and is ready to use. Attachments may
be provisioned on this Interconnect.
- OS_UNPROVISIONED: An Interconnect that has not completed turnup. No attachments may be
provisioned on this Interconnect.
- OS_UNDER_MAINTENANCE: An Interconnect that is undergoing internal maintenance. No
attachments may be provisioned or updated on this Interconnect.
output: true
enum_values:
- 'OS_ACTIVE'
- 'OS_UNPROVISIONED'
- 'OS_UNDER_MAINTENANCE'
- name: 'provisionedLinkCount'
type: Integer
description: |
Number of links actually provisioned in this interconnect.
output: true
- name: 'interconnectAttachments'
type: Array
description: |
A list of the URLs of all InterconnectAttachments configured to use this Interconnect.
output: true
item_type:
type: String
- name: 'peerIpAddress'
type: String
description: |
IP address configured on the customer side of the Interconnect link.
The customer should configure this IP address during turnup when prompted by Google NOC.
This can be used only for ping tests.
output: true
- name: 'googleIpAddress'
type: String
description: |
IP address configured on the Google side of the Interconnect link.
This can be used only for ping tests.
output: true
- name: 'googleReferenceId'
type: String
description: |
Google reference ID to be used when raising support tickets with Google or otherwise to debug
backend connectivity issues.
output: true
- name: 'expectedOutages'
type: Array
description: A list of outages expected for this Interconnect.
output: true
item_type:
type: NestedObject
properties:
- name: 'name'
type: String
description: |
Unique identifier for this outage notification.
output: true
- name: 'description'
type: String
description: |
A description about the purpose of the outage.
output: true
- name: 'source'
type: Enum
description: |
The party that generated this notification. Note that the value of NSRC_GOOGLE has been
deprecated in favor of GOOGLE. Can take the following value:
- GOOGLE: this notification as generated by Google.
output: true
enum_values:
- 'GOOGLE'
- name: 'state'
type: Enum
description: |
State of this notification. Note that the versions of this enum prefixed with "NS_" have
been deprecated in favor of the unprefixed values. Can take one of the following values:
- ACTIVE: This outage notification is active. The event could be in the past, present,
or future. See startTime and endTime for scheduling.
- CANCELLED: The outage associated with this notification was cancelled before the
outage was due to start.
- COMPLETED: The outage associated with this notification is complete.
output: true
enum_values:
- 'ACTIVE'
- 'CANCELLED'
- 'COMPLETED'
- name: 'issueType'
type: Enum
description: |
Form this outage is expected to take. Note that the versions of this enum prefixed with
"IT_" have been deprecated in favor of the unprefixed values. Can take one of the
following values:
- OUTAGE: The Interconnect may be completely out of service for some or all of the
specified window.
- PARTIAL_OUTAGE: Some circuits comprising the Interconnect as a whole should remain
up, but with reduced bandwidth.
output: true
enum_values:
- 'OUTAGE'
- 'PARTIAL_OUTAGE'
- name: 'affectedCircuits'
type: Array
description: |
If issueType is IT_PARTIAL_OUTAGE, a list of the Google-side circuit IDs that will be
affected.
output: true
item_type:
type: String
- name: 'startTime'
type: String
description: |
Scheduled start time for the outage (milliseconds since Unix epoch).
output: true
- name: 'endTime'
type: String
description: |
Scheduled end time for the outage (milliseconds since Unix epoch).
output: true
- name: 'circuitInfos'
type: Array
description: A list of CircuitInfo objects, that describe the individual circuits in this LAG.
output: true
item_type:
type: NestedObject
properties:
- name: 'googleCircuitId'
type: String
description: |
Google-assigned unique ID for this circuit. Assigned at circuit turn-up.
output: true
- name: 'googleDemarcId'
type: String
description: |
Google-side demarc ID for this circuit. Assigned at circuit turn-up and provided by
Google to the customer in the LOA.
output: true
- name: 'customerDemarcId'
type: String
description: |
Customer-side demarc ID for this circuit.
output: true
- name: 'labels'
type: KeyValueLabels
update_url: 'projects/{{project}}/global/interconnects/{{name}}/setLabels'
update_verb: 'POST'
description: |
Labels for this resource. These can only be added or modified by the setLabels
method. Each label key/value pair must comply with RFC1035. Label values may be empty.
- name: 'labelFingerprint'
type: Fingerprint
update_url: 'projects/{{project}}/global/interconnects/{{name}}/setLabels'
update_verb: 'POST'
description: |
A fingerprint for the labels being applied to this Interconnect, which is essentially a hash
of the labels set used for optimistic locking. The fingerprint is initially generated by
Compute Engine and changes after every request to modify or update labels.
You must always provide an up-to-date fingerprint hash in order to update or change labels,
otherwise the request will fail with error 412 conditionNotMet.
output: true
- name: 'state'
type: Enum
description: |
The current state of Interconnect functionality, which can take one of the following values:
- ACTIVE: The Interconnect is valid, turned up and ready to use.
Attachments may be provisioned on this Interconnect.
- UNPROVISIONED: The Interconnect has not completed turnup. No attachments may b
provisioned on this Interconnect.
- UNDER_MAINTENANCE: The Interconnect is undergoing internal maintenance. No attachments may
be provisioned or updated on this Interconnect.
output: true
enum_values:
- 'ACTIVE'
- 'UNPROVISIONED'
- 'UNDER_MAINTENANCE'
- name: 'satisfiesPzs'
type: Boolean
description: Reserved for future use.
output: true
- name: 'macsec'
type: NestedObject
description: |
Configuration that enables Media Access Control security (MACsec) on the Cloud
Interconnect connection between Google and your on-premises router.
properties:
- name: 'preSharedKeys'
type: Array
description: |
A keychain placeholder describing a set of named key objects along with their
start times. A MACsec CKN/CAK is generated for each key in the key chain.
Google router automatically picks the key with the most recent startTime when establishing
or re-establishing a MACsec secure link.
required: true
item_type:
type: NestedObject
properties:
- name: 'name'
type: String
description: |
A name for this pre-shared key. The name must be 1-63 characters long, and
comply with RFC1035. Specifically, the name must be 1-63 characters long and match
the regular expression `[a-z]([-a-z0-9]*[a-z0-9])?` which means the first character
must be a lowercase letter, and all following characters must be a dash, lowercase
letter, or digit, except the last character, which cannot be a dash.
required: true
validation:
regex: '^[a-z]([-a-z0-9]*[a-z0-9])?$'
- name: 'startTime'
type: String
description: |
A RFC3339 timestamp on or after which the key is valid. startTime can be in the
future. If the keychain has a single key, startTime can be omitted. If the keychain
has multiple keys, startTime is mandatory for each key. The start times of keys must
be in increasing order. The start times of two consecutive keys must be at least 6
hours apart.
- name: 'failOpen'
type: Boolean
description: |
If set to true, the Interconnect connection is configured with a should-secure
MACsec security policy, that allows the Google router to fallback to cleartext
traffic if the MKA session cannot be established. By default, the Interconnect
connection is configured with a must-secure security policy that drops all traffic
if the MKA session cannot be established with your router.
deprecation_message: '`failOpen` is deprecated and will be removed in a future major release. Use other `failOpen` instead.'
- name: 'failOpen'
type: Boolean
description: |
If set to true, the Interconnect connection is configured with a should-secure
MACsec security policy, that allows the Google router to fallback to cleartext
traffic if the MKA session cannot be established. By default, the Interconnect
connection is configured with a must-secure security policy that drops all traffic
if the MKA session cannot be established with your router.
- name: 'macsecEnabled'
type: Boolean
description: |
Enable or disable MACsec on this Interconnect connection.
MACsec enablement fails if the MACsec object is not specified.
- name: 'remoteLocation'
type: String
description: |
Indicates that this is a Cross-Cloud Interconnect. This field specifies the location outside
of Google's network that the interconnect is connected to.
immutable: true
- name: 'requestedFeatures'
type: Array
description: |
interconnects.list of features requested for this Interconnect connection. Options: IF_MACSEC (
If specified then the connection is created on MACsec capable hardware ports. If not
specified, the default value is false, which allocates non-MACsec capable ports first if
available). Note that MACSEC is still technically allowed for compatibility reasons, but it
does not work with the API, and will be removed in an upcoming major version.
immutable: true
item_type:
type: Enum
description: |
interconnects.list of features requested for this Interconnect connection
enum_values:
- 'MACSEC'
- 'IF_MACSEC'
- name: 'availableFeatures'
type: Array
description: |
interconnects.list of features available for this Interconnect connection. Can take the value:
MACSEC. If present then the Interconnect connection is provisioned on MACsec capable hardware
ports. If not present then the Interconnect connection is provisioned on non-MACsec capable
ports and MACsec isn't supported and enabling MACsec fails).
output: true
item_type:
type: String