################################################################################# # Avere vFXT (https://learn.microsoft.com/azure/avere-vfxt/avere-vfxt-overview) # ################################################################################# variable vfxtCache { type = object({ enable = bool name = string cluster = object({ nodeSize = number nodeCount = number adminUsername = string adminPassword = string sshKeyPublic = string localTimezone = string enableDevMode = bool imageUrn = object({ controller = string node = string }) }) activeDirectory = object({ enable = bool domainName = string domainNameNetBIOS = string domainControllers = string domainUsername = string domainPassword = string }) support = object({ companyName = string enableLogUpload = bool enableProactive = string rollingTraceFlag = string }) }) } locals { vfxtCache = merge(var.vfxtCache, { cluster = merge(var.vfxtCache.cluster, { adminUsername = var.vfxtCache.cluster.adminUsername != "" ? var.vfxtCache.cluster.adminUsername : data.azurerm_key_vault_secret.admin_username.value adminPassword = var.vfxtCache.cluster.adminPassword != "" ? var.vfxtCache.cluster.adminPassword : data.azurerm_key_vault_secret.admin_password.value sshKeyPublic = var.vfxtCache.cluster.sshKeyPublic != "" ? var.vfxtCache.cluster.sshKeyPublic : "${data.azurerm_key_vault_secret.ssh_key_public.value} admin@vfxt" }) }) reserveDNSAddresses = split("/", data.azurerm_subnet.cache.address_prefixes[0])[1] <= 26 vServerAddressCount = local.reserveDNSAddresses ? 12 : null vServerFirstAddress = local.reserveDNSAddresses ? cidrhost(data.azurerm_subnet.cache.address_prefixes[0], -local.vServerAddressCount - 1) : null } module vfxt_controller { count = var.vfxtCache.enable ? 1 : 0 source = "github.com/Azure/Avere/src/terraform/modules/controller3" create_resource_group = false resource_group_name = azurerm_resource_group.cache.name location = azurerm_resource_group.cache.location admin_username = local.vfxtCache.cluster.adminUsername admin_password = local.vfxtCache.cluster.adminPassword ssh_key_data = local.vfxtCache.cluster.sshKeyPublic != "" ? local.vfxtCache.cluster.sshKeyPublic : null virtual_network_name = data.azurerm_virtual_network.studio.name virtual_network_resource_group = data.azurerm_virtual_network.studio.resource_group_name virtual_network_subnet_name = data.azurerm_subnet.cache.name static_ip_address = cidrhost(data.azurerm_subnet.cache.address_prefixes[0], 4) image_id = var.vfxtCache.cluster.imageUrn.controller depends_on = [ azurerm_resource_group.cache ] } resource avere_vfxt cache { count = var.vfxtCache.enable ? 1 : 0 vfxt_cluster_name = lower(var.vfxtCache.name) azure_resource_group = azurerm_resource_group.cache.name location = azurerm_resource_group.cache.location node_cache_size = var.vfxtCache.cluster.nodeSize vfxt_node_count = var.vfxtCache.cluster.nodeCount image_id = var.vfxtCache.cluster.imageUrn.node azure_network_name = data.azurerm_virtual_network.studio.name azure_network_resource_group = data.azurerm_virtual_network.studio.resource_group_name azure_subnet_name = data.azurerm_subnet.cache.name controller_address = module.vfxt_controller[count.index].controller_address controller_admin_username = local.vfxtCache.cluster.adminUsername controller_admin_password = local.vfxtCache.cluster.adminPassword vfxt_admin_password = local.vfxtCache.cluster.adminPassword vfxt_ssh_key_data = local.vfxtCache.cluster.sshKeyPublic != "" ? local.vfxtCache.cluster.sshKeyPublic : null cifs_ad_domain = var.vfxtCache.activeDirectory.enable ? var.vfxtCache.activeDirectory.domainName : null cifs_netbios_domain_name = var.vfxtCache.activeDirectory.enable ? var.vfxtCache.activeDirectory.domainNameNetBIOS : null cifs_dc_addreses = var.vfxtCache.activeDirectory.enable ? var.vfxtCache.activeDirectory.domainControllers : null cifs_server_name = var.vfxtCache.activeDirectory.enable ? lower(var.vfxtCache.name) : null cifs_username = var.vfxtCache.activeDirectory.enable ? var.vfxtCache.activeDirectory.domainUsername : null cifs_password = var.vfxtCache.activeDirectory.enable ? var.vfxtCache.activeDirectory.domainPassword : null support_uploads_company_name = var.vfxtCache.support.companyName enable_support_uploads = var.vfxtCache.support.enableLogUpload enable_secure_proactive_support = var.vfxtCache.support.enableProactive enable_rolling_trace_data = var.vfxtCache.support.rollingTraceFlag != "" rolling_trace_flag = var.vfxtCache.support.rollingTraceFlag timezone = var.vfxtCache.cluster.localTimezone node_size = var.vfxtCache.cluster.enableDevMode ? "unsupported_test_SKU" : "prod_sku" vserver_ip_count = local.vServerAddressCount vserver_first_ip = local.vServerFirstAddress dynamic core_filer { for_each = { for storageTarget in var.storageTargets : storageTarget.name => storageTarget if storageTarget.enable } content { name = core_filer.value["name"] fqdn_or_primary_ip = core_filer.value["hostName"] cache_policy = core_filer.value["usageModel"] dynamic junction { for_each = core_filer.value["vfxtJunctions"] content { core_filer_export = junction.value["storageExport"] export_subdirectory = junction.value["storagePath"] namespace_path = junction.value["clientPath"] } } } } depends_on = [ module.vfxt_controller ] } ############################################################################ # Private DNS (https://learn.microsoft.com/azure/dns/private-dns-overview) # ############################################################################ resource azurerm_private_dns_a_record cache_vfxt { count = var.vfxtCache.enable ? 1 : 0 name = lower(var.dnsRecord.name) resource_group_name = var.virtualNetwork.privateDNS.resourceGroupName zone_name = var.virtualNetwork.privateDNS.zoneName records = avere_vfxt.cache[0].vserver_ip_addresses ttl = var.dnsRecord.ttlSeconds } output vfxtCacheControllerAddress { value = var.vfxtCache.enable ? avere_vfxt.cache[0].controller_address : null } output vfxtCacheManagementAddress { value = var.vfxtCache.enable ? avere_vfxt.cache[0].vfxt_management_ip : null }