我想从我的GKE集群pod访问我的CloudSQL实例。由于我正在进行设置,我需要携带与Terraform配置文件相关的所有GCP。
遵循本教程:https://cloud.google.com/sql/docs/mysql/quickstart-kubernetes-engine#gcloud_2
我被描述创建对等vpc连接的两个步骤卡住了。
所以我的问题是以下两个命令的Terraform等价物是什么:
gcloud compute addresses create google-managed-services-default
--global
--purpose=VPC_PEERING
--prefix-length=16
--description="peering range for Google"
--network=default
和
gcloud services vpc-peerings connect
--service=servicenetworking.googleapis.com
--ranges=google-managed-services-default
--network=default
我试着在里面找https://registry.terraform.io/providers/hashicorp/google/latest/docs但找不到合适的。
创建地址如下所示:
resource "google_compute_global_address" "address_resource" {
provider = google-beta # from docs
name = "google-managed-services-default"
address_type = "INTERNAL"
purpose = "VPC_PEERING"
prefix_length = "16"
network = google_compute_network.network_resource.id
address = "REPLACE_WITH_VALUE" # or remove it to automatically select an unused address range in your VPC network
}
服务连接将是这样的:
resource "google_service_networking_connection" "foobar" {
network = google_compute_network.network_resource.id
service = "servicenetworking.googleapis.com"
reserved_peering_ranges = [google_compute_global_address.address_resource.name]
}
链接:
- 示例用法-全局地址专用服务连接
- 谷歌服务网络连接