forked from oci-landing-zones/oracle-enterprise-landingzone
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathexample.tfvars
99 lines (86 loc) · 3.9 KB
/
example.tfvars
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
# Provider
current_user_ocid = "## YOUR USER OCID ##"
region = "## OCI REGION TO DEPLOY TO"
tenancy_ocid = "## YOUR TENANCY OCID ##"
api_fingerprint = "## YOUR OCI API KEY FINGERPRINT ##"
api_private_key_path = "## YOUR OCI API PRIVATE KEY FILE ##"
# iam
resource_label = "DEMO"
prod_domain_admin_email = "an-example-email-address@oracle.com"
nonprod_domain_admin_email = "an-example-email-address@oracle.com"
enable_compartment_delete = false
# security
enable_cloud_guard = true
cloud_guard_target_tenancy = false
nonprod_enable_bastion = true
prod_enable_bastion = true
prod_bastion_client_cidr_block_allow_list = ["10.0.0.0/16", "10.0.0.0/24"]
nonprod_bastion_client_cidr_block_allow_list = ["10.0.0.0/16", "10.0.0.0/24"]
# budget
nonprod_enable_budget = true
prod_enable_budget = true
nonprod_budget_alert_rule_message = "test"
nonprod_budget_alert_rule_recipients = "an-example-email-address@oracle.com"
nonprod_budget_alert_rule_threshold = 1000000
nonprod_budget_amount = 10000000
prod_budget_alert_rule_message = "test"
prod_budget_alert_rule_recipients = "an-example-email-address@oracle.com"
prod_budget_alert_rule_threshold = 1000000
prod_budget_amount = 10000000
# network extension
enable_vpn_or_fastconnect = "NONE"
prod_enable_vpn = true
prod_cpe_ip_address = "10.0.0.0"
prod_cpe_display_name = "OCI-ELZ-CPE-P-HUB-001"
prod_cpe_vendor = 4
prod_ipsec_connection_static_routes = ["10.0.0.0/16", "11.0.0.0/16"]
nonprod_enable_vpn = false
# network
prod_enable_internet_gateway_hub = "true"
prod_enable_nat_gateway_hub = "true"
prod_enable_service_gateway_hub = "true"
prod_enable_nat_gateway_spoke = "true"
prod_enable_service_gateway_spoke = "true"
nonprod_enable_internet_gateway_hub = "true"
nonprod_enable_nat_gateway_hub = "true"
nonprod_enable_service_gateway_hub = "true"
nonprod_enable_nat_gateway_spoke = "true"
nonprod_enable_service_gateway_spoke = "true"
prod_hub_vcn_cidr_block = "10.1.0.0/16"
prod_hub_public_subnet_cidr_block = "10.1.1.0/24"
prod_hub_private_subnet_cidr_block = "10.1.2.0/24"
prod_spoke_vcn_cidr = "10.2.0.0/16"
prod_spoke_subnet_web_cidr_block = "10.2.1.0/24"
prod_spoke_subnet_app_cidr_block = "10.2.2.0/24"
prod_spoke_subnet_db_cidr_block = "10.2.3.0/24"
nonprod_hub_vcn_cidr_block = "10.3.0.0/16"
nonprod_hub_public_subnet_cidr_block = "10.3.1.0/24"
nonprod_hub_private_subnet_cidr_block = "10.3.2.0/24"
nonprod_spoke_vcn_cidr = "10.4.0.0/16"
nonprod_spoke_subnet_web_cidr_block = "10.4.1.0/24"
nonprod_spoke_subnet_app_cidr_block = "10.4.2.0/24"
nonprod_spoke_subnet_db_cidr_block = "10.4.3.0/24"
# Tagging
prod_enable_tagging = true
nonprod_enable_tagging = true
nonprod_cost_center_tagging = "n_cost_tag"
nonprod_geo_location_tagging = "n_geo_tag"
prod_cost_center_tagging = "p_cost_tag"
prod_geo_location_tagging = "p_geo_tag"
onboard_log_analytics = false
# Monitoring (Optional)
prod_network_topic_endpoints = []
prod_secops_topic_endpoints = []
prod_platform_topic_endpoints = []
prod_identity_topic_endpoints = []
prod_workload_topic_endpoints = []
nonprod_network_topic_endpoints = []
nonprod_secops_topic_endpoints = []
nonprod_platform_topic_endpoints = []
nonprod_identity_topic_endpoints = []
nonprod_workload_topic_endpoints = []
# Workload Expansion
prod_additional_workload_subnets_cidr_blocks = []
nonprod_additional_workload_subnets_cidr_blocks = []
prod_workload_compartment_names = []
nonprod_workload_compartment_names = []