Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add Forced Tunneling to the Hub Firewall configuration #202

Merged
merged 17 commits into from
May 14, 2021

Conversation

Phydeauxman
Copy link
Contributor

@Phydeauxman Phydeauxman commented May 10, 2021

Description

This PR enables forced tunneling the firewall deployment by adding a management subnet to the hub virtual network, creating a route table applied to the management subnet with a default route to the Internet and adding a management IP config to the firewall.

Issue reference

The issue this PR will close: #117

Checklist

Please make sure you've completed the relevant tasks for this PR, out of the following list:

  • Code compiles or validates correctly
  • BASH scripts have been validated using shellcheck
  • All tests pass (manual and automated)
  • The documentation is updated to cover any new or changed features
  • Markdown files have been linted using the recommended linter. (See .vscode/extensions.json.)
  • Relevant issues are linked to this PR

@glennmusa
Copy link
Contributor

We'll need to add the time provider to src/Dockerfile too

@glennmusa glennmusa added the do-not-merge This pull request is in process and should not be merged to main. label May 12, 2021
@glennmusa
Copy link
Contributor

added the do-not-merge label for the time being until docs are up-to-date with guidance on forced tunneling @Phydeauxman -- feel free to remove it whenever

@Phydeauxman Phydeauxman merged commit 0eb8c20 into main May 14, 2021
@Phydeauxman Phydeauxman deleted the byboudre/forced_tunneling branch May 14, 2021 11:36
@glennmusa glennmusa removed the do-not-merge This pull request is in process and should not be merged to main. label May 18, 2021
jwaltireland pushed a commit to ARPA-H/AzureMissionLZ that referenced this pull request Nov 14, 2024
* - Added Management subnet to SACA Virtual Network

* - Added route table to management subnet

* - Added TIME provider to Docerkfile
- Added Route Table to HUB module
- Added TIME provder declaration to SACA-HUB main.tf

* - Updated FW related variable names
- Added management IP config to firewall

* - Removed AZURERM provider arg for 2.50

* - Added new line at end of file

* - Updated variable names in template files

* - Update variable names

* update global tf vars generator

* - Added additional fields to the frontend json

* - Added route table field to frontend json

* - Updated variable names in modules

* - Added missing variable to json sample

Co-authored-by: Glenn Musa <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

Enable forced tunneling by default
2 participants