Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support dynamic group in group memberships based on tags #828

Closed
benzander opened this issue Jan 13, 2023 · 1 comment · Fixed by #882
Closed

Support dynamic group in group memberships based on tags #828

benzander opened this issue Jan 13, 2023 · 1 comment · Fixed by #882
Labels
enhancement Enhancement

Comments

@benzander
Copy link

Is your feature request related to a problem? Please describe.

I want to prepare firewall rules in one terraform module that e.g. allows ipsec traffic on a T0 VRF and add the VPN Endpoint IP Address of the T1 dynamically in a different terraform Module.

I'm missing to features in the NSX-T Provider to do that.

Describe the solution you'd like

  1. The ressource nsxt_policy_group needs to support "IP Addresses Only" Groups

  2. nsxt_policy_group needs to support criteria type "group" like that:

resource "nsxt_policy_group" "vpn-endpoints" {
  display_name = "vpn-endpoints"

  criteria {
    condition {
      key         = "Tag"
      member_type = "group"
      operator    = "EQUALS"
      value       = "vpn|endpoint"
    }
  }
}

Describe alternatives you've considered

If it is easier to implement a new ressource to create IP Addresses Only groups I could also work with that.
E.g. nsxt_policy_ip_group

Additional context

No response
@benzander benzander added the enhancement Enhancement label Jan 13, 2023
@yasvanth
Copy link

As nsxt_ip_set resource is deprecated, either member_type = group would be best to tag the GW addresses dynamically. Would this be writing a new resource or an update to the existing policy group because NSX UI doesn't have the option to set member criteria as "group"

@benzander benzander mentioned this issue Mar 27, 2023
Closed
@annakhm annakhm linked a pull request May 2, 2023 that will close this issue
Update group enumerations with latest spec #882
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement Enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Update group enumerations with latest spec vmware/terraform-provider-nsxt
2 participants
@yasvanth @benzander