comet-ml
diff --git a/‎comet-infrastructure/.terraform.lock.hcl
Lines changed: 32 additions & 32 deletions b/‎comet-infrastructure/.terraform.lock.hcl
Lines changed: 32 additions & 32 deletions
diff --git a/‎comet-infrastructure/main.tf
Lines changed: 18 additions & 44 deletions b/‎comet-infrastructure/main.tf
Lines changed: 18 additions & 44 deletions
diff --git a/‎comet-infrastructure/modules/comet_vpc/main.tf
Lines changed: 42 additions & 0 deletions b/‎comet-infrastructure/modules/comet_vpc/main.tf
Lines changed: 42 additions & 0 deletions
diff --git a/‎comet-infrastructure/modules/comet_vpc/outputs.tf
Lines changed: 19 additions & 0 deletions b/‎comet-infrastructure/modules/comet_vpc/outputs.tf
Lines changed: 19 additions & 0 deletions
diff --git a/‎comet-infrastructure/modules/comet_vpc/variables.tf
Lines changed: 14 additions & 0 deletions b/‎comet-infrastructure/modules/comet_vpc/variables.tf
Lines changed: 14 additions & 0 deletions
diff --git a/‎comet-infrastructure/modules/comet_vpc/versions.tf b/‎comet-infrastructure/modules/comet_vpc/versions.tf
diff --git a/‎comet-infrastructure/terraform.tfvars
Lines changed: 11 additions & 2 deletions b/‎comet-infrastructure/terraform.tfvars
Lines changed: 11 additions & 2 deletions
@@ -1,60 +1,34 @@
-data "aws_availability_zones" "available" {}
-
 data "aws_eks_cluster_auth" "this" {
   count = var.enable_eks ? 1 : 0
   name  = module.comet_eks[0].cluster_name
 }
 
 locals {
   resource_name = "comet-${var.environment}"
-  vpc_cidr      = "10.0.0.0/16"
-  azs           = slice(data.aws_availability_zones.available.names, 0, 3)
 
   #set environment here, and use local.environment for the environment variables in all of the module calls
-
   tags = {
     Terraform   = "true"
     Environment = var.environment
   }
 }
 
-module "vpc" {
-  source  = "terraform-aws-modules/vpc/aws"
-  version = "~> 5.0.0"
-
-  name = local.resource_name
-  cidr = local.vpc_cidr
-
-  azs             = local.azs
-  public_subnets  = [for k, v in local.azs : cidrsubnet(local.vpc_cidr, 8, k)]
-  private_subnets = [for k, v in local.azs : cidrsubnet(local.vpc_cidr, 8, k + 10)]
-
-  enable_nat_gateway   = true
-  single_nat_gateway   = true
-  enable_dns_hostnames = true
-
-  # Manage so we can name
-  manage_default_network_acl    = true
-  default_network_acl_tags      = { Name = "${local.resource_name}-default" }
-  manage_default_route_table    = true
-  default_route_table_tags      = { Name = "${local.resource_name}-default" }
-  manage_default_security_group = true
-  default_security_group_tags   = { Name = "${local.resource_name}-default" }
-
-  # if EKS deployment, set subnet tags for AWS Load Balancer Controller auto-discovery
-  public_subnet_tags  = var.enable_eks ? {"kubernetes.io/role/elb" = 1} : null
-  private_subnet_tags = var.enable_eks ? {"kubernetes.io/role/internal-elb" = 1} : null
-
-  tags = local.tags
+module "comet_vpc" {
+  source      = "./modules/comet_vpc"
+  count       = var.enable_vpc ? 1 : 0
+  environment = var.environment
+  
+  eks_enabled        = var.enable_eks
+  single_nat_gateway = var.single_nat_gateway
 }
 
 module "comet_ec2" {
   source      = "./modules/comet_ec2"
   count       = var.enable_ec2 ? 1 : 0
   environment = var.environment
 
-  vpc_id                   = module.vpc.vpc_id
-  comet_ec2_subnet         = module.vpc.public_subnets[count.index % length(module.vpc.public_subnets)]
+  vpc_id                   = var.enable_vpc ? module.comet_vpc[0].vpc_id : var.comet_vpc_id
+  comet_ec2_subnet         = var.enable_vpc ? module.comet_vpc[0].public_subnets[0] : var.comet_public_subnets[0]
   comet_ec2_ami_type       = var.comet_ec2_ami_type
   comet_ec2_instance_type  = var.comet_ec2_instance_type
   comet_ec2_instance_count = var.comet_ec2_instance_count
@@ -74,8 +48,8 @@ module "comet_ec2_alb" {
   count       = var.enable_ec2_alb ? 1 : 0
   environment = var.environment
 
-  vpc_id              = module.vpc.vpc_id
-  public_subnets      = module.vpc.public_subnets
+  vpc_id              = var.enable_vpc ? module.comet_vpc[0].vpc_id : var.comet_vpc_id
+  public_subnets      = var.enable_vpc ? module.comet_vpc[0].public_subnets : var.comet_public_subnets
   ssl_certificate_arn = var.enable_ec2_alb ? var.ssl_certificate_arn : null
 }
 
@@ -84,8 +58,8 @@ module "comet_eks" {
   count       = var.enable_eks ? 1 : 0
   environment = var.environment
 
-  vpc_id                           = module.vpc.vpc_id
-  eks_private_subnets              = module.vpc.private_subnets
+  vpc_id                           = var.enable_vpc ? module.comet_vpc[0].vpc_id : var.comet_vpc_id
+  eks_private_subnets              = var.enable_vpc ? module.comet_vpc[0].private_subnets : var.comet_private_subnets
   eks_cluster_name                 = var.eks_cluster_name
   eks_cluster_version              = var.eks_cluster_version
   eks_mng_name                     = var.eks_mng_name
@@ -110,8 +84,8 @@ module "comet_elasticache" {
   ec2_enabled = var.enable_ec2
   eks_enabled = var.enable_eks
 
-  vpc_id                       = module.vpc.vpc_id
-  elasticache_private_subnets  = module.vpc.private_subnets
+  vpc_id                       = var.enable_vpc ? module.comet_vpc[0].vpc_id : var.comet_vpc_id
+  elasticache_private_subnets  = var.enable_vpc ? module.comet_vpc[0].private_subnets : var.comet_private_subnets
   elasticache_allow_ec2_sg     = var.enable_ec2 ? module.comet_ec2[0].comet_ec2_sg_id : null
   elasticache_allow_eks_sg     = var.enable_eks ? module.comet_eks[0].nodegroup_sg_id : null
   elasticache_engine           = var.elasticache_engine
@@ -129,9 +103,9 @@ module "comet_rds" {
   ec2_enabled = var.enable_ec2
   eks_enabled = var.enable_eks
 
-  availability_zones          = local.azs
-  vpc_id                      = module.vpc.vpc_id
-  rds_private_subnets         = module.vpc.private_subnets
+  availability_zones          = var.enable_vpc ? module.comet_vpc[0].azs : var.availability_zones
+  vpc_id                      = var.enable_vpc ? module.comet_vpc[0].vpc_id : var.comet_vpc_id
+  rds_private_subnets         = var.enable_vpc ? module.comet_vpc[0].private_subnets : var.comet_private_subnets
   rds_allow_ec2_sg            = var.enable_ec2 ? module.comet_ec2[0].comet_ec2_sg_id : null
   rds_allow_eks_sg            = var.enable_eks ? module.comet_eks[0].nodegroup_sg_id : null
   rds_engine                  = var.rds_engine
 
@@ -0,0 +1,42 @@
+data "aws_availability_zones" "available" {}
+
+locals {
+  resource_name = "comet-${var.environment}"
+  vpc_cidr      = "10.0.0.0/16"
+  azs           = slice(data.aws_availability_zones.available.names, 0, 3)
+
+  tags = {
+    Terraform   = "true"
+    Environment = var.environment
+  }
+}
+
+module "vpc" {
+  source  = "terraform-aws-modules/vpc/aws"
+  version = "~> 5.0.0"
+
+  name = "${local.resource_name}-vpc"
+  cidr = local.vpc_cidr
+
+  azs             = local.azs
+  public_subnets  = [for k, v in local.azs : cidrsubnet(local.vpc_cidr, 8, k)]
+  private_subnets = [for k, v in local.azs : cidrsubnet(local.vpc_cidr, 8, k + 10)]
+
+  enable_nat_gateway   = true
+  enable_dns_hostnames = true
+  single_nat_gateway   = var.single_nat_gateway
+
+  # Manage so we can name
+  manage_default_network_acl    = true
+  default_network_acl_tags      = { Name = "${local.resource_name}-default" }
+  manage_default_route_table    = true
+  default_route_table_tags      = { Name = "${local.resource_name}-default" }
+  manage_default_security_group = true
+  default_security_group_tags   = { Name = "${local.resource_name}-default" }
+
+  # if EKS deployment, set subnet tags for AWS Load Balancer Controller auto-discovery
+  public_subnet_tags  = var.eks_enabled ? {"kubernetes.io/role/elb" = 1} : null
+  private_subnet_tags = var.eks_enabled ? {"kubernetes.io/role/internal-elb" = 1} : null
+
+  tags = local.tags
+}
@@ -0,0 +1,19 @@
+output "azs" {
+  description = "List of availability zones in the region"
+  value       = module.vpc.azs
+}
+
+output "private_subnets" {
+  description = "List of IDs for private subnets provisioned in the VPC"
+  value       = module.vpc.private_subnets
+}
+
+output "public_subnets" {
+  description = "List of IDs for public subnets provisioned in the VPC"
+  value       = module.vpc.public_subnets
+}
+
+output "vpc_id" {
+  description = "ID of the provisioned VPC"
+  value       = module.vpc.vpc_id
+}
@@ -0,0 +1,14 @@
+variable "environment" {
+  description = "Deployment environment, i.e. dev/stage/prod, etc"
+  type = string
+}
+
+variable "eks_enabled" {
+  description = "Indicates if EKS module enabled"
+  type = bool
+}
+
+variable "single_nat_gateway" {
+  description = "Controls whether single NAT gateway used for all public subnets"
+  type = bool
+}
@@ -1,11 +1,20 @@
+enable_vpc          = false
 enable_ec2          = false
 enable_ec2_alb      = false
 enable_eks          = false
 enable_elasticache  = false
 enable_rds          = false
 enable_s3           = false
-region              = "us-east-2"
-environment         = "dev"
+
+region              = "us-east-1"
+environment         = "prod"
+
+# if not using enable_vpc to provision a VPC for the Comet resources, set the variables below to specify the existing VPC
+comet_vpc_id          = "vpc-012345abcdefghijkl"
+availability_zones    = ["us-east-1a", "us-east-1b", "us-east-1c"]
+comet_public_subnets  = ["subnet-012345abcdefghijkl", "subnet-012345abcdefghijkl", "subnet-012345abcdefghijkl"]
+comet_private_subnets = ["subnet-012345abcdefghijkl", "subnet-012345abcdefghijkl", "subnet-012345abcdefghijkl"]
+
 s3_bucket_name      = "comet-use2-bucket"
 rds_root_password   = "CHANGE-ME"
 ssl_certificate_arn = ""