Skip to content

Support fixed IP addresses for nodes #643

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 10 commits into from
Jun 13, 2025
Merged

Support fixed IP addresses for nodes #643

Show file tree
Hide file tree
Changes from 6 commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
4224926
Support fixed IP addresses for control node
priteau Apr 4, 2025
d5972b3
Update environments/skeleton/{{cookiecutter.environment}}/tofu/variab…
sjpb May 29, 2025
9c3bb96
tf style tweaks
sjpb May 29, 2025
d3acbe2
update production docs for control_ip_addresses
sjpb May 29, 2025
bfa66ab
fix control IP address logic
sjpb May 29, 2025
9b5ed88
add validation for control_ip_addresses
sjpb May 29, 2025
ba4941d
Merge branch 'main' into control-ip-addresses
sjpb Jun 11, 2025
c97615f
remove fixed IPs from production docs - not standard process
sjpb Jun 11, 2025
1afc5ea
support ip_addresses fo all nodes
sjpb Jun 11, 2025
e1b171d
make stackhpc tofu format consistent
sjpb Jun 11, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
19 changes: 3 additions & 16 deletions docs/production.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -134,22 +134,9 @@ and referenced from the `site` and `production` environments, e.g.:

- Consider whether having (read-only) access to Grafana without login is OK. If not, remove `grafana_auth_anonymous` in `environments/$ENV/inventory/group_vars/all/grafana.yml`

- Modify `environments/site/tofu/nodes.tf` to provide fixed IPs for at least
the control node, and (if not using FIPs) the login node(s):

```
resource "openstack_networking_port_v2" "control" {
...
fixed_ip {
subnet_id = data.openstack_networking_subnet_v2.cluster_subnet.id
ip_address = var.control_ip_address
}
}
```

Note the variable `control_ip_address` is new.

Using fixed IPs will require either using admin credentials or policy changes.
- If fixed IP(s) are required for the control node, set the OpenTofu variable
`control_ip_addresses`. This will require either using admin credentials or
policy changes.

- If floating IPs are required for login nodes, modify the OpenTofu configurations
appropriately.
Expand Down
3 changes: 2 additions & 1 deletion environments/skeleton/{{cookiecutter.environment}}/tofu/control.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,8 @@ resource "openstack_networking_port_v2" "control" {
admin_state_up = "true"

fixed_ip {
subnet_id = data.openstack_networking_subnet_v2.cluster_subnet[each.key].id
subnet_id = data.openstack_networking_subnet_v2.cluster_subnet[each.key].id
ip_address = lookup(var.control_ip_addresses, each.key, null)
}

no_security_groups = lookup(each.value, "no_security_groups", false)
Expand Down
14 changes: 14 additions & 0 deletions environments/skeleton/{{cookiecutter.environment}}/tofu/variables.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,6 +24,20 @@ variable "key_pair" {
description = "Name of an existing keypair in OpenStack"
}

variable "control_ip_addresses" {
type = map(string)
description = <<-EOT
Mapping of fixed IP addresses for control node, keyed by network name.
The default means the cloud will select an address.
EOT
default = {}
validation {
# check all keys are network names in cluster_networks
condition = length(setsubtract(keys(var.control_ip_addresses), [for n in var.cluster_networks: n.network])) == 0
error_message = "keys in var.control_ip_addresses must match network names in var.cluster_networks"
}
}

variable "control_node_flavor" {
type = string
description = "Flavor name for control node"
Expand Down
Loading