Fix all of the demo files to create every resource needed for the vpc flow logs.

Author: alkobi-google

network_management/vpcflowlogs/interconnect_attachment_basic/main.tf

@@ -15,11 +15,40 @@
 */
 
 # [START vpcflowlogs_interconnect_attachment_basic]
-resource "google_network_management_vpc_flow_logs_config" "vpc_fl_config" {
+resource "google_network_management_vpc_flow_logs_config" "vpc_flow_logs_config" {
   provider                = google-beta
-  interconnect_attachment = "projects/example_project/regions/us-central1/interconnectAttachments/example_interconnect"
+  interconnect_attachment = "projects/${data.google_project.project.project_id}/regions/us-east4/interconnectAttachments/${google_compute_interconnect_attachment.attachment.name}"
   location                = "global"
-  project                 = "example_project"
-  vpc_flow_logs_config_id = "example-config-id"
+  project                 = data.google_project.project.project_id
+  vpc_flow_logs_config_id = "vpcflowlogs-config"
+}
+
+data "google_project" "project" {
+  provider = google-beta
+}
+
+#Create an Interconnect Attachment
+resource "google_compute_network" "network" {
+  provider = google-beta
+  name     = "vpcflowlogs-network"
+}
+
+resource "google_compute_router" "router" {
+  provider = google-beta
+  name     = "vpcflowlogs-router"
+  network  = google_compute_network.network.name
+  bgp {
+    asn = 16550
+  }
+}
+
+resource "google_compute_interconnect_attachment" "attachment" {
+  provider                 = google-beta
+  name                     = "vpcflowlogs-attachment"
+  project                  = data.google_project.project.project_id
+  router                   = google_compute_router.router.id
+  edge_availability_domain = "AVAILABILITY_DOMAIN_1"
+  type                     = "PARTNER"
+  mtu                      = 1500
 }
 # [END vpcflowlogs_interconnect_attachment_basic]

network_management/vpcflowlogs/interconnect_attachment_full/main.tf

@@ -15,16 +15,46 @@
 */
 
 # [START vpcflowlogs_interconnect_attachment_full]
-resource "google_network_management_vpc_flow_logs_config" "vpc_fl_config" {
+resource "google_network_management_vpc_flow_logs_config" "vpc_flow_logs_config" {
+  provider                = google-beta
+  interconnect_attachment = "projects/${data.google_project.project.project_id}/regions/us-east4/interconnectAttachments/${google_compute_interconnect_attachment.attachment.name}"
+  location                = "global"
+  project                 = data.google_project.project.project_id
+  vpc_flow_logs_config_id = "vpcflowlogs-config"
   aggregation_interval    = "INTERVAL_10_MIN"
   description             = "VPC Flow Logs over an Interconnect Attachment."
   flow_sampling           = 0.7
-  interconnect_attachment = "projects/example_project/regions/us-central1/interconnectAttachments/example_interconnect"
-  location                = "global"
   metadata                = "INCLUDE_ALL_METADATA"
-  project                 = "example_project"
-  provider                = google-beta
   state                   = "ENABLED"
-  vpc_flow_logs_config_id = "example-config-id"
+
+}
+
+data "google_project" "project" {
+  provider = google-beta
+}
+
+#Create an Interconnect Attachment
+resource "google_compute_network" "network" {
+  provider = google-beta
+  name     = "vpcflowlogs-network"
+}
+
+resource "google_compute_router" "router" {
+  provider = google-beta
+  name     = "vpcflowlogs-router"
+  network  = google_compute_network.network.name
+  bgp {
+    asn = 16550
+  }
+}
+
+resource "google_compute_interconnect_attachment" "attachment" {
+  provider                 = google-beta
+  name                     = "vpcflowlogs-attachment"
+  project                  = data.google_project.project.project_id
+  router                   = google_compute_router.router.id
+  edge_availability_domain = "AVAILABILITY_DOMAIN_1"
+  type                     = "PARTNER"
+  mtu                      = 1500
 }
 # [END vpcflowlogs_interconnect_attachment_full]

network_management/vpcflowlogs/vpn_tunnel_basic/main.tf

@@ -15,11 +15,81 @@
 */
 
 # [START vpcflowlogs_vpn_tunnel_basic]
-resource "google_network_management_vpc_flow_logs_config" "vpc_fl_config" {
-  location                = "global"
-  project                 = "example_project"
+resource "google_network_management_vpc_flow_logs_config" "vpc_flow_logs_config" {
   provider                = google-beta
-  vpc_flow_logs_config_id = "example-config-id"
-  vpn_tunnel              = "projects/example_project/regions/us-central1/vpnTunnels/example_vpn_tunnel"
+  vpn_tunnel = "projects/${data.google_project.project.project_id}/regions/us-east4/vpnTunnels/${google_compute_vpn_tunnel.tunnel.name}"
+  location                = "global"
+  project                 = data.google_project.project.project_id
+  vpc_flow_logs_config_id = "vpcflowlogs-config"
+}
+
+data "google_project" "project" {
+  provider = google-beta
+}
+
+# Create a VPN Tunnel
+resource "google_compute_vpn_tunnel" "tunnel" {
+  provider           = google-beta
+  name               = "vpcflowlogs-tunnel"
+  peer_ip            = "15.0.0.120"
+  shared_secret      = "a secret message"
+  target_vpn_gateway = google_compute_vpn_gateway.gatway.id
+
+  depends_on = [
+    google_compute_forwarding_rule.fr_esp,
+    google_compute_forwarding_rule.fr_udp500,
+    google_compute_forwarding_rule.fr_udp4500,
+  ]
+}
+
+resource "google_compute_vpn_gateway" "gatway" {
+  provider = google-beta
+  name     = "vpcflowlogs-gateway"
+  network  = google_compute_network.network.id
+}
+
+resource "google_compute_network" "network" {
+  provider = google-beta
+  name     = "vpcflowlogs-network"
+}
+
+resource "google_compute_address" "vpn_static_ip" {
+  provider = google-beta
+  name     = "vpcflowlogs-vpn-static-ip"
+}
+
+resource "google_compute_forwarding_rule" "fr_esp" {
+  provider    = google-beta
+  name        = "vpcflowlogs-fr-esp"
+  ip_protocol = "ESP"
+  ip_address  = google_compute_address.vpn_static_ip.address
+  target      = google_compute_vpn_gateway.gatway.id
+}
+
+resource "google_compute_forwarding_rule" "fr_udp500" {
+  provider    = google-beta
+  name        = "vpcflowlogs-fr-udp500"
+  ip_protocol = "UDP"
+  port_range  = "500"
+  ip_address  = google_compute_address.vpn_static_ip.address
+  target      = google_compute_vpn_gateway.gatway.id
+}
+
+resource "google_compute_forwarding_rule" "fr_udp4500" {
+  provider    = google-beta
+  name        = "vpcflowlogs-fr-udp4500"
+  ip_protocol = "UDP"
+  port_range  = "4500"
+  ip_address  = google_compute_address.vpn_static_ip.address
+  target      = google_compute_vpn_gateway.gatway.id
+}
+
+resource "google_compute_route" "route" {
+  provider            = google-beta
+  name                = "vpcflowlogs-route"
+  network             = google_compute_network.network.name
+  dest_range          = "15.0.0.0/24"
+  priority            = 1000
+  next_hop_vpn_tunnel = google_compute_vpn_tunnel.tunnel.id
 }
 # [END vpcflowlogs_vpn_tunnel_basic]

network_management/vpcflowlogs/vpn_tunnel_full/main.tf

@@ -15,16 +15,86 @@
 */
 
 # [START vpcflowlogs_vpn_tunnel_full]
-resource "google_network_management_vpc_flow_logs_config" "vpc_fl_config" {
+resource "google_network_management_vpc_flow_logs_config" "vpc_flow_logs_config" {
+  provider                = google-beta
+  vpn_tunnel = "projects/${data.google_project.project.project_id}/regions/us-east4/vpnTunnels/${google_compute_vpn_tunnel.tunnel.name}"
+  location                = "global"
+  project                 = data.google_project.project.project_id
+  vpc_flow_logs_config_id = "vpcflowlogs-config"
   aggregation_interval    = "INTERVAL_10_MIN"
   description             = "VPC Flow Logs over a VPN Gateway."
   flow_sampling           = 0.7
-  location                = "global"
   metadata                = "INCLUDE_ALL_METADATA"
-  project                 = "example_project"
-  provider                = google-beta
   state                   = "ENABLED"
-  vpc_flow_logs_config_id = "example-config-id"
-  vpn_tunnel              = "projects/example_project/regions/us-central1/vpnTunnels/example_vpn_tunnel"
+}
+
+data "google_project" "project" {
+  provider = google-beta
+}
+
+# Create a VPN Tunnel
+resource "google_compute_vpn_tunnel" "tunnel" {
+  provider           = google-beta
+  name               = "vpcflowlogs-tunnel"
+  peer_ip            = "15.0.0.120"
+  shared_secret      = "a secret message"
+  target_vpn_gateway = google_compute_vpn_gateway.gatway.id
+
+  depends_on = [
+    google_compute_forwarding_rule.fr_esp,
+    google_compute_forwarding_rule.fr_udp500,
+    google_compute_forwarding_rule.fr_udp4500,
+  ]
+}
+
+resource "google_compute_vpn_gateway" "gatway" {
+  provider = google-beta
+  name     = "vpcflowlogs-gateway"
+  network  = google_compute_network.network.id
+}
+
+resource "google_compute_network" "network" {
+  provider = google-beta
+  name     = "vpcflowlogs-network"
+}
+
+resource "google_compute_address" "vpn_static_ip" {
+  provider = google-beta
+  name     = "vpcflowlogs-vpn-static-ip"
+}
+
+resource "google_compute_forwarding_rule" "fr_esp" {
+  provider    = google-beta
+  name        = "vpcflowlogs-fr-esp"
+  ip_protocol = "ESP"
+  ip_address  = google_compute_address.vpn_static_ip.address
+  target      = google_compute_vpn_gateway.gatway.id
+}
+
+resource "google_compute_forwarding_rule" "fr_udp500" {
+  provider    = google-beta
+  name        = "vpcflowlogs-fr-udp500"
+  ip_protocol = "UDP"
+  port_range  = "500"
+  ip_address  = google_compute_address.vpn_static_ip.address
+  target      = google_compute_vpn_gateway.gatway.id
+}
+
+resource "google_compute_forwarding_rule" "fr_udp4500" {
+  provider    = google-beta
+  name        = "vpcflowlogs-fr-udp4500"
+  ip_protocol = "UDP"
+  port_range  = "4500"
+  ip_address  = google_compute_address.vpn_static_ip.address
+  target      = google_compute_vpn_gateway.gatway.id
+}
+
+resource "google_compute_route" "route" {
+  provider            = google-beta
+  name                = "vpcflowlogs-route"
+  network             = google_compute_network.network.name
+  dest_range          = "15.0.0.0/24"
+  priority            = 1000
+  next_hop_vpn_tunnel = google_compute_vpn_tunnel.tunnel.id
 }
 # [END vpcflowlogs_vpn_tunnel_full]