feat: added cross region internal lb example

Author: pawan1210

examples/internal-lb-cloud-run/main.tf

@@ -0,0 +1,135 @@
+provider "google" {
+  project = var.project_id
+}
+
+provider "google-beta" {
+  project = var.project_id
+}
+
+resource "google_compute_network" "default" {
+  name                    = "lb-internal-cloud-run"
+  auto_create_subnetworks = "false"
+  project                 = var.project_id
+}
+
+resource "google_compute_subnetwork" "default" {
+  name          = "lb-internal-subnet-a-cloud-run"
+  ip_cidr_range = "10.1.2.0/24"
+  network       = google_compute_network.default.id
+  region        = var.subnet_region
+  project       = var.project_id
+  depends_on    = [google_compute_network.default]
+}
+
+resource "google_compute_subnetwork" "default_proxy_only" {
+  name          = "proxy-only-subnet"
+  ip_cidr_range = "10.129.0.0/23"
+  network       = google_compute_network.default.id
+  purpose       = "GLOBAL_MANAGED_PROXY"
+  region        = var.subnet_region
+  project       = var.project_id
+  role          = "ACTIVE"
+  depends_on    = [google_compute_network.default]
+}
+
+module "backend-service-a" {
+  source                        = "GoogleCloudPlatform/cloud-run/google//modules/v2"
+  version                       = "~> 0.16.3"
+  project_id                    = var.project_id
+  location                      = var.region_a
+  service_name                  = "bs-a"
+  containers                    = [{ "container_name" = "", "container_image" = "gcr.io/cloudrun/hello" }]
+  members                       = ["allUsers"]
+  ingress                       = "INGRESS_TRAFFIC_INTERNAL_ONLY"
+  cloud_run_deletion_protection = false
+  enable_prometheus_sidecar     = false
+}
+
+module "backend-service-b" {
+  source                        = "GoogleCloudPlatform/cloud-run/google//modules/v2"
+  version                       = "~> 0.16.3"
+  project_id                    = var.project_id
+  location                      = var.region_b
+  service_name                  = "bs-b"
+  containers                    = [{ "container_name" = "", "container_image" = "gcr.io/cloudrun/hello" }]
+  members                       = ["allUsers"]
+  ingress                       = "INGRESS_TRAFFIC_INTERNAL_ONLY"
+  cloud_run_deletion_protection = false
+  enable_prometheus_sidecar     = false
+}
+
+module "lb-http-backend" {
+  source = "../../modules/backend" # use registry 
+  #version = "~> 12.1.1"
+
+  project_id            = var.project_id
+  name                  = "backend-lb-int"
+  enable_cdn            = false
+  load_balancing_scheme = "INTERNAL_MANAGED"
+  locality_lb_policy    = "RANDOM"
+  compression_mode      = "DISABLED"
+  serverless_neg_backends = [
+    { region : var.region_a, type : "cloud-run", service_name : module.backend-service-a.service_name },
+    { region : var.region_b, type : "cloud-run", service_name : module.backend-service-b.service_name }
+  ]
+}
+
+module "lb-http-frontend" {
+  source = "../../modules/frontend" # use registry
+  #version = "~> 12.1.1"
+
+  project_id            = var.project_id
+  name                  = "frontend-lb-int"
+  url_map_input         = module.lb-http-backend.backend_service_info
+  network               = google_compute_network.default.name
+  load_balancing_scheme = "INTERNAL_MANAGED"
+  subnetwork            = google_compute_subnetwork.default.id
+  create_address        = false
+}
+
+resource "google_vpc_access_connector" "default" {
+  provider       = google-beta
+  project        = var.project_id
+  name           = "fe-vpc-cx"
+  region         = var.region_a
+  ip_cidr_range  = "10.8.0.0/28"
+  network        = google_compute_network.default.name
+  max_throughput = 500
+  min_throughput = 300
+}
+
+# the id address part needs to be fixed
+module "frontend-service" {
+  source       = "GoogleCloudPlatform/cloud-run/google//modules/v2"
+  version      = "~> 0.16.3"
+  project_id   = var.project_id
+  location     = var.region_a
+  service_name = "fs-2002"
+  containers   = [{ "env_vars" : { "TARGET_IP" : module.lb-http-frontend.ip_address_http }, "ports" = { "container_port" = 80, "name" = "http1" }, "container_name" = "", "container_image" = "gcr.io/design-center-container-repo/redirect-traffic:latest-2002" }]
+  members      = ["allUsers"]
+  vpc_access = {
+    connector = google_vpc_access_connector.default.id
+    egress    = "ALL_TRAFFIC"
+  }
+  ingress                       = "INGRESS_TRAFFIC_ALL"
+  cloud_run_deletion_protection = false
+  enable_prometheus_sidecar     = false
+  depends_on                    = [google_vpc_access_connector.default]
+}
+
+module "frontend-service_b" {
+  source       = "GoogleCloudPlatform/cloud-run/google//modules/v2"
+  version      = "~> 0.16.3"
+  project_id   = var.project_id
+  location     = var.region_a
+  service_name = "fs-b-2002"
+  containers   = [{ "env_vars" : { "TARGET_IP" : module.lb-http-frontend.ip_address_http }, "ports" = { "container_port" = 80, "name" = "http1" }, "container_name" = "", "container_image" = "gcr.io/design-center-container-repo/redirect-traffic:latest-2002" }]
+  members      = ["allUsers"]
+  vpc_access = {
+    connector = google_vpc_access_connector.default.id
+    egress    = "ALL_TRAFFIC"
+  }
+  ingress                       = "INGRESS_TRAFFIC_ALL"
+  cloud_run_deletion_protection = false
+  enable_prometheus_sidecar     = false
+}

examples/internal-lb-cloud-run/outputs.tf

@@ -0,0 +1,9 @@
+output "backend_services_host" {
+  description = "hosts"
+  value       = module.lb-http-backend.backend_service_info
+}
+
+output "exposed_ip" {
+  description = "exposed id"
+  value       = module.lb-http-frontend.ip_address_http
+}

examples/internal-lb-cloud-run/variables.tf

@@ -0,0 +1,18 @@
+variable "project_id" {
+  type = string
+}
+
+variable "region_a" {
+  type    = string
+  default = "us-central1"
+}
+
+variable "region_b" {
+  type    = string
+  default = "us-west1"
+}
+
+variable "subnet_region" {
+  type    = string
+  default = "us-east1"
+}