From 4729eceba5ba03dd24d86ec65dc42990dadce725 Mon Sep 17 00:00:00 2001 From: Aditya-ranjan-16 Date: Tue, 19 Aug 2025 13:20:48 +0530 Subject: [PATCH 01/19] feat: Migration to landing zone VPC DA --- .catalog-onboard-pipeline.yaml | 7 ++++--- ibm_catalog.json | 20 ++++++++++++++------ 2 files changed, 18 insertions(+), 9 deletions(-) diff --git a/.catalog-onboard-pipeline.yaml b/.catalog-onboard-pipeline.yaml index 7770e246..04db6464 100644 --- a/.catalog-onboard-pipeline.yaml +++ b/.catalog-onboard-pipeline.yaml @@ -1,10 +1,11 @@ --- apiVersion: v1 offerings: - - name: deploy-arch-ibm-vpc + - name: deploy-arch-ibm-slz-vpc kind: solution - catalog_id: f64499c8-eb50-4985-bf91-29f9e605a433 - offering_id: 2af61763-f8ef-4527-a815-b92166f29bc8 + catalog_id: 7df1e4ca-d54c-4fd0-82ce-3d13247308cd + offering_id: 9fc0fa64-27af-4fed-9dce-47b3640ba739 + include_git_submodules: true variations: - name: fully-configurable mark_ready: true diff --git a/ibm_catalog.json b/ibm_catalog.json index 8a6cc9c0..b5a3f083 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -1,8 +1,8 @@ { "products": [ { - "name": "deploy-arch-ibm-vpc", - "label": "Cloud automation for VPC", + "name": "deploy-arch-ibm-slz-vpc", + "label": "VPC landing zone", "product_kind": "solution", "tags": [ "ibm_created", @@ -15,13 +15,14 @@ ], "keywords": [ "vpc", + "slz", "terraform", "IaC", "infrastructure as code", "solution" ], "short_description": "Deploy a Virtual Private Cloud (VPC) on IBM Cloud, offering full configurability and flexibility for diverse workloads.", - "long_description": "The Cloud automation for VPC sets up a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment. It lays the groundwork for adding Virtual Servers Instances (VSI) or Red Hat OpenShift clusters and other advanced resources. This can be used as a base deployable architecture for many others deployable architectures like [Cloud automation for Red Hat OpenShift Container Platform on VPC](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global), [Cloud automation for Virtual Servers for Virtual Private Cloud](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global).\n\nℹ️ This Terraform-based automation is part of a broader suite of IBM-maintained Infrastructure as Code (IaC) assets, each following the naming pattern \"Cloud automation for *servicename*\" and focusing on single IBM Cloud service. These single-service deployable architectures can be used on their own to streamline and automate service deployments through an [IaC approach](https://cloud.ibm.com/docs/secure-enterprise?topic=secure-enterprise-understanding-projects), or assembled together into a broader [automated IaC stack](https://cloud.ibm.com/docs/secure-enterprise?topic=secure-enterprise-config-stack) to automate the deployment of an end-to-end solution architecture.", + "long_description":"The VPC landing zone deployable architecture provides a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment that serves as the base for deploying compute and advanced resources. It establishes the core networking and security framework without including Virtual Server Instances (VSI) or Red Hat OpenShift clusters by default. This architecture can be extended to support a variety of deployable architectures, such as [Cloud automation for Virtual Servers for Virtual Private Cloud](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global), [Cloud automation for Red Hat OpenShift Container Platform on VPC](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global), and other cloud automation architectures. By setting up this foundational layer, it enables consistent, scalable, and secure deployments across multiple IBM Cloud workloads.", "offering_docs_url": "https://github.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/blob/main/solutions/fully-configurable/README.md", "offering_icon_url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/main/images/vpc_icon.svg", "provider_name": "IBM", @@ -46,6 +47,14 @@ "title": "VPE gateways", "description": "Creates Virtual Private Endpoints (VPEs) gateways to allow private access to IBM Cloud services from within your VPC, avoiding public internet traffic. [Learn more](https://cloud.ibm.com/docs/vpc?topic=vpc-about-vpe)." }, + { + "description": "Isolates and speeds traffic to the public internet by using an edge VPC in a specific location, if enabled.\n", + "title": "Supports edge networking" + }, + { + "description": "The transit gateway connects the two default VPCs that the deployable architecture creates.\n", + "title": "Creates a transit gateway" + }, { "title": "Security groups", "description": "Has the ability to configure security groups that works like virtual firewalls for your instances, defining rules that control allowed inbound and outbound traffic. [Learn more](https://cloud.ibm.com/docs/vpc?topic=vpc-using-security-groups)." @@ -72,10 +81,9 @@ }, { "title": "Optional Integrations", - "description": "This solution can be integrated with [Cloud automation for Observability](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-observability-a3137d28-79e0-479d-8a24-758ebd5a0eab-global) that supports configuring resources for logging, monitoring and activity tracker event routing." + "description": "This solution can be integrated with Observability that supports configuring resources for logging, monitoring and activity tracker event routing." } ], - "support_details": "This product is in the community registry, support is handled through the [original repo](https://github.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc). If you experience issues, please open an issue in the repository [here](https://github.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/issues). Please note this product is not supported via the IBM Cloud Support Center.", "flavors": [ { "label": "Fully configurable", @@ -106,7 +114,7 @@ "url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/main/reference-architecture/deployable-architecture-vpc.svg", "type": "image/svg+xml" }, - "description": "This architecture supports provisioning and configuring a Virtual Private Cloud (VPC) environment. While the diagram illustrates a three-zone deployment, the VPC can also be provisioned in a single-zone or two-zone configuration, depending on your availability requirements.

The default configuration deploys a VPC with three zone subnets, configures the predefined ACLs, and attaches a public gateway with one of the subnets. Additional functionalities such as VPN gateway, VPE gateway, Flow Logs, security groups, etc., can be configured by providing the appropriate input values.

VPC Flow Logs are used to monitor and analyze traffic. To enable VPC Flow Logs, this solution automatically manages the following tasks:
- Provisions a Cloud Object Storage (COS) instance using the COS deployable architecture. Alternatively, you can provide an existing COS instance if available.
- Creates an object storage bucket to store flow logs in the provisioned or existing COS instance.
- Supports creation of keys for a Key Management Service (KMS) if a KMS-encrypted bucket is enabled for enhanced security. You can use an existing KMS instance or create a new Key Protect instance using the KMS deployable architecture.

In addition, you have an option to integrate with Observability services. [Cloud automation for Observability](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-observability-a3137d28-79e0-479d-8a24-758ebd5a0eab-global) provides robust monitoring and logging capabilities to deliver deep operational insights into your VPC deployment. You can use IBM Cloud Activity Tracker Event Routing to monitor how users and applications interact with the VPC, supporting compliance and auditability. Cloud Logs can be enabled to collect, view, and analyze platform logs related to the VPC components. Furthermore, IBM Cloud Monitoring captures essential metrics such as CPU and memory utilization, helping you proactively monitor system performance and resource consumption.

This modular design provides flexibility and serves as a secure baseline for deploying compute workloads." + "description": "This architecture supports provisioning and configuring a Virtual Private Cloud (VPC) environment. While the diagram illustrates a three-zone deployment, the VPC can also be provisioned in a single-zone or two-zone configuration, depending on your availability requirements.

The default configuration deploys a VPC with three zone subnets, configures the predefined ACLs, and attaches a public gateway with one of the subnets. Additional functionalities such as VPN gateway, VPE gateway, Flow Logs, security groups, etc., can be configured by providing the appropriate input values.

VPC Flow Logs are used to monitor and analyze traffic. To enable VPC Flow Logs, this solution automatically manages the following tasks:
- Provisions a Cloud Object Storage (COS) instance using the COS deployable architecture. Alternatively, you can provide an existing COS instance if available.
- Creates an object storage bucket to store flow logs in the provisioned or existing COS instance.
- Supports creation of keys for a Key Management Service (KMS) if a KMS-encrypted bucket is enabled for enhanced security. You can use an existing KMS instance or create a new Key Protect instance using the KMS deployable architecture.

In addition, you have an option to integrate with Observability services. It provides robust monitoring and logging capabilities to deliver deep operational insights into your VPC deployment. You can use IBM Cloud Activity Tracker Event Routing to monitor how users and applications interact with the VPC, supporting compliance and auditability. Cloud Logs can be enabled to collect, view, and analyze platform logs related to the VPC components. Furthermore, IBM Cloud Monitoring captures essential metrics such as CPU and memory utilization, helping you proactively monitor system performance and resource consumption.

This modular design provides flexibility and serves as a secure baseline for deploying compute workloads." } ] }, From 580995eb79b057fcfca9c8b12928d21aff4c7ae1 Mon Sep 17 00:00:00 2001 From: Aditya-ranjan-16 Date: Thu, 28 Aug 2025 12:18:33 +0530 Subject: [PATCH 02/19] fix --- .catalog-onboard-pipeline.yaml | 2 +- ibm_catalog.json | 16 ++++++---------- 2 files changed, 7 insertions(+), 11 deletions(-) diff --git a/.catalog-onboard-pipeline.yaml b/.catalog-onboard-pipeline.yaml index 04db6464..4441ab2c 100644 --- a/.catalog-onboard-pipeline.yaml +++ b/.catalog-onboard-pipeline.yaml @@ -8,7 +8,7 @@ offerings: include_git_submodules: true variations: - name: fully-configurable - mark_ready: true + mark_ready: false install_type: fullstack scc: instance_id: 1c7d5f78-9262-44c3-b779-b28fe4d88c37 diff --git a/ibm_catalog.json b/ibm_catalog.json index b5a3f083..c7206377 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -2,7 +2,7 @@ "products": [ { "name": "deploy-arch-ibm-slz-vpc", - "label": "VPC landing zone", + "label": "Landing zone for applications with virtual servers", "product_kind": "solution", "tags": [ "ibm_created", @@ -21,7 +21,7 @@ "infrastructure as code", "solution" ], - "short_description": "Deploy a Virtual Private Cloud (VPC) on IBM Cloud, offering full configurability and flexibility for diverse workloads.", + "short_description": "Automates the deployment of Virtual Private Cloud (VPC) on IBM Cloud, offering full configurability and flexibility for diverse workloads.", "long_description":"The VPC landing zone deployable architecture provides a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment that serves as the base for deploying compute and advanced resources. It establishes the core networking and security framework without including Virtual Server Instances (VSI) or Red Hat OpenShift clusters by default. This architecture can be extended to support a variety of deployable architectures, such as [Cloud automation for Virtual Servers for Virtual Private Cloud](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global), [Cloud automation for Red Hat OpenShift Container Platform on VPC](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global), and other cloud automation architectures. By setting up this foundational layer, it enables consistent, scalable, and secure deployments across multiple IBM Cloud workloads.", "offering_docs_url": "https://github.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/blob/main/solutions/fully-configurable/README.md", "offering_icon_url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/main/images/vpc_icon.svg", @@ -45,7 +45,7 @@ }, { "title": "VPE gateways", - "description": "Creates Virtual Private Endpoints (VPEs) gateways to allow private access to IBM Cloud services from within your VPC, avoiding public internet traffic. [Learn more](https://cloud.ibm.com/docs/vpc?topic=vpc-about-vpe)." + "description": "Creates [Virtual Private Endpoints (VPEs)](https://cloud.ibm.com/docs/vpc?topic=vpc-about-vpe) gateways to allow private access to IBM Cloud services from within your VPC, avoiding public internet traffic." }, { "description": "Isolates and speeds traffic to the public internet by using an edge VPC in a specific location, if enabled.\n", @@ -57,7 +57,7 @@ }, { "title": "Security groups", - "description": "Has the ability to configure security groups that works like virtual firewalls for your instances, defining rules that control allowed inbound and outbound traffic. [Learn more](https://cloud.ibm.com/docs/vpc?topic=vpc-using-security-groups)." + "description": "Has the ability to configure [security groups](https://cloud.ibm.com/docs/vpc?topic=vpc-using-security-groups) that works like virtual firewalls for your instances, defining rules that control allowed inbound and outbound traffic." }, { "title": "Address Prefixes", @@ -65,15 +65,11 @@ }, { "title": "Routing Table and routes", - "description": "Creates routing tables and custom routes to determine how traffic is directed within your VPC and to external networks. [Learn more](https://cloud.ibm.com/docs/vpc?topic=vpc-create-vpc-routing-table&interface=ui)." - }, - { - "title": "VPC flow logs", - "description": "Creates and configures [VPC flow logs]((https://cloud.ibm.com/docs/vpc?topic=vpc-flow-logs)) capture data about traffic moving through your network, helping with monitoring, auditing, and troubleshooting." + "description": "Creates [routing tables](https://cloud.ibm.com/docs/vpc?topic=vpc-create-vpc-routing-table&interface=ui) and custom routes to determine how traffic is directed within your VPC and to external networks." }, { "title": "Object Storage bucket for flow logs", - "description": "Creates and configures the Object storage bucket to store the network traffic data captured by VPC flow logs, enabling analysis and long-term storage." + "description": "Creates and configures the Object storage bucket to store the network traffic data captured by [VPC flow logs]((https://cloud.ibm.com/docs/vpc?topic=vpc-flow-logs)), enabling analysis and long-term storage." }, { "title": "KMS encryption", From 139736618327c5688c9e0af9f4066d03da8a0627 Mon Sep 17 00:00:00 2001 From: Aditya-ranjan-16 Date: Thu, 28 Aug 2025 15:26:15 +0530 Subject: [PATCH 03/19] fix --- ibm_catalog.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index c7206377..266d9f46 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -2,7 +2,7 @@ "products": [ { "name": "deploy-arch-ibm-slz-vpc", - "label": "Landing zone for applications with virtual servers", + "label": "Cloud foundation for VPC", "product_kind": "solution", "tags": [ "ibm_created", @@ -23,7 +23,7 @@ ], "short_description": "Automates the deployment of Virtual Private Cloud (VPC) on IBM Cloud, offering full configurability and flexibility for diverse workloads.", "long_description":"The VPC landing zone deployable architecture provides a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment that serves as the base for deploying compute and advanced resources. It establishes the core networking and security framework without including Virtual Server Instances (VSI) or Red Hat OpenShift clusters by default. This architecture can be extended to support a variety of deployable architectures, such as [Cloud automation for Virtual Servers for Virtual Private Cloud](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global), [Cloud automation for Red Hat OpenShift Container Platform on VPC](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global), and other cloud automation architectures. By setting up this foundational layer, it enables consistent, scalable, and secure deployments across multiple IBM Cloud workloads.", - "offering_docs_url": "https://github.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/blob/main/solutions/fully-configurable/README.md", + "offering_docs_url": "https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-overview#overview-vpc", "offering_icon_url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/main/images/vpc_icon.svg", "provider_name": "IBM", "features": [ From 6622bdfe94bf5e8821d561476fc42b2c7f5865c5 Mon Sep 17 00:00:00 2001 From: Aditya-ranjan-16 Date: Thu, 28 Aug 2025 17:34:13 +0530 Subject: [PATCH 04/19] test --- ibm_catalog.json | 52 ++++++++++-------------------------------------- 1 file changed, 10 insertions(+), 42 deletions(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index 266d9f46..6fbed680 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -28,56 +28,24 @@ "provider_name": "IBM", "features": [ { - "title": "Subnets", - "description": "Create [subnets](https://cloud.ibm.com/docs/vpc?topic=vpc-about-subnets-vpc) in three zones that divides your VPC into smaller, isolated networks across different availability zones. This helps you organize resources, improve availability, and control internal communication." + "title": "VPC Networking and Subnet Management", + "description": "Automatically provisions [subnets](https://cloud.ibm.com/docs/vpc?topic=vpc-about-subnets-vpc) across three availability zones, dividing your VPC into smaller, isolated networks for improved organization, availability, and traffic control. Includes support for [address prefixes](https://cloud.ibm.com/docs/vpc?topic=vpc-about-subnets-vpc) to define IP ranges, and [routing tables](https://cloud.ibm.com/docs/vpc?topic=vpc-create-vpc-routing-table&interface=ui) with custom routes to manage how traffic flows within the VPC and to external networks." }, { - "title": "Network ACLs", - "description": "Define rules for [Network Access Control Lists (ACLs)](https://cloud.ibm.com/docs/vpc?topic=vpc-using-acls) to allow or deny traffic to and from your subnets, providing an extra layer of network security." + "title": "Network Security Controls", + "description": "Provides multiple layers of network protection through [Network ACLs](https://cloud.ibm.com/docs/vpc?topic=vpc-using-acls) and [security groups](https://cloud.ibm.com/docs/vpc?topic=vpc-using-security-groups). ACLs define subnet-level rules to allow or deny traffic, while security groups act as virtual firewalls for instances, controlling inbound and outbound connections." }, { - "title": "Public gateways", - "description": "Configures [public gateways](https://cloud.ibm.com/docs/vpc?topic=vpc-about-public-gateways) to provide internet access to your VPC resources, acting as a bridge between private network components and the public internet." + "title": "Connectivity and Gateway Services", + "description": "Enables secure and flexible connectivity options with [public gateways](https://cloud.ibm.com/docs/vpc?topic=vpc-about-public-gateways) for internet access, [VPN gateways](https://cloud.ibm.com/docs/vpc?topic=vpc-vpn-overview) for encrypted hybrid cloud connections, and [VPE gateways](https://cloud.ibm.com/docs/vpc?topic=vpc-about-vpe) for private access to IBM Cloud services. Also supports edge networking to isolate and optimize traffic to the public internet, and creates a transit gateway to connect the default VPCs in the deployable architecture." }, { - "title": "VPN gateways", - "description": "Create and configures [VPN gateways](https://cloud.ibm.com/docs/vpc?topic=vpc-vpn-overview) to enable secure, encrypted connections between your on-premises environment and IBM Cloud, ideal for hybrid cloud setups." + "title": "Flow Logs and Secure Storage", + "description": "Captures and stores network traffic data using [VPC flow logs](https://cloud.ibm.com/docs/vpc?topic=vpc-flow-logs), with logs directed to an Object Storage bucket for analysis and long-term retention. Supports Key Management Service (KMS) encryption for the storage bucket, ensuring enhanced data security and compliance." }, { - "title": "VPE gateways", - "description": "Creates [Virtual Private Endpoints (VPEs)](https://cloud.ibm.com/docs/vpc?topic=vpc-about-vpe) gateways to allow private access to IBM Cloud services from within your VPC, avoiding public internet traffic." - }, - { - "description": "Isolates and speeds traffic to the public internet by using an edge VPC in a specific location, if enabled.\n", - "title": "Supports edge networking" - }, - { - "description": "The transit gateway connects the two default VPCs that the deployable architecture creates.\n", - "title": "Creates a transit gateway" - }, - { - "title": "Security groups", - "description": "Has the ability to configure [security groups](https://cloud.ibm.com/docs/vpc?topic=vpc-using-security-groups) that works like virtual firewalls for your instances, defining rules that control allowed inbound and outbound traffic." - }, - { - "title": "Address Prefixes", - "description": "Attaches address prefixes to define the IP address ranges used by your subnets, helping with IP management and planning in your VPC." - }, - { - "title": "Routing Table and routes", - "description": "Creates [routing tables](https://cloud.ibm.com/docs/vpc?topic=vpc-create-vpc-routing-table&interface=ui) and custom routes to determine how traffic is directed within your VPC and to external networks." - }, - { - "title": "Object Storage bucket for flow logs", - "description": "Creates and configures the Object storage bucket to store the network traffic data captured by [VPC flow logs]((https://cloud.ibm.com/docs/vpc?topic=vpc-flow-logs)), enabling analysis and long-term storage." - }, - { - "title": "KMS encryption", - "description": "Supports Key Management Service (KMS) encryption for the Object Storage bucket where flow logs are stored, enhancing data security." - }, - { - "title": "Optional Integrations", - "description": "This solution can be integrated with Observability that supports configuring resources for logging, monitoring and activity tracker event routing." + "title": "Optional Observability Integrations", + "description": "Can be integrated with IBM Cloud Observability services to configure logging, monitoring, and activity tracker event routing, providing deeper visibility into network and workload operations." } ], "flavors": [ From e6eb8e8ce3bbd911dd15812829b83678e14851cf Mon Sep 17 00:00:00 2001 From: Aditya-ranjan-16 Date: Thu, 28 Aug 2025 18:20:00 +0530 Subject: [PATCH 05/19] fix --- ibm_catalog.json | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index 6fbed680..79d99539 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -68,7 +68,11 @@ "features": [ { "title": " ", - "description": "Configured to use IBM secure by default standards, but can be edited to fit your use case." + "description": "Ideal for users who need a secure and reliable starting point, with multi-zone subnets, ACLs, and optional gateways to support common networking requirements." + }, + { + "title": " ", + "description": "Designed for users who want deeper insights and stronger protection, with flow logs stored in Object Storage, optional KMS encryption, and integrations with Cloud Logs and Cloud Monitoring." } ], "diagrams": [ From 0848e2426db000bc9987f38402824a6771b988b1 Mon Sep 17 00:00:00 2001 From: Aditya-ranjan-16 Date: Thu, 28 Aug 2025 18:58:45 +0530 Subject: [PATCH 06/19] fix --- ibm_catalog.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index 79d99539..b96ef68f 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -68,11 +68,11 @@ "features": [ { "title": " ", - "description": "Ideal for users who need a secure and reliable starting point, with multi-zone subnets, ACLs, and optional gateways to support common networking requirements." + "description": "Ideal for users who want flexibility with a reliable starting point." }, { "title": " ", - "description": "Designed for users who want deeper insights and stronger protection, with flow logs stored in Object Storage, optional KMS encryption, and integrations with Cloud Logs and Cloud Monitoring." + "description": "Offers full control over architecture parameters, with well-chosen defaults that enable a functional Virtual Private Cloud (VPC) environment and integrated IBM Cloud services without requiring manual adjustments." } ], "diagrams": [ From 8218928da77f19e764ce33b5e8b5d67c32af5f7a Mon Sep 17 00:00:00 2001 From: Shikha Maheshwari Date: Fri, 29 Aug 2025 12:14:28 +0530 Subject: [PATCH 07/19] Update overview description --- ibm_catalog.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index b96ef68f..15db4530 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -22,7 +22,7 @@ "solution" ], "short_description": "Automates the deployment of Virtual Private Cloud (VPC) on IBM Cloud, offering full configurability and flexibility for diverse workloads.", - "long_description":"The VPC landing zone deployable architecture provides a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment that serves as the base for deploying compute and advanced resources. It establishes the core networking and security framework without including Virtual Server Instances (VSI) or Red Hat OpenShift clusters by default. This architecture can be extended to support a variety of deployable architectures, such as [Cloud automation for Virtual Servers for Virtual Private Cloud](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global), [Cloud automation for Red Hat OpenShift Container Platform on VPC](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global), and other cloud automation architectures. By setting up this foundational layer, it enables consistent, scalable, and secure deployments across multiple IBM Cloud workloads.", + "long_description":"This deployable architecture provides a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment that serves as the base for deploying compute and advanced resources. It establishes the core networking and security framework without including Virtual Server Instances (VSI) or Red Hat OpenShift clusters by default. This architecture can be extended to support a variety of deployable architectures, such as [Cloud automation for Virtual Servers for Virtual Private Cloud](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global), [Cloud automation for Red Hat OpenShift Container Platform on VPC](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global), and other cloud automation architectures. By setting up this foundational layer, it enables consistent, scalable, and secure deployments across multiple IBM Cloud workloads.", "offering_docs_url": "https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-overview#overview-vpc", "offering_icon_url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/main/images/vpc_icon.svg", "provider_name": "IBM", From 746afce2a7eea4b341d240aae9107e8c4ba886bf Mon Sep 17 00:00:00 2001 From: Shikha Maheshwari Date: Fri, 29 Aug 2025 12:18:26 +0530 Subject: [PATCH 08/19] updated features --- ibm_catalog.json | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index 15db4530..eb97abf7 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -44,8 +44,12 @@ "description": "Captures and stores network traffic data using [VPC flow logs](https://cloud.ibm.com/docs/vpc?topic=vpc-flow-logs), with logs directed to an Object Storage bucket for analysis and long-term retention. Supports Key Management Service (KMS) encryption for the storage bucket, ensuring enhanced data security and compliance." }, { - "title": "Optional Observability Integrations", - "description": "Can be integrated with IBM Cloud Observability services to configure logging, monitoring, and activity tracker event routing, providing deeper visibility into network and workload operations." + "title": "Observability Integration", + "description": "Can be integrated with observability services to configure logging, monitoring, and activity tracker event routing, providing deeper visibility into network and workload operations." + } + { + "title": "Traffic Management", + "description": "Configure routing tables and routes to control how traffic flows within the VPC and to external networks. [Learn more](https://cloud.ibm.com/docs/vpc?topic=vpc-create-vpc-routing-table&interface=ui)." } ], "flavors": [ From d627ae2a2c6e106bc63224b4596911f6db6d7182 Mon Sep 17 00:00:00 2001 From: Shikha Maheshwari Date: Fri, 29 Aug 2025 12:18:58 +0530 Subject: [PATCH 09/19] Update ibm_catalog.json --- ibm_catalog.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index eb97abf7..5050d86f 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -48,8 +48,8 @@ "description": "Can be integrated with observability services to configure logging, monitoring, and activity tracker event routing, providing deeper visibility into network and workload operations." } { - "title": "Traffic Management", - "description": "Configure routing tables and routes to control how traffic flows within the VPC and to external networks. [Learn more](https://cloud.ibm.com/docs/vpc?topic=vpc-create-vpc-routing-table&interface=ui)." + "title": "Traffic Management", + "description": "Configure routing tables and routes to control how traffic flows within the VPC and to external networks. [Learn more](https://cloud.ibm.com/docs/vpc?topic=vpc-create-vpc-routing-table&interface=ui)." } ], "flavors": [ From 856b96121a10d3e0600b03320b32e8896b7c66ff Mon Sep 17 00:00:00 2001 From: Shikha Maheshwari Date: Fri, 29 Aug 2025 12:21:41 +0530 Subject: [PATCH 10/19] Update short description --- ibm_catalog.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index 5050d86f..ebb23ea8 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -21,7 +21,7 @@ "infrastructure as code", "solution" ], - "short_description": "Automates the deployment of Virtual Private Cloud (VPC) on IBM Cloud, offering full configurability and flexibility for diverse workloads.", + "short_description": "Deploy Virtual Private Clouds (VPCs) on IBM Cloud with full flexibility and customisation to support different workloads", "long_description":"This deployable architecture provides a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment that serves as the base for deploying compute and advanced resources. It establishes the core networking and security framework without including Virtual Server Instances (VSI) or Red Hat OpenShift clusters by default. This architecture can be extended to support a variety of deployable architectures, such as [Cloud automation for Virtual Servers for Virtual Private Cloud](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global), [Cloud automation for Red Hat OpenShift Container Platform on VPC](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global), and other cloud automation architectures. By setting up this foundational layer, it enables consistent, scalable, and secure deployments across multiple IBM Cloud workloads.", "offering_docs_url": "https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-overview#overview-vpc", "offering_icon_url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/main/images/vpc_icon.svg", From 7707eb0a75db3e021bdf85d1bc24fb99a237df21 Mon Sep 17 00:00:00 2001 From: Shikha Maheshwari Date: Fri, 29 Aug 2025 18:03:13 +0530 Subject: [PATCH 11/19] Update .catalog-onboard-pipeline.yaml --- .catalog-onboard-pipeline.yaml | 1 - 1 file changed, 1 deletion(-) diff --git a/.catalog-onboard-pipeline.yaml b/.catalog-onboard-pipeline.yaml index 4441ab2c..1d84f733 100644 --- a/.catalog-onboard-pipeline.yaml +++ b/.catalog-onboard-pipeline.yaml @@ -5,7 +5,6 @@ offerings: kind: solution catalog_id: 7df1e4ca-d54c-4fd0-82ce-3d13247308cd offering_id: 9fc0fa64-27af-4fed-9dce-47b3640ba739 - include_git_submodules: true variations: - name: fully-configurable mark_ready: false From 1208a16917c2ff680d9ef13a40b1a0cd17390ff5 Mon Sep 17 00:00:00 2001 From: Shikha Maheshwari Date: Fri, 29 Aug 2025 18:03:36 +0530 Subject: [PATCH 12/19] Update ibm_catalog.json --- ibm_catalog.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index ebb23ea8..158ce5ca 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -46,7 +46,7 @@ { "title": "Observability Integration", "description": "Can be integrated with observability services to configure logging, monitoring, and activity tracker event routing, providing deeper visibility into network and workload operations." - } + }, { "title": "Traffic Management", "description": "Configure routing tables and routes to control how traffic flows within the VPC and to external networks. [Learn more](https://cloud.ibm.com/docs/vpc?topic=vpc-create-vpc-routing-table&interface=ui)." From ac7b9795cb75cbae90e3885c935c760418817b7f Mon Sep 17 00:00:00 2001 From: Aditya-ranjan-16 Date: Mon, 1 Sep 2025 20:11:30 +0530 Subject: [PATCH 13/19] update catalog --- ibm_catalog.json | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index 158ce5ca..a15b28a6 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -21,8 +21,8 @@ "infrastructure as code", "solution" ], - "short_description": "Deploy Virtual Private Clouds (VPCs) on IBM Cloud with full flexibility and customisation to support different workloads", - "long_description":"This deployable architecture provides a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment that serves as the base for deploying compute and advanced resources. It establishes the core networking and security framework without including Virtual Server Instances (VSI) or Red Hat OpenShift clusters by default. This architecture can be extended to support a variety of deployable architectures, such as [Cloud automation for Virtual Servers for Virtual Private Cloud](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global), [Cloud automation for Red Hat OpenShift Container Platform on VPC](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global), and other cloud automation architectures. By setting up this foundational layer, it enables consistent, scalable, and secure deployments across multiple IBM Cloud workloads.", + "short_description": "Automates the deployment of Virtual Private Cloud (VPC) on IBM Cloud, offering full configurability and flexibility for diverse workloads.", + "long_description":"The VPC landing zone deployable architecture provides a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment that serves as the base for deploying compute and advanced resources. It establishes the core networking and security framework without including Virtual Server Instances (VSI) or Red Hat OpenShift clusters by default. This architecture can be extended to support a variety of deployable architectures, such as [Landing zone for applications with virtual servers](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global), [Landing zone for containerized applications with Red Hat Openshift](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global), and other cloud automation architectures. By setting up this foundational layer, it enables consistent, scalable, and secure deployments across multiple IBM Cloud workloads.", "offering_docs_url": "https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-overview#overview-vpc", "offering_icon_url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/main/images/vpc_icon.svg", "provider_name": "IBM", @@ -45,7 +45,7 @@ }, { "title": "Observability Integration", - "description": "Can be integrated with observability services to configure logging, monitoring, and activity tracker event routing, providing deeper visibility into network and workload operations." + "description": "Can be integrated with IBM Cloud Observability services to configure logging, monitoring, and activity tracker event routing, providing deeper visibility into network and workload operations." }, { "title": "Traffic Management", @@ -54,7 +54,7 @@ ], "flavors": [ { - "label": "Fully configurable", + "label": "Standard - Integrated setup with configurable services", "name": "fully-configurable", "index": 1, "install_type": "fullstack", @@ -82,7 +82,7 @@ "diagrams": [ { "diagram": { - "caption": "Virtual Private Cloud topology", + "caption": "Virtual Private Cloud topology - Standard (Integrated setup with configurable services)", "url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/main/reference-architecture/deployable-architecture-vpc.svg", "type": "image/svg+xml" }, @@ -476,7 +476,7 @@ "dependencies": [ { "name": "deploy-arch-ibm-account-infra-base", - "description": "Cloud automation for Account Configuration organizes your IBM Cloud account with a ready-made set of resource groups by default and when you enable the \"with Account Settings\" option, it also applies baseline security and governance settings. ", + "description": "Organize your IBM Cloud account with preconfigured resource groups. If not selected, the default resource group is used. Optionally, expand to apply recommended security controls via \"with Account Settings\" variation.", "catalog_id": "7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3", "flavors": [ "resource-group-only", From dde7412ef59985a5cafdd0582d1e39e68ffe8b48 Mon Sep 17 00:00:00 2001 From: Aditya-ranjan-16 Date: Mon, 1 Sep 2025 20:25:14 +0530 Subject: [PATCH 14/19] fix --- ibm_catalog.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index a15b28a6..7207d61c 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -21,7 +21,7 @@ "infrastructure as code", "solution" ], - "short_description": "Automates the deployment of Virtual Private Cloud (VPC) on IBM Cloud, offering full configurability and flexibility for diverse workloads.", + "short_description": "Deploy Virtual Private Clouds (VPCs) on IBM Cloud with full flexibility and customisation to support different workloads", "long_description":"The VPC landing zone deployable architecture provides a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment that serves as the base for deploying compute and advanced resources. It establishes the core networking and security framework without including Virtual Server Instances (VSI) or Red Hat OpenShift clusters by default. This architecture can be extended to support a variety of deployable architectures, such as [Landing zone for applications with virtual servers](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global), [Landing zone for containerized applications with Red Hat Openshift](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global), and other cloud automation architectures. By setting up this foundational layer, it enables consistent, scalable, and secure deployments across multiple IBM Cloud workloads.", "offering_docs_url": "https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-overview#overview-vpc", "offering_icon_url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/main/images/vpc_icon.svg", From e9a2d869387a93aee22f4801b9df602fcf9ea898 Mon Sep 17 00:00:00 2001 From: Aditya-ranjan-16 Date: Mon, 1 Sep 2025 21:13:52 +0530 Subject: [PATCH 15/19] fix --- ibm_catalog.json | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index 7207d61c..93907736 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -476,7 +476,7 @@ "dependencies": [ { "name": "deploy-arch-ibm-account-infra-base", - "description": "Organize your IBM Cloud account with preconfigured resource groups. If not selected, the default resource group is used. Optionally, expand to apply recommended security controls via \"with Account Settings\" variation.", + "description": "Organize your IBM Cloud account with preconfigured resource groups. If not selected, the default resource group is used. Optionally, expand to apply recommended security controls via \"with Account Settings\" variation. ", "catalog_id": "7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3", "flavors": [ "resource-group-only", @@ -502,7 +502,7 @@ { "name": "deploy-arch-ibm-kms", "id": "2cad4789-fa90-4886-9c9e-857081c273ee-global", - "description": "Enable Cloud Automation for Key Protect to use customer-managed encryption keys (CMKs) for encrypting the Cloud Object Storage bucket used to store VPC Flow Logs. If disabled, IBM Cloud's default service-managed encryption will be used instead. Applicable only when VPC Flow logs are enabled. ", + "description": "Enables customer-managed encryption with IBM Cloud Key Protect for the Cloud Object Storage bucket used by VPC Flow Logs. If disabled, IBM-managed encryption is used. ", "flavors": [ "fully-configurable" ], @@ -543,7 +543,7 @@ { "name": "deploy-arch-ibm-cos", "id": "68921490-2778-4930-ac6d-bae7be6cd958-global", - "description": "Enable to create an IBM Cloud Object Storage (COS) instance, where a bucket will be set up to store VPC flow logs as part of this deployment. ", + "description": "Sets up an IBM Cloud Object Storage (COS) instance and bucket to store VPC flow logs as part of this deployment. ", "flavors": [ "instance" ], @@ -574,7 +574,7 @@ }, { "name": "deploy-arch-ibm-observability", - "description": "Configure IBM Cloud Logs, Cloud Monitoring and Activity Tracker event routing for analysing logs and metrics generated by the VPC instance.", + "description": "Sets up IBM Cloud Logs, Cloud Monitoring and Activity Tracker event routing for analysing logs and metrics generated by the VPC instance.", "id": "a3137d28-79e0-479d-8a24-758ebd5a0eab-global", "version": "v3.0.3", "flavors": [ From 09255e0acbe1586594c92dacac477822c5adb730 Mon Sep 17 00:00:00 2001 From: Aditya-ranjan-16 Date: Wed, 3 Sep 2025 16:50:33 +0530 Subject: [PATCH 16/19] adressed comments --- ibm_catalog.json | 31 ++++++++++++++++++------------- 1 file changed, 18 insertions(+), 13 deletions(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index 8690c80a..02f4129a 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -22,7 +22,7 @@ "solution" ], "short_description": "Deploy Virtual Private Clouds (VPCs) on IBM Cloud with full flexibility and customisation to support different workloads", - "long_description":"The VPC landing zone deployable architecture provides a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment that serves as the base for deploying compute and advanced resources. It establishes the core networking and security framework without including Virtual Server Instances (VSI) or Red Hat OpenShift clusters by default. This architecture can be extended to support a variety of deployable architectures, such as [Landing zone for applications with virtual servers](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global), [Landing zone for containerized applications with Red Hat Openshift](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global), and other cloud automation architectures. By setting up this foundational layer, it enables consistent, scalable, and secure deployments across multiple IBM Cloud workloads.", + "long_description": "The VPC landing zone deployable architecture provides a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment that serves as the base for deploying compute and advanced resources. It establishes the core networking and security framework without including Virtual Server Instances (VSI) or Red Hat OpenShift clusters by default. This architecture can be extended to support a variety of deployable architectures, such as [Landing zone for applications with virtual servers](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global), [Landing zone for containerized applications with Red Hat OpenShift](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global), and other cloud automation architectures. By setting up this foundational layer, it enables consistent, scalable, and secure deployments across multiple IBM Cloud workloads.", "offering_docs_url": "https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-overview#overview-vpc", "offering_icon_url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/main/images/vpc_icon.svg", "provider_name": "IBM", @@ -43,15 +43,22 @@ "title": "Flow Logs and Secure Storage", "description": "Captures and stores network traffic data using [VPC flow logs](https://cloud.ibm.com/docs/vpc?topic=vpc-flow-logs), with logs directed to an Object Storage bucket for analysis and long-term retention. Supports Key Management Service (KMS) encryption for the storage bucket, ensuring enhanced data security and compliance." }, - { - "title": "Observability Integration", - "description": "Can be integrated with IBM Cloud Observability services to configure logging, monitoring, and activity tracker event routing, providing deeper visibility into network and workload operations." - }, { "title": "Traffic Management", "description": "Configure routing tables and routes to control how traffic flows within the VPC and to external networks. [Learn more](https://cloud.ibm.com/docs/vpc?topic=vpc-create-vpc-routing-table&interface=ui)." - } - + }, + { + "title": "Sets up logging for the VPC instance", + "description": "Optionally, you can deploy [Cloud automation for Cloud Logs]((https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-cloud-logs-63d8ae58-fbf3-41ce-b844-0fb5b85882ab-global)) to route, alert, and visualize platform logs that are generated by your VPC instance." + }, + { + "title": "Sets up monitoring operational metrics for the VPC instance", + "description": "Optionally, you can deploy [Cloud automation for Cloud Monitoring](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-cloud-monitoring-73debdbf-894f-4c14-81c7-5ece3a70b67d-global) to measure how users and applications interact with your VPC instance." + }, + { + "title": "Sets up activity tracking for the VPC instance", + "description": "Optionally, you can deploy [Cloud automation for Activity Tracker Event Routing](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-activity-tracker-918453c3-4f97-4583-8c4a-83ef12fc7916-global) to route and securely store auditing events that are related to your VPC instance." + } ], "flavors": [ { @@ -87,9 +94,7 @@ "url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/main/reference-architecture/deployable-architecture-vpc.svg", "type": "image/svg+xml" }, - - "description": "This architecture supports provisioning and configuring a Virtual Private Cloud (VPC) environment. While the diagram illustrates a three-zone deployment, the VPC can also be provisioned in a single-zone or two-zone configuration, depending on your availability requirements.

The default configuration deploys a VPC with three zone subnets, configures the predefined ACLs, and attaches a public gateway with one of the subnets. Additional functionalities such as VPN gateway, VPE gateway, Flow Logs, security groups, etc., can be configured by providing the appropriate input values.

VPC Flow Logs are used to monitor and analyse traffic. To enable VPC Flow Logs, this solution automatically manages the following tasks:
- Provisions a Cloud Object Storage (COS) instance using the COS deployable architecture. Alternatively, you can provide an existing COS instance if available.
- Creates an object storage bucket to store flow logs in the provisioned or existing COS instance.
- Supports creation of keys for a Key Management Service (KMS) if a KMS-encrypted bucket is enabled for enhanced security. You can use an existing KMS instance or create a new Key Protect instance using the KMS deployable architecture.

In addition, you have an option to integrate with Observability services such as [Cloud automation for Cloud Monitoring](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-cloud-monitoring-73debdbf-894f-4c14-81c7-5ece3a70b67d-global) which provides robust monitoring capabilities and captures essential metrics such as CPU and memory utilization, helping you proactively monitor system performance and resource consumption, [Cloud automation for Activity Tracker Event Routing](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-activity-tracker-918453c3-4f97-4583-8c4a-83ef12fc7916-global) to monitor how users and applications interact with the VPC, supporting compliance and auditability, [Cloud automation for Cloud Logs](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-cloud-logs-63d8ae58-fbf3-41ce-b844-0fb5b85882ab-global) can be enabled to collect, view, and analyze platform logs related to the VPC components." - + "description": "This architecture supports provisioning and configuring a Virtual Private Cloud (VPC) environment. While the diagram illustrates a three-zone deployment, the VPC can also be provisioned in a single-zone or two-zone configuration, depending on your availability requirements.

The default configuration deploys a VPC with three zone subnets, configures the predefined ACLs, and attaches a public gateway with one of the subnets. You can also configure additional functionalities such as VPN gateway, VPE gateway, Flow Logs, security groups, etc. can be configured by providing the appropriate input values.

VPC Flow Logs are used to monitor and analyse traffic. To enable VPC Flow Logs, this solution automates the following tasks:
- Provisions a Cloud Object Storage (COS) instance using the COS deployable architecture. You can also use an existing COS instance.
- Creates an object storage bucket to store flow logs in the provisioned or existing COS instance.
- Supports creation of keys for a Key Management Service (KMS) if a KMS-encrypted bucket is enabled for enhanced security. You can use an existing KMS instance or create a new Key Protect instance using the KMS deployable architecture.

You can opt to integrate with
Observability services to enable robust monitoring and logging capabilities to deliver deep operational insights into your VPC deployment.
[IBM Cloud Activity Tracker Event Routing](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-activity-tracker-918453c3-4f97-4583-8c4a-83ef12fc7916-global) to monitor how users and applications interact with the VPC, supporting compliance and auditability.
[Cloud Logs](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-cloud-logs-63d8ae58-fbf3-41ce-b844-0fb5b85882ab-global) to collect, view, and analyze platform logs related to the VPC components.
[IBM Cloud Monitoring](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-cloud-monitoring-73debdbf-894f-4c14-81c7-5ece3a70b67d-global) to capture essential metrics such as CPU and memory utilization, helping you proactively monitor system performance and resource consumption.

This modular design provides flexibility and serves as a secure baseline for deploying compute workloads." } ] }, @@ -120,7 +125,7 @@ "crn:v1:bluemix:public:iam::::role:Administrator" ], "service_name": "is.vpc", - "notes": "Required for creating Virtual Private Cloud(VPC)." + "notes": "Required to create Virtual Private Cloud(VPC) instance." }, { "service_name": "cloud-object-storage", @@ -128,7 +133,7 @@ "crn:v1:bluemix:public:iam::::serviceRole:Manager", "crn:v1:bluemix:public:iam::::role:Editor" ], - "notes": "[Optional] Required if you are enabling VPC flow logs." + "notes": "[Optional] Required if VPC Flow Logs are enabled." }, { "service_name": "kms", @@ -577,7 +582,7 @@ { "name": "deploy-arch-ibm-cos", "id": "68921490-2778-4930-ac6d-bae7be6cd958-global", - "description": "Sets up an IBM Cloud Object Storage (COS) instance and bucket to store VPC flow logs as part of this deployment. ", + "description": "Sets up an Object Storage instance to store VPC Flow Logs. ", "flavors": [ "instance" ], From b8b25e9d65d951db5d4e74656f5ae0884d739586 Mon Sep 17 00:00:00 2001 From: Aditya-ranjan-16 Date: Wed, 3 Sep 2025 19:52:34 +0530 Subject: [PATCH 17/19] fix --- ibm_catalog.json | 28 ++++++++++++++++++---------- 1 file changed, 18 insertions(+), 10 deletions(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index 6d77fd80..a369cc3c 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -22,14 +22,14 @@ "solution" ], "short_description": "Deploy Virtual Private Clouds (VPCs) on IBM Cloud with full flexibility and customisation to support different workloads", - "long_description": "The VPC landing zone deployable architecture provides a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment that serves as the base for deploying compute and advanced resources. It establishes the core networking and security framework without including Virtual Server Instances (VSI) or Red Hat OpenShift clusters by default. This architecture can be extended to support a variety of deployable architectures, such as [Landing zone for applications with virtual servers](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global), [Landing zone for containerized applications with Red Hat OpenShift](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global), and other cloud automation architectures. By setting up this foundational layer, it enables consistent, scalable, and secure deployments across multiple IBM Cloud workloads.", + "long_description": "The Cloud foundation for VPC deployable architecture provides a foundational IBM Cloud [Virtual Private Cloud (VPC)](https://www.ibm.com/cloud/vpc) environment that serves as the base for deploying compute and advanced resources. It establishes the core networking and security framework without including Virtual Server Instances (VSI) or Red Hat OpenShift clusters by default. You can extend this deployable architecture to support a variety of others like [Landing zone for applications with virtual servers](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-vsi-vpc-28e2b12c-858f-4ae8-8717-60db8cec2e6e-global), [Landing zone for containerized applications with Red Hat OpenShift](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-vpc-1728a4fd-f561-4cf9-82ef-2b1eeb5da1a8-global), [Cloud automation for Red Hat OpenShift AI](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-ocp-ai-ba708aed-bb8a-4ac0-83a7-53a066701db5-global) and many more. You can set up a foundational layer to enable consistent, scalable, and secure deployments across multiple IBM Cloud workloads.", "offering_docs_url": "https://cloud.ibm.com/docs/secure-infrastructure-vpc?topic=secure-infrastructure-vpc-overview#overview-vpc", "offering_icon_url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/main/images/vpc_icon.svg", "provider_name": "IBM", "features": [ { "title": "VPC Networking and Subnet Management", - "description": "Automatically provisions [subnets](https://cloud.ibm.com/docs/vpc?topic=vpc-about-subnets-vpc) across three availability zones, dividing your VPC into smaller, isolated networks for improved organization, availability, and traffic control. Includes support for [address prefixes](https://cloud.ibm.com/docs/vpc?topic=vpc-about-subnets-vpc) to define IP ranges, and [routing tables](https://cloud.ibm.com/docs/vpc?topic=vpc-create-vpc-routing-table&interface=ui) with custom routes to manage how traffic flows within the VPC and to external networks." + "description": "Provisions [subnets](https://cloud.ibm.com/docs/vpc?topic=vpc-about-subnets-vpc) across three availability zones, dividing your VPC into smaller, isolated networks for improved organization, availability, and traffic control. It Includes support for [address prefixes](https://cloud.ibm.com/docs/vpc?topic=vpc-about-subnets-vpc) to define IP ranges, and [routing tables](https://cloud.ibm.com/docs/vpc?topic=vpc-create-vpc-routing-table&interface=ui) with custom routes to manage flow of traffic not only within the VPC but also to the external networks." }, { "title": "Network Security Controls", @@ -125,7 +125,7 @@ "crn:v1:bluemix:public:iam::::role:Administrator" ], "service_name": "is.vpc", - "notes": "Required to create Virtual Private Cloud(VPC) instance." + "notes": "Required to create Virtual Private Cloud(VPC)" }, { "service_name": "cloud-object-storage", @@ -136,12 +136,20 @@ "notes": "[Optional] Required if VPC Flow Logs are enabled." }, { - "service_name": "kms", "role_crns": [ "crn:v1:bluemix:public:iam::::serviceRole:Manager", "crn:v1:bluemix:public:iam::::role:Editor" ], - "notes": "[Optional] Required if KMS encryption is enabled to encrypt the Object Storage bucket used for storing flow logs." + "service_name": "hs-crypto", + "notes": "[Optional] Required if Hyper Protect Crypto Service is used for encryption." + }, + { + "role_crns": [ + "crn:v1:bluemix:public:iam::::serviceRole:Manager", + "crn:v1:bluemix:public:iam::::role:Editor" + ], + "service_name": "kms", + "notes": "[Optional] Required if Key Protect is used for encryption." }, { "role_crns": [ @@ -165,7 +173,7 @@ "crn:v1:bluemix:public:iam::::role:Editor" ], "service_name": "atracker", - "notes": "[Optional] Required to set up Activity Tracker Event Routing of auditing events." + "notes": "[Optional] Required when enabling the Activity Tracker Event Routing." }, { "service_name": "sysdig-secure", @@ -181,7 +189,7 @@ "crn:v1:bluemix:public:iam::::serviceRole:Manager" ], "service_name": "apprapp", - "notes": "[Optional] Required for provisioning the App Configuration instance." + "notes": "[Optional] Required to Create the App Configuration instance." } ], "configuration": [ @@ -541,7 +549,7 @@ { "name": "deploy-arch-ibm-kms", "id": "2cad4789-fa90-4886-9c9e-857081c273ee-global", - "description": "Enables customer-managed encryption with IBM Cloud Key Protect for the Cloud Object Storage bucket used by VPC Flow Logs. If disabled, IBM-managed encryption is used. ", + "description": "Enable managed encryption with your own keys via IBM Cloud Key Protect. If disabled, services will default to IBM-managed encryption. ", "flavors": [ "fully-configurable" ], @@ -582,7 +590,7 @@ { "name": "deploy-arch-ibm-cos", "id": "68921490-2778-4930-ac6d-bae7be6cd958-global", - "description": "Sets up an Object Storage instance to store VPC Flow Logs. ", + "description": "Set up an Object Storage instance to store VPC Flow Logs. ", "flavors": [ "instance" ], @@ -652,7 +660,7 @@ }, { "name": "deploy-arch-ibm-cloud-monitoring", - "description": "Sets up a Cloud Monitoring instance to collect the platform metrics.", + "description": "Set up a Cloud Monitoring instance to collect the platform metrics.", "id": "73debdbf-894f-4c14-81c7-5ece3a70b67d-global", "version": "v1.6.4", "flavors": [ From 82fcd0e48f1630f530904b75798f09df12f67155 Mon Sep 17 00:00:00 2001 From: Aditya-ranjan-16 Date: Wed, 3 Sep 2025 21:22:04 +0530 Subject: [PATCH 18/19] addresed comments --- ibm_catalog.json | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/ibm_catalog.json b/ibm_catalog.json index a369cc3c..8798826a 100644 --- a/ibm_catalog.json +++ b/ibm_catalog.json @@ -45,7 +45,7 @@ }, { "title": "Traffic Management", - "description": "Configure routing tables and routes to control how traffic flows within the VPC and to external networks. [Learn more](https://cloud.ibm.com/docs/vpc?topic=vpc-create-vpc-routing-table&interface=ui)." + "description": "Configures routing tables and routes to control the flow of traffic not only within the VPC but also to external networks. [Learn more](https://cloud.ibm.com/docs/vpc?topic=vpc-create-vpc-routing-table&interface=ui)." }, { "title": "Sets up logging for the VPC instance", @@ -94,7 +94,7 @@ "url": "https://raw.githubusercontent.com/terraform-ibm-modules/terraform-ibm-landing-zone-vpc/main/reference-architecture/deployable-architecture-vpc.svg", "type": "image/svg+xml" }, - "description": "This architecture supports provisioning and configuring a Virtual Private Cloud (VPC) environment. While the diagram illustrates a three-zone deployment, the VPC can also be provisioned in a single-zone or two-zone configuration, depending on your availability requirements.

The default configuration deploys a VPC with three zone subnets, configures the predefined ACLs, and attaches a public gateway with one of the subnets. You can also configure additional functionalities such as VPN gateway, VPE gateway, Flow Logs, security groups, etc. can be configured by providing the appropriate input values.

VPC Flow Logs are used to monitor and analyse traffic. To enable VPC Flow Logs, this solution automates the following tasks:
- Provisions a Cloud Object Storage (COS) instance using the COS deployable architecture. You can also use an existing COS instance.
- Creates an object storage bucket to store flow logs in the provisioned or existing COS instance.
- Supports creation of keys for a Key Management Service (KMS) if a KMS-encrypted bucket is enabled for enhanced security. You can use an existing KMS instance or create a new Key Protect instance using the KMS deployable architecture.

You can opt to integrate with
Observability services to enable robust monitoring and logging capabilities to deliver deep operational insights into your VPC deployment.
[IBM Cloud Activity Tracker Event Routing](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-activity-tracker-918453c3-4f97-4583-8c4a-83ef12fc7916-global) to monitor how users and applications interact with the VPC, supporting compliance and auditability.
[Cloud Logs](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-cloud-logs-63d8ae58-fbf3-41ce-b844-0fb5b85882ab-global) to collect, view, and analyze platform logs related to the VPC components.
[IBM Cloud Monitoring](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-cloud-monitoring-73debdbf-894f-4c14-81c7-5ece3a70b67d-global) to capture essential metrics such as CPU and memory utilization, helping you proactively monitor system performance and resource consumption.

This modular design provides flexibility and serves as a secure baseline for deploying compute workloads." + "description": "This architecture supports provisioning and configuring a Virtual Private Cloud (VPC) environment. While the diagram illustrates a three-zone deployment, the VPC can also be provisioned in a single-zone or two-zone configuration, depending on your availability requirements.

The default configuration deploys a VPC with three zone subnets, configures the predefined ACLs, and attaches a public gateway with one of the subnets. You can also configure additional functionalities such as VPN gateway, VPE gateway, Flow Logs, security groups, etc. can be configured by providing the appropriate input values.

VPC Flow Logs are used to monitor and analyse traffic. To enable VPC Flow Logs, this solution automates the following tasks:
- Provisions a Cloud Object Storage (COS) instance using the COS deployable architecture. You can also use an existing COS instance.
- Creates an object storage bucket to store flow logs in the provisioned or existing COS instance.
- Supports creation of keys for a Key Management Service (KMS) if a KMS-encrypted bucket is enabled for enhanced security. You can use an existing KMS instance or create a new Key Protect instance using the KMS deployable architecture.

You can opt to integrate with Observability services to enable robust monitoring and logging capabilities to deliver deep operational insights into your VPC deployment. These services are
[IBM Cloud Activity Tracker Event Routing](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-activity-tracker-918453c3-4f97-4583-8c4a-83ef12fc7916-global) to monitor how users and applications interact with the VPC, supporting compliance and auditability.
[Cloud Logs](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-cloud-logs-63d8ae58-fbf3-41ce-b844-0fb5b85882ab-global) to collect, view, and analyze platform logs related to the VPC components.
[IBM Cloud Monitoring](https://cloud.ibm.com/catalog/7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3/architecture/deploy-arch-ibm-cloud-monitoring-73debdbf-894f-4c14-81c7-5ece3a70b67d-global) to capture essential metrics such as CPU and memory utilization, helping you proactively monitor system performance and resource consumption.

This modular design provides flexibility and serves as a secure baseline for deploying compute workloads." } ] }, @@ -189,7 +189,7 @@ "crn:v1:bluemix:public:iam::::serviceRole:Manager" ], "service_name": "apprapp", - "notes": "[Optional] Required to Create the App Configuration instance." + "notes": "[Optional] Required to create the App Configuration instance." } ], "configuration": [ @@ -523,7 +523,7 @@ "dependencies": [ { "name": "deploy-arch-ibm-account-infra-base", - "description": "Organize your IBM Cloud account with preconfigured resource groups. If not selected, the default resource group is used. Optionally, expand to apply recommended security controls via \"with Account Settings\" variation. ", + "description": "Organizes your IBM Cloud account with preconfigured resource groups. If not selected, the default resource group is used. Optionally, it can expand to apply recommended security controls via \"with Account Settings\" variation. ", "catalog_id": "7a4d68b4-cf8b-40cd-a3d1-f49aff526eb3", "flavors": [ "resource-group-only", @@ -549,7 +549,7 @@ { "name": "deploy-arch-ibm-kms", "id": "2cad4789-fa90-4886-9c9e-857081c273ee-global", - "description": "Enable managed encryption with your own keys via IBM Cloud Key Protect. If disabled, services will default to IBM-managed encryption. ", + "description": "Enables managed encryption with your own keys via IBM Cloud Key Protect. If disabled, services will default to IBM-managed encryption. ", "flavors": [ "fully-configurable" ], @@ -590,7 +590,7 @@ { "name": "deploy-arch-ibm-cos", "id": "68921490-2778-4930-ac6d-bae7be6cd958-global", - "description": "Set up an Object Storage instance to store VPC Flow Logs. ", + "description": "Sets up an Object Storage instance to store VPC Flow Logs. ", "flavors": [ "instance" ], @@ -660,7 +660,7 @@ }, { "name": "deploy-arch-ibm-cloud-monitoring", - "description": "Set up a Cloud Monitoring instance to collect the platform metrics.", + "description": "Sets up a Cloud Monitoring instance to collect the platform metrics.", "id": "73debdbf-894f-4c14-81c7-5ece3a70b67d-global", "version": "v1.6.4", "flavors": [ From d76a87915e9baac3d871b361878c38afc388f733 Mon Sep 17 00:00:00 2001 From: Aditya-ranjan-16 Date: Wed, 3 Sep 2025 22:35:53 +0530 Subject: [PATCH 19/19] fix: updated addon test OfferingName --- tests/pr_test.go | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/tests/pr_test.go b/tests/pr_test.go index 463d5080..b3a08359 100644 --- a/tests/pr_test.go +++ b/tests/pr_test.go @@ -359,7 +359,7 @@ func TestVpcAddonDefaultConfiguration(t *testing.T) { options.AddonConfig = cloudinfo.NewAddonConfigTerraform( options.Prefix, - "deploy-arch-ibm-vpc", + "deploy-arch-ibm-slz-vpc", "fully-configurable", map[string]interface{}{ "prefix": options.Prefix, @@ -380,7 +380,7 @@ func TestVpcDependencyPermutations(t *testing.T) { Testing: t, Prefix: "vpc-per", AddonConfig: cloudinfo.AddonConfig{ - OfferingName: "deploy-arch-ibm-vpc", + OfferingName: "deploy-arch-ibm-slz-vpc", OfferingFlavor: "fully-configurable", Inputs: map[string]interface{}{ "prefix": "vpc-per",