NSG 创建得很好,所以我在 env/dev 和模块文件夹中创建并输入 nsg 规则的所有配置,
我运行 terraform plan,这是我收到的错误:
Error: Unsupported attribute
on nsg_rules.tf line 6, in module "nsgrules_app1":
6: nsg_name = module.nsg_app1.nsg_name
This object does not have an attribute named "nsg_name".
任何援助将不胜感激 :)
我的 terraform 相关文件夹结构是:
dev
|_ backend.tf
|_ outputs.tf
|_ provider.tf
|_ resource_groups.tf
|_ nsg.tf
|_ nsg_rules.tf
|_ storage.tf
|_ subnets.tf
|_ variables.tf
|_ vnets.tf
|_ vms_lin.tf
modules
|_ nsg
|_ outputs.tf
|_ variables.tf
|_ main.tf
|_ nsg_rules
|_ outputs.tf
|_ variables.tf
|_ main.tf
|_ resource_group
|_ outputs.tf
|_ variables.tf
|_ main.tf
|_ storage
|_ outputs.tf
|_ variables.tf
|_ main.tf
|_ network
|_ vnet
|_ outputs.tf
|_ variables.tf
|_ main.tf
|_ subnet
|_ outputs.tf
|_ variables.tf
|_ main.tf
开发/nsg.tf
module "nsg_app1" {
source = "git::ssh://git@ssh.dev.azure.com/v3/myorg/my_code/terraform_modules//nsg"
nsg_name = "nsg-ansible"
rg_name = module.rg_app1.rg_name
location = module.rg_app1.rg_location
}
开发/nsg_rules.tf
module "nsgrules_app1" {
source = "git::ssh://git@ssh.dev.azure.com/v3/myorg/my_code/terraform_modules//nsg_rule"
rg_name = module.rg_app1.rg_name
nsg_name = module.nsg_app1.nsg_name
# rules_map = var.rules_map
# rules_map = {
# http_inbound = { priority = 150, direction = "Inbound", access = "Allow", protocol = "TCP", destination_port_range = "80" },
# https_inbound = { priority = 151, direction = "Inbound", access = "Allow", protocol = "TCP", destination_port_range = "443" }
# }
}
模块/nsg/main.tf
resource "azurerm_network_security_group" "nsg" {
name = var.nsg_name
location = var.location
resource_group_name = var.rg_name
}
模块/nsg/variables.tf
variable "rg_name" {
description = "name of resource group"
}
variable "location" {
description = "location of resource group"
}
variable "nsg_name" {
description = "name of nsg group"
}
模块/nsg_rule/main.tf
resource "azurerm_network_security_rule" "nsg-rule-rdp" {
name = "RDP"
priority = "105"
direction = "Inbound"
access = "Allow"
protocol = "TCP"
source_port_range = "*"
destination_port_range = "3389"
source_address_prefixes = var.default_ip_whitelist
destination_address_prefix = "*"
resource_group_name = var.rg_name
network_security_group_name = var.nsg_name
}
模块/nsg_rule/variables.tf
variable "rg_name" {
description = "name of resource group"
}
variable "default_ip_whitelist" {
description = "List of IPs to whitelist on all RDP | SSH enabled NSG rules."
default = []
}
variable "nsg_name" {
description = "name of nsg group"
}
variable "rules_map" {
type = map
default = {
rule1 = {priority = 105, direction = "Inbound", access = "Allow", protocol = "TCP", source_port_range = "*", destination_port_range = "*",source_address_prefix = "*", destination_address_prefix = "*" } ,
rule2 = {priority = 105, direction = "Outbound", access = "Deny", protocol = "TCP", source_port_range = "*", destination_port_range = "*",source_address_prefix = "*", destination_address_prefix = "*" }
}
}
Mar*_*cin 11
您正在使用的模块module.nsg_app1没有nsg_name属性。这意味着它不会在其中输出这样的变量。
您必须修改 module.nsg_app1模块以输出此类变量,或者module.nsgrules_app1硬编码名称:
module "nsgrules_app1" {
source = "git::ssh://git@ssh.dev.azure.com/v3/myorg/my_code/terraform_modules//nsg_rule"
rg_name = module.rg_app1.rg_name
nsg_name = "nsg-ansible"
# rules_map = var.rules_map
# rules_map = {
# http_inbound = { priority = 150, direction = "Inbound", access = "Allow", protocol = "TCP", destination_port_range = "80" },
# https_inbound = { priority = 151, direction = "Inbound", access = "Allow", protocol = "TCP", destination_port_range = "443" }
# }
}
| 归档时间: |
|
| 查看次数: |
43218 次 |
| 最近记录: |