Create an HTTPS Origin based on public FQDN for VoltMesh
Problem this snippet solves:
How to create an HTTPS Origin that could be used in a VoltMesh HTTP or HTTPS Load-Balancer.
This Origin is based on a public FQDN name.
How to use this snippet:
Pre-requirements:
- Have a Volterra API Certificate. Please see this page for the API Certificate generation: https://volterra.io/docs/how-to/user-mgmt/credentials
- Extract the certificate and the key from the .p12:
openssl pkcs12 -info -in certificate.p12 -out private_key.key -nodes -nocerts
openssl pkcs12 -info -in certificate.p12 -out certificate.cert -nokeys
- Create a variables.tf Terraform variables file:
variable "api_cert" {
type = string
default = "/<full path to>/certificate.cert"
}
variable "api_key" {
type = string
default = "/<full path to>/private_key.key"
}
variable "api_url" {
type = string
default = "https://<tenant_name>.console.ves.volterra.io/api"
}
- Create a main.tf Terraform file:
terraform {
required_version = ">= 0.12.9, != 0.13.0"
required_providers {
volterra = {
source = "volterraedge/volterra"
version = ">=0.0.6"
}
}
}
provider "volterra" {
api_cert = var.api_cert
api_key = var.api_key
url = var.api_url
}
In the directory where your terraform files are, run:
terraform init
Then:
terraform apply
Code :
resource "volterra_origin_pool" "origin-dns" {
name = "origin-dns"
namespace = "mynamespace"
origin_servers {
public_name {
dns_name = "myorigin.mydomain.com"
}
labels = {
}
}
use_tls {
use_host_header_as_sni = true
tls_config {
default_security = true
}
skip_server_verification = true
no_mtls = true
}
no_tls = false
port = "443"
endpoint_selection = "LOCALPREFERED"
loadbalancer_algorithm = "LB_OVERRIDE"
}Tested this on version:
No Version FoundPublished Oct 18, 2021
Version 1.0
Philippe_Veys
Employee
EmployeePhilippe_VeysEmployee
EmployeeNo CommentsBe the first to comment