Google compute engine 如何使用Terraform在我的Google Compute实例上公开额外的端口?
我有一个GoogleCompute实例,由一些Terraform代码定义Google compute engine 如何使用Terraform在我的Google Compute实例上公开额外的端口?,google-compute-engine,terraform,Google Compute Engine,Terraform,我有一个GoogleCompute实例,由一些Terraform代码定义 provider "google" { credentials = "${file("auth.json")}" project = "aqueous-depth-189023" region = "europe-west2" } resource "google_project" "website" { name = "Website" project_id = "aqueous-
provider "google" {
credentials = "${file("auth.json")}"
project = "aqueous-depth-189023"
region = "europe-west2"
}
resource "google_project" "website" {
name = "Website"
project_id = "aqueous-depth-189023"
}
resource "google_compute_instance" "default" {
name = "website"
machine_type = "n1-standard-1"
zone = "europe-west1-b"
network_interface {
network = "default"
access_config {
// Ephemeral IP
}
}
metadata {
sshKeys = "james:${file("website.pem.pub")}"
}
boot_disk {
initialize_params {
image = "debian-cloud/debian-8"
}
}
}
您还需要定义或,上面的示例使用的源范围为
0.0.0.0/0resource "google_compute_instance" "default" {
name = "website"
machine_type = "n1-standard-1"
zone = "europe-west1-b"
tags = ["web"]
network_interface {
network = "default"
access_config {
// Ephemeral IP
}
}
metadata {
sshKeys = "james:${file("website.pem.pub")}"
}
boot_disk {
initialize_params {
image = "debian-cloud/debian-8"
}
}
}
resource "google_compute_firewall" "default" {
name = "web-firewall"
network = "default"
allow {
protocol = "icmp"
}
allow {
protocol = "tcp"
ports = ["80"]
}
source_ranges = ["0.0.0.0/0"]
target_tags = ["web"]
}