From e6c8f19d3c5c2e18f07e55dbc8a1ada84533b88a Mon Sep 17 00:00:00 2001 From: Jack Ivanov Date: Tue, 23 May 2017 17:30:57 +0200 Subject: [PATCH] Create a VPC network for each instane (#561) --- roles/cloud-gce/tasks/main.yml | 26 +++++++++++++------------- 1 file changed, 13 insertions(+), 13 deletions(-) diff --git a/roles/cloud-gce/tasks/main.yml b/roles/cloud-gce/tasks/main.yml index bbd9ef2..8737a7e 100644 --- a/roles/cloud-gce/tasks/main.yml +++ b/roles/cloud-gce/tasks/main.yml @@ -10,6 +10,18 @@ service_account_email: "{{ credentials_file_lookup.client_email | default(lookup('env','GCE_EMAIL')) }}" project_id: "{{ credentials_file_lookup.project_id | default(lookup('env','GCE_PROJECT')) }}" + - name: Network configured + gce_net: + name: "algo-{{ server_name }}" + fwname: "algo-{{ server_name }}-fw" + allowed: "udp:500,4500;tcp:22;icmp" + state: "present" + mode: auto + src_range: 0.0.0.0/0 + service_account_email: "{{ credentials_file_lookup.client_email }}" + credentials_file: "{{ credentials_file }}" + project_id: "{{ credentials_file_lookup.project_id }}" + - name: "Creating a new instance..." gce: instance_names: "{{ server_name }}" @@ -20,7 +32,7 @@ credentials_file: "{{ credentials_file_path }}" project_id: "{{ project_id }}" metadata: '{"ssh-keys":"ubuntu:{{ ssh_public_key_lookup }}"}' - # ip_forward: true + network: "algo-{{ server_name }}" tags: - "environment-algo" register: google_vm @@ -35,18 +47,6 @@ cloud_provider: gce ipv6_support: no - - name: Firewall configured - local_action: - module: gce_net - name: "{{ google_vm.instance_data[0].network }}" - fwname: "algo-ikev2" - allowed: "udp:500,4500;tcp:22" - state: "present" - src_range: 0.0.0.0/0 - service_account_email: "{{ credentials_file_lookup.client_email }}" - credentials_file: "{{ credentials_file }}" - project_id: "{{ credentials_file_lookup.project_id }}" - - set_fact: cloud_instance_ip: "{{ google_vm.instance_data[0].public_ip }}"