renato-rudnicki · renato-rudnicki · Nov 1, 2024 · Nov 4, 2024 · Nov 6, 2024 · Nov 6, 2024
diff --git a/3-networks-hub-and-spoke/envs/shared/interconnect.tf.example b/3-networks-hub-and-spoke/envs/shared/interconnect.tf.example
@@ -14,50 +14,6 @@
  * limitations under the License.
  */
 
-module "dns_hub_interconnect" {
-  source = "../../modules/dedicated_interconnect"
-
-  vpc_name                = "vpc-net-dns"
-  interconnect_project_id = local.dns_hub_project_id
-
-  region1                                 = local.default_region1
-  region1_router1_name                    = module.dns_hub_region1_router1.router.name
-  region1_interconnect1_candidate_subnets = ["169.254.0.0/29"]
-  region1_interconnect1_vlan_tag8021q     = "3931"
-  region1_interconnect1                   = "https://www.googleapis.com/compute/v1/projects/${local.interconnect_project_id}/global/interconnects/example-interconnect-1"
-  region1_interconnect1_location          = "las-zone1-770"
-  region1_interconnect1_onprem_dc         = "onprem-dc1"
-  region1_router2_name                    = module.dns_hub_region1_router2.router.name
-  region1_interconnect2_candidate_subnets = ["169.254.0.8/29"]
-  region1_interconnect2_vlan_tag8021q     = "3932"
-  region1_interconnect2                   = "https://www.googleapis.com/compute/v1/projects/${local.interconnect_project_id}/global/interconnects/example-interconnect-2"
-  region1_interconnect2_location          = "las-zone1-770"
-  region1_interconnect2_onprem_dc         = "onprem-dc2"
-
-  region2                                 = local.default_region2
-  region2_router1_name                    = module.dns_hub_region2_router1.router.name
-  region2_interconnect1_candidate_subnets = ["169.254.0.16/29"]
-  region2_interconnect1_vlan_tag8021q     = "3933"
-  region2_interconnect1                   = "https://www.googleapis.com/compute/v1/projects/${local.interconnect_project_id}/global/interconnects/example-interconnect-3"
-  region2_interconnect1_location          = "lax-zone2-19"
-  region2_interconnect1_onprem_dc         = "onprem-dc3"
-  region2_router2_name                    = module.dns_hub_region2_router2.router.name
-  region2_interconnect2_candidate_subnets = ["169.254.0.24/29"]
-  region2_interconnect2_vlan_tag8021q     = "3934"
-  region2_interconnect2                   = "https://www.googleapis.com/compute/v1/projects/${local.interconnect_project_id}/global/interconnects/example-interconnect-4"
-  region2_interconnect2_location          = "lax-zone1-403"
-  region2_interconnect2_onprem_dc         = "onprem-dc4"
-
-  peer_asn  = "64515"
-  peer_name = "interconnect-peer"
-
-  cloud_router_labels = {
-    vlan_1 = "cr1",
-    vlan_2 = "cr2",
-    vlan_3 = "cr3",
-    vlan_4 = "cr4"
-  }
-}
 
 module "shared_restricted_interconnect" {
   source = "../../modules/dedicated_interconnect"

diff --git a/3-networks-hub-and-spoke/envs/shared/net-hubs.tf b/3-networks-hub-and-spoke/envs/shared/net-hubs.tf
@@ -240,7 +240,6 @@ module "base_shared_vpc" {
   ]
   secondary_ranges = {}
 
-  depends_on = [module.dns_hub_vpc]
 }
 
 /******************************************
@@ -337,5 +336,4 @@ module "restricted_shared_vpc" {
 
   ingress_policies = var.ingress_policies
 
-  depends_on = [module.dns_hub_vpc]
 }
diff --git a/3-networks-hub-and-spoke/envs/shared/partner_interconnect.tf.example b/3-networks-hub-and-spoke/envs/shared/partner_interconnect.tf.example
@@ -15,37 +15,6 @@
  */
 
 
-module "dns_hub_interconnect" {
-  source = "../../modules/partner_interconnect"
-
-  vpc_name              = "vpc-net-dns"
-  attachment_project_id = local.dns_hub_project_id
-  preactivate           = var.preactivate_partner_interconnect
-
-  region1                         = local.default_region1
-  region1_router1_name            = module.dns_hub_region1_router1.router.name
-  region1_interconnect1_location  = "las-zone1-770"
-  region1_interconnect1_onprem_dc = "onprem-dc-1"
-  region1_router2_name            = module.dns_hub_region1_router2.router.name
-  region1_interconnect2_location  = "las-zone1-770"
-  region1_interconnect2_onprem_dc = "onprem-dc-2"
-
-  region2                         = local.default_region2
-  region2_router1_name            = module.dns_hub_region2_router1.router.name
-  region2_interconnect1_location  = "lax-zone2-19"
-  region2_interconnect1_onprem_dc = "onprem-dc-3"
-  region2_router2_name            = module.dns_hub_region2_router2.router.name
-  region2_interconnect2_location  = "lax-zone1-403"
-  region2_interconnect2_onprem_dc = "onprem-dc-4"
-
-  cloud_router_labels = {
-    vlan_1 = "cr1",
-    vlan_2 = "cr2",
-    vlan_3 = "cr3",
-    vlan_4 = "cr4"
-  }
-}
-
 module "shared_restricted_interconnect" {
   source = "../../modules/partner_interconnect"
 

diff --git a/3-networks-hub-and-spoke/modules/base_shared_vpc/dns.tf b/3-networks-hub-and-spoke/modules/base_shared_vpc/dns.tf
@@ -57,19 +57,19 @@ module "peering_zone" {
 /******************************************
  DNS Forwarding
 *****************************************/
-module "dns-forwarding-zone" {
+module "dns_forwarding_zone" {
   source  = "terraform-google-modules/cloud-dns/google"
   version = "~> 5.0"
 
-  count   = var.mode != "spoke" ? 1 : 0
+  count = var.mode != "spoke" ? 1 : 0
 
   project_id = var.project_id
   type       = "forwarding"
   name       = "fz-dns-hub"
   domain     = var.domain
 
   private_visibility_config_networks = [
-    module.dns_hub_vpc.network_self_link
+    module.main.network_self_link
   ]
-  target_name_server_addresses = data.google_compute_network.vpc_dns_hub.self_link
-}
+  target_network = data.google_compute_network.vpc_dns_hub.self_link
+}
diff --git a/3-networks-hub-and-spoke/modules/base_shared_vpc/main.tf b/3-networks-hub-and-spoke/modules/base_shared_vpc/main.tf
@@ -124,12 +124,12 @@ module "region1_router1" {
   network = module.main.network_name
   region  = var.default_region1
   bgp = {
-    asn                  = var.bgp_asn_subnet
-    advertised_groups    = ["ALL_SUBNETS"]
-    advertised_ip_ranges = [
-      { range = local.private_googleapis_cidr },
-      { range = "35.199.192.0/19" }
-    ]
+    asn               = var.bgp_asn_subnet
+    advertised_groups = ["ALL_SUBNETS"]
+    advertised_ip_ranges = concat(
+      [{ range = local.private_googleapis_cidr }],
+      var.private_service_cidr != null ? [{ range = "35.199.192.0/19" }] : []
+    )
   }
 }
 
@@ -143,12 +143,12 @@ module "region1_router2" {
   network = module.main.network_name
   region  = var.default_region1
   bgp = {
-    asn                  = var.bgp_asn_subnet
-    advertised_groups    = ["ALL_SUBNETS"]
-    advertised_ip_ranges = [
-      { range = local.private_googleapis_cidr },
-      { range = "35.199.192.0/19" }
-    ]
+    asn               = var.bgp_asn_subnet
+    advertised_groups = ["ALL_SUBNETS"]
+    advertised_ip_ranges = concat(
+      [{ range = local.private_googleapis_cidr }],
+      var.private_service_cidr != null ? [{ range = "35.199.192.0/19" }] : []
+    )
   }
 }
 
@@ -162,12 +162,12 @@ module "region2_router1" {
   network = module.main.network_name
   region  = var.default_region2
   bgp = {
-    asn                  = var.bgp_asn_subnet
-    advertised_groups    = ["ALL_SUBNETS"]
-    advertised_ip_ranges = [
-      { range = local.private_googleapis_cidr },
-      { range = "35.199.192.0/19" }
-    ]
+    asn               = var.bgp_asn_subnet
+    advertised_groups = ["ALL_SUBNETS"]
+    advertised_ip_ranges = concat(
+      [{ range = local.private_googleapis_cidr }],
+      var.private_service_cidr != null ? [{ range = "35.199.192.0/19" }] : []
+    )
   }
 }
 
@@ -181,11 +181,11 @@ module "region2_router2" {
   network = module.main.network_name
   region  = var.default_region2
   bgp = {
-    asn                  = var.bgp_asn_subnet
-    advertised_groups    = ["ALL_SUBNETS"]
-    advertised_ip_ranges = [
-      { range = local.private_googleapis_cidr },
-      { range = "35.199.192.0/19" }
-    ]
+    asn               = var.bgp_asn_subnet
+    advertised_groups = ["ALL_SUBNETS"]
+    advertised_ip_ranges = concat(
+      [{ range = local.private_googleapis_cidr }],
+      var.private_service_cidr != null ? [{ range = "35.199.192.0/19" }] : []
+    )
   }
 }
diff --git a/3-networks-hub-and-spoke/modules/restricted_shared_vpc/dns.tf b/3-networks-hub-and-spoke/modules/restricted_shared_vpc/dns.tf
@@ -57,19 +57,19 @@ module "peering_zone" {
 /******************************************
  DNS Forwarding
 *****************************************/
-module "dns-forwarding-zone" {
+module "dns_forwarding_zone" {
   source  = "terraform-google-modules/cloud-dns/google"
   version = "~> 5.0"
 
-  count   = var.mode != "spoke" ? 1 : 0
+  count = var.mode != "spoke" ? 1 : 0
 
   project_id = var.project_id
   type       = "forwarding"
   name       = "fz-dns-hub"
   domain     = var.domain
 
   private_visibility_config_networks = [
-    module.dns_hub_vpc.network_self_link
+    module.main.network_self_link
   ]
-  target_name_server_addresses = data.google_compute_network.vpc_dns_hub.self_link
+  target_network = data.google_compute_network.vpc_dns_hub.self_link
 }
diff --git a/3-networks-hub-and-spoke/modules/restricted_shared_vpc/main.tf b/3-networks-hub-and-spoke/modules/restricted_shared_vpc/main.tf
@@ -128,12 +128,12 @@ module "region1_router1" {
   network = module.main.network_name
   region  = var.default_region1
   bgp = {
-    asn                  = var.bgp_asn_subnet
-    advertised_groups    = ["ALL_SUBNETS"]
-    advertised_ip_ranges = [
-      { range = local.restricted_googleapis_cidr },
-      { range = "35.199.192.0/19" }
-    ]
+    asn               = var.bgp_asn_subnet
+    advertised_groups = ["ALL_SUBNETS"]
+    advertised_ip_ranges = concat(
+      [{ range = local.restricted_googleapis_cidr }],
+      var.private_service_cidr != null ? [{ range = "35.199.192.0/19" }] : []
+    )
   }
 }
 
@@ -147,12 +147,12 @@ module "region1_router2" {
   network = module.main.network_name
   region  = var.default_region1
   bgp = {
-    asn                  = var.bgp_asn_subnet
-    advertised_groups    = ["ALL_SUBNETS"]
-    advertised_ip_ranges = [
-      { range = local.restricted_googleapis_cidr },
-      { range = "35.199.192.0/19" }
-    ]
+    asn               = var.bgp_asn_subnet
+    advertised_groups = ["ALL_SUBNETS"]
+    advertised_ip_ranges = concat(
+      [{ range = local.restricted_googleapis_cidr }],
+      var.private_service_cidr != null ? [{ range = "35.199.192.0/19" }] : []
+    )
   }
 }
 
@@ -166,12 +166,12 @@ module "region2_router1" {
   network = module.main.network_name
   region  = var.default_region2
   bgp = {
-    asn                  = var.bgp_asn_subnet
-    advertised_groups    = ["ALL_SUBNETS"]
-    advertised_ip_ranges = [
-      { range = local.restricted_googleapis_cidr },
-      { range = "35.199.192.0/19" }
-    ]
+    asn               = var.bgp_asn_subnet
+    advertised_groups = ["ALL_SUBNETS"]
+    advertised_ip_ranges = concat(
+      [{ range = local.restricted_googleapis_cidr }],
+      var.private_service_cidr != null ? [{ range = "35.199.192.0/19" }] : []
+    )
   }
 }
 
@@ -185,11 +185,11 @@ module "region2_router2" {
   network = module.main.network_name
   region  = var.default_region2
   bgp = {
-    asn                  = var.bgp_asn_subnet
-    advertised_groups    = ["ALL_SUBNETS"]
-    advertised_ip_ranges = [
-      { range = local.restricted_googleapis_cidr },
-      { range = "35.199.192.0/19" }
-    ]
+    asn               = var.bgp_asn_subnet
+    advertised_groups = ["ALL_SUBNETS"]
+    advertised_ip_ranges = concat(
+      [{ range = local.restricted_googleapis_cidr }],
+      var.private_service_cidr != null ? [{ range = "35.199.192.0/19" }] : []
+    )
   }
 }