Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Doesn't support multiple CIDR in Virtual Network #123

Open
sewalshmsft opened this issue Dec 7, 2020 · 1 comment
Open

Doesn't support multiple CIDR in Virtual Network #123

sewalshmsft opened this issue Dec 7, 2020 · 1 comment

Comments

@sewalshmsft
Copy link

I have a customer that would like to use the three tier architecture. The external IPs will be public routable IP address space while everything after the first tier of BIG IPs will be private IP address space.

If I change var.cidr to a tuple ["10.0.1.0/24", "172.16.0.0/24"], the F5 configuration code in three_tier\firewall\bigip.tf lines 402/409 and three_tier\waf\bigip.tf lines 363/390 can't handle a tuple value and require a string.

I'm not fully versed on what those configuration items are doing.
@Mikej81
Copy link
Collaborator

Mikej81 commented Dec 7, 2020

The CIDR is setting the CIDR for the internal Azure VNET, set it to the private IP space only.

Your Public IP's will be distributed by Azure to the PIPs. This template only has ALB on the public side, so if you are using express route, you would need to deploy as is, then replace the ALB with an ILB and set the IPs based on the express route configuration.

For reference: Those lines of code are passing the values to the Declarative Onboarding Templates.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Mikej81 @sewalshmsft