Murat ÖZDEMİR
03ad812512
Overhaul and expand firewall definitions for both `prod` and `test` environments to enable comprehensive inter-subnet communication. This includes implementing explicit rules supporting: - Docker Swarm overlay networks between application and database subnets. - High-availability database clusters (PostgreSQL replication, MongoDB replica sets, Patroni, etcd). - Internal access for various infrastructure services (Vault, Redis, RabbitMQ, APISIX, Prometheus, Grafana). All firewall rule descriptions are standardized in English for improved clarity and consistency. Additionally, update default `server_type_swarm` and `server_type_db` variables to the recommended `CPX` series for both environments. An initial generated Ansible inventory for the test environment is also added.
9 lines
357 B
Plaintext
9 lines
357 B
Plaintext
# Hetzner Cloud Project: iklim_test
|
|
hcloud_token = "YOUR_HETZNER_TEST_PROJECT_API_TOKEN"
|
|
location = "fsn1"
|
|
image = "rocky-10"
|
|
server_type_swarm = "cpx42"
|
|
server_type_db = "cpx42"
|
|
admin_ssh_public_key_path = "~/.ssh/id_ed25519.pub"
|
|
admin_allowed_cidrs = ["1.2.3.4/32", "5.6.7.8/32"]
|