Skip to content

Setup NAT for API cluster #1272

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Oct 9, 2025
Merged

Setup NAT for API cluster #1272

merged 3 commits into from
Oct 9, 2025

Conversation

jakubno
Copy link
Member

@jakubno jakubno commented Sep 30, 2025
edited by cursor bot
Loading

Note

Adds optional Cloud NAT for API nodes (with manual or auto static IPs), removes public IPs when enabled, and plumbs new variables through modules and Makefile.

  • Network (Terraform):
    • Add Cloud Router and Cloud NAT for API nodes in nomad-cluster/network/main.tf, with MANUAL_ONLY allocation using api_nat_ips or auto-created addresses.
    • Enable NAT logging (errors only) and create-before-destroy lifecycle; parameterize by gcp_region.
  • API Nodepool:
    • Make public IP assignment conditional in nomad-cluster/nodepool-api.tf (access_config removed when api_use_nat is true).
  • Variables & Wiring:
    • Introduce api_use_nat (bool) and api_nat_ips (list) in variables.tf at root, nomad-cluster/variables.tf, and nomad-cluster/network/variables.tf; pass through in main.tf and nomad-cluster/main.tf (including gcp_region to network module).
    • Expose new TF_VARs in iac/provider-gcp/Makefile.

Written by Cursor Bugbot for commit ec06289. This will update automatically on new commits. Configure here.

@jakubno jakubno added the improvement Improvement for current functionality label Sep 30, 2025
@linear Linear
Copy link

linear bot commented Sep 30, 2025

ENG-2304 Setup NAT for our cluster

dobrac
dobrac reviewed Sep 30, 2025
View reviewed changes
jakubno
jakubno commented Sep 30, 2025
View reviewed changes
@jakubno jakubno force-pushed the setup-nat-for-our-cluster-eng-2304 branch from 1f3944d to 9bf2143 Compare October 9, 2025 12:35
@jakubno jakubno marked this pull request as ready for review October 9, 2025 12:37
@jakubno jakubno requested a review from ValentaTomas as a code owner October 9, 2025 12:37
cursor[bot]

This comment was marked as outdated.

Sign in to view

@jakubno jakubno force-pushed the setup-nat-for-our-cluster-eng-2304 branch from ed7949a to 62558f0 Compare October 9, 2025 13:34
@jakubno jakubno requested a review from dobrac October 9, 2025 13:35
cursor[bot]

This comment was marked as outdated.

Sign in to view

@dobrac dobrac self-assigned this Oct 9, 2025
@jakubno jakubno merged commit 1578cca into main Oct 9, 2025
26 checks passed
@jakubno jakubno deleted the setup-nat-for-our-cluster-eng-2304 branch October 9, 2025 14:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cursor cursor[bot] cursor[bot] left review comments

@dobrac dobrac dobrac approved these changes

@ValentaTomas ValentaTomas Awaiting requested review from ValentaTomas ValentaTomas is a code owner

Assignees

@dobrac dobrac

Labels

improvement Improvement for current functionality

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@jakubno @dobrac