feat: nat gateway snat

Author: linyus

CHANGELOG.md

@@ -1,5 +1,14 @@
+## 1.58.0 (Aug 11, 2021)
+
+FEATURES:
+
+* **New Resource**: `tencentcloud_nat_gateway_snat`
+* **New Data Source**: `tencentcloud_nat_gateway_snat`
+
 ## 1.57.3 (Aug 10, 2021)
 
+BUG FIXES:
+
 * Resource `data_source_tc_elasticsearch_instances.go` skip kibana node info record after elastic search instance create
 * Resource `resource_tc_postgresql_instance.go` skip kibana node info record after elastic search instance create
 
@@ -24,14 +33,14 @@ FEATURES:
 
 ## 1.56.15 (July 07, 2021)
 
-BUG FIXES
+BUG FIXES:
 
 * Resource `tencentcloud_tc_kubernetes_cluster` filter the request field of *bandwidth_package_id* when it is null
 * Resource `tencentcloud_tc_kubernetes_node_pool` filter the request field of *bandwidth_package_id* when it is null
 
 ## 1.56.14 (July 06, 2021)
 
-BUG FIXES
+BUG FIXES:
 
 * Resource `tencentcloud_tc_clb_listener` exec the plan will lead the resource rebuild.
 

examples/tencentcloud-nat/main.tf

@@ -1,35 +1,29 @@
-data "tencentcloud_availability_zones" "my_favorate_zones" {}
+data "tencentcloud_availability_zones" "my_zones" {}
 
-data "tencentcloud_images" "my_favorate_image" {
-  image_type = ["PUBLIC_IMAGE"]
-  os_name    = "centos"
+data "tencentcloud_vpc" "my_vpc" {
+  name = "Default-VPC"
 }
 
-# Create VPC and Subnet
-resource "tencentcloud_vpc" "main" {
-  name       = "terraform test"
-  cidr_block = "10.6.0.0/16"
+data "tencentcloud_images" "my_image" {
+  os_name = "centos"
 }
 
-resource "tencentcloud_subnet" "main_subnet" {
-  vpc_id            = tencentcloud_vpc.main.id
-  name              = "terraform test subnet"
-  cidr_block        = "10.6.7.0/24"
-  availability_zone = data.tencentcloud_availability_zones.my_favorate_zones.zones.0.name
+data "tencentcloud_instance_types" "my_instance_types" {
+  cpu_core_count = 1
+  memory_size    = 1
 }
 
 # Create EIP
 resource "tencentcloud_eip" "eip_dev_dnat" {
   name = "terraform_test"
 }
-
 resource "tencentcloud_eip" "eip_test_dnat" {
   name = "terraform_test"
 }
 
 # Create NAT Gateway
 resource "tencentcloud_nat_gateway" "my_nat" {
-  vpc_id         = tencentcloud_vpc.main.id
+  vpc_id         = data.tencentcloud_vpc.my_vpc.id
   name           = "terraform test"
   max_concurrent = 3000000
   bandwidth      = 500
@@ -40,13 +34,40 @@ resource "tencentcloud_nat_gateway" "my_nat" {
   ]
 }
 
-# Create CVM
-resource "tencentcloud_instance" "foo" {
-  availability_zone = data.tencentcloud_availability_zones.my_favorate_zones.zones.0.name
-  image_id          = data.tencentcloud_images.my_favorate_image.images.0.image_id
-  vpc_id            = tencentcloud_vpc.main.id
-  subnet_id         = tencentcloud_subnet.main_subnet.id
-  system_disk_type  = "CLOUD_PREMIUM"
+# Create route_table and entry
+resource "tencentcloud_route_table" "my_route_table" {
+  vpc_id = data.tencentcloud_vpc.my_vpc.id
+  name   = "terraform test"
+}
+resource "tencentcloud_route_table_entry" "my_route_entry" {
+  route_table_id         = tencentcloud_route_table.my_route_table.id
+  destination_cidr_block = "10.0.0.0/8"
+  next_type              = "NAT"
+  next_hub               = tencentcloud_nat_gateway.my_nat.id
+}
+
+# Create Subnet
+resource "tencentcloud_subnet" "my_subnet" {
+  vpc_id            = data.tencentcloud_vpc.my_vpc.id
+  name              = "terraform test"
+  cidr_block        = "172.29.23.0/24"
+  availability_zone = data.tencentcloud_availability_zones.my_zones.zones.0.name
+  route_table_id    = tencentcloud_route_table.my_route_table.id
+}
+
+# Create instance
+resource "tencentcloud_instance" "my_instance" {
+  instance_name              = "terraform test"
+  availability_zone          = data.tencentcloud_availability_zones.my_zones.zones.0.name
+  image_id                   = data.tencentcloud_images.my_image.images.0.image_id
+  instance_type              = data.tencentcloud_instance_types.my_instance_types.instance_types.0.instance_type
+  system_disk_type           = "CLOUD_PREMIUM"
+  system_disk_size           = 50
+  hostname                   = "user"
+  project_id                 = 0
+  vpc_id                     = data.tencentcloud_vpc.my_vpc.id
+  subnet_id                  = tencentcloud_subnet.my_subnet.id
+  internet_max_bandwidth_out = 20
 }
 
 # Add DNAT Entry
@@ -56,7 +77,7 @@ resource "tencentcloud_dnat" "dev_dnat" {
   protocol     = "TCP"
   elastic_ip   = tencentcloud_eip.eip_dev_dnat.public_ip
   elastic_port = "80"
-  private_ip   = tencentcloud_instance.foo.private_ip
+  private_ip   = tencentcloud_instance.my_instance.private_ip
   private_port = "9001"
 }
 
@@ -66,6 +87,31 @@ resource "tencentcloud_dnat" "test_dnat" {
   protocol     = "UDP"
   elastic_ip   = tencentcloud_eip.eip_test_dnat.public_ip
   elastic_port = "8080"
-  private_ip   = tencentcloud_instance.foo.private_ip
+  private_ip   = tencentcloud_instance.my_instance.private_ip
   private_port = "9002"
 }
+
+# Subnet Nat gateway snat
+resource "tencentcloud_nat_gateway_snat" "my_subnet_snat" {
+  nat_gateway_id    = tencentcloud_nat_gateway.my_nat.id
+  resource_type     = "SUBNET"
+  subnet_id         = tencentcloud_subnet.my_subnet.id
+  subnet_cidr_block = tencentcloud_subnet.my_subnet.cidr_block
+  description       = "terraform test"
+  public_ip_addr = [
+    tencentcloud_eip.eip_dev_dnat.public_ip,
+    tencentcloud_eip.eip_test_dnat.public_ip,
+  ]
+}
+
+# NetWorkInterface Nat gateway snat
+resource "tencentcloud_nat_gateway_snat" "my_instance_snat" {
+  nat_gateway_id           = tencentcloud_nat_gateway.my_nat.id
+  resource_type            = "NETWORKINTERFACE"
+  instance_id              = tencentcloud_instance.my_instance.id
+  instance_private_ip_addr = tencentcloud_instance.my_instance.private_ip
+  description              = "terraform test"
+  public_ip_addr = [
+    tencentcloud_eip.eip_dev_dnat.public_ip,
+  ]
+}

tencentcloud/data_source_tc_nat_gateway_snats.go

@@ -0,0 +1,140 @@
+/*
+Use this data source to query detailed information of VPN gateways.
+
+Example Usage
+
+```hcl
+data "tencentcloud_nat_gateway_snats" "snat" {
+  nat_gateway_id     = tencentcloud_nat_gateway.my_nat.id
+  subnet_id          = tencentcloud_nat_gateway_snat.my_subnet.id
+  public_ip_addr     = ["50.29.23.234"]
+  description        = "snat demo"
+  result_output_file = "./snat.txt"
+}
+```
+*/
+package tencentcloud
+
+import (
+	"context"
+	"github.com/hashicorp/terraform-plugin-sdk/helper/schema"
+	vpc "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/vpc/v20170312"
+	"github.com/tencentcloudstack/terraform-provider-tencentcloud/tencentcloud/internal/helper"
+	"log"
+)
+
+func dataSourceTencentCloudNatGatewaySnats() *schema.Resource {
+	return &schema.Resource{
+		Read: dataSourceTencentCloudNatGatewaySnatRead,
+
+		Schema: map[string]*schema.Schema{
+			"nat_gateway_id": {
+				Type:        schema.TypeString,
+				Required:    true,
+				Description: "NAT gateway ID.",
+			},
+			"subnet_id": {
+				Type:        schema.TypeString,
+				Optional:    true,
+				Description: "Subnet instance ID.",
+			},
+			"instance_id": {
+				Type:        schema.TypeString,
+				Optional:    true,
+				Description: "Instance ID.",
+			},
+			"public_ip_addr": {
+				Type:        schema.TypeList,
+				Optional:    true,
+				Elem:        &schema.Schema{Type: schema.TypeString},
+				Description: "Elastic IP address pool.",
+			},
+			"description": {
+				Type:        schema.TypeString,
+				Optional:    true,
+				Description: "Description.",
+			},
+			"result_output_file": {
+				Type:        schema.TypeString,
+				Optional:    true,
+				Description: "Used to save results.",
+			},
+
+			// Computed values
+			"snat_list": {
+				Type:        schema.TypeList,
+				Computed:    true,
+				Description: "Information list of the nat gateway snat.",
+				Elem: &schema.Resource{
+					Schema: NatGatewaySnatPara(),
+				},
+			},
+		},
+	}
+}
+
+func dataSourceTencentCloudNatGatewaySnatRead(d *schema.ResourceData, meta interface{}) error {
+	defer logElapsed("data_source.tencentcloud_nat_gateway_snats.read")()
+
+	var (
+		logId        = getLogId(contextNil)
+		ctx          = context.WithValue(context.TODO(), logIdKey, logId)
+		natGatewayId = d.Get("nat_gateway_id").(string)
+		vpcService   = VpcService{client: meta.(*TencentCloudClient).apiV3Conn}
+	)
+
+	params := make(map[string]string)
+	if v, ok := d.GetOk("subnet_id"); ok {
+		params["resource-id"] = v.(string)
+	}
+	if v, ok := d.GetOk("instance_id"); ok {
+		params["resource-id"] = v.(string)
+	}
+	if v, ok := d.GetOk("public_ip_addr"); ok {
+		params["public-ip-address"] = v.(string)
+	}
+	if v, ok := d.GetOk("description"); ok {
+		params["description"] = v.(string)
+	}
+
+	filters := make([]*vpc.Filter, 0, len(params))
+	for k, v := range params {
+		filter := &vpc.Filter{
+			Name:   helper.String(k),
+			Values: []*string{helper.String(v)},
+		}
+		filters = append(filters, filter)
+	}
+	err, result := vpcService.DescribeNatGatewaySnats(ctx, natGatewayId, filters)
+	if err != nil {
+		log.Printf("[CRITAL]%s read nat gateway snat failed, reason:%s\n ", logId, err.Error())
+		return err
+	}
+	ids := make([]string, len(result))
+	snatList := make([]map[string]interface{}, len(result))
+	for _, snat := range result {
+		m := map[string]interface{}{}
+		m["nat_gateway_id"] = snat.NatGatewayId
+		m["resource_type"] = snat.ResourceType
+		m["public_ip_addr"] = snat.PublicIpAddresses
+		m["description"] = snat.Description
+		m["snat_id"] = snat.NatGatewaySnatId
+		m["create_time"] = snat.CreatedTime
+		snatList = append(snatList, m)
+		ids = append(ids, *snat.NatGatewaySnatId)
+	}
+	d.SetId(helper.DataResourceIdsHash(ids))
+	if e := d.Set("snat_list", snatList); e != nil {
+		log.Printf("[CRITAL]%s provider set nat gateway snat list fail, reason:%s\n ", logId, e.Error())
+		return e
+	}
+
+	output, ok := d.GetOk("result_output_file")
+	if ok && output.(string) != "" {
+		if e := writeToFile(output.(string), snatList); e != nil {
+			return e
+		}
+	}
+
+	return nil
+}