0

我正在使用带有 Terraform 的“Hetzner”提供程序。
我的计划是在 fx 中有这样的东西.auto.tfvars

fw_openings = [
   {
      port = "22",
      protocol = "tcp",
      subnet = "100.100.100.100/32"
   },
   {
      port = "80",
      protocol = "tcp",
      subnet = "0.0.0.0/0"
   }
]

基于fw_openings我想生成这样的东西:

resource "hcloud_firewall" "firewall" {
   rule {
      direction = "in"
      protocol = "tcp"
      port = "22"
      source_ips = [
         "100.100.100.100/32"
      ]
   }
   rule {
      direction = "in"
      protocol = "tcp"
      port = "80"
      source_ips = [
         "0.0.0.0/0"
      ]
   }
}

我确信这是可能的(因为它看起来很微不足道)。但我似乎一直在使用 Terraform 的循环选项绊倒。
什么是正确的解决方案?

4

1 回答 1

2

您可以使用动态块

resource "hcloud_firewall" "firewall" {
   dynamic "rule" {
   
      for_each = var.fw_openings
   
      content {
            direction = "in"
            protocol = rule.value.protocol
            port = rule.value.port
            source_ips = [
                rule.value.subnet
            ]
        }
   }
}
于 2022-02-26T22:46:37.023 回答