bgp_enable_route_propagation as an option, useful when doing a brown …

…field deployment where an existing firewall is used. Defaults to false
Azure · Nov 11, 2024 · 7c1ef5d · 7c1ef5d
1 parent 429dae8
commit 7c1ef5d
Show file tree

Hide file tree

Showing 4 changed files with 11 additions and 0 deletions.
diff --git a/deploy/terraform/run/sap_landscape/tfvar_variables.tf b/deploy/terraform/run/sap_landscape/tfvar_variables.tf
@@ -98,6 +98,13 @@ variable "network_flow_timeout_in_minutes"      {
                                                   }
                                                 }
 
+variable "network_enable_route_propagation"     {
+                                                  description = "Enable network route table propagation"
+                                                  type = bool
+                                                  nullable = false
+                                                  default = true
+                                                }
+
 variable "use_private_endpoint"                 {
                                                   description = "Boolean value indicating if private endpoint should be used for the deployment"
                                                   default     = false

diff --git a/deploy/terraform/run/sap_landscape/transform.tf b/deploy/terraform/run/sap_landscape/transform.tf
@@ -248,6 +248,7 @@ locals {
                                            name                    = var.network_name
                                            logical_name            = var.network_logical_name
                                            flow_timeout_in_minutes = var.network_flow_timeout_in_minutes
+                                           enable_route_propagation = var.network_enable_route_propagation
                                            arm_id                  = var.network_arm_id
                                            address_space           = tolist(split(",", var.network_address_space))
                                          }

diff --git a/deploy/terraform/terraform-units/modules/sap_landscape/infrastructure.tf b/deploy/terraform/terraform-units/modules/sap_landscape/infrastructure.tf
@@ -147,6 +147,7 @@ resource "azurerm_route_table" "rt" {
                                            var.naming.separator,
                                            local.resource_suffixes.routetable
                                          )
+  bgp_route_propagation_enabled        = local.network_enable_route_propagation
   resource_group_name                  = local.SAP_virtualnetwork_exists ? (
                                            data.azurerm_virtual_network.vnet_sap[0].resource_group_name) : (
                                            azurerm_virtual_network.vnet_sap[0].resource_group_name

diff --git a/deploy/terraform/terraform-units/modules/sap_landscape/variables_local.tf b/deploy/terraform/terraform-units/modules/sap_landscape/variables_local.tf
@@ -98,6 +98,8 @@ locals {
 
   network_flow_timeout_in_minutes                 = var.infrastructure.vnets.sap.flow_timeout_in_minutes
 
+  network_enable_route_propagation                = var.infrastructure.vnets.sap.enable_route_propagation
+
   // By default, Ansible ssh key for SID uses generated public key.
   // Provide sshkey.path_to_public_key and path_to_private_key overides it