allowing custom port

chasezheng · chasezheng · commit 05ea3924a110 · 2022-05-30T14:23:42.000+02:00
diff --git a/main.tf b/main.tf
@@ -15,12 +15,12 @@ resource "google_compute_firewall" "allow-ingress-to-openvpn-server" {
 
   allow {
     protocol = "tcp"
-    ports    = ["1194", "22"]
+    ports    = [var.server_port, "22"]
   }
 
   allow {
     protocol = "udp"
-    ports    = ["1194"]
+    ports    = [var.server_port]
   }
 
   source_ranges = ["0.0.0.0/0"]
@@ -75,6 +75,8 @@ resource "google_compute_instance" "openvpn_server" {
     %{if length(var.dns_servers) > 1~}
     export DNS2="${var.dns_servers[1]}"
     %{endif~}
+    export PORT_CHOICE=2
+    export PORT=${var.server_port}
     /home/${var.remote_user}/openvpn-install.sh
   SCRIPT
 
@@ -109,11 +111,6 @@ resource "google_compute_instance" "openvpn_server" {
     concat(var.tags, tolist(google_compute_firewall.allow-ingress-to-openvpn-server.target_tags))
   )
 
-
-  lifecycle {
-    create_before_destroy = "true"
-  }
-
   provisioner "local-exec" {
     command = "ssh-keygen -R \"${self.network_interface[0].access_config[0].nat_ip}\" || true"
     when    = destroy
diff --git a/variables.tf b/variables.tf
@@ -99,3 +99,8 @@ variable "dns_servers" {
     error_message = "The variable 'var.dns_servers' should be an array with 1 or 2 DNS entries only."
   }
 }
+
+variable "server_port" {
+  default = 1194
+  type    = number
+}

Original file line number	Diff line number	Diff line change
`@@ -99,3 +99,8 @@ variable "dns_servers" {`
`99`	`99`	`error_message = "The variable 'var.dns_servers' should be an array with 1 or 2 DNS entries only."`
`100`	`100`	`}`
`101`	`101`	`}`
	`102`	`+`
	`103`	`+variable "server_port" {`
	`104`	`+ default = 1194`
	`105`	`+ type = number`
	`106`	`+}`