infrastructure/main.tf

terraform {
  required_providers {
    proxmox = {
      source = "registry.example.com/telmate/proxmox"
    }
  }
}

provider "proxmox" {
  pm_api_url = "https://10.42.42.42:8006/api2/json"
  pm_tls_insecure = true
}

# For full info see: https://blog.xirion.net/posts/nixos-proxmox-lxc/
resource "proxmox_lxc" "nixos-template" {
  target_node = "nuc"
  description = "NixOS LXC Template"
  hostname = "nixos-template"
  ostemplate = "local:vztmpl/nixos-unstable-default_156198829_amd64.tar.xz"
  ostype = "unmanaged"
  unprivileged = true
  vmid = "101"
  template = true

  memory = 1024

  features {
    nesting = true
  }

  rootfs {
    storage = "local-zfs"
    size = "8G"
  }

  network {
    name = "eth0"
    bridge = "vmbr0"
    ip = "dhcp"
    hwaddr = "22:D7:C1:FF:9D:5F"
  }
}

resource "proxmox_lxc" "vault" {
  target_node = "nuc"
  description = "Vault Secrets Management"
  hostname = "vault"
  unprivileged = true
  vmid = "102"
  clone = "101"

  memory = 1024
  
  rootfs {
    storage = "local-zfs"
    size = "8G"
  }

  network {
    name = "eth0"
    bridge = "vmbr0"
    ip = "dhcp"
    hwaddr = "16:2B:87:55:0C:0C"
  }
}
Initial commit 2021-10-17 11:11:52 +02:00			`terraform {`
			`required_providers {`
			`proxmox = {`
deploy vault node 2021-10-17 15:14:29 +02:00			`source = "registry.example.com/telmate/proxmox"`
Initial commit 2021-10-17 11:11:52 +02:00			`}`
			`}`
			`}`

			`provider "proxmox" {`
			`pm_api_url = "https://10.42.42.42:8006/api2/json"`
added: NixOS Template LXC 2021-10-17 12:04:23 +02:00			`pm_tls_insecure = true`
Initial commit 2021-10-17 11:11:52 +02:00			`}`
added: NixOS Template LXC 2021-10-17 12:04:23 +02:00
			`# For full info see: https://blog.xirion.net/posts/nixos-proxmox-lxc/`
			`resource "proxmox_lxc" "nixos-template" {`
			`target_node = "nuc"`
			`description = "NixOS LXC Template"`
			`hostname = "nixos-template"`
			`ostemplate = "local:vztmpl/nixos-unstable-default_156198829_amd64.tar.xz"`
			`ostype = "unmanaged"`
			`unprivileged = true`
deploy vault node 2021-10-17 15:14:29 +02:00			`vmid = "101"`
			`template = true`

			`memory = 1024`
added: NixOS Template LXC 2021-10-17 12:04:23 +02:00
			`features {`
			`nesting = true`
			`}`

			`rootfs {`
			`storage = "local-zfs"`
			`size = "8G"`
			`}`

			`network {`
			`name = "eth0"`
			`bridge = "vmbr0"`
			`ip = "dhcp"`
deploy vault node 2021-10-17 15:14:29 +02:00			`hwaddr = "22:D7:C1:FF:9D:5F"`
added: NixOS Template LXC 2021-10-17 12:04:23 +02:00			`}`
			`}`

deploy vault node 2021-10-17 15:14:29 +02:00			`resource "proxmox_lxc" "vault" {`
			`target_node = "nuc"`
			`description = "Vault Secrets Management"`
			`hostname = "vault"`
			`unprivileged = true`
			`vmid = "102"`
			`clone = "101"`

			`memory = 1024`

			`rootfs {`
			`storage = "local-zfs"`
			`size = "8G"`
			`}`

			`network {`
			`name = "eth0"`
			`bridge = "vmbr0"`
			`ip = "dhcp"`
			`hwaddr = "16:2B:87:55:0C:0C"`
			`}`
			`}`