Terraform VMware Cloud Director Provider v3.9.0 is available now, introducing new features and improvements.
Introducing support for Container Service Extension (CSE) v4.0
This new version of the provider incorporates several resources and data sources that will allow users to utilize the Runtime Defined Entity framework:
- rde_interface resource and data source, which allows providers to manage and fetch Runtime Defined Entity Interfaces
- rde_type resource and data source, which allows providers to manage and fetch Runtime Defined Entity Types
- rde resource and data source, which allows providers and tenants to manage and fetch Runtime Defined Entities
With the addition of these, Terraform users will be able to install the Container Service Extension v4.0 in VCD 10.4+ by following a new guide complemented with some examples that can be customized and applied, or simply used as a starting point.
The proposed examples build the required elements for CSE v4.0 to work:
- Organizations, VDCs and a basic networking setup with ALB, that users can enhance
- Runtime Defined Entity Types and their corresponding instances to be able to configure the CSE Server and the TKGm clusters
- Global roles, roles, rights bundles and users
- VM Sizing Policies required by the TKGm clusters
- Catalogs and OVAs
- Deploys the CSE Server vApp
Once installed, tenant users can provision and manage Tanzu Kubernetes Grid Multi-cloud (TKGm) clusters using the UI as usual.
Extending NSX-T capabilities
With this release, the features related to NSX-T keep growing:
NSX-T Edge Gateway automatic IP Allocation management
Before this feature was released, NSX-T Edge Gateways would need to be configured by using static IP pools. Since v3.9.0, they can now allocate IPs automatically by specifying a number of IPs that can be allocated per subnet, or per any subnet. You can read more here.
New NSX-T resources and data sources
- Added new DHCP Bindings resource for NSX-T Organization VDC networks. This will allow users to bind MAC addresses to IPv4 addresses inside an Organization VDC network
- Added Distributed Virtual Port Group (DVPG) backed network support for NSX-T Imported Network resource
- Introduced NSX-T Edge Gateway Rate Limiting resource. This will allow Edge Gateways to consume NSX-T QoS (Quality of Service) profiles to limit outbound and inbound traffic
NSX-T improvements
- Added support for Remote ID and Certificate Authentication in NSX-T IPSec VPN
- Added support for DNS settings in NSX-T backed External Networks
New NSX-V features
For those using NSX-V in their VMware Cloud Director appliances, this new version of the provider adds support for Distributed Firewall in NSX-V VDCs. This will allow users to segment their VDC entities, such as VMs, Edge Gateways, Networks, etc, based on several attributes, by creating layer 3 rules.
Introducing latest VCD features
- Added support for authenticating the provider using an Active Service Account, available since VCD 10.4.0
- Introduced VCD 10.4 ALB enhancements (Transparent Mode, Pool Group Membership, IPv6 Service network)
- Added an easy way to power off vApps when destroying vApp Network or vApp Org Network (needed for VCD 10.4.1+)
New community driven additions
Our valuable community has also helped us to introduce several cool features into this release:
- The existing VM resource got a new attribute to manage Security Tags. This improvement complements the existing Security Tag resource, so users
can choose between adding the Security Tags to a VM that is not created yet by using this new VM resource attribute, or adding security tags to an existing VM with the Security Tag resource, for example - OAUTH provider type support in VCD Org Group resource
And, as always, we are awaiting your feedback and suggestions in GitHub Issues and #vcd-terraform-dev Slack channel (vmwarecode.slack.com).
