1apiVersion: apiextensions.k8s.io/v1
2kind: CustomResourceDefinition
3metadata:
4 annotations:
5 cnrm.cloud.google.com/version: 0.0.0-dev
6 creationTimestamp: null
7 labels:
8 cnrm.cloud.google.com/managed-by-kcc: "true"
9 cnrm.cloud.google.com/stability-level: stable
10 cnrm.cloud.google.com/system: "true"
11 cnrm.cloud.google.com/tf2crd: "true"
12 name: computevpntunnels.compute.cnrm.cloud.google.com
13spec:
14 group: compute.cnrm.cloud.google.com
15 names:
16 categories:
17 - gcp
18 kind: ComputeVPNTunnel
19 plural: computevpntunnels
20 shortNames:
21 - gcpcomputevpntunnel
22 - gcpcomputevpntunnels
23 singular: computevpntunnel
24 preserveUnknownFields: false
25 scope: Namespaced
26 versions:
27 - additionalPrinterColumns:
28 - jsonPath: .metadata.creationTimestamp
29 name: Age
30 type: date
31 - description: When 'True', the most recent reconcile of the resource succeeded
32 jsonPath: .status.conditions[?(@.type=='Ready')].status
33 name: Ready
34 type: string
35 - description: The reason for the value in 'Ready'
36 jsonPath: .status.conditions[?(@.type=='Ready')].reason
37 name: Status
38 type: string
39 - description: The last transition time for the value in 'Status'
40 jsonPath: .status.conditions[?(@.type=='Ready')].lastTransitionTime
41 name: Status Age
42 type: date
43 name: v1beta1
44 schema:
45 openAPIV3Schema:
46 properties:
47 apiVersion:
48 description: 'apiVersion defines the versioned schema of this representation
49 of an object. Servers should convert recognized schemas to the latest
50 internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources'
51 type: string
52 kind:
53 description: 'kind is a string value representing the REST resource this
54 object represents. Servers may infer this from the endpoint the client
55 submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds'
56 type: string
57 metadata:
58 type: object
59 spec:
60 properties:
61 description:
62 description: Immutable. An optional description of this resource.
63 type: string
64 ikeVersion:
65 description: |-
66 Immutable. IKE protocol version to use when establishing the VPN tunnel with
67 peer VPN gateway.
68 Acceptable IKE versions are 1 or 2. Default version is 2.
69 type: integer
70 localTrafficSelector:
71 description: |-
72 Immutable. Local traffic selector to use when establishing the VPN tunnel with
73 peer VPN gateway. The value should be a CIDR formatted string,
74 for example '192.168.0.0/16'. The ranges should be disjoint.
75 Only IPv4 is supported.
76 items:
77 type: string
78 type: array
79 peerExternalGatewayInterface:
80 description: Immutable. The interface ID of the external VPN gateway
81 to which this VPN tunnel is connected.
82 type: integer
83 peerExternalGatewayRef:
84 description: |-
85 The peer side external VPN gateway to which this VPN tunnel
86 is connected.
87 oneOf:
88 - not:
89 required:
90 - external
91 required:
92 - name
93 - not:
94 anyOf:
95 - required:
96 - name
97 - required:
98 - namespace
99 required:
100 - external
101 properties:
102 external:
103 description: 'Allowed value: The `selfLink` field of a `ComputeExternalVPNGateway`
104 resource.'
105 type: string
106 name:
107 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
108 type: string
109 namespace:
110 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
111 type: string
112 type: object
113 peerGCPGatewayRef:
114 description: |-
115 The peer side HA GCP VPN gateway to which this VPN tunnel is
116 connected. If provided, the VPN tunnel will automatically use the
117 same VPN gateway interface ID in the peer GCP VPN gateway.
118 oneOf:
119 - not:
120 required:
121 - external
122 required:
123 - name
124 - not:
125 anyOf:
126 - required:
127 - name
128 - required:
129 - namespace
130 required:
131 - external
132 properties:
133 external:
134 description: 'Allowed value: The `selfLink` field of a `ComputeVPNGateway`
135 resource.'
136 type: string
137 name:
138 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
139 type: string
140 namespace:
141 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
142 type: string
143 type: object
144 peerIp:
145 description: Immutable. IP address of the peer VPN gateway. Only IPv4
146 is supported.
147 type: string
148 region:
149 description: Immutable. The region where the tunnel is located. If
150 unset, is set to the region of 'target_vpn_gateway'.
151 type: string
152 remoteTrafficSelector:
153 description: |-
154 Immutable. Remote traffic selector to use when establishing the VPN tunnel with
155 peer VPN gateway. The value should be a CIDR formatted string,
156 for example '192.168.0.0/16'. The ranges should be disjoint.
157 Only IPv4 is supported.
158 items:
159 type: string
160 type: array
161 resourceID:
162 description: Immutable. Optional. The name of the resource. Used for
163 creation and acquisition. When unset, the value of `metadata.name`
164 is used as the default.
165 type: string
166 routerRef:
167 description: The router to be used for dynamic routing.
168 oneOf:
169 - not:
170 required:
171 - external
172 required:
173 - name
174 - not:
175 anyOf:
176 - required:
177 - name
178 - required:
179 - namespace
180 required:
181 - external
182 properties:
183 external:
184 description: 'Allowed value: The `selfLink` field of a `ComputeRouter`
185 resource.'
186 type: string
187 name:
188 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
189 type: string
190 namespace:
191 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
192 type: string
193 type: object
194 sharedSecret:
195 description: |-
196 Immutable. Shared secret used to set the secure session between the Cloud VPN
197 gateway and the peer VPN gateway.
198 oneOf:
199 - not:
200 required:
201 - valueFrom
202 required:
203 - value
204 - not:
205 required:
206 - value
207 required:
208 - valueFrom
209 properties:
210 value:
211 description: Value of the field. Cannot be used if 'valueFrom'
212 is specified.
213 type: string
214 valueFrom:
215 description: Source for the field's value. Cannot be used if 'value'
216 is specified.
217 properties:
218 secretKeyRef:
219 description: Reference to a value with the given key in the
220 given Secret in the resource's namespace.
221 properties:
222 key:
223 description: Key that identifies the value to be extracted.
224 type: string
225 name:
226 description: Name of the Secret to extract a value from.
227 type: string
228 required:
229 - name
230 - key
231 type: object
232 type: object
233 type: object
234 targetVPNGatewayRef:
235 description: |-
236 The ComputeTargetVPNGateway with which this VPN tunnel is
237 associated.
238 oneOf:
239 - not:
240 required:
241 - external
242 required:
243 - name
244 - not:
245 anyOf:
246 - required:
247 - name
248 - required:
249 - namespace
250 required:
251 - external
252 properties:
253 external:
254 description: 'Allowed value: The `selfLink` field of a `ComputeTargetVPNGateway`
255 resource.'
256 type: string
257 name:
258 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
259 type: string
260 namespace:
261 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
262 type: string
263 type: object
264 vpnGatewayInterface:
265 description: Immutable. The interface ID of the VPN gateway with which
266 this VPN tunnel is associated.
267 type: integer
268 vpnGatewayRef:
269 description: |-
270 The ComputeVPNGateway with which this VPN tunnel is associated.
271 This must be used if a High Availability VPN gateway resource is
272 created.
273 oneOf:
274 - not:
275 required:
276 - external
277 required:
278 - name
279 - not:
280 anyOf:
281 - required:
282 - name
283 - required:
284 - namespace
285 required:
286 - external
287 properties:
288 external:
289 description: 'Allowed value: The `selfLink` field of a `ComputeVPNGateway`
290 resource.'
291 type: string
292 name:
293 description: 'Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names'
294 type: string
295 namespace:
296 description: 'Namespace of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/'
297 type: string
298 type: object
299 required:
300 - region
301 - sharedSecret
302 type: object
303 status:
304 properties:
305 conditions:
306 description: Conditions represent the latest available observation
307 of the resource's current state.
308 items:
309 properties:
310 lastTransitionTime:
311 description: Last time the condition transitioned from one status
312 to another.
313 type: string
314 message:
315 description: Human-readable message indicating details about
316 last transition.
317 type: string
318 reason:
319 description: Unique, one-word, CamelCase reason for the condition's
320 last transition.
321 type: string
322 status:
323 description: Status is the status of the condition. Can be True,
324 False, Unknown.
325 type: string
326 type:
327 description: Type is the type of the condition.
328 type: string
329 type: object
330 type: array
331 creationTimestamp:
332 description: Creation timestamp in RFC3339 text format.
333 type: string
334 detailedStatus:
335 description: Detailed status message for the VPN tunnel.
336 type: string
337 labelFingerprint:
338 description: |-
339 The fingerprint used for optimistic locking of this resource. Used
340 internally during updates.
341 type: string
342 observedGeneration:
343 description: ObservedGeneration is the generation of the resource
344 that was most recently observed by the Config Connector controller.
345 If this is equal to metadata.generation, then that means that the
346 current reported status reflects the most recent desired state of
347 the resource.
348 type: integer
349 selfLink:
350 type: string
351 sharedSecretHash:
352 description: Hash of the shared secret.
353 type: string
354 tunnelId:
355 description: The unique identifier for the resource. This identifier
356 is defined by the server.
357 type: string
358 type: object
359 required:
360 - spec
361 type: object
362 served: true
363 storage: true
364 subresources:
365 status: {}
366status:
367 acceptedNames:
368 kind: ""
369 plural: ""
370 conditions: []
371 storedVersions: []
View as plain text