Add azure peering to terraform

Related ticket: https://jira.suse.com/browse/TEAM-9885

Author: BillAnastasiadis

terraform/azure/infrastructure.tf

@@ -313,3 +313,34 @@ resource "azurerm_network_security_group" "mysecgroup" {
     workspace = local.deployment_name
   }
 }
+
+# IBSM
+data "azurerm_virtual_network" "ibsm_vnet" {
+  count               = var.enable_az_vnet_peering ? 1 : 0
+  name                = var.ibsm_vnet_name
+  resource_group_name = var.ibsm_rg
+}
+
+# Peering from the IBSM vnet to deployment vnet
+resource "azurerm_virtual_network_peering" "ibsm_to_target" {
+  count = var.enable_az_vnet_peering ? 1 : 0
+
+  name                      = "${var.ibsm_vnet_name}-${local.vnet_name}"
+  resource_group_name       = var.ibsm_rg
+  virtual_network_name      = data.azurerm_virtual_network.ibsm_vnet[0].name
+  remote_virtual_network_id = azurerm_virtual_network.mynet[0].id
+
+  allow_virtual_network_access = true
+}
+
+# Peering from deployment vnet back to the IBSM vnet
+resource "azurerm_virtual_network_peering" "target_to_ibsm" {
+  count = var.enable_az_vnet_peering ? 1 : 0
+
+  name                      = "${local.vnet_name}-${var.ibsm_vnet_name}"
+  resource_group_name       = local.resource_group_name
+  virtual_network_name      = azurerm_virtual_network.mynet[0].name
+  remote_virtual_network_id = data.azurerm_virtual_network.ibsm_vnet[0].id
+
+  allow_virtual_network_access = true
+}

terraform/azure/variables.tf

@@ -881,3 +881,22 @@ variable "iscsi_remote_python" {
   default     = "/usr/bin/python3"
 }
 
+# Network peering variables
+variable "enable_az_vnet_peering" {
+  description = "Enable VNet peering between the new deployment vnet and ibsm"
+  type        = bool
+  default     = false
+}
+
+variable "ibsm_vnet_name" {
+  description = "Name of the IBSM vnet"
+  type        = string
+  default     = ""
+}
+
+variable "ibsm_rg" {
+  description = "Name of the IBSM resource group"
+  type        = string
+  default     = ""
+}
+