Cleaning dev repo and writing readme in the temp file

dmauser · Nov 2, 2021 · 9d9e7b4 · 9d9e7b4
1 parent 0b4724e
commit 9d9e7b4
Show file tree

Hide file tree

Showing 13 changed files with 19 additions and 1,898 deletions.
diff --git a/.github/workflows/bicepBuild.yml b/.github/workflows/bicepBuild.yml
@@ -4,6 +4,8 @@ name: BicepBuild
 
 on:
   push:
+    #branches:
+    #  - 'master'
     paths:
       - 'bicep/*'
       - ".github/workflows/bicepBuild.yml"
@@ -45,7 +47,7 @@ jobs:
               /home/runner/.azure/bin/bicep build $bicep.FullName --outdir $buildPath
           }
 
-          Copy-Item bicep/*.parameters.* ARM
+          Copy-Item bicep/*.parameters.* ARM -Force
 
 
       - name: ContextCheck

diff --git a/README_test.md b/README_test.md
@@ -20,12 +20,12 @@
 [![Deploy To Azure](https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazure.svg?sanitize=true)](https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2Fdmauser%2Fopnazure%2Fdev_active_active%2FARM%2Fmain-sing-nic.json)
 [![Visualize](https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/visualizebutton.svg?sanitize=true)](http://armviz.io/#/?load=https%3A%2F%2Fraw.githubusercontent.com%2Fdmauser%2Fopnazure%2Fdev_active_active%2FARM%2Fmain-sing-nic.json)
 
-**New VNET + OPNsense Active-Active**
+**New VNET + OPNsense Active-Active (Untrusted/Trusted)**
 
 [![Deploy To Azure](https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazure.svg?sanitize=true)](https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2Fdmauser%2Fopnazure%2Fdev_active_active%2FARM%2Fmain-newvnet-active-active.json)
 [![Visualize](https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/visualizebutton.svg?sanitize=true)](http://armviz.io/#/?load=https%3A%2F%2Fraw.githubusercontent.com%2Fdmauser%2Fopnazure%2Fdev_active_active%2FARM%2Fmain-newvnet-active-active.json)
 
-**Existing VNET + OPNsense Active-Active**
+**Existing VNET + OPNsense Active-Active (Untrusted/Trusted)**
 
 [![Deploy To Azure](https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/deploytoazure.svg?sanitize=true)](https://portal.azure.com/#create/Microsoft.Template/uri/https%3A%2F%2Fraw.githubusercontent.com%2Fdmauser%2Fopnazure%2Fdev_active_active%2FARM%2Fmain-active-active.json)
 [![Visualize](https://raw.githubusercontent.com/Azure/azure-quickstart-templates/master/1-CONTRIBUTION-GUIDE/images/visualizebutton.svg?sanitize=true)](http://armviz.io/#/?load=https%3A%2F%2Fraw.githubusercontent.com%2Fdmauser%2Fopnazure%2Fdev_active_active%2FARM%2Fmain-active-active.json)
@@ -41,12 +41,10 @@ The login credentials are set during the installation process to:
 
 After deployment, you can go to <https://PublicIP>, then input the user and password, to configure the OPNsense firewall.
 
-## Updates (Apr-2021)
-
-- Added all templates on main page for new VNET and existing VNETs for both two NICs and single NIC.
-- Added options to specific your own deployment script and configuration file.
-- Added NSG to support Standard SKU Public and Internal Load Balancer.
+## Updates (Nov-2021)
 
+- Added Active-Active deployment option (using Azure Internal and External Loadbalancer and OPNsense HA settings).
+- Templates are now auto-generated under the folder ARM from a Bicep template using Github Actions.
 
 ## Overview
 
@@ -58,12 +56,20 @@ Here is what you will see when you deploy this Template:
 3) External NIC named Untrusted Linked to Untrusted-Subnet (10.0.0.0/24).
 4) Internal NIC named Trusted Linked to Trusted-Subnet (10.0.1.0/24).
 5) It creates a NSG named OPN-NSG which allows incoming SSH and HTTPS. Same NSG is associated to both Subnets.
+6) For Active-Active a Internal and External loadbalancer will be created.
+7) Two OPNsense firewalls will be created.
+8) OPNsense will be configured to allow loadbalancer probe connection.
+9) OPNsense HA settings will be configured to sync rules changed between both Firewalls.
 
 ## Design
 
 Here is a visual representation of this design of the two NIC deployment:
 
-![opnsense design](./images/OPN-SenseProject.png)
+![opnsense design](./images/two-nics.png)
+
+Here is a visual representation of this design of Active-Active deployment:
+
+![opnsense design](./images/active-active.png)
 
 ## Deployment
 

diff --git a/images/active-active.drawio b/images/active-active.drawio
@@ -0,0 +1 @@
+<mxfile host="Electron" modified="2021-11-02T16:12:28.435Z" agent="5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) draw.io/15.4.0 Chrome/91.0.4472.164 Electron/13.5.0 Safari/537.36" etag="weDvZBuoY5ArpBd0KnPD" version="15.4.0" type="device"><diagram id="aLufnDo3XNvZ-Qc6oPrO" name="Page-1">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</diagram></mxfile>
diff --git a/images/active-active.png b/images/active-active.png
diff --git a/images/two-nics.drawio b/images/two-nics.drawio
@@ -0,0 +1 @@
+<mxfile host="Electron" modified="2021-11-02T16:15:51.698Z" agent="5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) draw.io/15.4.0 Chrome/91.0.4472.164 Electron/13.5.0 Safari/537.36" etag="ZhMIUByOl52abUmtL8Xv" version="15.4.0" type="device"><diagram id="aLufnDo3XNvZ-Qc6oPrO" name="Page-1">7Vpdc+I2FP01PMbjb+AxQJJmmmWZYZtt+sIIW7HVyBaVZT7y61eyZbAsk7BJgG1TMhOkK1mWzrn36EpJxxkm6xsKFvEXEkLcsc1w3XFGHdu2bNPnX8KykRbL90pLRFEobTvDFD1DaTSlNUchzJSOjBDM0EI1BiRNYcAUG6CUrNRujwSrb12ACGqGaQCwbv2OQhaX1p5n7uy/QRTF1ZstU7YkoOosDVkMQrKqmZyrjjOkhLCylKyHEAv0KlzK5673tG4nRmHKDnlg+XyXjr9agztnkjz+9bC5/8dHF5KeJcC5XLCcLNtUCFCSpyEUg5gdZ7CKEYPTBQhE64qTzm0xSzCvWbwYgiwu+opKxih5gkOCCS2Gckz+uebzG+hzl8tZQsrgumaSa7mBJIGMbniXqtWVjiQ9i49e1lc7mvyKjLhGUbfqCKRrRNuxd+jxggTwJ8B0PxjM/fgpMH8AmNtwk2A6LWC6XguY2wc/HEzvPwNm13LODWZXA/PrZHxxP776poEKskWpo49oLVCpY7ggKGXF3LxBxxtxC8AoSrkh4HBBDuwAJYWgDh5JyqSaW/bOPkJJxFeA0Zz/Bs85hWJlKWQrQp9QKtruEWU5wLNxacyMbBmdVFl8T+XP9lqUpavT5x6LvcotGvSNpzcd28f87YM55aVIlC4xJiuOk226riMmk4py8ThKNbKzJ8iCWAbQCZlPsgBA/i05nk1hkFPENrMbHtOLbDbEIMtQcHLqvV4jdB09dJ0W6r2jUW/9T/2JqO/21S3Q1aP+tNTbGvV/pIzmGYPhxTSfc9HUfcAyjeKHv9F2Nc45FOylXTElaUEjwrhh0igXwCKeJl/KhgSFoXhN6zasbtQfvt/arycvVlsmeLREsNrwa9R9O4Q463MT17W8cxN3QAp/jgQpIMkiZ7CWHX0BQYxSeHKZdE1VJr1eX0+O+jplvnssynptO2QG04zDZV4jCldAjPIpIsozu4bXUwjyqyuYswVVFUO/WlApp44qHbkVIz5yyk5/7nCtruH7/d3HVyPNajuTG1WGepKTiP2L6uO/jEq/33YjcGIq9au/ArAiO/mps0JBKqRXS1hyW6BbXXYqKmceoLgYzCGekAwxRFpl9q7RYU4YI0mLDjOyaHOwuqQXtFu93qic8kKsN1lH4i7bKA4qRvHUgqIMGkiB513+4fi24dqKT/RtXaa5T1i+7hP9Y/mEo582NV+AYQSnsprBKOEgXO1MA5iGl+LaXSBenuRUztX9D64R+1OUDc/uyfoDr1/wbNi1pWG0rvUebWqVCaSIr1zQWtgyBiirXi/9aS9bGclpIBf1fT7rPc2WDz0TDNd49Iyv498vZD+x4Bc5rTHWdqtX2SjEgKGl+neFNgrlGyYirGqS4rqGeuPtNI+e5YrkcztX0IdyGlfnzXtHDmMEmTYQRxZsat2kmje9bgvNOxyxrzni9uzLzePb4d6j72c5PDl903BcNUNouag8barn6gLy7QDWrM/Mmu91z82ajn5d5QllMYlICnBd6FWcdn3uiNh2C7z+hoxtZA4HckZUOmvaX1P+qqVd9Pcy8KpIv1t9Vcnsd9+qva8NtEd736CsL21qtQAdbVKQ8G3aNif5HBeF24nmEGfP6svJzW4ns8swpDDLtmn9B4SlazV2xBYlddtC0n5/SLbSdMCR+fBETOri3izs7VF1otTHcfnZyDO3n8a210xfDs+DXhzX7jXYPWJaxKu7/wQpu+/+oca5+gE=</diagram></mxfile>
diff --git a/images/two-nics.png b/images/two-nics.png
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1 @@
		<mxfile host="Electron" modified="2021-11-02T16:12:28.435Z" agent="5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) draw.io/15.4.0 Chrome/91.0.4472.164 Electron/13.5.0 Safari/537.36" etag="weDvZBuoY5ArpBd0KnPD" version="15.4.0" type="device"><diagram id="aLufnDo3XNvZ-Qc6oPrO" name="Page-1">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</diagram></mxfile>