You may find familiar providers for AWS\/Azure as highlighted below, as well as Aviatrix<\/p>\n\n\n\n
![\"\"](\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/07\/image-24.png\")
<\/figure>\n\n\n\nOnce you click on the aviatrix link, you will be presented to various different versions of aviatrix providers. Aviatrix is constantly improving it’s product and adding new features, as such new APIs are added\/modified\/removed, which resulting different versions of terraform providers. Refer to this link<\/a> for the relationship between Aviatrix provider and Aviatrix controller. It’s important to match the Aviatrix provider to version of your controller.<\/p>\n\n\n\n Understanding with newer version of terraform (v0.13 and above), the required provider section will define which version of providers terraform will use<\/p>\n\n\n\n It’s also important to understand the effect of version = “”<\/mark> portion<\/p>\n\n\n\n If you further click through a version in release.hashicorp.com page, you will see list of .zip files ended with various platform names. As you can see some are for freebsd, and some are for linux and some are for windows, and we have 386\/arm\/am64 architecture etc.<\/p>\n\n\n\n By default, terraform will look at your configuration, find out what provider and which version you intended to use, also figure out what OS and CPU architecture you are on, then it will download specific zip file and extract it under your terraform projects folder.<\/p>\n\n\n\n Eg: I’m running Ubuntu 64 bits under WSL2 and I have this version restriction: version = “>= 2.18.0, < 2.20.0”<\/p>\n\n\n\n Under current terraform folder “project1” it created following structure<\/p>\n\n\n\n \/project1.terraform\/providers\/registry.terraform.io\/aviatrixsystems\/aviatrix\/2.19.5\/linux_amd64<\/p>\n\n\n\n This is called Unpacked layout<\/strong>, as the zip file was extracted, in the format of: HOSTNAME\/NAMESPACE\/TYPE\/VERSION\/TARGET Structure of the folder:<\/p>\n\n\n\n Running tcpdump while doing terraform init shows:<\/p>\n\n\n\n Given the users are in China and certain DNS query and HTTPs connections may not work as desired, we need to find a way to enable customers to accomplish their self-service portal.<\/p>\n\n\n\n In terraform v0.13 and above, a new command<\/a> has been added to help download the required providers.<\/p>\n\n\n\n For China users, they will need to create a jumpbox that have no problem talking to resolve registry.terraform.io and github.com and objects.githubusercontent.com, and consequently connect to them via HTTPS.<\/p>\n\n\n\n On this jumpbox, create a folder with terraform code like this:<\/p>\n\n\n\n Within the folder, run following command, following example is in Linux environment, and assuming that the jumpbox as the same OS\/CPU Architecture as production terraform instance.<\/p>\n\n\n\n You will observe the folder structure created under \/mnt\/c\/gitrepos\/providers looks like:<\/p>\n\n\n\n C:\\gitrepos\\providers\\registry.terraform.io\\aviatrixsystems\\aviatrix Where: This is called Packed layout<\/strong>, as the providers are download as ZIP not extracted.<\/p>\n\n\n\n I’ve modified my version and ran it three times, note, it downloaded 2.19.5, 2.20.1, 2.22.1, and each have corresponding .json file. Content of 2.19.5.json:<\/p>\n\n\n\n Content of inde.json, acting as a lookup index for all versions:<\/p>\n\n\n\n terraform providers mirror<\/strong> command will manage the download of provider ZIP files and these .json files.<\/p>\n\n\n\n Note: If the jumpbox is in different OS\/Architecture as the instance running terraform, you can use -platform=OS_ARCH switch to force terraform to download specific OS\/Architecture binary to target folder. <\/p>\n\n\n\n Eg:<\/p>\n\n\n\n Assume you have downloaded all necessary providers under \/mnt\/c\/gitrepos\/providers, you have to tell terraform to use this folder instead of trying to download provider binaries from Internet:<\/p>\n\n\n\n Under filesystem_mirror section, you tell terraform where the downloaded binaries are, and which provider to use local downloaded binary. In above example, when terraform would use an Aviatrix provider, it will look under \/mnt\/c\/gitrepos\/providers<\/mark>. For any other providers, it will try to download from Internet.<\/p>\n\n\n\n If you would run terraform init after this, it will goes very fast and wireshare will show zero packet left the instance while running terraform init.<\/p>\n\n\n\n Read more <\/a>about this explicit configuration.<\/p>\n","protected":false},"excerpt":{"rendered":" One of our customers are looking to use Aviatrix to automatic their self-service process for AWS China region. The issue they are running into, was the terraform init would fail 50% of time. Is there anything we can do to … Continue reading ![\"\"](\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/07\/image-25.png\")
<\/figure>\n\n\n\nterraform {\n required_providers {\n aviatrix = {\n source = \"AviatrixSystems\/aviatrix\"\n version = \"~> 2.20.1\"<\/mark>\n }\n }\n}<\/code><\/pre>\n\n\n\n![\"\"](\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/07\/image-27.png\")
<\/figure>\n\n\n\nWhat does terraform init<\/strong> do in the background?<\/h2>\n\n\n\n
Initializing provider plugins...\n- Finding aviatrixsystems\/aviatrix versions matching \">= 2.18.0, < 2.20.0\"...\n- Installing aviatrixsystems\/aviatrix v2.19.5...\n- Installed aviatrixsystems\/aviatrix v2.19.5 (signed by a HashiCorp partner, key ID 6105FDDA096C7419)<\/code><\/pre>\n\n\n\n
Where:
HOSTNAME = registry.terraform.io
NAMESPACE = aviatrixsystems
TYPE = aviatrix
VERSION = 2.19.5
TARGET = linux_amd64<\/p>\n\n\n\n![\"\"](\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/07\/image-28-1024x416.png\")
<\/figure>\n\n\n\n![\"\"](\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/07\/image-29-1024x388.png\")
<\/figure>\n\n\n\nsudo tcpdump -i eth0 -s 65535 -w \/mnt\/c\/gitrepos\/project1\/project1.pcap<\/code><\/pre>\n\n\n\nConfigure Terraform to use pre-downloaded providers<\/h2>\n\n\n\n
\n\n\n\nUse Terraform to download providers<\/h3>\n\n\n\n
terraform {\n required_providers {\n aviatrix = {\n source = \"AviatrixSystems\/aviatrix\"\n version = \"2.20.1\"<\/mark>\n }\n }\n}<\/code><\/pre>\n\n\n\nterraform providers mirror [options] <target-dir>\n\nEg:\nterraform providers mirror \/mnt\/c\/gitrepos\/providers<\/mark><\/code><\/pre>\n\n\n\n
HOSTNAME\/NAMESPACE\/TYPE\/terraform-provider_VERSION_TARGET_TYPE.zip<\/p>\n\n\n\n
HOSTNAME = registry.terraform.io
NAMESPACE = aviatrixsystems
TYPE = aviatrix
VERSION_TARGET_TYPE = 2.19.5_linux_amd64<\/p>\n\n\n\n![\"\"](\"https:\/\/cloudlearning365.com\/wp-content\/uploads\/2022\/07\/image-30-1024x428.png\")
<\/figure>\n\n\n\n{\n \"archives\": {\n \"linux_amd64\": {\n \"hashes\": [\n \"h1:9MN1U\/vRiPWBnUNwnF12uSR4pgnVpWoilNahBTWdaLM=\"\n ],\n \"url\": \"terraform-provider-aviatrix_2.19.5_linux_amd64.zip\"\n }\n }\n}<\/code><\/pre>\n\n\n\n{\n \"versions\": {\n \"2.19.5\": {},\n \"2.20.1\": {},\n \"2.22.1\": {}\n }\n}<\/code><\/pre>\n\n\n\nterraform providers mirror -platform linux_amd64<\/mark> \/mnt\/c\/gitrepos\/providers<\/code><\/pre>\n\n\n\nConfigure terraform to use the download providers<\/h3>\n\n\n\n
Easier approach: modify terraform CLI configuration file<\/a><\/h4>\n\n\n\n
Explicit tell terraform location of the downloaded provider binaries<\/h4>\n\n\n\n
provider_installation {\n filesystem_mirror {\n path = \"\/mnt\/c\/gitrepos\/providers<\/mark>\"\n include = [\"AviatrixSystems\/aviatrix\"]\n }\n}<\/code><\/pre>\n\n\n\n- Finding aviatrixsystems\/aviatrix versions matching \"2.22.1\"...\n- Installing aviatrixsystems\/aviatrix v2.22.1...\n- Installed aviatrixsystems\/aviatrix v2.22.1 (unauthenticated)<\/code><\/pre>\n\n\n\n