Skip to content

Reference Architecture: NAT Gateway for DOKS and Droplet (#27) #32

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Reference Architecture: NAT Gateway for DOKS and Droplet (#27) #32

wants to merge 1 commit into from

Conversation

@CODEBRAKERBOYY
Copy link

@CODEBRAKERBOYY CODEBRAKERBOYY commented Oct 14, 2025

This PR adds a new reference architecture demonstrating NAT Gateway routing for both DOKS cluster workloads and Droplets.

-- Includes:

  • VPC, NAT Gateway, and DOKS cluster with Routing Agent enabled
  • Droplet configured to route egress via NAT Gateway
  • Route CRD that overrides 0.0.0.0/0 to NAT Gateway gateway IP
  • Terraform modules separated into infra and routes
  • README with apply, verify, and cleanup instructions

-- Verified:

  • terraform fmt and terraform validate passed successfully

@CODEBRAKERBOYY CODEBRAKERBOYY mentioned this pull request Oct 14, 2025
Open
do-joe
do-joe reviewed Oct 30, 2025
View reviewed changes
reference-architectures/nat-gateway/terraform/1-infra/main.tf
ip_range = "10.20.0.0/16"
}

resource "digitalocean_vpc_nat_gateway" "this" {
Copy link
Collaborator

@do-joe do-joe Oct 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hi @CODEBRAKERBOYY thanks for contribution.

This resource config doesn't match the digitalocean_vpc_nat_gateway resource schema. The schema looks like this:

resource "digitalocean_vpc_nat_gateway" "my-vpc-nat-gateway" {
  name   = "terraform-example"
  type   = "PUBLIC"
  region = "nyc3"
  size   = "1"
  vpcs {
    vpc_uuid = digitalocean_vpc.my-vpc.id
  }
  udp_timeout_seconds  = 30
  icmp_timeout_seconds = 30
  tcp_timeout_seconds  = 30
}

https://registry.terraform.io/providers/digitalocean/digitalocean/latest/docs/resources/vpc_nat_gateway

I'm curious if found the schema you used in other docs or where the one you used came from.

@CODEBRAKERBOYY
Copy link
Author

CODEBRAKERBOYY commented Oct 30, 2025

Thanks for the feedback @do-joe
You’re right my configuration didn’t fully align with the current digitalocean_vpc_nat_gateway schema. I’ll update the resource block to match the official format and re-run terraform fmt and terraform validate.
I’ll push the corrected version shortly.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@do-joe do-joe do-joe left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@CODEBRAKERBOYY @do-joe