geekzter/isolated-aks.tf

## isolated-aks.tf
resource azurerm_kubernetes_cluster aks {
  # ...

  addon_profile {
    # ...
    # 3. Ingress via Application Gateway
    ingress_application_gateway {
      enabled                  = true
      subnet_id                = var.application_gateway_subnet_id
    }
  }

  network_profile {
    # ...
    # 4a. Egress via Azure Firewall
    outbound_type              = "userDefinedRouting"
  }

  # 1. Private Cluster
  private_cluster_enabled      = true

  default_node_pool {
    # ...
    # 3. Ingress via Application Gateway
    # 4. Egress via Azure Firewall
    enable_node_public_ip      = false
  }

}
	resource azurerm_kubernetes_cluster aks {
	# ...

	addon_profile {
	# ...
	# 3. Ingress via Application Gateway
	ingress_application_gateway {
	enabled = true
	subnet_id = var.application_gateway_subnet_id
	}
	}

	network_profile {
	# ...
	# 4a. Egress via Azure Firewall
	outbound_type = "userDefinedRouting"
	}

	# 1. Private Cluster
	private_cluster_enabled = true

	default_node_pool {
	# ...
	# 3. Ingress via Application Gateway
	# 4. Egress via Azure Firewall
	enable_node_public_ip = false
	}

	}