From 1c26c4401b07048d3ca040216cefb75fcfa4fd46 Mon Sep 17 00:00:00 2001
From: James Hackett <jamesthackett1@gmail.com>
Date: Thu, 4 Jan 2024 01:39:28 +0000
Subject: [PATCH] Create bastion host for network wide ingress

---
 jobs/user-vms/bastion.hcl | 50 +++++++++++++++++++++++++++++++++++++++
 1 file changed, 50 insertions(+)
 create mode 100644 jobs/user-vms/bastion.hcl

diff --git a/jobs/user-vms/bastion.hcl b/jobs/user-vms/bastion.hcl
new file mode 100644
index 0000000..88d82a4
--- /dev/null
+++ b/jobs/user-vms/bastion.hcl
@@ -0,0 +1,50 @@
+job "bastion-vm" {
+  datacenters = ["aperture"]
+
+  group "bastion-vm" {
+
+    network {
+      mode = "host"
+    }
+
+    service {
+      name = "bastion-vm"
+    }
+
+    task "bastion-vm" {
+      constraint {
+        attribute = "${attr.unique.hostname}"
+        value = "chell"
+      }
+
+      resources {
+        cpu = 12000
+        memory = 4096
+      }
+
+      artifact {
+        source = "http://10.10.0.5:8000/base-images/debian-12-genericcloud-amd64-30G.qcow2"
+        destination = "local/bastion-vm.qcow2"
+        mode = "file"
+      }
+
+      driver = "qemu"
+
+      config {
+        image_path = "local/bastion-vm.qcow2"
+        accelerator = "kvm"
+        drive_interface = "virtio"
+
+        args = [
+          "-netdev",
+          "bridge,id=hn0",
+          "-device",
+          "virtio-net-pci,netdev=hn0,id=nic1,mac=52:54:84:ba:49:02",
+          "-smbios",
+          "type=1,serial=ds=nocloud-net;s=http://10.10.0.5:8000/bastion-vm/",
+        ]
+      }
+    }
+  }
+}
+