vpn

clouddrove/vpn/aws

Terraform Module HCL AWS

Terraform module is used to create VPN resource on AWS for network connectivity.

Install

module "vpn" {

source = "clouddrove/vpn/aws"

version = "2.0.0"

}

plain text: /constructs/tfmod-clouddrove-vpn-aws/install.txt

⭐ Source on GitHub 📦 Registry page

README

Terraform AWS VPN Terraform module is used to create VPN resource on AWS for network connectivity.. We eat, drink, sleep and most importantly love DevOps. We are working towards strategies for standardizing architecture while ensuring security for the infrastructure. We are strong believer of the philosophy Bigger problems are always solved by breaking them into smaller manageable problems . Resonating with microservices architecture, it is considered best-practice to run database, cluster, storage in smaller connected yet manageable pieces within the infrastructure. This module is basically combination of Terraform open source and includes automatation tests and examples. It also helps to create and improve your infrastructure with minimalistic code instead of maintaining the whole infras

Inputs (50)

Name	Type	Description	Default
customer_ip_address	string	The IP of the Customer Gateway.	required
vpc_id	string	The id of the VPC where the VPN Gateway lives.	required
tunnel2_rekey_fuzz_percentage	number	(Optional, Default 100) The percentage of the rekey window for the second VPN tu	`null`
local_ipv4_network_cidr	string		`"0.0.0.0/0"`
tunnel1_phase1_integrity_algorithms	list(string)	Optional) One or more integrity algorithms that are permitted for the first VPN	`[ "SHA1" ]`
tunnel1_ike_versions	list(string)	(Optional) The IKE versions that are permitted for the first VPN tunnel. Valid v	`null`
tunnel2_inside_cidr	string	The CIDR block of the inside IP addresses for the second VPN tunnel.	`""`
transit_gateway_id	string	The ID of the Transit Gateway.	`null`
local_ipv6_network_cidr	string	(Optional) The IPv6 CIDR on the customer gateway (on-premises) side of the VPN c	`null`
tunnel1_startup_action	string	(Optional, Default clear) The action to take after DPD timeout occurs for the fi	`"add"`
tunnel2_preshared_key	string	The preshared key of the second VPN tunnel.	`""`
tunnel2_phase2_lifetime_seconds	number	(Optional, Default 3600) The lifetime for phase 2 of the IKE negotiation for the	`null`
certificate_arn	string	certificate_arn (e.g. '').	`""`
enable_vpn_connection	bool	Set to false to prevent the creation of a VPN Connection.	`true`
tunnel1_dpd_timeout_seconds	number	(Optional, Default 30) The number of seconds after which a DPD timeout occurs fo	`null`
tunnel2_startup_action	string	(Optional, Default add) The action to take when the establishing the tunnel for	`null`
tunnel1_phase2_integrity_algorithms	list(string)	Optional) One or more integrity algorithms that are permitted for the first VPN	`[ "SHA1" ]`
tunnel1_rekey_margin_time_seconds	number	(Optional, Default 540) The margin time, in seconds, before the phase 2 lifetime	`null`
tunnel_inside_ip_version	string	(Optional) Indicate whether the VPN tunnels process IPv4 or IPv6 traffic. Valid	`"ipv4"`
tunnel2_phase2_encryption_algorithms	list(string)	(Optional) List of one or more encryption algorithms that are permitted for the	`null`
tunnel2_rekey_margin_time_seconds	number	(Optional, Default 540) The margin time, in seconds, before the phase 2 lifetime	`null`
tunnel1_enable_tunnel_lifecycle_control	bool	(Optional) Turn on or off tunnel endpoint lifecycle control feature for the firs	`null`
… and 10 more inputs