ec2-client-vpn
cloudposse/ec2-client-vpn/aws
Terraform Module
HCL
AWS
Install
module "ec2-client-vpn" {
source = "cloudposse/ec2-client-vpn/aws"
version = "2.0.0"
}
README
The terraform-aws-ec2-client-vpn project provides for ec2 client vpn infrastructure. AWS Client VPN is a managed client-based VPN service based on OpenVPN that enables you to securely access your AWS resources and resources in your on-premises network. With Client VPN, you can access your resources from any location using any OpenVPN-based VPN client. > [!TIP] > #### 👽 Use Atmos with Terraform > Cloud Posse uses atmos to easily orchestrate multiple environments using Terraform. > Works with Github Actions, Atlantis, or Spacelift. > > > Watch demo of using Atmos with Terraform > > Example of running atmos to manage infrastructure from our Quick Start tutorial. > Usage For a complete example, see examples/complete. For automated tests of the complete example using bats and Terratest (which t
Inputs (50)
| Name | Type | Description | Default |
|---|---|---|---|
| client_cidr | string | Network CIDR to use for clients | |
| logging_stream_name | string | Names of stream used for logging | |
| organization_name | string | Name of organization to use in private certificate | |
| vpc_id | string | ID of VPC to attach VPN to | |
| security_group_description | string | The description to assign to the created Security Group. Warning: Changing the d | null |
| root_common_name | string | Unique Common Name for Root self-signed certificate | null |
| self_service_saml_provider_arn | string | The ARN of the IAM SAML identity provider for the self service portal if type is | null |
| create_security_group | bool | Set `true` to create and configure a new security group. If false, `associated_s | true |
| stage | string | ID element. Usually used to indicate role, e.g. 'prod', 'staging', 'source', 'bu | null |
| allowed_security_group_ids | list(string) | A list of IDs of Security Groups to allow access to the security group created b | [] |
| security_group_create_timeout | string | How long to wait for the security group to be created. | "10m" |
| security_group_delete_timeout | string | How long to retry on `DependencyViolation` errors during security group deletion | "15m" |
| additional_routes | list(object({ destination_ | A list of additional routes that should be attached to the Client VPN endpoint | [] |
| enabled | bool | Set to false to prevent the module from creating any resources | null |
| attributes | list(string) | ID element. Additional attributes (e.g. `workers` or `cluster`) to add to `id`, | [] |
| allowed_ipv6_cidr_blocks | list(string) | A list of IPv6 CIDRs to allow access to the security group created by this modul | [] |
| delimiter | string | Delimiter to be used between ID elements. Defaults to `-` (hyphen). Set to `""` | null |
| label_key_case | string | Controls the letter case of the `tags` keys (label names) for tags generated by | null |
| allowed_ipv6_prefix_list_ids | list(string) | A list of IPv6 Prefix Lists IDs to allow access to the security group created by | [] |
| client_conf_tmpl_path | string | Path to template file of vpn client exported configuration. Path is relative to | null |
| namespace | string | ID element. Usually an abbreviation of your organization name, e.g. 'eg' or 'cp' | null |
| regex_replace_chars | string | Terraform regular expression (regex) string. Characters matching the regex will | null |
| associated_security_group_ids | list(string) | A list of IDs of Security Groups to associate the VPN endpoints with, in additio | [] |
| server_common_name | string | Unique Common Name for Server self-signed certificate | null |
| … and 10 more inputs | |||
Outputs (10)
full_client_configuration — Client configuration including client certificate and private keylog_group_arn — The ARN of the CloudWatch Log Group used for Client VPN connection logging.log_group_name — The name of the CloudWatch Log Group used for Client VPN connection logging.security_group_arn — The ARN of the security group associated with the Client VPN endpoint.security_group_name — The name of the security group associated with the Client VPN endpoint.vpn_endpoint_dns_name — The DNS Name of the Client VPN Endpoint Connection.client_configuration — VPN Client Configuration data.security_group_id — The ID of the security group associated with the Client VPN endpoint.vpn_endpoint_arn — The ARN of the Client VPN Endpoint Connection.vpn_endpoint_id — The ID of the Client VPN Endpoint Connection.Resources (5)
aws_ec2_client_vpn_authorization_ruleaws_ec2_client_vpn_endpointaws_ec2_client_vpn_network_associationaws_ec2_client_vpn_routeaws_iam_saml_provider
Details
FrameworkTerraform Module
LanguageHCL
Version2.0.0
Cloud AWS
★ Stars53
Forks36
Total downloads376.8k
Inputs50
Outputs10
Resources5
Examples1
LicenseApache-2.0
Namespacecloudposse
Updated