Skip to content

angulo-solido/ipsec-tunnel-tf-module

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

372 Commits
.github
.github
 
 
examples/basic_usage
examples/basic_usage
 
 
.bandit.yml
.bandit.yml
 
 
.flake8
.flake8
 
 
.gitignore
.gitignore
 
 
.isort.cfg
.isort.cfg
 
 
.mdl_config.json
.mdl_config.json
 
 
.pre-commit-config.yaml
.pre-commit-config.yaml
 
 
.prettierignore
.prettierignore
 
 
.yamllint
.yamllint
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
customer_gateway.tf
customer_gateway.tf
 
 
outputs.tf
outputs.tf
 
 
requirements-dev.txt
requirements-dev.txt
 
 
requirements-test.txt
requirements-test.txt
 
 
requirements.txt
requirements.txt
 
 
setup-env
setup-env
 
 
variables.tf
variables.tf
 
 
versions.tf
versions.tf
 
 
vpn_connection.tf
vpn_connection.tf
 
 
vpn_gateway.tf
vpn_gateway.tf
 
 

Repository files navigation

ipsec-tunnel-tf-module

GitHub Build Status

A Terraform module for deploying a an IPSec tunnel VPC.

Usage

module "ipsec_tunnel" {
  source = "github.com/cisagov/ipsec-tunnel-tf-module"

  aws_region            = "us-west-1"
  aws_availability_zone = "b"
  remote_cidr_blocks    = ["10.10.11.0/24"]
  remote_ip             = "1.2.3.4"
  route_table_ids       = ["rtb-0123456789abcdef0", "rtb-0123456789abcdef1"]
  vpc_id                = "vpc-0123456789abcdef0"

  tags = {
    Key1 = "Value1"
    Key2 = "Value2"
  }
}

Examples

Requirements

Name Version
terraform ~> 0.12.0
aws ~> 3.0

Providers

Name Version
aws ~> 3.0

Inputs

Name Description Type Default Required
aws_availability_zone The AWS availability zone where the Virtual Private Gateway is to be deployed (e.g. a, b, c, etc.) string n/a yes
aws_region The AWS region where the Virtual Private Gateway is to be deployed (e.g. us-east-1) string n/a yes
remote_bgp_asn The BGP ASN of the remote (non-AWS) end of the tunnel (e.g. 11111). This value is not used if static_routes_only is true. number 65000 no
remote_cidr_blocks A list of CIDR blocks associated with the remote (non-AWS) end of the tunnel (e.g. [192.168.11.0/24, 10.10.11.0/24]) list(string) n/a yes
remote_ip The public IP of the remote (non-AWS) end of the tunnel (e.g. 1.2.3.4) string n/a yes
route_table_ids A list of ID corresponding to route tables that should route traffic through the VPN/IPSec gateway (e.g. [rtb-0123456789abcdef0, rtb-0123456789abcdef1]) list(string) n/a yes
static_routes_only A boolean value indicating whether the VPN connection uses static routes exclusively. Static routes must be used for devices that don't support BGP. bool true no
tags Tags to apply to all AWS resources created map(string) {} no
vpc_id The ID of the AWS VPC where the Virtual private Gateway is to be deployed (e.g. vpc-0123456789abcdef0) string n/a yes

Outputs

Name Description
remote_gateway_configuration The configuration information for the VPN connection's remote (non-AWS) gateway, in XML format.

Notes

Running pre-commit requires running terraform init in every directory that contains Terraform code. In this repository, these are the main directory and every directory under examples/.

Contributing

We welcome contributions! Please see CONTRIBUTING.md for details.

License

This project is in the worldwide public domain.

This project is in the public domain within the United States, and copyright and related rights in the work worldwide are waived through the CC0 1.0 Universal public domain dedication.

All contributions to this project will be released under the CC0 dedication. By submitting a pull request, you are agreeing to comply with this waiver of copyright interest.

About

Terraform code to create an IPSec tunnel in an AWS VPC

Resources

Readme

License

CC0-1.0 license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Shell 52.1%
  • HCL 47.9%