-
Notifications
You must be signed in to change notification settings - Fork 1
/
variables.tf
126 lines (106 loc) · 3.78 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
variable "region" {
description = "The AWS region to deploy to"
type = string
}
variable "route_public_domain_name" {
description = "Defines if a public DNS name is to be used"
type = bool
default = false
}
variable "instance_type" {
description = "The instance type for the VPN Access Server"
type = string
default = "t3.micro"
}
variable "sleep" {
description = "Stop / Start the VPN instance."
type = bool
default = false
}
variable "openvpn_server_ami" {
description = "The AMI ID of your OpenVPN Access Server image built with packer"
type = string
default = null
}
variable "environment" {
description = "The environment. eg: dev/prod"
type = string
}
variable "resourcetier" {
description = "The resource tier uniquely defining the deployment area. eg: dev/green/blue/main"
type = string
}
variable "pipelineid" {
description = "The pipelineid uniquely defining the deployment instance if using CI. eg: dev/green/blue/main"
type = string
}
variable "conflictkey" {
description = "The conflictkey is a unique name for each deployement usuallly consisting of the resourcetier and the pipeid."
type = string
}
variable "consul_cluster_tag_key" {
description = "The tag the Consul EC2 Instances will look for to automatically discover each other and form a cluster."
type = string
}
variable "consul_cluster_name" {
description = "What to name the Consul server cluster and all of its associated resources"
type = string
}
variable "vpn_cidr" {
description = "The CIDR range that the vpn will assign using DHCP. These are virtual addresses for routing traffic."
type = string
}
variable "onsite_private_subnet_cidr" {
description = "The subnet CIDR Range of your onsite private subnet. This is also the subnet where your VPN client resides in. eg: 192.168.1.0/24"
type = string
}
variable "onsite_public_ip" {
description = "The public ip address of your onsite location to enable access to security groups and openVPN."
type = string
}
variable "aws_key_name" {
description = "The name of the AWS PEM key for access to the instance"
type = string
}
variable "bucket_extension_vault" {
description = "The bucket extension where the terraform remote state resides"
type = string
}
variable "resourcetier_vault" {
description = "The resourcetier the desired vault vpc resides in"
type = string
}
variable "vpcname_vaultvpc" {
description = "A namespace component defining the location of the terraform remote state"
type = string
}
variable "common_tags" {
description = "Common tags for all resources in a deployment run."
type = map(string)
}
variable "combined_vpcs_cidr" {
description = "Terraform will automatically configure multiple VPCs and subnets within this CIDR range for any resourcetier ( dev / green / blue / main )."
type = string
}
variable "security_group_ids" {
description = "A list of security group ids to apply to the VPN instance"
type = list(string)
default = []
}
# variable "sqs_remote_in_vpn" {
# description = "The SQS queue URL for a remote client to observe messages to establish connection with the VPN Server."
# type = string
# }
# variable "host1" {
# description = "The user@publichost string to connect to the bastion host to aquire vpn credentials from Vault."
# type = string
# }
# variable "host2" {
# description = "The user@privatehost string to connect to the vault client to aquire vpn credentials from Vault."
# type = string
# }
variable "vpc_id" {
description = "The ID of the VPC to deploy into. Leave an empty string to use the Default VPC in this region."
type = string
default = null
}