manage_transit_gateway

A role to create/delete a Transit Gateway with VPC/VPN attachments.

Requirements

AWS User Account with the following permission:

manage_transit_gateway_action: Whether to create or delete the transit gateway. Choices: 'create', 'delete'.
manage_transit_gateway_transit_gateway: A dict of parameters needed to create transit gateway. asn: A private Autonomous System Number (ASN) for the Amazon side of a BGP session. tags: A dict of tags for the transit gateway. description: Description for the transit gateway.
manage_transit_gateway_vpc_attachment: A list of dict of parameters to create vpc attachments. name: Name for the VPC attachment. tags: A dict of tags for the attachment. subnets: A list of subnets to be added to the attachment.
manage_transit_gateway_vpn_attachment: A list of dict of parameters to create vpn attachments. customer_gateway_id: Id of the customer gateway.

Create a transit gateway with 2 VPC attachments

hosts: localhost gather_facts: false tasks:
- name: Create transit gateway ansible.builtin.include_role: name: cloud.aws_ops.manage_transit_gateway vars: manage_transit_gateway_action: "create" manage_transit_gateway_transit_gateway: asn: 4200000000 description: "TGW for Cloud team" tags: "team": "cloud" manage_transit_gateway_vpc_attachment: - name: "vpc-attachment-001" tags: "team": "cloud" subnets: - "subnet-xxxx001" - name: "vpc-attachment-002" tags: "team": "cloud" subnets: - "subnet-xxxx002"

Create a transit gateway with VPN attachment

hosts: localhost gather_facts: false tasks:
- name: Create transit gateway ansible.builtin.include_role: name: cloud.aws_ops.manage_transit_gateway vars: manage_transit_gateway_action: "create" manage_transit_gateway_transit_gateway: asn: 4200000000 description: "TGW for Cloud team" tags: "team": "cloud" manage_transit_gateway_vpn_attachment: - customer_gateway_id: "cgw-01b56884848a25446"

GNU General Public License v3.0 or later

See LICENSE to see the full text.