Skip to content

Latest commit

 

History

History
44 lines (33 loc) · 4.7 KB

README.md

File metadata and controls

44 lines (33 loc) · 4.7 KB

terraform-azure-mcaf-vwan-s2s

Requirements

Name Version
terraform >= 1.7
azurerm >= 4

Providers

Name Version
azurerm >= 4

Modules

No modules.

Resources

Name Type
azurerm_resource_group.this resource
azurerm_vpn_gateway.this resource
azurerm_vpn_gateway_connection.this resource
azurerm_vpn_site.this resource

Inputs

Name Description Type Default Required
resource_group The Resource Group to add the IP Groups to or create if create_ipg_resource_group is true
object({
name = string
location = string
})
n/a yes
virtual_wan_properties The Virtual WAN properties
object({
virtual_wan_id = string
})
n/a yes
vpn_gateways The VPN Gateway to create
map(object({
name = string
routing_preference = string
scale_unit = number
virtual_hub_id = string
bgp_settings = optional(object({
asn = number
instance_0_bgp_peering_address = optional(string)
instance_1_bgp_peering_address = optional(string)
peer_weight = number
}))
}))
n/a yes
vpn_site_connections n/a
map(object({
name = string
vpn_gateway_name = string
remote_vpn_site_name = string
protocol = optional(string)
ratelimit_enabled = optional(bool)
route_weight = optional(number)
shared_key = optional(string)
local_azure_ip_address_enabled = optional(bool)
policy_based_traffic_selector_enabled = optional(bool)
internet_security_enabled = optional(bool)

vpn_links = list(object({
name = string
# Index of the link on the vpn gateway
vpn_site_link_number = number
bandwidth_mbps = optional(number)
bgp_enabled = optional(bool)
connection_mode = optional(string)

ipsec_policy = optional(object({
dh_group = string
ike_encryption_algorithm = string
ike_integrity_algorithm = string
encryption_algorithm = string
integrity_algorithm = string
pfs_group = string
sa_data_size_kb = string
sa_lifetime_sec = string
}))

custom_bgp_address = optional(list(object({
ip_address = string
ip_configuration_id = string
})))
}))
}))
n/a yes
vpn_sites The VPN Site to create
map(object({
name = string
address_cidrs = optional(list(string))
device_model = optional(string)
device_vendor = optional(string)
links = list(object({
name = string
ip_address = optional(string)
provider_name = optional(string)
speed_in_mbps = optional(number)
bgp_settings = optional(object({
asn = number
bgp_peering_address = string
}))
}))
}))
n/a yes
create_new_resource_group A flag to create a Resource Group for the IP Groups bool true no
tags A map of tags to assign to the resource. map(string) {} no

Outputs

No outputs.