globalnetwork
aws-ia/globalnetwork/aws
AWS Global Network Module
An Opinionated Transitive Solution for AWS Customers ``hcl-terraform Solution Created By: Androski Spicer Documentation Written By: Androski Spicer Last Updated: July 2021 `` Table of Contents 1. About This Document 2. Overview 3. Assumptions 4. The Transitive Network 5. The AWS Transit Gateway Repository and modules 6. Implementation Guide 7. Conclusion About This Document This document explains the components of an opinionated transitive solution you can use to deploy multiple configurations of AWS Transit Gateway. For deployment instructions, see CONFIGURURATION-GUIDE.md, also in this repository. Overview This solution contains a set of opinionated Terraform modules that deploy and automate the configuration of one or more transit gateways. The variables.tf file in this repository conta
| Name | Type | Description | Default |
|---|---|---|---|
| transit_gateway_peering | map(bool) | {
"build_complete_mesh": false,
"fra | |
| Business_Unit | string | Your business unit or line of business name | "YourBusinessUnitName" |
| default_route_table_association | map(string) | {
"canada_east": "disable",
"frankfu | |
| tunnel_inside_ip_version | string | "ipv4" | |
| tunnel2_rekey_margin_time_seconds | string | 540 | |
| Application_Name | string | The name of this application. | "aws-fsf-transit-gateway-builder" |
| enable_acceleration | map(bool) | {
"canada_east": false,
"frankfurt": | |
| ram_share_name | string | "shared_networking_resources" | |
| tunnel1_phase1_encryption_algorithms | list | [
"AES128",
"AES256",
"AES128-GCM- | |
| tunnel2_phase1_lifetime_seconds | string | 28800 | |
| tunnel2_rekey_fuzz_percentage | string | 100 | |
| network_manager_name | string | "transit-gateway-network-manager-stack" | |
| tunnel1_rekey_margin_time_seconds | string | 540 | |
| Environment_Type | string | The environment type defaults to PRODUCTION and cannot be changed | "PRODUCTION" |
| how_many_vpn_connections | map(number) | {
"canada_east": 0,
"frankfurt": 0,
| |
| centralized_packet_inspection_enabled | map(bool) | {
"canada_east": false,
"frankfurt": | |
| tunnel2_ike_versions | list | [
"ikev1",
"ikev2"
] | |
| tunnel1_replay_window_size | string | 1024 | |
| vpn_ecmp_support | map(string) | {
"canada_east": "enable",
"frankfur | |
| tunnel1_dpd_timeout_action | string | "clear" | |
| … and 10 more inputs | |||
tokyo_tgw_packet_inspection_route_table_idn_california_tgw_development_route_table_idparis_tgw_shared_services_route_table_idsydney_tgw_packet_inspection_route_table_idireland_tgw_development_route_table_idireland_tgw_production_route_table_idparis_tgw_north_south_route_table_idn_virginia_tgw_north_south_route_table_idparis_tgw_packet_inspection_route_table_idsydney_tgw_development_route_table_idsydney_transit_gateway_idcanada-montreal_tgw_development_route_table_idireland_tgw_shared_services_route_table_idlondon_tgw_packet_inspection_route_table_idohio_tgw_production_route_table_idcanada-montreal_tgw_production_route_table_idn_california_tgw_uat_route_table_idsydney_tgw_north_south_route_table_idsao-paulo_tgw_shared_services_route_table_idcanada_montreal_transit_gateway_idireland_transit_gateway_idn_virginia_tgw_shared_services_route_table_idcanada-montreal_tgw_packet_inspection_route_table_idireland_tgw_packet_inspection_route_table_idsydney_tgw_production_route_table_idohio_transit_gateway_idseoul_transit_gateway_idoregon_tgw_packet_inspection_route_table_idfrankfurt_tgw_development_route_table_idsao-paulo_tgw_packet_inspection_route_table_id