Homeβ€ΊTerraform Moduleβ€Ίdatadog-forwarders

datadog-forwarders

clowdhaus/datadog-forwarders/aws

Terraform Module HCL AWS

Terraform module to create resources on AWS to forward logs/metrics to Datadog πŸ‡ΊπŸ‡¦

Install
module "datadog-forwarders" {
source = "clowdhaus/datadog-forwarders/aws"
version = "7.0.1"
}
plain text: /constructs/tfmod-clowdhaus-datadog-forwarders-aws/install.txt
⭐ Source on GitHub πŸ“¦ Registry page
README

AWS Datadog Forwarders Terraform module Terraform module which creates resources to forward logs and metrics to Datadog on AWS. The following resources are supported: - Log Forwarder - RDS Enhanced Monitoring Forwarder - VPC Flow Log Forwarder - Agent PrivateLink VPC Endpoint - API PrivateLink VPC Endpoint - Log Forwarder PrivateLink VPC Endpoint - Metrics PrivateLink VPC Endpoint - Process PrivateLink VPC Endpoint - Traces PrivateLink VPC Endpoint Please refer to the official Datadog datadog-serverless-functions for further information on the forwarder lambda functions, configuraion via environment variables, and integration with PrivateLink endpoints. Security There are several factors to keep in mind when working with and/or using this module that largely revolve around the decisions ma

Inputs (50)
NameTypeDescriptionDefault
create_log_forwarder_role_policyboolControls whether an IAM role policy is created for the log forwardertrue
log_forwarder_namestringLog forwarder lambda name"datadog-log-forwarder"
log_forwarder_architectureslist(string)Instruction set architecture for your Lambda function. Valid values are `["x86_6[ "arm64" ]
rds_em_forwarder_policy_arnstringIAM policy arn for RDS enhanced monitoring forwarder lambda function to utilizenull
create_vpc_fl_forwarder_role_policyboolControls whether an IAM role policy is created for the VPC flow log forwardertrue
create_agent_vpceboolControls whether an agent endpoint should be createdfalse
log_forwarder_vpce_tagsmap(string)A map of tags to apply to the log forwarder endpoint{}
rds_em_forwarder_role_arnstringIAM role arn for RDS enhanced monitoring forwarder lambda function to utilizenull
create_metrics_vpceboolControls whether a metrics VPC endpoint should be createdfalse
metrics_vpce_security_group_idslist(string)IDs of security groups to attach to metrics endpoint[]
processes_vpce_tagsmap(string)A map of tags to apply to the processes endpoint{}
vpc_idstringID of VPC to provision endpoints withinnull
rds_em_forwarder_use_policy_name_prefixboolWhether to use unique name beginning with the specified `rds_em_forwarder_policyfalse
vpc_fl_forwarder_use_role_name_prefixboolWhether to use unique name beginning with the specified `vpc_fl_forwarder_role_nfalse
vpc_fl_forwarder_lambda_tagsmap(string)A map of tags to apply to the VPC flow log forwarder lambda function{}
bucket_encryption_settingsmap(string)S3 bucket server side encryption settings{ "sse_algorithm": "AES256" }
log_forwarder_role_pathstringLog forwarder role pathnull
vpc_fl_forwarder_kms_key_arnstringKMS key that is used to encrypt environment variables. If this configuration is null
agent_vpce_security_group_idslist(string)IDs of security groups to attach to agent endpoint[]
api_vpce_policyanyPolicy to attach to the API endpoint that controls access to the service. Defaulnull
… and 10 more inputs
Outputs (50)
log_forwarder_s3_object_etag β€” The ETag generated for the log forwarder lambda zip object (an MD5 sum of the object content)
log_forwarder_lambda_kms_key_arn β€” (Optional) The ARN for the KMS encryption key for the log forwarder lambda function
vpc_fl_forwarder_role_id β€” The VPC flow log forwarder lambda role id
processes_endpoint_dns_entry β€” DNS entries of the processes VPC endpoint
processes_endpoint_network_interface_ids β€” One or more network interfaces for the processes VPC endpoint
rds_em_forwarder_lambda_arn β€” The ARN of the RDS enhanced monitoring forwarder lambda function
log_forwarder_s3_bucket_domain_name β€” The log forwarder bucket domain name. Will be of format bucketname.s3.amazonaws.com
log_forwarder_role_policy_id β€” The ID of the log forwarder lambda role policy
log_forwarder_lambda_source_code_hash β€” Base64-encoded representation of raw SHA-256 sum of the log forwarder zip file, provided either via
vpc_fl_forwarder_role_unique_id β€” The stable and unique string identifying the VPC flow log forwarder lambda role.
vpc_fl_forwarder_role_policy_name β€” The name of the VPC flow log forwarder lambda role policy
agent_endpoint_dns_entry β€” DNS entries of the agent VPC endpoint
log_forwarder_s3_bucket_id β€” The name of the log forwarder bucket
rds_em_forwarder_lambda_kms_key_arn β€” (Optional) The ARN for the KMS encryption key for the RDS enhanced monitoring forwarder lambda funct
metrics_endpoint_dns_entry β€” DNS entries of the metrics VPC endpoint
traces_endpoint_arn β€” ARN of the traces VPC endpoint
api_endpoint_dns_entry β€” DNS entries of the API VPC endpoint
api_endpoint_owner_id β€” The ID of the AWS account that owns the API VPC endpoint
api_endpoint_state β€” The state of the API VPC endpoint
log_forwarder_s3_bucket_arn β€” The ARN of the log forwarder bucket. Will be of format arn:aws:s3:::bucketname
log_forwarder_role_arn β€” The log forwarder lambda role arn
vpc_fl_forwarder_lambda_qualified_arn β€” The ARN of the VPC flow log forwarder lambda function (if versioning is enabled via publish = true)
agent_endpoint_state β€” The state of the agent VPC endpoint
log_forwarder_endpoint_dns_entry β€” DNS entries of the log forwarder VPC endpoint
traces_endpoint_network_interface_ids β€” One or more network interfaces for the traces VPC endpoint
metrics_endpoint_arn β€” ARN of the metrics VPC endpoint
metrics_endpoint_state β€” The state of the metrics VPC endpoint
rds_em_forwarder_role_unique_id β€” The stable and unique string identifying the RDS enhanced monitoring forwarder lambda role.
log_forwarder_s3_object_version β€” A unique version ID value for the log forwarder lambda zip object, if bucket versioning is enabled
log_forwarder_lambda_version β€” Latest published version of the log forwarder lambda function
… and 20 more outputs
Resources (1)
aws_vpc_endpoint
Topics & Tags
awsdatadog-logsdatadogterraform-moduleaws-datadog
Details
FrameworkTerraform Module
LanguageHCL
Version7.0.1
Cloud AWS
β˜… Stars64
Forks49
Total downloads352.6k
Inputs50
Outputs50
Resources1
Examples2
Submodules3
LicenseApache-2.0
Namespaceclowdhaus
Updated
Similar packages
lz-vending

Terraform module to deploy landing zone subscriptions (and much more) in Azure

β˜… 210terraform-module
avm-ptn-alz

Terraform Azure Verified Pattern Module for Azure Landing Zone

β˜… 122terraform-module
avm-res-keyvault-vault

Terraform Azure Verified Resource Module for Key Vault

β˜… 45terraform-module
next-js

Terraform module for building and deploying Next.js apps to AWS. Supports SSR (L

β˜… 1.5kterraform-module
Tools
βš– Compare with another construct β†’ πŸ“‹ View data schema