vpc-endpoints
dod-iac/vpc-endpoints/aws
Creates a set of VPC endpoints for the given VPC
Install
README
Usage Creates a set of VPC endpoints for the given VPC. ``hcl module "vpc" { source = "terraform-aws-modules/vpc/aws" version = "3.1.0" ... } resource "aws_security_group" "endpoint" { name = format("app-%s-vpc-endpoint", var.application) description = "A security group for PrivateLink endpoints" tags = var.tags vpc_id = module.vpc.vpc_id ingress { from_port = 443 to_port = 443 protocol = "tcp" cidr_blocks = ["0.0.0.0/0"] } egress { from_port = 0 to_port = 0 protocol = "-1" cidr_blocks = ["0.0.0.0/0"] } lifecycle { create_before_destroy = true } } module "vpc_endpoints" { source = "dod-iac/vpc-endpoints/aws" route_table_ids = flatten([ module.vpc.intra_route_table_ids, module.vpc.private_route_table_ids, module.vpc.public_route_table_ids ]) security_group_ids = [aws_security_group.endpoint
Inputs (23)
| Name | Type | Description | Default |
|---|---|---|---|
| vpc_id | string | The ID of the VPC in which the endpoint will be used | |
| enable_cloudwatch_endpoints | bool | Enable VPC endpoints for CloudWatch. | true |
| enable_s3_endpoints | bool | Enable VPC endpoints for S3. | true |
| enable_sqs_endpoints | bool | Enable VPC endpoints for SQS. | true |
| route_table_ids | list(string) | One or more route table IDs. Applicable for endpoints of type Gateway. | [] |
| subnet_ids | list(string) | The ID of one or more subnets in which to create a network interface for the end | [] |
| timeout_update | string | Default timeout for VPC endpoint modifications | "10m" |
| enable_cloudtrail_endpoints | bool | Enable VPC endpoints for CloudTrail. | true |
| enable_ecs_endpoints | bool | Enable VPC endpoints for ECS. | true |
| enable_kms_endpoints | bool | Enable VPC endpoints for KMS. | true |
| enable_sagemaker_endpoints | bool | Enable VPC endpoints for SageMaker. | true |
| enable_sns_endpoints | bool | Enable VPC endpoints for SNS. | true |
| timeout_delete | string | Default timeout for destroying VPC endpoints | "10m" |
| tags | map(string) | Tags applied to the VPC endpoints | {} |
| enable_ecr_endpoints | bool | Enable VPC endpoints for ECR. | true |
| timeout_create | string | Default timeout for creating a VPC endpoint | "10m" |
| enable_athena_endpoints | bool | Enable VPC endpoints for Athena. | true |
| enable_ec2_endpoints | bool | Enable VPC endpoints for EC2. | true |
| enable_lambda_endpoints | bool | Enable VPC endpoints for Lambda. | true |
| enable_ssm_endpoints | bool | Enable VPC endpoints for SSM. | true |
| enable_sts_endpoints | bool | Enable VPC endpoints for STS. | true |
Outputs (2)
endpoint_servicesendpointsResources (1)
Details
Similar packages
Azure landing zones Terraform module
Terraform supermodule for the Terraform platform engineering for Azure
Terraform module to deploy landing zone subscriptions (and much more) in Azure
Terraform Module to define a consistent naming convention by (namespace, stage,