Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/dodevops/terraform-azure-vpn

Highly opinionated VPN management in Azure
https://github.com/dodevops/terraform-azure-vpn

azure-vpn azurerm terraform-module

Last synced: 3 days ago
JSON representation

Highly opinionated VPN management in Azure

Host: GitHub
URL: https://github.com/dodevops/terraform-azure-vpn
Owner: dodevops
License: mit
Created: 2021-05-31T05:44:50.000Z (over 3 years ago)
Default Branch: main
Last Pushed: 2022-08-03T11:51:53.000Z (over 2 years ago)
Last Synced: 2024-05-09T22:51:39.510Z (6 months ago)
Topics: azure-vpn, azurerm, terraform-module
Language: HCL
Homepage: https://registry.terraform.io/modules/dodevops/vpn/azure/latest
Size: 10.7 KB
Stars: 0
Watchers: 4
Forks: 1
Open Issues: 1
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# Azure VPN management

## Introduction

This module manages VPN connectivity in Azure.

## Usage

Instantiate the module by calling it from Terraform like this:

```hcl
module "azure-vpn" {
source = "dodevops/vpn/azure"
version = ""
}
```

## Requirements

No requirements.

## Providers

The following providers are used by this module:

- azurerm

## Modules

No modules.

## Resources

The following resources are used by this module:

- [azurerm_local_network_gateway.local](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/local_network_gateway) (resource)
- [azurerm_public_ip.publicip](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/public_ip) (resource)
- [azurerm_subnet.gateway](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/subnet) (resource)
- [azurerm_virtual_network.vpnnet](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/virtual_network) (resource)
- [azurerm_virtual_network_gateway.vnetgw](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/virtual_network_gateway) (resource)
- [azurerm_virtual_network_gateway_connection.connection](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/virtual_network_gateway_connection) (resource)
- [azurerm_virtual_network_peering.peeringvpn](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/virtual_network_peering) (resource)
- [azurerm_virtual_network_peering.peeringvpnrev](https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/virtual_network_peering) (resource)

## Required Inputs

The following input variables are required:

### gatewaynet

Description: IP network to use for the gateway

Type: `string`

### local\_gateway\_ip

Description: IP of the local (on-prem) vpn gateway

Type: `string`

### local\_nets

Description: A list of local (on-prem) IP adress ranges to connect

Type: `list(string)`

### location

Description: The azure location used for azure

Type: `string`

### project

Description: Three letter project key

Type: `string`

### resource\_group

Description: Azure Resource Group to use

Type: `string`

### shared\_key

Description: The preshared key of the connection

Type: `string`

### stage

Description: Stage for this ressource group

Type: `string`

### target\_vnet

Description: ID and name of the target vnet to connect the VPN vnet to

Type:

```hcl
object({
id = string
name = string
})
```

## Optional Inputs

The following input variables are optional (have default values):

### ipsec\_policy

Description: IPSec policy to use with the VPN. See the
[Microsoft documentation](https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-ipsecikepolicy-rm-powershell)
for details

Type:

```hcl
list(object({
dh_group = string
ike_encryption = string
ike_integrity = string
ipsec_encryption = string
ipsec_integrity = string
pfs_group = string
sa_lifetime = number
}))
```

Default:

```json
[
{
"dh_group": "DHGroup2",
"ike_encryption": "AES256",
"ike_integrity": "SHA256",
"ipsec_encryption": "AES256",
"ipsec_integrity": "SHA256",
"pfs_group": "None",
"sa_lifetime": 27000
}
]
```

### suffix

Description: Additional suffix for this vpn

Type: `string`

Default: `""`

### use\_remote\_gateways

Description: Use the remote gateway for the peering

Type: `bool`

Default: `true`

### vnetgwsku

Description: SKU to use for the virtual network gateway

Type: `string`

Default: `"VpnGw1"`

## Outputs

The following outputs are exported:

### vpn\_ip

Description: n/a

## Development

Use [terraform-docs](https://terraform-docs.io/) to generate the API documentation by running

terraform fmt .
terraform-docs .