https://github.com/geekcell/terraform-aws-vpn-nordlayer-integration
Terraform AWS VPN Nordlayer Integration.
https://github.com/geekcell/terraform-aws-vpn-nordlayer-integration
aws nordlayer terraform terraform-module vpn
Last synced: 4 months ago
JSON representation
Terraform AWS VPN Nordlayer Integration.
- Host: GitHub
- URL: https://github.com/geekcell/terraform-aws-vpn-nordlayer-integration
- Owner: geekcell
- License: apache-2.0
- Created: 2023-04-17T12:07:49.000Z (about 2 years ago)
- Default Branch: main
- Last Pushed: 2023-06-28T13:39:35.000Z (about 2 years ago)
- Last Synced: 2025-03-01T18:48:52.634Z (4 months ago)
- Topics: aws, nordlayer, terraform, terraform-module, vpn
- Language: HCL
- Homepage: https://www.geekcell.io
- Size: 18.6 KB
- Stars: 0
- Watchers: 3
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
[](https://www.geekcell.io/)
### Code Quality
[](https://github.com/geekcell/terraform-aws-vpn-nordlayer-integration/blob/master/LICENSE)
[](https://github.com/geekcell/terraform-aws-vpn-nordlayer-integration/releases)
[](https://github.com/geekcell/terraform-aws-vpn-nordlayer-integration/actions/workflows/release.yaml)
[](https://github.com/geekcell/terraform-aws-vpn-nordlayer-integration/actions/workflows/validate.yaml)
[](https://github.com/geekcell/terraform-aws-vpn-nordlayer-integration/actions/workflows/linter.yaml)
# Terraform AWS VPN Nordlayer Integration
This Terraform module creates the necessary resources to activate a Nordlayer site-to-site VPN connection.
The Nordlayer server must be created manually before to get the static IP.
The VPN config must be manually downloaded and added to Nordlayer for approval.
## Inputs
| Name | Description | Type | Default | Required |
|------|-------------|------|---------|:--------:|
| [encryption\_algorithms](#input\_encryption\_algorithms) | Encryption algorithms | `list(string)` |
[
"AES128",
"AES128-GCM-16",
"AES256",
"AES256-GCM-16"
]
| no |
| [ike\_versions](#input\_ike\_versions) | IKE versions | `list(string)` | [
"ikev1",
"ikev2"
]
| no |
| [integrity\_algorithms](#input\_integrity\_algorithms) | Integrity algorithms | `list(string)` | [
"SHA1",
"SHA2-256",
"SHA2-384",
"SHA2-512"
]
| no |
| [nordlayer\_gateway\_ip](#input\_nordlayer\_gateway\_ip) | Static IP of the Nordlayer gateway server. Needs to be created manually in Nordlayer UI. | `string` | n/a | yes |
| [phase1\_dh\_group\_numbers](#input\_phase1\_dh\_group\_numbers) | Phase 1 dh group numbers | `list(number)` | [
2,
14,
15,
16,
17,
18,
19,
20,
21,
22,
23,
24
]
| no |
| [phase2\_dh\_group\_numbers](#input\_phase2\_dh\_group\_numbers) | Phase 2 dh group numbers | `list(number)` | [
2,
5,
14,
15,
16,
17,
18,
19,
20,
21,
22,
23,
24
]
| no |
| [prefix](#input\_prefix) | Global prefix for resource names. | `string` | n/a | yes |
| [route\_table\_ids](#input\_route\_table\_ids) | Route table ids to add static VPN route to. Usually includes private subnet route tables and database subnet route tables. | `list(string)` | n/a | yes |
| [tags](#input\_tags) | Tags to add to resources. | `map(string)` | n/a | yes |
| [vpc\_id](#input\_vpc\_id) | Id of the VPC to add VPN to. | `string` | n/a | yes |
## Outputs
No outputs.
## Providers
| Name | Version |
|------|---------|
| [aws](#provider\_aws) | ~> 4.36 |
## Resources
- resource.aws_customer_gateway.main (main.tf#16)
- resource.aws_route.main (main.tf#61)
- resource.aws_vpn_connection.main (main.tf#27)
- resource.aws_vpn_connection_route.main (main.tf#55)
- resource.aws_vpn_gateway.main (main.tf#8)
# Examples
### Complete
```hcl
module "example" {
source = "../../"
nordlayer_gateway_ip = "1.2.3.4"
prefix = "example"
route_table_ids = ["rtb-1235"]
tags = {}
vpc_id = "vpc-1234"
}
```