-
Notifications
You must be signed in to change notification settings - Fork 94
/
Copy pathvariables.tf
153 lines (127 loc) · 3.96 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
/**
* Copyright 2018 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
variable "project_id" {
type = string
description = "The ID of the project where this VPC will be created"
}
variable "network" {
type = string
description = "The name of VPC being created"
}
variable "region" {
type = string
description = "The region in which you want to create the VPN gateway"
}
variable "gateway_name" {
type = string
description = "The name of VPN gateway"
default = "test-vpn"
}
variable "tunnel_count" {
type = number
description = "The number of tunnels from each VPN gw (default is 1)"
default = 1
}
variable "tunnel_name_prefix" {
type = string
description = "The optional custom name of VPN tunnel being created"
default = ""
}
variable "local_traffic_selector" {
description = <<EOD
Local traffic selector to use when establishing the VPN tunnel with peer VPN gateway.
Value should be list of CIDR formatted strings and ranges should be disjoint.
EOD
type = list(string)
default = ["0.0.0.0/0"]
}
variable "remote_traffic_selector" {
description = <<EOD
Remote traffic selector to use when establishing the VPN tunnel with peer VPN gateway.
Value should be list of CIDR formatted strings and ranges should be disjoint.
EOD
type = list(string)
default = ["0.0.0.0/0"]
}
variable "peer_ips" {
type = list(string)
description = "IP address of remote-peer/gateway"
}
variable "remote_subnet" {
description = "remote subnet ip range in CIDR format - x.x.x.x/x"
type = list(string)
default = []
}
variable "shared_secret" {
type = string
description = "Please enter the shared secret/pre-shared key"
default = ""
}
variable "route_priority" {
description = "Priority for static route being created"
type = number
default = 1000
}
variable "cr_name" {
type = string
description = "The name of cloud router for BGP routing"
default = ""
}
variable "cr_enabled" {
type = bool
description = "If there is a cloud router for BGP routing"
default = false
}
variable "peer_asn" {
type = list(string)
description = "Please enter the ASN of the BGP peer that cloud router will use"
default = ["65101"]
}
variable "bgp_cr_session_range" {
type = list(string)
description = "Please enter the cloud-router interface IP/Session IP"
default = ["169.254.1.1/30", "169.254.1.5/30"]
}
variable "bgp_remote_session_range" {
type = list(string)
description = "Please enter the remote environments BGP Session IP"
default = ["169.254.1.2", "169.254.1.6"]
}
variable "advertised_route_priority" {
description = "Please enter the priority for the advertised route to BGP peer(default is 100)"
type = number
default = 100
}
variable "ike_version" {
type = number
description = "Please enter the IKE version used by this tunnel (default is IKEv2)"
default = 2
}
variable "vpn_gw_ip" {
type = string
description = "Please enter the public IP address of the VPN Gateway, if you have already one. Do not set this variable to autocreate one"
default = ""
}
variable "route_tags" {
type = list(string)
description = "A list of instance tags to which this route applies."
default = []
}
variable "ipsec_secret_length" {
type = number
description = "The lnegth the of shared secret for VPN tunnels"
default = 8
}