forked from Guimove/terraform-aws-bastion
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathvariables.tf
104 lines (82 loc) · 2.42 KB
/
variables.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
variable "bucket_name" {
description = "Bucket name were the bastion will store the logs"
}
variable "bucket_versioning" {
default = true
description = "Enable bucket versioning or not"
}
variable "tags" {
description = "A mapping of tags to assign"
default = {}
type = "map"
}
variable "region" {}
variable "cidrs" {
description = "List of CIDRs than can access to the bastion. Default : 0.0.0.0/0"
type = "list"
default = [
"0.0.0.0/0",
]
}
variable "is_lb_private" {
description = "If TRUE the load balancer scheme will be \"internal\" else \"internet-facing\""
}
variable "vpc_id" {
description = "VPC id were we'll deploy the bastion"
}
variable "bastion_host_key_pair" {
description = "Select the key pair to use to launch the bastion host"
}
variable "hosted_zone_name" {
description = "Name of the hosted zone were we'll register the bastion DNS name"
default = ""
}
variable "bastion_record_name" {
description = "DNS record name to use for the bastion"
default = ""
}
variable "bastion_launch_configuration_name" {
description = "Bastion Launch configuration Name, will also be used for the ASG"
default = ""
}
variable "elb_subnets" {
type = "list"
description = "List of subnet were the ELB will be deployed"
}
variable "auto_scaling_group_subnets" {
type = "list"
description = "List of subnet were the Auto Scalling Group will deploy the instances"
}
variable "associate_public_ip_address" {
default = true
}
variable "bastion_instance_count" {
default = 1
}
variable "create_dns_record" {
description = "Choose if you want to create a record name for the bastion (LB). If true 'hosted_zone_name' and 'bastion_record_name' are mandatory "
}
variable "log_auto_clean" {
description = "Enable or not the lifecycle"
default = false
}
variable "log_standard_ia_days" {
description = "Number of days before moving logs to IA Storage"
default = 30
}
variable "log_glacier_days" {
description = "Number of days before moving logs to Glacier"
default = 60
}
variable "log_expiry_days" {
description = "Number of days before logs expiration"
default = 90
}
variable "public_ssh_port" {
description = "Set the SSH port to use from desktop to the bastion"
default = 22
}
variable "private_ssh_port" {
description = "Set the SSH port to use between the bastion and private instance"
default = 22
}