This repository has been archived by the owner on Jul 10, 2019. It is now read-only.
forked from grem11n/terraform-aws-vpc-peering
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathmain.tf
88 lines (80 loc) · 3.99 KB
/
main.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
# Providers are required because of cross-region
provider "aws" {
alias = "this"
}
provider "aws" {
alias = "peer"
}
##########################
# VPC peering connection #
##########################
resource "aws_vpc_peering_connection" "this" {
provider = "aws.this"
count = "${(var.create_peering * (1 + var.cross_region_peering)) == "1" ? 1 : 0}"
peer_owner_id = "${var.peer_account_id == "" ? data.aws_caller_identity.current.account_id : var.peer_account_id}"
peer_vpc_id = "${var.peer_vpc_id}"
vpc_id = "${var.this_vpc_id}"
auto_accept = "${var.auto_accept_peering}"
tags = "${var.tags}"
}
###################
# This VPC Routes #
###################
resource "aws_route" "this_routes_region" {
provider = "aws.this"
count = "${(var.create_peering * (1 + var.cross_region_peering)) == 1 ? length(data.aws_route_tables.peer_vpc_rts.ids) : 0}"
route_table_id = "${data.aws_route_tables.this_vpc_rts.ids[count.index]}"
destination_cidr_block = "${data.aws_vpc.peer_vpc.cidr_block}"
vpc_peering_connection_id = "${var.peering_id == "" ? element(concat(aws_vpc_peering_connection.this.*.id, list("")), 0) : var.peering_id}"
}
###################
# Peer VPC Routes #
###################
resource "aws_route" "peer_routes_region" {
provider = "aws.peer"
count = "${(var.create_peering * (1 + var.cross_region_peering)) == 1 ? length(data.aws_route_tables.peer_vpc_rts.ids) : 0}"
route_table_id = "${data.aws_route_tables.peer_vpc_rts.ids[count.index]}"
destination_cidr_block = "${data.aws_vpc.this_vpc.cidr_block}"
vpc_peering_connection_id = "${var.peering_id == "" ? element(concat(aws_vpc_peering_connection.this.*.id, list("")), 0) : var.peering_id}"
}
############################
# VPC cross-region peering #
############################
resource "aws_vpc_peering_connection" "this_cross_region" {
provider = "aws.this"
count = "${(var.create_peering * var.cross_region_peering) == "1" ? 1 : 0}"
peer_owner_id = "${var.peer_account_id == "" ? data.aws_caller_identity.current.account_id : var.peer_account_id}"
peer_vpc_id = "${var.peer_vpc_id}"
vpc_id = "${var.this_vpc_id}"
peer_region = "${var.peer_region}"
}
#####################################
# Accepter's side of the connection #
#####################################
resource "aws_vpc_peering_connection_accepter" "peer_accepter" {
provider = "aws.peer"
count = "${(var.create_peering * var.cross_region_peering) == "1" ? 1 : 0}"
vpc_peering_connection_id = "${aws_vpc_peering_connection.this_cross_region.id}"
auto_accept = true
tags = "${merge(var.tags, map("Side", "Accepter"))}"
}
###################
# This Cross Region VPC Routes #
###################
resource "aws_route" "this_routes_cross_region" {
provider = "aws.this"
count = "${(var.create_peering * var.cross_region_peering) == "1" ? length(data.aws_route_tables.peer_vpc_rts.ids) : 0}"
route_table_id = "${data.aws_route_tables.this_vpc_rts.ids[count.index]}"
destination_cidr_block = "${data.aws_vpc.peer_vpc.cidr_block}"
vpc_peering_connection_id = "${var.peering_id == "" ? element(concat(aws_vpc_peering_connection.this_cross_region.*.id, list("")), 0) : var.peering_id}"
}
###################
# Peer Cross Region VPC Routes #
###################
resource "aws_route" "peer_routes_cross_region" {
provider = "aws.peer"
count = "${(var.create_peering * var.cross_region_peering) == "1" ? length(data.aws_route_tables.peer_vpc_rts.ids) : 0}"
route_table_id = "${data.aws_route_tables.peer_vpc_rts.ids[count.index]}"
destination_cidr_block = "${data.aws_vpc.this_vpc.cidr_block}"
vpc_peering_connection_id = "${var.peering_id == "" ? element(concat(aws_vpc_peering_connection.this_cross_region.*.id, list("")), 0) : var.peering_id}"
}