Skip to content

v0.3.1
Compare
Choose a tag to compare
@cloudpossebot cloudpossebot released this 25 Jan 19:08
· 20 commits to refs/heads/main since this release
0.3.1
2fed84c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

🚀 Enhancements

Add `az_subnet_endpoint_stats` output @aknysh (#4)

what

  • Add az_subnet_endpoint_stats output

why

  • The az_subnet_endpoint_stats output is a list of objects with each object having three items: AZ, subnet ID, firewall VPC endpoint ID
  • Expose subnets and firewall VPC endpoints per AZ
  • Useful when creating routes in an inspection VPC TGW route tables to send traffic to the firewall subnets VPC endpoints for inspection
  • Use this format
az_subnet_endpoint_stats = tolist([
  {
    "az" = "us-east-1a"
    "endpoint_id" = "vpce-xxxxxxxxxxxx"
    "subnet_id" = "subnet-xxxxxxxxxxxx"
  },
  {
    "az" = "us-east-1b"
    "endpoint_id" = "vpce-xxxxxxxxxxxx"
    "subnet_id" = "subnet-xxxxxxxxxxxx"
  },
  {
    "az" = "us-east-1c"
    "endpoint_id" = "vpce-xxxxxxxxxxxx"
    "subnet_id" = "subnet-xxxxxxxxxxxx"
  },
])

instead of the more complicated

network_firewall_status = tolist([
  {
    "sync_states" = toset([
      {
        "attachment" = tolist([
          {
            "endpoint_id" = "vpce-xxxxxxxxxxxx"
            "subnet_id" = "subnet-xxxxxxxxxxxx"
          },
        ])
        "availability_zone" = "us-east-1a"
      },
      {
        "attachment" = tolist([
          {
            "endpoint_id" = "vpce-xxxxxxxxxxxx"
            "subnet_id" = "subnet-xxxxxxxxxxxx"
          },
        ])
        "availability_zone" = "us-east-1b"
      },
      {
        "attachment" = tolist([
          {
            "endpoint_id" = "vpce-xxxxxxxxxxxx"
            "subnet_id" = "subnet-xxxxxxxxxxxx"
          },
        ])
        "availability_zone" = "us-east-1c"
      },
    ])
  },
])

Contributors

aknysh
Assets 2
Loading