Skip to content

Latest commit

 

History

History
32 lines (24 loc) · 3.3 KB

README.md

File metadata and controls

32 lines (24 loc) · 3.3 KB
Raw

3-networks-dual-svpc/shared

The purpose of this step is to set up the global DNS Hub that will be used by all environments.

Prerequisites

  1. 0-bootstrap executed successfully.
  2. 1-org executed successfully.

Inputs

Name Description Type Default Required
bgp_asn_dns BGP Autonomous System Number (ASN). number 64667 no
dns_enable_logging Toggle DNS logging for VPC DNS. bool true no
domain The DNS name of forwarding managed zone, for instance 'example.com'. Must end with a period. string n/a yes
enable_partner_interconnect Enable Partner Interconnect in the environment. bool false no
firewall_policies_enable_logging Toggle hierarchical firewall logging. bool true no
preactivate_partner_interconnect Preactivate Partner Interconnect VLAN attachment in the environment. bool false no
remote_state_bucket Backend bucket to load Terraform Remote State Data from previous steps. string n/a yes
target_name_server_addresses List of IPv4 address of target name servers for the forwarding zone configuration. See https://cloud.google.com/dns/docs/overview#dns-forwarding-zones for details on target name servers in the context of Cloud DNS forwarding zones. list(map(any)) n/a yes
tfc_org_name Name of the TFC organization string "" no
vpc_flow_logs enable_logging: set to true to enable VPC flow logging for the subnetworks.
aggregation_interval: Toggles the aggregation interval for collecting flow logs. Increasing the interval time will reduce the amount of generated flow logs for long lasting connections. Possible values are: INTERVAL_5_SEC, INTERVAL_30_SEC, INTERVAL_1_MIN, INTERVAL_5_MIN, INTERVAL_10_MIN, INTERVAL_15_MIN.
flow_sampling: Set the sampling rate of VPC flow logs within the subnetwork where 1.0 means all collected logs are reported and 0.0 means no logs are reported. The value of the field must be in [0, 1].
metadata: Configures whether metadata fields should be added to the reported VPC flow logs. Possible values are: EXCLUDE_ALL_METADATA, INCLUDE_ALL_METADATA, CUSTOM_METADATA.
metadata_fields: ist of metadata fields that should be added to reported logs. Can only be specified if VPC flow logs for this subnetwork is enabled and "metadata" is set to CUSTOM_METADATA.
filter_expr: Export filter used to define which VPC flow logs should be logged, as as CEL expression. See https://cloud.google.com/vpc/docs/flow-logs#filtering for details on how to format this field.		 
object({
    enable_logging       = optional(string, "true")
    aggregation_interval = optional(string, "INTERVAL_5_SEC")
    flow_sampling        = optional(string, "0.5")
    metadata             = optional(string, "INCLUDE_ALL_METADATA")
    metadata_fields      = optional(list(string), [])
    filter_expr          = optional(string, "true")
  })
 {} no

Outputs

Name Description
dns_hub_project_id The DNS hub project ID