}
resource "aws_vpc" "CSITVPC" {
- assign_generated_ipv6_cidr_block = false
+ assign_generated_ipv6_cidr_block = true
enable_dns_hostnames = false
enable_dns_support = true
cidr_block = var.vpc_cidr_mgmt
to_port = 22
protocol = "tcp"
cidr_blocks = ["0.0.0.0/0"]
- ipv6_cidr_blocks = []
+ }
+
+ ingress {
+ from_port = 22
+ to_port = 22
+ protocol = "tcp"
+ ipv6_cidr_blocks = ["::/0"]
}
ingress {
to_port = 0
protocol = -1
self = true
- ipv6_cidr_blocks = []
+ ipv6_cidr_blocks = ["::/0"]
}
egress {
to_port = 0
protocol = "-1"
cidr_blocks = ["0.0.0.0/0"]
- ipv6_cidr_blocks = []
+ }
+
+ egress {
+ from_port = 0
+ to_port = 0
+ protocol = "-1"
+ ipv6_cidr_blocks = ["::/0"]
}
tags = {
depends_on = [
aws_vpc.CSITVPC
]
+ ipv6_cidr_block = cidrsubnet(aws_vpc.CSITVPC.ipv6_cidr_block, 8, 1)
map_public_ip_on_launch = false
vpc_id = aws_vpc.CSITVPC.id
aws_vpc.CSITVPC,
aws_vpc_ipv4_cidr_block_association.b
]
+ ipv6_cidr_block = cidrsubnet(aws_vpc.CSITVPC.ipv6_cidr_block, 8, 2)
map_public_ip_on_launch = false
vpc_id = aws_vpc.CSITVPC.id
aws_vpc.CSITVPC,
aws_vpc_ipv4_cidr_block_association.c
]
+ ipv6_cidr_block = cidrsubnet(aws_vpc.CSITVPC.ipv6_cidr_block, 8, 3)
map_public_ip_on_launch = false
vpc_id = aws_vpc.CSITVPC.id
}
}
-resource "aws_subnet" "d" {
- vpc_id = aws_vpc.CSITVPC.id
- cidr_block = var.vpc_cidr_d
- availability_zone = var.avail_zone
- depends_on = [aws_vpc.CSITVPC, aws_vpc_ipv4_cidr_block_association.d]
-
- tags = {
- "Environment" = var.environment_name
- }
-}
-
resource "aws_subnet" "d" {
availability_zone = var.avail_zone
assign_ipv6_address_on_creation = false
aws_vpc.CSITVPC,
aws_vpc_ipv4_cidr_block_association.d
]
+ ipv6_cidr_block = cidrsubnet(aws_vpc.CSITVPC.ipv6_cidr_block, 8, 4)
map_public_ip_on_launch = false
vpc_id = aws_vpc.CSITVPC.id
}
}
+resource "aws_internet_gateway" "CSITGW" {
+ depends_on = [
+ aws_vpc.CSITVPC
+ ]
+ vpc_id = aws_vpc.CSITVPC.id
+
+ tags = {
+ "Environment" = var.environment_name
+ }
+}
+
# SSH keypair
# Temporary key for provisioning only
resource "tls_private_key" "CSITTLS" {
aws_subnet.c,
aws_instance.dut2
]
- private_ip = var.dut2_if2_ip
- private_ips = [var.dut2_if2_ip]
+ private_ip = var.dut2_if1_ip
+ private_ips = [var.dut2_if1_ip]
security_groups = [aws_security_group.CSITSG.id]
source_dest_check = false
subnet_id = aws_subnet.c.id
attachment {
instance = aws_instance.dut2.id
- device_index = 2
+ device_index = 1
}
tags = {
aws_vpc.CSITVPC,
aws_internet_gateway.CSITGW
]
- destination_cidr_block = "0.0.0.0/0"
- gateway_id = aws_internet_gateway.CSITGW.id
- route_table_id = aws_vpc.CSITVPC.main_route_table_id
+ destination_cidr_block = "0.0.0.0/0"
+ destination_ipv6_cidr_block = "::/0"
+ gateway_id = aws_internet_gateway.CSITGW.id
+ route_table_id = aws_vpc.CSITVPC.main_route_table_id
}
resource "aws_route" "dummy-trex-port-0" {
Code Review / csit.git / blobdiff