From cb2f5c86fd732a2d10a758bc3a90fc4ee33323de Mon Sep 17 00:00:00 2001
From: aslanvyos <a.hajiyev@vyos.io>
Date: Thu, 31 Oct 2024 10:04:05 +0400
Subject: Add Terraform project for VyOS instance with basic setup and with
 network services (VPN, NAT, DNS)

Added CloudFormation templates for VyOS deployment on AWS
---
 Terraform/AWS/instance-with-basic-configs/main.tf | 84 +++++++++++++++++++++++
 1 file changed, 84 insertions(+)
 create mode 100644 Terraform/AWS/instance-with-basic-configs/main.tf

(limited to 'Terraform/AWS/instance-with-basic-configs/main.tf')

diff --git a/Terraform/AWS/instance-with-basic-configs/main.tf b/Terraform/AWS/instance-with-basic-configs/main.tf
new file mode 100644
index 0000000..ddc27ef
--- /dev/null
+++ b/Terraform/AWS/instance-with-basic-configs/main.tf
@@ -0,0 +1,84 @@
+# EC2 KEY PAIR
+
+resource "aws_key_pair" "ec2_key" {
+  key_name   = "${var.prefix}-${var.key_pair_name}"
+  public_key = file(var.public_key_path)
+
+  tags = {
+    Name = "${var.prefix}-${var.key_pair_name}"
+  }
+}
+
+
+# THE LATEST AMAZON VYOS 1.4 IMAGE
+
+data "aws_ami" "vyos" {
+  most_recent = true
+  owners      = ["679593333241"]
+
+  filter {
+    name   = "name"
+    values = ["VyOS 1.4*"]
+  }
+
+  filter {
+    name   = "virtualization-type"
+    values = ["hvm"]
+  }
+
+}
+
+
+# VYOS INSTANCE
+
+resource "aws_instance" "vyos" {
+  ami               = data.aws_ami.vyos.id
+  instance_type     = var.vyos_instance_type
+  key_name          = "${var.prefix}-${var.key_pair_name}"
+  availability_zone = var.availability_zone
+
+  user_data_base64 = base64encode(templatefile("${path.module}/files/vyos_user_data.tfpl", {}))
+
+  depends_on = [
+    aws_network_interface.vyos_public_nic,
+    aws_network_interface.vyos_private_nic
+  ]
+
+  network_interface {
+    network_interface_id = aws_network_interface.vyos_public_nic.id
+    device_index         = 0
+  }
+
+  network_interface {
+    network_interface_id = aws_network_interface.vyos_private_nic.id
+    device_index         = 1
+  }
+
+  tags = {
+    Name = "${var.prefix}-${var.vyos_instance_name}"
+  }
+}
+
+# NETWORK INTERFACES
+
+resource "aws_network_interface" "vyos_public_nic" {
+  subnet_id       = aws_subnet.public_subnet.id
+  security_groups = [aws_security_group.public_sg.id]
+  private_ips     = [var.vyos_pub_nic_ip_address]
+
+  tags = {
+    Name = "${var.prefix}-${var.vyos_instance_name}-PublicNIC"
+  }
+}
+
+resource "aws_network_interface" "vyos_private_nic" {
+  subnet_id       = aws_subnet.private_subnet.id
+  security_groups = [aws_security_group.private_sg.id]
+  private_ips     = [var.vyos_priv_nic_address]
+
+  source_dest_check = false
+
+  tags = {
+    Name = "${var.prefix}-${var.vyos_instance_name}-PrivateNIC"
+  }
+}
-- 
cgit v1.2.3