diff --git a/examples/eks-lab-ip6/eks/.terraform.lock.hcl b/examples/eks-lab-ip6/eks/.terraform.lock.hcl
new file mode 100644
index 0000000..5e1c159
--- /dev/null
+++ b/examples/eks-lab-ip6/eks/.terraform.lock.hcl
@@ -0,0 +1,10 @@
+# This file is maintained automatically by "terraform init".
+# Manual edits may be lost in future updates.
+
+provider "registry.terraform.io/hashicorp/aws" {
+  version     = "4.55.0"
+  constraints = ">= 3.25.0"
+  hashes = [
+    "h1:VHfmrKCb4oTW/+rWGKKqipoMOPd4tPxlGwMp0/Flx/s=",
+  ]
+}
diff --git a/examples/eks-lab-ip6/eks/.terraform/providers/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64 b/examples/eks-lab-ip6/eks/.terraform/providers/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64
new file mode 120000
index 0000000..612bb8d
--- /dev/null
+++ b/examples/eks-lab-ip6/eks/.terraform/providers/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64
@@ -0,0 +1 @@
+/home/kn/.terraform.d/plugin-cache/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64
\ No newline at end of file
diff --git a/examples/eks-lab-ip6/eks/README.md b/examples/eks-lab-ip6/eks/README.md
new file mode 100644
index 0000000..e22ef16
--- /dev/null
+++ b/examples/eks-lab-ip6/eks/README.md
@@ -0,0 +1,119 @@
+# eks-lab/eks
+This layer creates the following resources
+- EKS cluster using ipv6 for service network
+- EKS nodegroup
+- EKS bastion
+- Install eksctl, kubectl, awscliv2, helm on EKS bastion with user_data script
+
+Be patient. EKS cluster takes 12min to provision. Node group will take another 5 min. And the cluster addon takes another ?? min.
+
+## Worker node instance size
+Choose t3.large at the minimum. This is due to AWS's limitation on number of IPs. Smaller instanecs are limited with 6 IP 
+which is not enough. See https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-eni.html#AvailableIpPerENI
+
+## How to use eksctl and kubectl
+By default, AWS EKS are installed with an aws-auth configmap which allows only the cluster creator
+to work with the cluster. Therefore, one must first assume to the creator IAM role before running eksctl or kubectl.
+For example, to create kube config, run these commands:
+
+```bash
+export AWS_ACCESS_KEY_ID=xxxx AWS_SECRET_ACCESS_KEY="yyyy" AWS_DEFAULT_REGION=ap-northeast-1
+aws eks update-kubeconfig --name lab-apne1-xpk-iac-cluster01
+```
+
+## Edit configmap/aws-auth
+```
+kubectl edit -n kube-system configmap/aws-auth
+```
+Add a group with system:master role
+```yaml
+apiVersion: v1
+data:
+  mapRoles: |
+    - groups:
+      - system:bootstrappers
+      - system:nodes
+      rolearn: arn:aws:iam::040216112220:role/clusterCreator
+      username: system:node:Template:EC2PrivateDNSName
+    - groups:
+      - system:masters
+      rolearn: arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-bast-role
+      username: lab-apne1-xpk-iac-bast-role
+kind: ConfigMap
+metadata:
+  creationTimestamp: "2022-12-29T11:02:15Z"
+  name: aws-auth
+  namespace: kube-system
+  resourceVersion: "59670"
+  uid: 7cf9d889-8ed2-4c8d-ac0f-092184cede8a
+```
+
+## Addon updates
+When updating addons, please select advanced options and choose preserve settings.
+
+## Install ALB ingress controller
+AWS provides documentation on how to deploy a sample application with ingress (ALB)
+https://docs.aws.amazon.com/eks/latest/userguide/alb-ingress.html
+
+That depends on the load balancer container, which can be deployed by
+
+```bash
+curl -O https://raw.githubusercontent.com/kubernetes-sigs/aws-load-balancer-controller/v2.4.4/docs/install/iam_policy.json
+
+aws iam create-policy \
+--policy-name AWSLoadBalancerControllerIAMPolicy \
+--policy-document file://iam_policy.json
+
+```
+Create an openid provider on iam
+https://docs.aws.amazon.com/eks/latest/userguide/enable-iam-roles-for-service-accounts.html
+
+```
+eksctl create iamserviceaccount \
+  --cluster=lab-apne1-xpk-iac-cluster01 \
+  --namespace=kube-system \
+  --name=aws-load-balancer-controller \
+  --role-name AmazonEKSLoadBalancerControllerRole \
+  --attach-policy-arn=arn:aws:iam::040216112220:policy/AWSLoadBalancerControllerIAMPolicy \
+  --approve
+  
+helm repo add eks https://aws.github.io/eks-charts
+helm repo update
+helm install aws-load-balancer-controller eks/aws-load-balancer-controller \
+-n kube-system \
+--set clusterName=lab-apne1-xpk-iac-cluster01 \
+--set serviceAccount.create=false \
+--set serviceAccount.name=aws-load-balancer-controller   
+```
+
+## Tag subnets
+Reference: https://docs.aws.amazon.com/eks/latest/userguide/alb-ingress.html
+
+The following tags are set in the network layer:
+
+On private subnets:
+Key – kubernetes.io/role/internal-elb
+Value – 1
+
+On public subnets:
+Key – kubernetes.io/role/elb
+Value – 1
+
+
+## Install sample app the 2048 game
+See https://docs.aws.amazon.com/eks/latest/userguide/alb-ingress.html
+```bash
+curl -O https://raw.githubusercontent.com/kubernetes-sigs/aws-load-balancer-controller/v2.4.4/docs/examples/2048/2048_full.yaml
+edit the file
+kubectl apply -f 2048_full.yaml
+kubectl get ingress/ingress-2048 -n game-2048
+```
+
+In a moment, the lb address should be displayed
+```bash
+root@ip-192-168-123-187:~# kubectl get ingress/ingress-2048 -n game-2048
+NAME           CLASS   HOSTS   ADDRESS                                                                               PORTS   AGE
+ingress-2048   alb     *       internal-k8s-game2048-ingress2-5f196824a1-20502803.ap-northeast-1.elb.amazonaws.com   80      7s
+```
+
+
diff --git a/examples/eks-lab-ip6/eks/eks-node-sshkey b/examples/eks-lab-ip6/eks/eks-node-sshkey
new file mode 100644
index 0000000..2cc109d
--- /dev/null
+++ b/examples/eks-lab-ip6/eks/eks-node-sshkey
@@ -0,0 +1,7 @@
+-----BEGIN OPENSSH PRIVATE KEY-----
+b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
+QyNTUxOQAAACDQnEGn3cwEav+pMKXYvP3KjDYpB+Po/wpcrmQZnh31wgAAAJDu9hUF7vYV
+BQAAAAtzc2gtZWQyNTUxOQAAACDQnEGn3cwEav+pMKXYvP3KjDYpB+Po/wpcrmQZnh31wg
+AAAEBcvMSW9eqRM2Kd3obuJfHma+nzrsMiRSHO09wjSg4KF9CcQafdzARq/6kwpdi8/cqM
+NikH4+j/ClyuZBmeHfXCAAAADWtuQGlzbS56b28ubG8=
+-----END OPENSSH PRIVATE KEY-----
diff --git a/examples/eks-lab-ip6/eks/eks-node-sshkey.pub b/examples/eks-lab-ip6/eks/eks-node-sshkey.pub
new file mode 100644
index 0000000..ca03027
--- /dev/null
+++ b/examples/eks-lab-ip6/eks/eks-node-sshkey.pub
@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINCcQafdzARq/6kwpdi8/cqMNikH4+j/ClyuZBmeHfXC kn@ism.zoo.lo
diff --git a/examples/eks-lab-ip6/eks/locals.tf b/examples/eks-lab-ip6/eks/locals.tf
new file mode 100644
index 0000000..8719f76
--- /dev/null
+++ b/examples/eks-lab-ip6/eks/locals.tf
@@ -0,0 +1,18 @@
+data "aws_caller_identity" "this" {}
+
+locals {
+  default-tags = merge({
+    ServiceProvider = "None"
+    Environment     = var.environment
+    Project         = var.project
+    Application     = var.application
+    TerraformMode   = "managed"
+    TerraformDir    = "${local.path-cwd-list[length(local.path-cwd-list) - 2]}/${local.path-cwd-list[length(local.path-cwd-list) - 1]}"
+
+    CreatedBy = data.aws_caller_identity.this.arn
+    BuildDate = formatdate("YYYYMMDD", timestamp())
+  })
+  resource-prefix = "${var.environment}-${var.aws-region-short}-${var.customer-name}-${var.project}"
+  path-cwd-list   = split("/", path.cwd)
+
+}
\ No newline at end of file
diff --git a/examples/eks-lab-ip6/eks/main.tf b/examples/eks-lab-ip6/eks/main.tf
new file mode 100644
index 0000000..5753163
--- /dev/null
+++ b/examples/eks-lab-ip6/eks/main.tf
@@ -0,0 +1,306 @@
+data "terraform_remote_state" "vpc" {
+  backend = "local"
+  config = {
+    path = "../network/terraform.tfstate"
+  }
+}
+
+resource "aws_iam_role" "eks-cluster-role" {
+  name = "${local.resource-prefix}-cluster-role"
+  assume_role_policy = jsonencode({
+    "Version" : "2012-10-17",
+    "Statement" : [
+      {
+        "Effect" : "Allow",
+        "Principal" : {
+          "Service" : "eks.amazonaws.com"
+        },
+        "Action" : "sts:AssumeRole"
+      }
+    ]
+    }
+  )
+  managed_policy_arns = ["arn:aws:iam::aws:policy/AmazonEKSClusterPolicy", "arn:aws:iam::aws:policy/AmazonEKSVPCResourceController"]
+  tags                = local.default-tags
+}
+
+resource "aws_eks_cluster" "eks-cluster" {
+  name     = "${local.resource-prefix}-cluster01"
+  role_arn = aws_iam_role.eks-cluster-role.arn
+  vpc_config {
+    subnet_ids              = data.terraform_remote_state.vpc.outputs.private-subnet-ids
+    endpoint_private_access = true
+    endpoint_public_access  = false
+  }
+  enabled_cluster_log_types = ["api", "audit"]
+  kubernetes_network_config {
+    ip_family = "ipv6"
+  }
+  tags = local.default-tags
+}
+
+
+resource "aws_eks_addon" "eks-addons" {
+  # for_each     = toset(["vpc-cni", "coredns", "kube-proxy", "aws-ebs-csi-driver"])
+  # latest version as on 2023-02-17 failed to deploy
+  for_each = {
+    "aws-ebs-csi-driver" : {
+      "version" : "v1.15.0-eksbuild.1"
+    },
+    "vpc-cni" : {
+      "version" : "v1.12.2-eksbuild.1"
+    },
+    "coredns" : {
+      "version" : "v1.9.3-eksbuild.2"
+    },
+    "kube-proxy" : {
+      "version" : "v1.24.9-eksbuild.1"
+    }
+  }
+  cluster_name  = aws_eks_cluster.eks-cluster.name
+  addon_name    = each.key
+  addon_version = each.value["version"]
+}
+
+resource "aws_iam_role" "eks-nodegroup-role" {
+  name = "${local.resource-prefix}-nodegroup-role"
+  assume_role_policy = jsonencode({
+    "Version" : "2012-10-17",
+    "Statement" : [
+      {
+        "Effect" : "Allow",
+        "Principal" : {
+          "Service" : "ec2.amazonaws.com"
+        },
+        "Action" : "sts:AssumeRole"
+      }
+    ]
+    }
+  )
+  managed_policy_arns = [
+    "arn:aws:iam::aws:policy/AmazonEKSWorkerNodePolicy",
+    "arn:aws:iam::aws:policy/AmazonEKS_CNI_Policy",
+    "arn:aws:iam::aws:policy/AmazonEC2ContainerRegistryReadOnly",
+    "arn:aws:iam::aws:policy/CloudWatchAgentServerPolicy"
+  ]
+  inline_policy {
+    name = "IP6CniAccess"
+    policy = jsonencode({
+      "Version" : "2012-10-17",
+      "Statement" : [
+        {
+          "Effect" : "Allow",
+          "Action" : [
+            "ec2:AssignIpv6Addresses",
+            "ec2:DescribeInstances",
+            "ec2:DescribeTags",
+            "ec2:DescribeNetworkInterfaces",
+            "ec2:DescribeInstanceTypes"
+          ],
+          "Resource" : "*"
+        },
+        {
+          "Effect" : "Allow",
+          "Action" : [
+            "ec2:CreateTags"
+          ],
+          "Resource" : [
+            "arn:aws:ec2:*:*:network-interface/*"
+          ]
+        }
+      ]
+    })
+  }
+
+  inline_policy {
+    name = "AlbIngressAccess"
+    policy = jsonencode({
+      "Version" : "2012-10-17",
+      "Statement" : [
+        {
+          "Effect" : "Allow",
+          "Action" : [
+            "elasticloadbalancing:*"
+          ],
+          "Resource" : "*"
+        }
+      ]
+    })
+  }
+
+  tags = local.default-tags
+}
+
+data "aws_ssm_parameter" "eks_ami_release_version" {
+  name = "/aws/service/eks/optimized-ami/${aws_eks_cluster.eks-cluster.version}/amazon-linux-2/recommended/release_version"
+}
+
+# manually generate the key: ssh-keygen -ted25519 -f eks-node-sshkey
+# file() can only read pre-existing file
+resource "aws_key_pair" "eks-node-sshkey" {
+  key_name   = "${local.resource-prefix}-eks-node-sshkey"
+  public_key = file("${path.module}/eks-node-sshkey.pub")
+}
+
+resource "aws_security_group" "eks-node-sg" {
+  name        = "${local.resource-prefix}-eks-node-sg"
+  description = "Allow ssh to EKS nodes"
+  vpc_id      = data.terraform_remote_state.vpc.outputs.vpc-id
+
+  ingress {
+    description = "SSH from VPC"
+    from_port   = 22
+    to_port     = 22
+    protocol    = "tcp"
+    cidr_blocks = [data.terraform_remote_state.vpc.outputs.vpc-cidr]
+  }
+
+  egress {
+    from_port   = 0
+    to_port     = 0
+    protocol    = "-1"
+    cidr_blocks = ["0.0.0.0/0"]
+  }
+
+  tags = local.default-tags
+}
+
+resource "aws_eks_node_group" "eks-nodegroup" {
+  cluster_name           = aws_eks_cluster.eks-cluster.name
+  node_group_name_prefix = "${local.resource-prefix}-eks-ng"
+  node_role_arn          = aws_iam_role.eks-nodegroup-role.arn
+  subnet_ids             = data.terraform_remote_state.vpc.outputs.private-subnet-ids
+  version                = aws_eks_cluster.eks-cluster.version
+  release_version        = nonsensitive(data.aws_ssm_parameter.eks_ami_release_version.value)
+  instance_types         = ["t3.large"] # see README.md
+  scaling_config {
+    desired_size = 1
+    max_size     = 2
+    min_size     = 1
+  }
+
+  update_config {
+    max_unavailable = 1
+  }
+  remote_access {
+    ec2_ssh_key               = aws_key_pair.eks-node-sshkey.key_name
+    source_security_group_ids = [aws_security_group.eks-node-sg.id]
+  }
+  tags = local.default-tags
+}
+
+# ec2 instance for EKS management
+data "aws_ami" "ubuntu" {
+  most_recent = true
+
+  filter {
+    name   = "name"
+    values = ["ubuntu/images/hvm-ssd/ubuntu-*-amd64-server-*"]
+  }
+
+  filter {
+    name   = "virtualization-type"
+    values = ["hvm"]
+  }
+
+  owners = ["099720109477"] # Canonical
+}
+
+resource "aws_security_group" "eks-bast-sg" {
+  name        = "${local.resource-prefix}-eks-bast-sg"
+  description = "Allow ssh to EKS bast"
+  vpc_id      = data.terraform_remote_state.vpc.outputs.vpc-id
+
+  ingress {
+    description = "SSH from VPC"
+    from_port   = 22
+    to_port     = 22
+    protocol    = "tcp"
+    cidr_blocks = ["223.18.148.85/32"]
+  }
+
+  egress {
+    from_port   = 0
+    to_port     = 0
+    protocol    = "-1"
+    cidr_blocks = ["0.0.0.0/0"]
+  }
+
+  tags = local.default-tags
+}
+
+
+resource "aws_iam_role" "eks-bast-role" {
+  name = "${local.resource-prefix}-bast-role"
+  assume_role_policy = jsonencode({
+    "Version" : "2012-10-17",
+    "Statement" : [
+      {
+        "Effect" : "Allow",
+        "Principal" : {
+          "Service" : "ec2.amazonaws.com"
+        },
+        "Action" : "sts:AssumeRole"
+      }
+    ]
+  })
+  inline_policy {
+    name = "eks-bast-policy"
+
+    policy = jsonencode({
+      Version = "2012-10-17"
+      Statement = [
+        {
+          Action   = ["eks:*", "ecr:*"]
+          Effect   = "Allow"
+          Resource = "*"
+        },
+      ]
+    })
+  }
+
+  managed_policy_arns = ["arn:aws:iam::aws:policy/ReadOnlyAccess"]
+  tags                = local.default-tags
+}
+
+
+resource "aws_iam_instance_profile" "eks-bast-iam-profile" {
+  name = "eksBastIamProfile"
+  role = aws_iam_role.eks-bast-role.name
+}
+
+resource "aws_instance" "eks-bast" {
+  ami                         = data.aws_ami.ubuntu.id
+  instance_type               = "t3.micro"
+  associate_public_ip_address = true
+  ebs_optimized               = true
+  key_name                    = aws_key_pair.eks-node-sshkey.key_name
+  vpc_security_group_ids      = [aws_security_group.eks-bast-sg.id, aws_eks_cluster.eks-cluster.vpc_config[0].cluster_security_group_id]
+  subnet_id                   = data.terraform_remote_state.vpc.outputs.public-subnet-ids[0]
+  iam_instance_profile        = aws_iam_instance_profile.eks-bast-iam-profile.name
+  root_block_device {
+    volume_size = 8
+    volume_type = "gp3"
+    tags        = local.default-tags
+  }
+  tags      = merge(local.default-tags, { "Name" : "${local.resource-prefix}-eks-bast" })
+  user_data = <<EOF
+#!/bin/bash
+echo "Install unzip"
+apt install unzip -y
+echo "Install eksctl"
+curl --silent --location "https://github.com/weaveworks/eksctl/releases/latest/download/eksctl_$(uname -s)_amd64.tar.gz" | tar xz -C /tmp
+mv /tmp/eksctl /usr/local/bin
+echo "Install kubectl"
+curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"
+mv kubectl /usr/local/bin/
+chmod 755 /usr/local/bin/kubectl
+echo "Install awscliv2"
+curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip"
+unzip awscliv2.zip
+sudo ./aws/install
+echo "Install helm"
+curl -q https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | bash
+EOF
+
+}
\ No newline at end of file
diff --git a/examples/eks-lab-ip6/eks/outputs.tf b/examples/eks-lab-ip6/eks/outputs.tf
new file mode 100644
index 0000000..51f2685
--- /dev/null
+++ b/examples/eks-lab-ip6/eks/outputs.tf
@@ -0,0 +1,9 @@
+/*
+output eks-cluster-sg {
+  value = aws_eks_cluster.eks-cluster.vpc_config.*.cluster_security_group_id
+}
+*/
+
+output eks-bast-ip {
+  value = aws_instance.eks-bast.public_ip
+}
\ No newline at end of file
diff --git a/examples/eks-lab-ip6/eks/provider.tf b/examples/eks-lab-ip6/eks/provider.tf
new file mode 100644
index 0000000..a971ca5
--- /dev/null
+++ b/examples/eks-lab-ip6/eks/provider.tf
@@ -0,0 +1,13 @@
+provider "aws" {
+  region = var.aws-region
+}
+
+terraform {
+  required_version = ">= 1.0"
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = ">= 3.25"
+    }
+  }
+}
diff --git a/examples/eks-lab-ip6/eks/terraform.tfstate b/examples/eks-lab-ip6/eks/terraform.tfstate
new file mode 100644
index 0000000..11e66bd
--- /dev/null
+++ b/examples/eks-lab-ip6/eks/terraform.tfstate
@@ -0,0 +1,1078 @@
+{
+  "version": 4,
+  "terraform_version": "1.3.7",
+  "serial": 106,
+  "lineage": "e0d414eb-906c-60be-de6d-96009052882f",
+  "outputs": {
+    "eks-bast-ip": {
+      "value": "54.95.19.38",
+      "type": "string"
+    }
+  },
+  "resources": [
+    {
+      "mode": "data",
+      "type": "aws_ami",
+      "name": "ubuntu",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "architecture": "x86_64",
+            "arn": "arn:aws:ec2:ap-northeast-1::image/ami-0778fde4cd5a48d8d",
+            "block_device_mappings": [
+              {
+                "device_name": "/dev/sda1",
+                "ebs": {
+                  "delete_on_termination": "true",
+                  "encrypted": "false",
+                  "iops": "0",
+                  "snapshot_id": "snap-0741d099f4894a808",
+                  "throughput": "0",
+                  "volume_size": "8",
+                  "volume_type": "gp2"
+                },
+                "no_device": "",
+                "virtual_name": ""
+              },
+              {
+                "device_name": "/dev/sdb",
+                "ebs": {},
+                "no_device": "",
+                "virtual_name": "ephemeral0"
+              },
+              {
+                "device_name": "/dev/sdc",
+                "ebs": {},
+                "no_device": "",
+                "virtual_name": "ephemeral1"
+              }
+            ],
+            "boot_mode": "",
+            "creation_date": "2023-02-16T02:48:34.000Z",
+            "deprecation_time": "2025-02-16T02:48:33.000Z",
+            "description": "Canonical, Ubuntu, 22.04 LTS, amd64 jammy image build on 2023-02-16",
+            "ena_support": true,
+            "executable_users": null,
+            "filter": [
+              {
+                "name": "name",
+                "values": [
+                  "ubuntu/images/hvm-ssd/ubuntu-*-amd64-server-*"
+                ]
+              },
+              {
+                "name": "virtualization-type",
+                "values": [
+                  "hvm"
+                ]
+              }
+            ],
+            "hypervisor": "xen",
+            "id": "ami-0778fde4cd5a48d8d",
+            "image_id": "ami-0778fde4cd5a48d8d",
+            "image_location": "amazon/ubuntu/images/hvm-ssd/ubuntu-jammy-22.04-amd64-server-20230216",
+            "image_owner_alias": "amazon",
+            "image_type": "machine",
+            "imds_support": "",
+            "include_deprecated": false,
+            "kernel_id": "",
+            "most_recent": true,
+            "name": "ubuntu/images/hvm-ssd/ubuntu-jammy-22.04-amd64-server-20230216",
+            "name_regex": null,
+            "owner_id": "099720109477",
+            "owners": [
+              "099720109477"
+            ],
+            "platform": "",
+            "platform_details": "Linux/UNIX",
+            "product_codes": [],
+            "public": true,
+            "ramdisk_id": "",
+            "root_device_name": "/dev/sda1",
+            "root_device_type": "ebs",
+            "root_snapshot_id": "snap-0741d099f4894a808",
+            "sriov_net_support": "simple",
+            "state": "available",
+            "state_reason": {
+              "code": "UNSET",
+              "message": "UNSET"
+            },
+            "tags": {},
+            "timeouts": null,
+            "tpm_support": "",
+            "usage_operation": "RunInstances",
+            "virtualization_type": "hvm"
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "data",
+      "type": "aws_caller_identity",
+      "name": "this",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "account_id": "040216112220",
+            "arn": "arn:aws:iam::040216112220:user/ken2026",
+            "id": "040216112220",
+            "user_id": "AIDAQSXIRFROOXYISSIEQ"
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "data",
+      "type": "aws_ssm_parameter",
+      "name": "eks_ami_release_version",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:ssm:ap-northeast-1::parameter/aws/service/eks/optimized-ami/1.24/amazon-linux-2/recommended/release_version",
+            "id": "/aws/service/eks/optimized-ami/1.24/amazon-linux-2/recommended/release_version",
+            "name": "/aws/service/eks/optimized-ami/1.24/amazon-linux-2/recommended/release_version",
+            "type": "String",
+            "value": "1.24.10-20230211",
+            "version": 7,
+            "with_decryption": true
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "data",
+      "type": "terraform_remote_state",
+      "name": "vpc",
+      "provider": "provider[\"terraform.io/builtin/terraform\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "backend": "local",
+            "config": {
+              "value": {
+                "path": "../network/terraform.tfstate"
+              },
+              "type": [
+                "object",
+                {
+                  "path": "string"
+                }
+              ]
+            },
+            "defaults": null,
+            "outputs": {
+              "value": {
+                "private-subnet-ids": [
+                  "subnet-0a9f75c427054ca39",
+                  "subnet-03837a4f086fe607a"
+                ],
+                "public-subnet-ids": [
+                  "subnet-0836e26b02828e6b7",
+                  "subnet-0269d50d924f5c3ad"
+                ],
+                "vpc-cidr": "192.168.123.0/24",
+                "vpc-cidr6": "2406:da14:ece:ed00::/56",
+                "vpc-id": "vpc-051d8405604cd730d"
+              },
+              "type": [
+                "object",
+                {
+                  "private-subnet-ids": [
+                    "tuple",
+                    [
+                      "string",
+                      "string"
+                    ]
+                  ],
+                  "public-subnet-ids": [
+                    "tuple",
+                    [
+                      "string",
+                      "string"
+                    ]
+                  ],
+                  "vpc-cidr": "string",
+                  "vpc-cidr6": "string",
+                  "vpc-id": "string"
+                }
+              ]
+            },
+            "workspace": null
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_eks_addon",
+      "name": "eks-addons",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "index_key": "aws-ebs-csi-driver",
+          "schema_version": 0,
+          "attributes": {
+            "addon_name": "aws-ebs-csi-driver",
+            "addon_version": "v1.15.0-eksbuild.1",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:addon/lab-apne1-xpk-iac-cluster01/aws-ebs-csi-driver/8ec33013-8fa2-683d-a6dc-723ecf03a0ea",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "configuration_values": "",
+            "created_at": "2023-02-17T16:13:42Z",
+            "id": "lab-apne1-xpk-iac-cluster01:aws-ebs-csi-driver",
+            "modified_at": "2023-02-17T16:14:24Z",
+            "preserve": null,
+            "resolve_conflicts": null,
+            "service_account_role_arn": "",
+            "tags": {},
+            "tags_all": {},
+            "timeouts": null
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjI0MDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        },
+        {
+          "index_key": "coredns",
+          "schema_version": 0,
+          "attributes": {
+            "addon_name": "coredns",
+            "addon_version": "v1.9.3-eksbuild.2",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:addon/lab-apne1-xpk-iac-cluster01/coredns/0ac33013-8fa8-3dca-2003-9ee481458e17",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "configuration_values": "",
+            "created_at": "2023-02-17T16:13:42Z",
+            "id": "lab-apne1-xpk-iac-cluster01:coredns",
+            "modified_at": "2023-02-17T16:13:49Z",
+            "preserve": null,
+            "resolve_conflicts": null,
+            "service_account_role_arn": "",
+            "tags": {},
+            "tags_all": {},
+            "timeouts": null
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjI0MDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        },
+        {
+          "index_key": "kube-proxy",
+          "schema_version": 0,
+          "attributes": {
+            "addon_name": "kube-proxy",
+            "addon_version": "v1.24.9-eksbuild.1",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:addon/lab-apne1-xpk-iac-cluster01/kube-proxy/04c33011-16bd-8013-825c-3471eb291808",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "configuration_values": "",
+            "created_at": "2023-02-17T16:08:18Z",
+            "id": "lab-apne1-xpk-iac-cluster01:kube-proxy",
+            "modified_at": "2023-02-17T16:16:04Z",
+            "preserve": null,
+            "resolve_conflicts": null,
+            "service_account_role_arn": "",
+            "tags": {},
+            "tags_all": {},
+            "timeouts": null
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjI0MDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        },
+        {
+          "index_key": "vpc-cni",
+          "schema_version": 0,
+          "attributes": {
+            "addon_name": "vpc-cni",
+            "addon_version": "v1.12.2-eksbuild.1",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:addon/lab-apne1-xpk-iac-cluster01/vpc-cni/5cc33014-2733-d850-c1ed-df64b9621810",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "configuration_values": "",
+            "created_at": "2023-02-17T16:15:00Z",
+            "id": "lab-apne1-xpk-iac-cluster01:vpc-cni",
+            "modified_at": "2023-02-17T16:15:32Z",
+            "preserve": null,
+            "resolve_conflicts": null,
+            "service_account_role_arn": "",
+            "tags": {},
+            "tags_all": {},
+            "timeouts": null
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjI0MDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_eks_cluster",
+      "name": "eks-cluster",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:cluster/lab-apne1-xpk-iac-cluster01",
+            "certificate_authority": [
+              {
+                "data": "LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUMvakNDQWVhZ0F3SUJBZ0lCQURBTkJna3Foa2lHOXcwQkFRc0ZBREFWTVJNd0VRWURWUVFERXdwcmRXSmwKY201bGRHVnpNQjRYRFRJek1ESXhOekUyTURJek1sb1hEVE16TURJeE5ERTJNREl6TWxvd0ZURVRNQkVHQTFVRQpBeE1LYTNWaVpYSnVaWFJsY3pDQ0FTSXdEUVlKS29aSWh2Y05BUUVCQlFBRGdnRVBBRENDQVFvQ2dnRUJBTEU3CnhpSWFDdXV4WlVLUUVCVTNGM1I1azlncVNKY1RrMlFmVlUxTDlZM1R4bUNaOWF1eVE2VWxRT2pneTRYVFFob0gKWVp2dFpZdVE1bnhmN2VmRHRyaDRQeSsxZlVqSlNxVnFlbjZEbXJQL0JSTUd4ZEt5VnZZejFHVG9LdlN1UHUvNwpGeHNKVCtsNGJvYWljcm11MVlRTThGeUlEQjZaWkc3czAyMjVOeGhXZGRUdWlTTXVTTHg2SXdFYXMyaERrbDFlCnV4anQ2U3pydTU3dWhnWlZYZlZuRkZ1OXRKTHNVM01LSE1iT3lyNUVFNTBZZGdBdTZjOWpmeHBNVzdXc0VCL3MKSnkwa1M1RzhCcnR0Y0JDOWxkZ2FyTCtvSUF6MWpZNGVGMnZQcTkwclpreHJ4MWFORDU3WnVwRkt0ei9MMFErUQp1TlpHWkZZb2xVM1pWQ041Y1prQ0F3RUFBYU5aTUZjd0RnWURWUjBQQVFIL0JBUURBZ0trTUE4R0ExVWRFd0VCCi93UUZNQU1CQWY4d0hRWURWUjBPQkJZRUZLektkeEk1bTRIUmxKRzRuZmVEUlovU0xEaGNNQlVHQTFVZEVRUU8KTUF5Q0NtdDFZbVZ5Ym1WMFpYTXdEUVlKS29aSWh2Y05BUUVMQlFBRGdnRUJBSWExdFdqckVkcm5QMVc0cisyMQp5cWdwQVJuZ1lGTmdWb25VelZydWdHd1h4YldteUVaTm85NG9HR0pmbC8vUDN1VmlXOUNFU2U1cHZiK3dwbzVtCk9EK1o0emU1dWZKQzFDb0NhU0F3T0hJcXBDODI2SDdqVzZ0Nkx0S0dJcEtHU0tJWE9BVGJ6T09uRUpmK0JlZTYKcGw2WkVyVXNFTkpwZmlNR3dJcWgvemZyRU9EckpjOUo5UGt0amFzV0xaMjBnM3FRSFNqVTdmK3FOdjRvM1RXMwovMTFaWUI2eE12S0hkLy81ZHA3dDRlYi83WnU5SWZjTFpVWmtQam9lZlhsWmNyVHBrdWhOcjZpdFE3R1RKZ3lzCnlaTElGelJCZ245b0NRVTJVVDFUN2JHOXlPWVNlazJoaW5BMGpDTVMrTExrOEpNOFVpUlpwNU9XSGZick5rMmMKY0FrPQotLS0tLUVORCBDRVJUSUZJQ0FURS0tLS0tCg=="
+              }
+            ],
+            "cluster_id": null,
+            "created_at": "2023-02-17 15:56:41.857 +0000 UTC",
+            "enabled_cluster_log_types": [
+              "api",
+              "audit"
+            ],
+            "encryption_config": [],
+            "endpoint": "https://475E2975E4648AD77DD4E849BD95E5B2.yl4.ap-northeast-1.eks.amazonaws.com",
+            "id": "lab-apne1-xpk-iac-cluster01",
+            "identity": [
+              {
+                "oidc": [
+                  {
+                    "issuer": "https://oidc.eks.ap-northeast-1.amazonaws.com/id/475E2975E4648AD77DD4E849BD95E5B2"
+                  }
+                ]
+              }
+            ],
+            "kubernetes_network_config": [
+              {
+                "ip_family": "ipv6",
+                "service_ipv4_cidr": "",
+                "service_ipv6_cidr": "fd14:a154:0597::/108"
+              }
+            ],
+            "name": "lab-apne1-xpk-iac-cluster01",
+            "outpost_config": [],
+            "platform_version": "eks.4",
+            "role_arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-cluster-role",
+            "status": "ACTIVE",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "version": "1.24",
+            "vpc_config": [
+              {
+                "cluster_security_group_id": "sg-06d1c1aa26b1ecb36",
+                "endpoint_private_access": true,
+                "endpoint_public_access": false,
+                "public_access_cidrs": [],
+                "security_group_ids": [],
+                "subnet_ids": [
+                  "subnet-03837a4f086fe607a",
+                  "subnet-0a9f75c427054ca39"
+                ],
+                "vpc_id": "vpc-051d8405604cd730d"
+              }
+            ]
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxODAwMDAwMDAwMDAwLCJkZWxldGUiOjkwMDAwMDAwMDAwMCwidXBkYXRlIjozNjAwMDAwMDAwMDAwfX0=",
+          "dependencies": [
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_eks_node_group",
+      "name": "eks-nodegroup",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "ami_type": "AL2_x86_64",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:nodegroup/lab-apne1-xpk-iac-cluster01/lab-apne1-xpk-iac-eks-ng20230217160818250600000006/86c33011-175b-a971-ef8e-b3473185ec85",
+            "capacity_type": "ON_DEMAND",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "disk_size": 20,
+            "force_update_version": null,
+            "id": "lab-apne1-xpk-iac-cluster01:lab-apne1-xpk-iac-eks-ng20230217160818250600000006",
+            "instance_types": [
+              "t3.large"
+            ],
+            "labels": {},
+            "launch_template": [],
+            "node_group_name": "lab-apne1-xpk-iac-eks-ng20230217160818250600000006",
+            "node_group_name_prefix": "lab-apne1-xpk-iac-eks-ng",
+            "node_role_arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-nodegroup-role",
+            "release_version": "1.24.10-20230211",
+            "remote_access": [
+              {
+                "ec2_ssh_key": "lab-apne1-xpk-iac-eks-node-sshkey",
+                "source_security_group_ids": [
+                  "sg-0133aa07a88ba44e6"
+                ]
+              }
+            ],
+            "resources": [
+              {
+                "autoscaling_groups": [
+                  {
+                    "name": "eks-lab-apne1-xpk-iac-eks-ng20230217160818250600000006-86c33011-175b-a971-ef8e-b3473185ec85"
+                  }
+                ],
+                "remote_access_security_group_id": "sg-0730ca6a4f7afce14"
+              }
+            ],
+            "scaling_config": [
+              {
+                "desired_size": 1,
+                "max_size": 2,
+                "min_size": 1
+              }
+            ],
+            "status": "ACTIVE",
+            "subnet_ids": [
+              "subnet-03837a4f086fe607a",
+              "subnet-0a9f75c427054ca39"
+            ],
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "taint": [],
+            "timeouts": null,
+            "update_config": [
+              {
+                "max_unavailable": 1,
+                "max_unavailable_percentage": 0
+              }
+            ],
+            "version": "1.24"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozNjAwMDAwMDAwMDAwLCJkZWxldGUiOjM2MDAwMDAwMDAwMDAsInVwZGF0ZSI6MzYwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "aws_iam_role.eks-nodegroup-role",
+            "aws_key_pair.eks-node-sshkey",
+            "aws_security_group.eks-node-sg",
+            "data.aws_caller_identity.this",
+            "data.aws_ssm_parameter.eks_ami_release_version",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_iam_instance_profile",
+      "name": "eks-bast-iam-profile",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:iam::040216112220:instance-profile/eksBastIamProfile",
+            "create_date": "2023-02-17T15:56:40Z",
+            "id": "eksBastIamProfile",
+            "name": "eksBastIamProfile",
+            "name_prefix": null,
+            "path": "/",
+            "role": "lab-apne1-xpk-iac-bast-role",
+            "tags": {},
+            "tags_all": {},
+            "unique_id": "AIPAQSXIRFROCNYS4TDKZ"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "aws_iam_role.eks-bast-role",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_iam_role",
+      "name": "eks-bast-role",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-bast-role",
+            "assume_role_policy": "{\"Statement\":[{\"Action\":\"sts:AssumeRole\",\"Effect\":\"Allow\",\"Principal\":{\"Service\":\"ec2.amazonaws.com\"}}],\"Version\":\"2012-10-17\"}",
+            "create_date": "2023-02-17T15:56:38Z",
+            "description": "",
+            "force_detach_policies": false,
+            "id": "lab-apne1-xpk-iac-bast-role",
+            "inline_policy": [
+              {
+                "name": "eks-bast-policy",
+                "policy": "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Action\":[\"eks:*\",\"ecr:*\"],\"Effect\":\"Allow\",\"Resource\":\"*\"}]}"
+              }
+            ],
+            "managed_policy_arns": [
+              "arn:aws:iam::aws:policy/ReadOnlyAccess"
+            ],
+            "max_session_duration": 3600,
+            "name": "lab-apne1-xpk-iac-bast-role",
+            "name_prefix": "",
+            "path": "/",
+            "permissions_boundary": null,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "unique_id": "AROAQSXIRFROKCCCEKJHZ"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_iam_role",
+      "name": "eks-cluster-role",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-cluster-role",
+            "assume_role_policy": "{\"Statement\":[{\"Action\":\"sts:AssumeRole\",\"Effect\":\"Allow\",\"Principal\":{\"Service\":\"eks.amazonaws.com\"}}],\"Version\":\"2012-10-17\"}",
+            "create_date": "2023-02-17T15:56:38Z",
+            "description": "",
+            "force_detach_policies": false,
+            "id": "lab-apne1-xpk-iac-cluster-role",
+            "inline_policy": [],
+            "managed_policy_arns": [
+              "arn:aws:iam::aws:policy/AmazonEKSClusterPolicy",
+              "arn:aws:iam::aws:policy/AmazonEKSVPCResourceController"
+            ],
+            "max_session_duration": 3600,
+            "name": "lab-apne1-xpk-iac-cluster-role",
+            "name_prefix": "",
+            "path": "/",
+            "permissions_boundary": null,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "unique_id": "AROAQSXIRFROG72GSP5PP"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_iam_role",
+      "name": "eks-nodegroup-role",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-nodegroup-role",
+            "assume_role_policy": "{\"Statement\":[{\"Action\":\"sts:AssumeRole\",\"Effect\":\"Allow\",\"Principal\":{\"Service\":\"ec2.amazonaws.com\"}}],\"Version\":\"2012-10-17\"}",
+            "create_date": "2023-02-17T15:56:38Z",
+            "description": "",
+            "force_detach_policies": false,
+            "id": "lab-apne1-xpk-iac-nodegroup-role",
+            "inline_policy": [
+              {
+                "name": "AlbIngressAccess",
+                "policy": "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Action\":[\"elasticloadbalancing:*\"],\"Effect\":\"Allow\",\"Resource\":\"*\"}]}"
+              },
+              {
+                "name": "IP6CniAccess",
+                "policy": "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Action\":[\"ec2:AssignIpv6Addresses\",\"ec2:DescribeInstances\",\"ec2:DescribeTags\",\"ec2:DescribeNetworkInterfaces\",\"ec2:DescribeInstanceTypes\"],\"Effect\":\"Allow\",\"Resource\":\"*\"},{\"Action\":[\"ec2:CreateTags\"],\"Effect\":\"Allow\",\"Resource\":[\"arn:aws:ec2:*:*:network-interface/*\"]}]}"
+              }
+            ],
+            "managed_policy_arns": [
+              "arn:aws:iam::aws:policy/AmazonEC2ContainerRegistryReadOnly",
+              "arn:aws:iam::aws:policy/AmazonEKSWorkerNodePolicy",
+              "arn:aws:iam::aws:policy/AmazonEKS_CNI_Policy",
+              "arn:aws:iam::aws:policy/CloudWatchAgentServerPolicy"
+            ],
+            "max_session_duration": 3600,
+            "name": "lab-apne1-xpk-iac-nodegroup-role",
+            "name_prefix": "",
+            "path": "/",
+            "permissions_boundary": null,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "unique_id": "AROAQSXIRFRODKJMCAJDS"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_instance",
+      "name": "eks-bast",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "ami": "ami-0778fde4cd5a48d8d",
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:instance/i-04e1eaa61f3426100",
+            "associate_public_ip_address": true,
+            "availability_zone": "ap-northeast-1a",
+            "capacity_reservation_specification": [
+              {
+                "capacity_reservation_preference": "open",
+                "capacity_reservation_target": []
+              }
+            ],
+            "cpu_core_count": 1,
+            "cpu_threads_per_core": 2,
+            "credit_specification": [
+              {
+                "cpu_credits": "unlimited"
+              }
+            ],
+            "disable_api_stop": false,
+            "disable_api_termination": false,
+            "ebs_block_device": [],
+            "ebs_optimized": true,
+            "enclave_options": [
+              {
+                "enabled": false
+              }
+            ],
+            "ephemeral_block_device": [],
+            "get_password_data": false,
+            "hibernation": false,
+            "host_id": "",
+            "host_resource_group_arn": null,
+            "iam_instance_profile": "eksBastIamProfile",
+            "id": "i-04e1eaa61f3426100",
+            "instance_initiated_shutdown_behavior": "stop",
+            "instance_state": "running",
+            "instance_type": "t3.micro",
+            "ipv6_address_count": 1,
+            "ipv6_addresses": [
+              "2406:da14:ece:ed02:fdaa:ae3a:1da9:da57"
+            ],
+            "key_name": "lab-apne1-xpk-iac-eks-node-sshkey",
+            "launch_template": [],
+            "maintenance_options": [
+              {
+                "auto_recovery": "default"
+              }
+            ],
+            "metadata_options": [
+              {
+                "http_endpoint": "enabled",
+                "http_put_response_hop_limit": 1,
+                "http_tokens": "optional",
+                "instance_metadata_tags": "disabled"
+              }
+            ],
+            "monitoring": false,
+            "network_interface": [],
+            "outpost_arn": "",
+            "password_data": "",
+            "placement_group": "",
+            "placement_partition_number": 0,
+            "primary_network_interface_id": "eni-07665a545e5796445",
+            "private_dns": "ip-192-168-123-187.ap-northeast-1.compute.internal",
+            "private_dns_name_options": [
+              {
+                "enable_resource_name_dns_a_record": false,
+                "enable_resource_name_dns_aaaa_record": false,
+                "hostname_type": "ip-name"
+              }
+            ],
+            "private_ip": "192.168.123.187",
+            "public_dns": "ec2-54-95-19-38.ap-northeast-1.compute.amazonaws.com",
+            "public_ip": "54.95.19.38",
+            "root_block_device": [
+              {
+                "delete_on_termination": true,
+                "device_name": "/dev/sda1",
+                "encrypted": false,
+                "iops": 3000,
+                "kms_key_id": "",
+                "tags": {
+                  "Application": "eks",
+                  "BuildDate": "20230217",
+                  "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+                  "Environment": "lab",
+                  "Project": "iac",
+                  "ServiceProvider": "None",
+                  "TerraformDir": "eks-lab-ip6/eks",
+                  "TerraformMode": "managed"
+                },
+                "throughput": 125,
+                "volume_id": "vol-06827b2ef485e2fc2",
+                "volume_size": 8,
+                "volume_type": "gp3"
+              }
+            ],
+            "secondary_private_ips": [],
+            "security_groups": [],
+            "source_dest_check": true,
+            "subnet_id": "subnet-0836e26b02828e6b7",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-eks-bast",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-eks-bast",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tenancy": "default",
+            "timeouts": null,
+            "user_data": "3165d47d1d63f7610a4e1107f2d1cf8aff854f78",
+            "user_data_base64": null,
+            "user_data_replace_on_change": false,
+            "volume_tags": null,
+            "vpc_security_group_ids": [
+              "sg-06d1c1aa26b1ecb36",
+              "sg-0b2b250f4303111e3"
+            ]
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMCwidXBkYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_instance_profile.eks-bast-iam-profile",
+            "aws_iam_role.eks-bast-role",
+            "aws_iam_role.eks-cluster-role",
+            "aws_key_pair.eks-node-sshkey",
+            "aws_security_group.eks-bast-sg",
+            "data.aws_ami.ubuntu",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_key_pair",
+      "name": "eks-node-sshkey",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:key-pair/lab-apne1-xpk-iac-eks-node-sshkey",
+            "fingerprint": "TVzf3htvZnxMd+PpGafCtDQf8Fse5IHgH3Z6mY23CLg=",
+            "id": "lab-apne1-xpk-iac-eks-node-sshkey",
+            "key_name": "lab-apne1-xpk-iac-eks-node-sshkey",
+            "key_name_prefix": "",
+            "key_pair_id": "key-007639e96f5927e8d",
+            "key_type": "ed25519",
+            "public_key": "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINCcQafdzARq/6kwpdi8/cqMNikH4+j/ClyuZBmeHfXC kn@ism.zoo.lo",
+            "tags": {},
+            "tags_all": {}
+          },
+          "sensitive_attributes": [],
+          "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjEifQ=="
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_security_group",
+      "name": "eks-bast-sg",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:security-group/sg-0b2b250f4303111e3",
+            "description": "Allow ssh to EKS bast",
+            "egress": [
+              {
+                "cidr_blocks": [
+                  "0.0.0.0/0"
+                ],
+                "description": "",
+                "from_port": 0,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "-1",
+                "security_groups": [],
+                "self": false,
+                "to_port": 0
+              }
+            ],
+            "id": "sg-0b2b250f4303111e3",
+            "ingress": [
+              {
+                "cidr_blocks": [
+                  "223.18.148.85/32"
+                ],
+                "description": "SSH from VPC",
+                "from_port": 22,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "tcp",
+                "security_groups": [],
+                "self": false,
+                "to_port": 22
+              }
+            ],
+            "name": "lab-apne1-xpk-iac-eks-bast-sg",
+            "name_prefix": "",
+            "owner_id": "040216112220",
+            "revoke_rules_on_delete": false,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=",
+          "dependencies": [
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_security_group",
+      "name": "eks-node-sg",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:security-group/sg-0133aa07a88ba44e6",
+            "description": "Allow ssh to EKS nodes",
+            "egress": [
+              {
+                "cidr_blocks": [
+                  "0.0.0.0/0"
+                ],
+                "description": "",
+                "from_port": 0,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "-1",
+                "security_groups": [],
+                "self": false,
+                "to_port": 0
+              }
+            ],
+            "id": "sg-0133aa07a88ba44e6",
+            "ingress": [
+              {
+                "cidr_blocks": [
+                  "192.168.123.0/24"
+                ],
+                "description": "SSH from VPC",
+                "from_port": 22,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "tcp",
+                "security_groups": [],
+                "self": false,
+                "to_port": 22
+              }
+            ],
+            "name": "lab-apne1-xpk-iac-eks-node-sg",
+            "name_prefix": "",
+            "owner_id": "040216112220",
+            "revoke_rules_on_delete": false,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=",
+          "dependencies": [
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    }
+  ],
+  "check_results": null
+}
diff --git a/examples/eks-lab-ip6/eks/terraform.tfstate.backup b/examples/eks-lab-ip6/eks/terraform.tfstate.backup
new file mode 100644
index 0000000..32db705
--- /dev/null
+++ b/examples/eks-lab-ip6/eks/terraform.tfstate.backup
@@ -0,0 +1,1078 @@
+{
+  "version": 4,
+  "terraform_version": "1.3.7",
+  "serial": 104,
+  "lineage": "e0d414eb-906c-60be-de6d-96009052882f",
+  "outputs": {
+    "eks-bast-ip": {
+      "value": "54.95.19.38",
+      "type": "string"
+    }
+  },
+  "resources": [
+    {
+      "mode": "data",
+      "type": "aws_ami",
+      "name": "ubuntu",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "architecture": "x86_64",
+            "arn": "arn:aws:ec2:ap-northeast-1::image/ami-0778fde4cd5a48d8d",
+            "block_device_mappings": [
+              {
+                "device_name": "/dev/sda1",
+                "ebs": {
+                  "delete_on_termination": "true",
+                  "encrypted": "false",
+                  "iops": "0",
+                  "snapshot_id": "snap-0741d099f4894a808",
+                  "throughput": "0",
+                  "volume_size": "8",
+                  "volume_type": "gp2"
+                },
+                "no_device": "",
+                "virtual_name": ""
+              },
+              {
+                "device_name": "/dev/sdb",
+                "ebs": {},
+                "no_device": "",
+                "virtual_name": "ephemeral0"
+              },
+              {
+                "device_name": "/dev/sdc",
+                "ebs": {},
+                "no_device": "",
+                "virtual_name": "ephemeral1"
+              }
+            ],
+            "boot_mode": "",
+            "creation_date": "2023-02-16T02:48:34.000Z",
+            "deprecation_time": "2025-02-16T02:48:33.000Z",
+            "description": "Canonical, Ubuntu, 22.04 LTS, amd64 jammy image build on 2023-02-16",
+            "ena_support": true,
+            "executable_users": null,
+            "filter": [
+              {
+                "name": "name",
+                "values": [
+                  "ubuntu/images/hvm-ssd/ubuntu-*-amd64-server-*"
+                ]
+              },
+              {
+                "name": "virtualization-type",
+                "values": [
+                  "hvm"
+                ]
+              }
+            ],
+            "hypervisor": "xen",
+            "id": "ami-0778fde4cd5a48d8d",
+            "image_id": "ami-0778fde4cd5a48d8d",
+            "image_location": "amazon/ubuntu/images/hvm-ssd/ubuntu-jammy-22.04-amd64-server-20230216",
+            "image_owner_alias": "amazon",
+            "image_type": "machine",
+            "imds_support": "",
+            "include_deprecated": false,
+            "kernel_id": "",
+            "most_recent": true,
+            "name": "ubuntu/images/hvm-ssd/ubuntu-jammy-22.04-amd64-server-20230216",
+            "name_regex": null,
+            "owner_id": "099720109477",
+            "owners": [
+              "099720109477"
+            ],
+            "platform": "",
+            "platform_details": "Linux/UNIX",
+            "product_codes": [],
+            "public": true,
+            "ramdisk_id": "",
+            "root_device_name": "/dev/sda1",
+            "root_device_type": "ebs",
+            "root_snapshot_id": "snap-0741d099f4894a808",
+            "sriov_net_support": "simple",
+            "state": "available",
+            "state_reason": {
+              "code": "UNSET",
+              "message": "UNSET"
+            },
+            "tags": {},
+            "timeouts": null,
+            "tpm_support": "",
+            "usage_operation": "RunInstances",
+            "virtualization_type": "hvm"
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "data",
+      "type": "aws_caller_identity",
+      "name": "this",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "account_id": "040216112220",
+            "arn": "arn:aws:iam::040216112220:user/ken2026",
+            "id": "040216112220",
+            "user_id": "AIDAQSXIRFROOXYISSIEQ"
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "data",
+      "type": "aws_ssm_parameter",
+      "name": "eks_ami_release_version",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:ssm:ap-northeast-1::parameter/aws/service/eks/optimized-ami/1.24/amazon-linux-2/recommended/release_version",
+            "id": "/aws/service/eks/optimized-ami/1.24/amazon-linux-2/recommended/release_version",
+            "name": "/aws/service/eks/optimized-ami/1.24/amazon-linux-2/recommended/release_version",
+            "type": "String",
+            "value": "1.24.10-20230211",
+            "version": 7,
+            "with_decryption": true
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "data",
+      "type": "terraform_remote_state",
+      "name": "vpc",
+      "provider": "provider[\"terraform.io/builtin/terraform\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "backend": "local",
+            "config": {
+              "value": {
+                "path": "../network/terraform.tfstate"
+              },
+              "type": [
+                "object",
+                {
+                  "path": "string"
+                }
+              ]
+            },
+            "defaults": null,
+            "outputs": {
+              "value": {
+                "private-subnet-ids": [
+                  "subnet-0a9f75c427054ca39",
+                  "subnet-03837a4f086fe607a"
+                ],
+                "public-subnet-ids": [
+                  "subnet-0836e26b02828e6b7",
+                  "subnet-0269d50d924f5c3ad"
+                ],
+                "vpc-cidr": "192.168.123.0/24",
+                "vpc-cidr6": "2406:da14:ece:ed00::/56",
+                "vpc-id": "vpc-051d8405604cd730d"
+              },
+              "type": [
+                "object",
+                {
+                  "private-subnet-ids": [
+                    "tuple",
+                    [
+                      "string",
+                      "string"
+                    ]
+                  ],
+                  "public-subnet-ids": [
+                    "tuple",
+                    [
+                      "string",
+                      "string"
+                    ]
+                  ],
+                  "vpc-cidr": "string",
+                  "vpc-cidr6": "string",
+                  "vpc-id": "string"
+                }
+              ]
+            },
+            "workspace": null
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_eks_addon",
+      "name": "eks-addons",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "index_key": "aws-ebs-csi-driver",
+          "schema_version": 0,
+          "attributes": {
+            "addon_name": "aws-ebs-csi-driver",
+            "addon_version": "v1.15.0-eksbuild.1",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:addon/lab-apne1-xpk-iac-cluster01/aws-ebs-csi-driver/8ec33013-8fa2-683d-a6dc-723ecf03a0ea",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "configuration_values": "",
+            "created_at": "2023-02-17T16:13:42Z",
+            "id": "lab-apne1-xpk-iac-cluster01:aws-ebs-csi-driver",
+            "modified_at": "2023-02-17T16:14:24Z",
+            "preserve": null,
+            "resolve_conflicts": null,
+            "service_account_role_arn": "",
+            "tags": {},
+            "tags_all": {},
+            "timeouts": null
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjI0MDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        },
+        {
+          "index_key": "coredns",
+          "schema_version": 0,
+          "attributes": {
+            "addon_name": "coredns",
+            "addon_version": "v1.9.3-eksbuild.2",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:addon/lab-apne1-xpk-iac-cluster01/coredns/0ac33013-8fa8-3dca-2003-9ee481458e17",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "configuration_values": "",
+            "created_at": "2023-02-17T16:13:42Z",
+            "id": "lab-apne1-xpk-iac-cluster01:coredns",
+            "modified_at": "2023-02-17T16:13:49Z",
+            "preserve": null,
+            "resolve_conflicts": null,
+            "service_account_role_arn": "",
+            "tags": {},
+            "tags_all": {},
+            "timeouts": null
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjI0MDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        },
+        {
+          "index_key": "kube-proxy",
+          "schema_version": 0,
+          "attributes": {
+            "addon_name": "kube-proxy",
+            "addon_version": "v1.24.9-eksbuild.2",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:addon/lab-apne1-xpk-iac-cluster01/kube-proxy/04c33011-16bd-8013-825c-3471eb291808",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "configuration_values": "",
+            "created_at": "2023-02-17T16:08:18Z",
+            "id": "lab-apne1-xpk-iac-cluster01:kube-proxy",
+            "modified_at": "2023-02-17T16:10:50Z",
+            "preserve": null,
+            "resolve_conflicts": null,
+            "service_account_role_arn": "",
+            "tags": {},
+            "tags_all": {},
+            "timeouts": null
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjI0MDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        },
+        {
+          "index_key": "vpc-cni",
+          "schema_version": 0,
+          "attributes": {
+            "addon_name": "vpc-cni",
+            "addon_version": "v1.12.2-eksbuild.1",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:addon/lab-apne1-xpk-iac-cluster01/vpc-cni/5cc33014-2733-d850-c1ed-df64b9621810",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "configuration_values": "",
+            "created_at": "2023-02-17T16:15:00Z",
+            "id": "lab-apne1-xpk-iac-cluster01:vpc-cni",
+            "modified_at": "2023-02-17T16:15:32Z",
+            "preserve": null,
+            "resolve_conflicts": null,
+            "service_account_role_arn": "",
+            "tags": null,
+            "tags_all": {},
+            "timeouts": null
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjI0MDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_eks_cluster",
+      "name": "eks-cluster",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:cluster/lab-apne1-xpk-iac-cluster01",
+            "certificate_authority": [
+              {
+                "data": "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"
+              }
+            ],
+            "cluster_id": null,
+            "created_at": "2023-02-17 15:56:41.857 +0000 UTC",
+            "enabled_cluster_log_types": [
+              "api",
+              "audit"
+            ],
+            "encryption_config": [],
+            "endpoint": "https://475E2975E4648AD77DD4E849BD95E5B2.yl4.ap-northeast-1.eks.amazonaws.com",
+            "id": "lab-apne1-xpk-iac-cluster01",
+            "identity": [
+              {
+                "oidc": [
+                  {
+                    "issuer": "https://oidc.eks.ap-northeast-1.amazonaws.com/id/475E2975E4648AD77DD4E849BD95E5B2"
+                  }
+                ]
+              }
+            ],
+            "kubernetes_network_config": [
+              {
+                "ip_family": "ipv6",
+                "service_ipv4_cidr": "",
+                "service_ipv6_cidr": "fd14:a154:0597::/108"
+              }
+            ],
+            "name": "lab-apne1-xpk-iac-cluster01",
+            "outpost_config": [],
+            "platform_version": "eks.4",
+            "role_arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-cluster-role",
+            "status": "ACTIVE",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "version": "1.24",
+            "vpc_config": [
+              {
+                "cluster_security_group_id": "sg-06d1c1aa26b1ecb36",
+                "endpoint_private_access": true,
+                "endpoint_public_access": false,
+                "public_access_cidrs": [],
+                "security_group_ids": [],
+                "subnet_ids": [
+                  "subnet-03837a4f086fe607a",
+                  "subnet-0a9f75c427054ca39"
+                ],
+                "vpc_id": "vpc-051d8405604cd730d"
+              }
+            ]
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxODAwMDAwMDAwMDAwLCJkZWxldGUiOjkwMDAwMDAwMDAwMCwidXBkYXRlIjozNjAwMDAwMDAwMDAwfX0=",
+          "dependencies": [
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_eks_node_group",
+      "name": "eks-nodegroup",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "ami_type": "AL2_x86_64",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:nodegroup/lab-apne1-xpk-iac-cluster01/lab-apne1-xpk-iac-eks-ng20230217160818250600000006/86c33011-175b-a971-ef8e-b3473185ec85",
+            "capacity_type": "ON_DEMAND",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "disk_size": 20,
+            "force_update_version": null,
+            "id": "lab-apne1-xpk-iac-cluster01:lab-apne1-xpk-iac-eks-ng20230217160818250600000006",
+            "instance_types": [
+              "t3.large"
+            ],
+            "labels": {},
+            "launch_template": [],
+            "node_group_name": "lab-apne1-xpk-iac-eks-ng20230217160818250600000006",
+            "node_group_name_prefix": "lab-apne1-xpk-iac-eks-ng",
+            "node_role_arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-nodegroup-role",
+            "release_version": "1.24.10-20230211",
+            "remote_access": [
+              {
+                "ec2_ssh_key": "lab-apne1-xpk-iac-eks-node-sshkey",
+                "source_security_group_ids": [
+                  "sg-0133aa07a88ba44e6"
+                ]
+              }
+            ],
+            "resources": [
+              {
+                "autoscaling_groups": [
+                  {
+                    "name": "eks-lab-apne1-xpk-iac-eks-ng20230217160818250600000006-86c33011-175b-a971-ef8e-b3473185ec85"
+                  }
+                ],
+                "remote_access_security_group_id": "sg-0730ca6a4f7afce14"
+              }
+            ],
+            "scaling_config": [
+              {
+                "desired_size": 1,
+                "max_size": 2,
+                "min_size": 1
+              }
+            ],
+            "status": "ACTIVE",
+            "subnet_ids": [
+              "subnet-03837a4f086fe607a",
+              "subnet-0a9f75c427054ca39"
+            ],
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "taint": [],
+            "timeouts": null,
+            "update_config": [
+              {
+                "max_unavailable": 1,
+                "max_unavailable_percentage": 0
+              }
+            ],
+            "version": "1.24"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozNjAwMDAwMDAwMDAwLCJkZWxldGUiOjM2MDAwMDAwMDAwMDAsInVwZGF0ZSI6MzYwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "aws_iam_role.eks-nodegroup-role",
+            "aws_key_pair.eks-node-sshkey",
+            "aws_security_group.eks-node-sg",
+            "data.aws_caller_identity.this",
+            "data.aws_ssm_parameter.eks_ami_release_version",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_iam_instance_profile",
+      "name": "eks-bast-iam-profile",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:iam::040216112220:instance-profile/eksBastIamProfile",
+            "create_date": "2023-02-17T15:56:40Z",
+            "id": "eksBastIamProfile",
+            "name": "eksBastIamProfile",
+            "name_prefix": null,
+            "path": "/",
+            "role": "lab-apne1-xpk-iac-bast-role",
+            "tags": {},
+            "tags_all": {},
+            "unique_id": "AIPAQSXIRFROCNYS4TDKZ"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "aws_iam_role.eks-bast-role",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_iam_role",
+      "name": "eks-bast-role",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-bast-role",
+            "assume_role_policy": "{\"Statement\":[{\"Action\":\"sts:AssumeRole\",\"Effect\":\"Allow\",\"Principal\":{\"Service\":\"ec2.amazonaws.com\"}}],\"Version\":\"2012-10-17\"}",
+            "create_date": "2023-02-17T15:56:38Z",
+            "description": "",
+            "force_detach_policies": false,
+            "id": "lab-apne1-xpk-iac-bast-role",
+            "inline_policy": [
+              {
+                "name": "eks-bast-policy",
+                "policy": "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Action\":[\"eks:*\",\"ecr:*\"],\"Effect\":\"Allow\",\"Resource\":\"*\"}]}"
+              }
+            ],
+            "managed_policy_arns": [
+              "arn:aws:iam::aws:policy/ReadOnlyAccess"
+            ],
+            "max_session_duration": 3600,
+            "name": "lab-apne1-xpk-iac-bast-role",
+            "name_prefix": "",
+            "path": "/",
+            "permissions_boundary": null,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "unique_id": "AROAQSXIRFROKCCCEKJHZ"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_iam_role",
+      "name": "eks-cluster-role",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-cluster-role",
+            "assume_role_policy": "{\"Statement\":[{\"Action\":\"sts:AssumeRole\",\"Effect\":\"Allow\",\"Principal\":{\"Service\":\"eks.amazonaws.com\"}}],\"Version\":\"2012-10-17\"}",
+            "create_date": "2023-02-17T15:56:38Z",
+            "description": "",
+            "force_detach_policies": false,
+            "id": "lab-apne1-xpk-iac-cluster-role",
+            "inline_policy": [],
+            "managed_policy_arns": [
+              "arn:aws:iam::aws:policy/AmazonEKSClusterPolicy",
+              "arn:aws:iam::aws:policy/AmazonEKSVPCResourceController"
+            ],
+            "max_session_duration": 3600,
+            "name": "lab-apne1-xpk-iac-cluster-role",
+            "name_prefix": "",
+            "path": "/",
+            "permissions_boundary": null,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "unique_id": "AROAQSXIRFROG72GSP5PP"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_iam_role",
+      "name": "eks-nodegroup-role",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-nodegroup-role",
+            "assume_role_policy": "{\"Statement\":[{\"Action\":\"sts:AssumeRole\",\"Effect\":\"Allow\",\"Principal\":{\"Service\":\"ec2.amazonaws.com\"}}],\"Version\":\"2012-10-17\"}",
+            "create_date": "2023-02-17T15:56:38Z",
+            "description": "",
+            "force_detach_policies": false,
+            "id": "lab-apne1-xpk-iac-nodegroup-role",
+            "inline_policy": [
+              {
+                "name": "AlbIngressAccess",
+                "policy": "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Action\":[\"elasticloadbalancing:*\"],\"Effect\":\"Allow\",\"Resource\":\"*\"}]}"
+              },
+              {
+                "name": "IP6CniAccess",
+                "policy": "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Action\":[\"ec2:AssignIpv6Addresses\",\"ec2:DescribeInstances\",\"ec2:DescribeTags\",\"ec2:DescribeNetworkInterfaces\",\"ec2:DescribeInstanceTypes\"],\"Effect\":\"Allow\",\"Resource\":\"*\"},{\"Action\":[\"ec2:CreateTags\"],\"Effect\":\"Allow\",\"Resource\":[\"arn:aws:ec2:*:*:network-interface/*\"]}]}"
+              }
+            ],
+            "managed_policy_arns": [
+              "arn:aws:iam::aws:policy/AmazonEC2ContainerRegistryReadOnly",
+              "arn:aws:iam::aws:policy/AmazonEKSWorkerNodePolicy",
+              "arn:aws:iam::aws:policy/AmazonEKS_CNI_Policy",
+              "arn:aws:iam::aws:policy/CloudWatchAgentServerPolicy"
+            ],
+            "max_session_duration": 3600,
+            "name": "lab-apne1-xpk-iac-nodegroup-role",
+            "name_prefix": "",
+            "path": "/",
+            "permissions_boundary": null,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "unique_id": "AROAQSXIRFRODKJMCAJDS"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_instance",
+      "name": "eks-bast",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "ami": "ami-0778fde4cd5a48d8d",
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:instance/i-04e1eaa61f3426100",
+            "associate_public_ip_address": true,
+            "availability_zone": "ap-northeast-1a",
+            "capacity_reservation_specification": [
+              {
+                "capacity_reservation_preference": "open",
+                "capacity_reservation_target": []
+              }
+            ],
+            "cpu_core_count": 1,
+            "cpu_threads_per_core": 2,
+            "credit_specification": [
+              {
+                "cpu_credits": "unlimited"
+              }
+            ],
+            "disable_api_stop": false,
+            "disable_api_termination": false,
+            "ebs_block_device": [],
+            "ebs_optimized": true,
+            "enclave_options": [
+              {
+                "enabled": false
+              }
+            ],
+            "ephemeral_block_device": [],
+            "get_password_data": false,
+            "hibernation": false,
+            "host_id": "",
+            "host_resource_group_arn": null,
+            "iam_instance_profile": "eksBastIamProfile",
+            "id": "i-04e1eaa61f3426100",
+            "instance_initiated_shutdown_behavior": "stop",
+            "instance_state": "running",
+            "instance_type": "t3.micro",
+            "ipv6_address_count": 1,
+            "ipv6_addresses": [
+              "2406:da14:ece:ed02:fdaa:ae3a:1da9:da57"
+            ],
+            "key_name": "lab-apne1-xpk-iac-eks-node-sshkey",
+            "launch_template": [],
+            "maintenance_options": [
+              {
+                "auto_recovery": "default"
+              }
+            ],
+            "metadata_options": [
+              {
+                "http_endpoint": "enabled",
+                "http_put_response_hop_limit": 1,
+                "http_tokens": "optional",
+                "instance_metadata_tags": "disabled"
+              }
+            ],
+            "monitoring": false,
+            "network_interface": [],
+            "outpost_arn": "",
+            "password_data": "",
+            "placement_group": "",
+            "placement_partition_number": 0,
+            "primary_network_interface_id": "eni-07665a545e5796445",
+            "private_dns": "ip-192-168-123-187.ap-northeast-1.compute.internal",
+            "private_dns_name_options": [
+              {
+                "enable_resource_name_dns_a_record": false,
+                "enable_resource_name_dns_aaaa_record": false,
+                "hostname_type": "ip-name"
+              }
+            ],
+            "private_ip": "192.168.123.187",
+            "public_dns": "ec2-54-95-19-38.ap-northeast-1.compute.amazonaws.com",
+            "public_ip": "54.95.19.38",
+            "root_block_device": [
+              {
+                "delete_on_termination": true,
+                "device_name": "/dev/sda1",
+                "encrypted": false,
+                "iops": 3000,
+                "kms_key_id": "",
+                "tags": {
+                  "Application": "eks",
+                  "BuildDate": "20230217",
+                  "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+                  "Environment": "lab",
+                  "Project": "iac",
+                  "ServiceProvider": "None",
+                  "TerraformDir": "eks-lab-ip6/eks",
+                  "TerraformMode": "managed"
+                },
+                "throughput": 125,
+                "volume_id": "vol-06827b2ef485e2fc2",
+                "volume_size": 8,
+                "volume_type": "gp3"
+              }
+            ],
+            "secondary_private_ips": [],
+            "security_groups": [],
+            "source_dest_check": true,
+            "subnet_id": "subnet-0836e26b02828e6b7",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-eks-bast",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-eks-bast",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tenancy": "default",
+            "timeouts": null,
+            "user_data": "3165d47d1d63f7610a4e1107f2d1cf8aff854f78",
+            "user_data_base64": null,
+            "user_data_replace_on_change": false,
+            "volume_tags": null,
+            "vpc_security_group_ids": [
+              "sg-06d1c1aa26b1ecb36",
+              "sg-0b2b250f4303111e3"
+            ]
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMCwidXBkYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_instance_profile.eks-bast-iam-profile",
+            "aws_iam_role.eks-bast-role",
+            "aws_iam_role.eks-cluster-role",
+            "aws_key_pair.eks-node-sshkey",
+            "aws_security_group.eks-bast-sg",
+            "data.aws_ami.ubuntu",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_key_pair",
+      "name": "eks-node-sshkey",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:key-pair/lab-apne1-xpk-iac-eks-node-sshkey",
+            "fingerprint": "TVzf3htvZnxMd+PpGafCtDQf8Fse5IHgH3Z6mY23CLg=",
+            "id": "lab-apne1-xpk-iac-eks-node-sshkey",
+            "key_name": "lab-apne1-xpk-iac-eks-node-sshkey",
+            "key_name_prefix": "",
+            "key_pair_id": "key-007639e96f5927e8d",
+            "key_type": "ed25519",
+            "public_key": "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINCcQafdzARq/6kwpdi8/cqMNikH4+j/ClyuZBmeHfXC kn@ism.zoo.lo",
+            "tags": {},
+            "tags_all": {}
+          },
+          "sensitive_attributes": [],
+          "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjEifQ=="
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_security_group",
+      "name": "eks-bast-sg",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:security-group/sg-0b2b250f4303111e3",
+            "description": "Allow ssh to EKS bast",
+            "egress": [
+              {
+                "cidr_blocks": [
+                  "0.0.0.0/0"
+                ],
+                "description": "",
+                "from_port": 0,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "-1",
+                "security_groups": [],
+                "self": false,
+                "to_port": 0
+              }
+            ],
+            "id": "sg-0b2b250f4303111e3",
+            "ingress": [
+              {
+                "cidr_blocks": [
+                  "223.18.148.85/32"
+                ],
+                "description": "SSH from VPC",
+                "from_port": 22,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "tcp",
+                "security_groups": [],
+                "self": false,
+                "to_port": 22
+              }
+            ],
+            "name": "lab-apne1-xpk-iac-eks-bast-sg",
+            "name_prefix": "",
+            "owner_id": "040216112220",
+            "revoke_rules_on_delete": false,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=",
+          "dependencies": [
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_security_group",
+      "name": "eks-node-sg",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:security-group/sg-0133aa07a88ba44e6",
+            "description": "Allow ssh to EKS nodes",
+            "egress": [
+              {
+                "cidr_blocks": [
+                  "0.0.0.0/0"
+                ],
+                "description": "",
+                "from_port": 0,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "-1",
+                "security_groups": [],
+                "self": false,
+                "to_port": 0
+              }
+            ],
+            "id": "sg-0133aa07a88ba44e6",
+            "ingress": [
+              {
+                "cidr_blocks": [
+                  "192.168.123.0/24"
+                ],
+                "description": "SSH from VPC",
+                "from_port": 22,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "tcp",
+                "security_groups": [],
+                "self": false,
+                "to_port": 22
+              }
+            ],
+            "name": "lab-apne1-xpk-iac-eks-node-sg",
+            "name_prefix": "",
+            "owner_id": "040216112220",
+            "revoke_rules_on_delete": false,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/eks",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=",
+          "dependencies": [
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    }
+  ],
+  "check_results": null
+}
diff --git a/examples/eks-lab-ip6/eks/terraform.tfvars b/examples/eks-lab-ip6/eks/terraform.tfvars
new file mode 100644
index 0000000..e8f7cea
--- /dev/null
+++ b/examples/eks-lab-ip6/eks/terraform.tfvars
@@ -0,0 +1,6 @@
+aws-region          = "ap-northeast-1"
+aws-region-short    = "apne1"
+customer-name       = "xpk"
+environment         = "lab"
+project             = "iac"
+application         = "eks"
\ No newline at end of file
diff --git a/examples/eks-lab-ip6/eks/variables.tf b/examples/eks-lab-ip6/eks/variables.tf
new file mode 100644
index 0000000..eb16380
--- /dev/null
+++ b/examples/eks-lab-ip6/eks/variables.tf
@@ -0,0 +1,6 @@
+variable "aws-region" {}
+variable "aws-region-short" {}
+variable "customer-name" {}
+variable "environment" {}
+variable "project" {}
+variable "application" {}
\ No newline at end of file
diff --git a/examples/eks-lab-ip6/network/.terraform.lock.hcl b/examples/eks-lab-ip6/network/.terraform.lock.hcl
new file mode 100644
index 0000000..5e1c159
--- /dev/null
+++ b/examples/eks-lab-ip6/network/.terraform.lock.hcl
@@ -0,0 +1,10 @@
+# This file is maintained automatically by "terraform init".
+# Manual edits may be lost in future updates.
+
+provider "registry.terraform.io/hashicorp/aws" {
+  version     = "4.55.0"
+  constraints = ">= 3.25.0"
+  hashes = [
+    "h1:VHfmrKCb4oTW/+rWGKKqipoMOPd4tPxlGwMp0/Flx/s=",
+  ]
+}
diff --git a/examples/eks-lab-ip6/network/.terraform/providers/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64 b/examples/eks-lab-ip6/network/.terraform/providers/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64
new file mode 120000
index 0000000..612bb8d
--- /dev/null
+++ b/examples/eks-lab-ip6/network/.terraform/providers/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64
@@ -0,0 +1 @@
+/home/kn/.terraform.d/plugin-cache/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64
\ No newline at end of file
diff --git a/examples/eks-lab-ip6/network/README.md b/examples/eks-lab-ip6/network/README.md
new file mode 100644
index 0000000..df88fbd
--- /dev/null
+++ b/examples/eks-lab-ip6/network/README.md
@@ -0,0 +1,10 @@
+# eks-lab/network
+This module creates the following resources
+- VPC
+- Public and private subnets
+- NAT gateway
+
+Ipv6 is enabled on EKS subnets. See
+https://docs.aws.amazon.com/eks/latest/userguide/cni-ipv6.html
+https://docs.aws.amazon.com/eks/latest/userguide/cni-iam-role.html#cni-iam-role-create-ipv6-policy
+https://aws.amazon.com/premiumsupport/knowledge-center/eks-failed-create-pod-sandbox/
\ No newline at end of file
diff --git a/examples/eks-lab-ip6/network/locals.tf b/examples/eks-lab-ip6/network/locals.tf
new file mode 100644
index 0000000..8719f76
--- /dev/null
+++ b/examples/eks-lab-ip6/network/locals.tf
@@ -0,0 +1,18 @@
+data "aws_caller_identity" "this" {}
+
+locals {
+  default-tags = merge({
+    ServiceProvider = "None"
+    Environment     = var.environment
+    Project         = var.project
+    Application     = var.application
+    TerraformMode   = "managed"
+    TerraformDir    = "${local.path-cwd-list[length(local.path-cwd-list) - 2]}/${local.path-cwd-list[length(local.path-cwd-list) - 1]}"
+
+    CreatedBy = data.aws_caller_identity.this.arn
+    BuildDate = formatdate("YYYYMMDD", timestamp())
+  })
+  resource-prefix = "${var.environment}-${var.aws-region-short}-${var.customer-name}-${var.project}"
+  path-cwd-list   = split("/", path.cwd)
+
+}
\ No newline at end of file
diff --git a/examples/eks-lab-ip6/network/main.tf b/examples/eks-lab-ip6/network/main.tf
new file mode 100644
index 0000000..85f9304
--- /dev/null
+++ b/examples/eks-lab-ip6/network/main.tf
@@ -0,0 +1,133 @@
+# Create VPC and subnets
+
+resource "aws_vpc" "vpc1" {
+  cidr_block                       = "192.168.123.0/24"
+  assign_generated_ipv6_cidr_block = true
+  enable_dns_support               = true
+  enable_dns_hostnames             = true
+
+  tags = merge(local.default-tags, { "Name" : "${local.resource-prefix}-vpc1" })
+}
+
+data "aws_availability_zones" "azs" {
+  state = "available"
+}
+
+# kubernetes tag is needed for alb ingress controller
+resource "aws_subnet" "private-subnets" {
+  count                           = 2
+  availability_zone               = data.aws_availability_zones.azs.names[count.index]
+  vpc_id                          = aws_vpc.vpc1.id
+  cidr_block                      = cidrsubnet(aws_vpc.vpc1.cidr_block, 2, count.index)
+  assign_ipv6_address_on_creation = true
+  # ipv6 subnets must be a /64
+  ipv6_cidr_block                             = cidrsubnet(aws_vpc.vpc1.ipv6_cidr_block, 8, count.index)
+  enable_resource_name_dns_a_record_on_launch = true
+  tags = merge(local.default-tags,
+    { "Name" : "${local.resource-prefix}-private-${data.aws_availability_zones.azs.names[count.index]}" },
+    { "kubernetes.io/role/internal-elb" : "1" }
+  )
+}
+
+# kubernetes tag is needed for alb ingress controller
+resource "aws_subnet" "public-subnets" {
+  count                           = 2
+  availability_zone               = data.aws_availability_zones.azs.names[count.index]
+  vpc_id                          = aws_vpc.vpc1.id
+  cidr_block                      = cidrsubnet(aws_vpc.vpc1.cidr_block, 2, count.index + 2)
+  assign_ipv6_address_on_creation = true
+  # ipv6 subnets must be a /64
+  ipv6_cidr_block                             = cidrsubnet(aws_vpc.vpc1.ipv6_cidr_block, 8, count.index + 2)
+  enable_resource_name_dns_a_record_on_launch = true
+  tags = merge(local.default-tags,
+    { "Name" : "${local.resource-prefix}-public-${data.aws_availability_zones.azs.names[count.index]}" },
+    { "kubernetes.io/role/elb" : "1" }
+  )
+}
+
+resource "aws_internet_gateway" "igw" {
+  vpc_id = aws_vpc.vpc1.id
+  tags   = merge(local.default-tags, { "Name" : "${local.resource-prefix}-igw" })
+}
+
+resource "aws_eip" "ngw-ip" {
+  vpc = true
+}
+
+resource "aws_nat_gateway" "ngw" {
+  allocation_id = aws_eip.ngw-ip.id
+  subnet_id     = aws_subnet.public-subnets[0].id
+  tags          = merge(local.default-tags, { "Name" : "${local.resource-prefix}-ngw" })
+}
+
+resource "aws_route_table" "public-rtb" {
+  vpc_id = aws_vpc.vpc1.id
+  route {
+    cidr_block = "0.0.0.0/0"
+    gateway_id = aws_internet_gateway.igw.id
+  }
+  tags = merge(local.default-tags, { "Name" : "${local.resource-prefix}-public-rtb" })
+}
+
+resource "aws_route_table" "private-rtb" {
+  vpc_id = aws_vpc.vpc1.id
+  route {
+    cidr_block = "0.0.0.0/0"
+    gateway_id = aws_nat_gateway.ngw.id
+  }
+  tags = merge(local.default-tags, { "Name" : "${local.resource-prefix}-private-rtb" })
+}
+
+resource "aws_route_table_association" "public-rtb-asso" {
+  count          = length(aws_subnet.public-subnets)
+  subnet_id      = aws_subnet.public-subnets[count.index].id
+  route_table_id = aws_route_table.public-rtb.id
+}
+
+resource "aws_route_table_association" "private-rtb-asso" {
+  count          = length(aws_subnet.private-subnets)
+  subnet_id      = aws_subnet.private-subnets[count.index].id
+  route_table_id = aws_route_table.private-rtb.id
+}
+
+resource "aws_vpc_endpoint" "eks-vpcep" {
+  vpc_id              = aws_vpc.vpc1.id
+  service_name        = "com.amazonaws.${var.aws-region}.eks"
+  vpc_endpoint_type   = "Interface"
+  security_group_ids  = [aws_security_group.generic-ep-sg.id]
+  private_dns_enabled = true
+  subnet_ids          = aws_subnet.private-subnets.*.id
+  tags                = merge(local.default-tags, { "Name" : "${local.resource-prefix}-vpcep-eks" })
+}
+
+resource "aws_security_group" "generic-ep-sg" {
+  name        = "HttpsAccessToVpcEndpoints"
+  description = "HttpsAccessToVpcEndpoints"
+  vpc_id      = aws_vpc.vpc1.id
+
+  ingress {
+    description = "TLS from VPC"
+    from_port   = 443
+    to_port     = 443
+    protocol    = "tcp"
+    cidr_blocks = [aws_vpc.vpc1.cidr_block]
+  }
+
+  ingress {
+    description      = "TLS from VPC"
+    from_port        = 443
+    to_port          = 443
+    protocol         = "tcp"
+    ipv6_cidr_blocks = [aws_vpc.vpc1.ipv6_cidr_block]
+  }
+
+  egress {
+    from_port        = 0
+    to_port          = 0
+    protocol         = "-1"
+    cidr_blocks      = ["0.0.0.0/0"]
+    ipv6_cidr_blocks = ["::/0"]
+  }
+
+  tags = merge({ "Name" : "VpcEpAccess" }, local.default-tags)
+}
\ No newline at end of file
diff --git a/examples/eks-lab-ip6/network/outputs.tf b/examples/eks-lab-ip6/network/outputs.tf
new file mode 100644
index 0000000..67ae175
--- /dev/null
+++ b/examples/eks-lab-ip6/network/outputs.tf
@@ -0,0 +1,19 @@
+output vpc-cidr {
+  value = aws_vpc.vpc1.cidr_block
+}
+
+output vpc-cidr6 {
+  value = aws_vpc.vpc1.ipv6_cidr_block
+}
+
+output vpc-id {
+  value = aws_vpc.vpc1.id
+}
+
+output private-subnet-ids {
+  value = aws_subnet.private-subnets.*.id
+}
+
+output public-subnet-ids {
+  value = aws_subnet.public-subnets.*.id
+}
\ No newline at end of file
diff --git a/examples/eks-lab-ip6/network/provider.tf b/examples/eks-lab-ip6/network/provider.tf
new file mode 100644
index 0000000..a971ca5
--- /dev/null
+++ b/examples/eks-lab-ip6/network/provider.tf
@@ -0,0 +1,13 @@
+provider "aws" {
+  region = var.aws-region
+}
+
+terraform {
+  required_version = ">= 1.0"
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = ">= 3.25"
+    }
+  }
+}
diff --git a/examples/eks-lab-ip6/network/terraform.tfstate b/examples/eks-lab-ip6/network/terraform.tfstate
new file mode 100644
index 0000000..3bc3996
--- /dev/null
+++ b/examples/eks-lab-ip6/network/terraform.tfstate
@@ -0,0 +1,966 @@
+{
+  "version": 4,
+  "terraform_version": "1.3.7",
+  "serial": 107,
+  "lineage": "65963b11-e76c-9a8d-95d5-827c62984fca",
+  "outputs": {
+    "private-subnet-ids": {
+      "value": [
+        "subnet-0a9f75c427054ca39",
+        "subnet-03837a4f086fe607a"
+      ],
+      "type": [
+        "tuple",
+        [
+          "string",
+          "string"
+        ]
+      ]
+    },
+    "public-subnet-ids": {
+      "value": [
+        "subnet-0836e26b02828e6b7",
+        "subnet-0269d50d924f5c3ad"
+      ],
+      "type": [
+        "tuple",
+        [
+          "string",
+          "string"
+        ]
+      ]
+    },
+    "vpc-cidr": {
+      "value": "192.168.123.0/24",
+      "type": "string"
+    },
+    "vpc-cidr6": {
+      "value": "2406:da14:ece:ed00::/56",
+      "type": "string"
+    },
+    "vpc-id": {
+      "value": "vpc-051d8405604cd730d",
+      "type": "string"
+    }
+  },
+  "resources": [
+    {
+      "mode": "data",
+      "type": "aws_availability_zones",
+      "name": "azs",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "all_availability_zones": null,
+            "exclude_names": null,
+            "exclude_zone_ids": null,
+            "filter": null,
+            "group_names": [
+              "ap-northeast-1"
+            ],
+            "id": "ap-northeast-1",
+            "names": [
+              "ap-northeast-1a",
+              "ap-northeast-1c",
+              "ap-northeast-1d"
+            ],
+            "state": "available",
+            "timeouts": null,
+            "zone_ids": [
+              "apne1-az4",
+              "apne1-az1",
+              "apne1-az2"
+            ]
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "data",
+      "type": "aws_caller_identity",
+      "name": "this",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "account_id": "040216112220",
+            "arn": "arn:aws:iam::040216112220:user/ken2026",
+            "id": "040216112220",
+            "user_id": "AIDAQSXIRFROOXYISSIEQ"
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_eip",
+      "name": "ngw-ip",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "address": null,
+            "allocation_id": "eipalloc-0f20fcbac83515afe",
+            "associate_with_private_ip": null,
+            "association_id": "eipassoc-078c7da22f4bbb437",
+            "carrier_ip": "",
+            "customer_owned_ip": "",
+            "customer_owned_ipv4_pool": "",
+            "domain": "vpc",
+            "id": "eipalloc-0f20fcbac83515afe",
+            "instance": "",
+            "network_border_group": "ap-northeast-1",
+            "network_interface": "eni-05bcb407c70c05922",
+            "private_dns": "ip-192-168-123-165.ap-northeast-1.compute.internal",
+            "private_ip": "192.168.123.165",
+            "public_dns": "ec2-35-72-134-157.ap-northeast-1.compute.amazonaws.com",
+            "public_ip": "35.72.134.157",
+            "public_ipv4_pool": "amazon",
+            "tags": {},
+            "tags_all": {},
+            "timeouts": null,
+            "vpc": true
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiZGVsZXRlIjoxODAwMDAwMDAwMDAsInJlYWQiOjkwMDAwMDAwMDAwMCwidXBkYXRlIjozMDAwMDAwMDAwMDB9fQ=="
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_internet_gateway",
+      "name": "igw",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:internet-gateway/igw-0aa724367074ec9ed",
+            "id": "igw-0aa724367074ec9ed",
+            "owner_id": "040216112220",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-igw",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-igw",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjEyMDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_vpc.vpc1",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_nat_gateway",
+      "name": "ngw",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "allocation_id": "eipalloc-0f20fcbac83515afe",
+            "connectivity_type": "public",
+            "id": "nat-0e71f2f627b948b71",
+            "network_interface_id": "eni-05bcb407c70c05922",
+            "private_ip": "192.168.123.165",
+            "public_ip": "35.72.134.157",
+            "subnet_id": "subnet-0836e26b02828e6b7",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-ngw",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-ngw",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            }
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "aws_eip.ngw-ip",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_route_table",
+      "name": "private-rtb",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:route-table/rtb-07c6f2df276e905ad",
+            "id": "rtb-07c6f2df276e905ad",
+            "owner_id": "040216112220",
+            "propagating_vgws": [],
+            "route": [
+              {
+                "carrier_gateway_id": "",
+                "cidr_block": "0.0.0.0/0",
+                "core_network_arn": "",
+                "destination_prefix_list_id": "",
+                "egress_only_gateway_id": "",
+                "gateway_id": "nat-0e71f2f627b948b71",
+                "instance_id": "",
+                "ipv6_cidr_block": "",
+                "local_gateway_id": "",
+                "nat_gateway_id": "",
+                "network_interface_id": "",
+                "transit_gateway_id": "",
+                "vpc_endpoint_id": "",
+                "vpc_peering_connection_id": ""
+              }
+            ],
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-private-rtb",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-private-rtb",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozMDAwMDAwMDAwMDAsImRlbGV0ZSI6MzAwMDAwMDAwMDAwLCJ1cGRhdGUiOjEyMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eip.ngw-ip",
+            "aws_nat_gateway.ngw",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_route_table",
+      "name": "public-rtb",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:route-table/rtb-034d9f535055a4176",
+            "id": "rtb-034d9f535055a4176",
+            "owner_id": "040216112220",
+            "propagating_vgws": [],
+            "route": [
+              {
+                "carrier_gateway_id": "",
+                "cidr_block": "0.0.0.0/0",
+                "core_network_arn": "",
+                "destination_prefix_list_id": "",
+                "egress_only_gateway_id": "",
+                "gateway_id": "igw-0aa724367074ec9ed",
+                "instance_id": "",
+                "ipv6_cidr_block": "",
+                "local_gateway_id": "",
+                "nat_gateway_id": "",
+                "network_interface_id": "",
+                "transit_gateway_id": "",
+                "vpc_endpoint_id": "",
+                "vpc_peering_connection_id": ""
+              }
+            ],
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-public-rtb",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-public-rtb",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozMDAwMDAwMDAwMDAsImRlbGV0ZSI6MzAwMDAwMDAwMDAwLCJ1cGRhdGUiOjEyMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_internet_gateway.igw",
+            "aws_vpc.vpc1",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_route_table_association",
+      "name": "private-rtb-asso",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "index_key": 0,
+          "schema_version": 0,
+          "attributes": {
+            "gateway_id": "",
+            "id": "rtbassoc-0dfc003a6278c114e",
+            "route_table_id": "rtb-07c6f2df276e905ad",
+            "subnet_id": "subnet-0a9f75c427054ca39"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "aws_eip.ngw-ip",
+            "aws_nat_gateway.ngw",
+            "aws_route_table.private-rtb",
+            "aws_subnet.private-subnets",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        },
+        {
+          "index_key": 1,
+          "schema_version": 0,
+          "attributes": {
+            "gateway_id": "",
+            "id": "rtbassoc-09392b94bd7f431e0",
+            "route_table_id": "rtb-07c6f2df276e905ad",
+            "subnet_id": "subnet-03837a4f086fe607a"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "aws_eip.ngw-ip",
+            "aws_nat_gateway.ngw",
+            "aws_route_table.private-rtb",
+            "aws_subnet.private-subnets",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_route_table_association",
+      "name": "public-rtb-asso",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "index_key": 0,
+          "schema_version": 0,
+          "attributes": {
+            "gateway_id": "",
+            "id": "rtbassoc-09ae17e308831a882",
+            "route_table_id": "rtb-034d9f535055a4176",
+            "subnet_id": "subnet-0836e26b02828e6b7"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "aws_internet_gateway.igw",
+            "aws_route_table.public-rtb",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        },
+        {
+          "index_key": 1,
+          "schema_version": 0,
+          "attributes": {
+            "gateway_id": "",
+            "id": "rtbassoc-07044aba885edbae2",
+            "route_table_id": "rtb-034d9f535055a4176",
+            "subnet_id": "subnet-0269d50d924f5c3ad"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "aws_internet_gateway.igw",
+            "aws_route_table.public-rtb",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_security_group",
+      "name": "generic-ep-sg",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:security-group/sg-0158a37b2b0205723",
+            "description": "HttpsAccessToVpcEndpoints",
+            "egress": [
+              {
+                "cidr_blocks": [
+                  "0.0.0.0/0"
+                ],
+                "description": "",
+                "from_port": 0,
+                "ipv6_cidr_blocks": [
+                  "::/0"
+                ],
+                "prefix_list_ids": [],
+                "protocol": "-1",
+                "security_groups": [],
+                "self": false,
+                "to_port": 0
+              }
+            ],
+            "id": "sg-0158a37b2b0205723",
+            "ingress": [
+              {
+                "cidr_blocks": [
+                  "192.168.123.0/24"
+                ],
+                "description": "TLS from VPC",
+                "from_port": 443,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "tcp",
+                "security_groups": [],
+                "self": false,
+                "to_port": 443
+              },
+              {
+                "cidr_blocks": [],
+                "description": "TLS from VPC",
+                "from_port": 443,
+                "ipv6_cidr_blocks": [
+                  "2406:da14:ece:ed00::/56"
+                ],
+                "prefix_list_ids": [],
+                "protocol": "tcp",
+                "security_groups": [],
+                "self": false,
+                "to_port": 443
+              }
+            ],
+            "name": "HttpsAccessToVpcEndpoints",
+            "name_prefix": "",
+            "owner_id": "040216112220",
+            "revoke_rules_on_delete": false,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "VpcEpAccess",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "VpcEpAccess",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=",
+          "dependencies": [
+            "aws_vpc.vpc1",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_subnet",
+      "name": "private-subnets",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "index_key": 0,
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:subnet/subnet-0a9f75c427054ca39",
+            "assign_ipv6_address_on_creation": true,
+            "availability_zone": "ap-northeast-1a",
+            "availability_zone_id": "apne1-az4",
+            "cidr_block": "192.168.123.0/26",
+            "customer_owned_ipv4_pool": "",
+            "enable_dns64": false,
+            "enable_resource_name_dns_a_record_on_launch": true,
+            "enable_resource_name_dns_aaaa_record_on_launch": false,
+            "id": "subnet-0a9f75c427054ca39",
+            "ipv6_cidr_block": "2406:da14:ece:ed00::/64",
+            "ipv6_cidr_block_association_id": "subnet-cidr-assoc-00cad72145ee3a291",
+            "ipv6_native": false,
+            "map_customer_owned_ip_on_launch": false,
+            "map_public_ip_on_launch": false,
+            "outpost_arn": "",
+            "owner_id": "040216112220",
+            "private_dns_hostname_type_on_launch": "ip-name",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-private-ap-northeast-1a",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed",
+              "kubernetes.io/role/internal-elb": "1"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-private-ap-northeast-1a",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed",
+              "kubernetes.io/role/internal-elb": "1"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9",
+          "dependencies": [
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        },
+        {
+          "index_key": 1,
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:subnet/subnet-03837a4f086fe607a",
+            "assign_ipv6_address_on_creation": true,
+            "availability_zone": "ap-northeast-1c",
+            "availability_zone_id": "apne1-az1",
+            "cidr_block": "192.168.123.64/26",
+            "customer_owned_ipv4_pool": "",
+            "enable_dns64": false,
+            "enable_resource_name_dns_a_record_on_launch": true,
+            "enable_resource_name_dns_aaaa_record_on_launch": false,
+            "id": "subnet-03837a4f086fe607a",
+            "ipv6_cidr_block": "2406:da14:ece:ed01::/64",
+            "ipv6_cidr_block_association_id": "subnet-cidr-assoc-07dded145177dd88e",
+            "ipv6_native": false,
+            "map_customer_owned_ip_on_launch": false,
+            "map_public_ip_on_launch": false,
+            "outpost_arn": "",
+            "owner_id": "040216112220",
+            "private_dns_hostname_type_on_launch": "ip-name",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-private-ap-northeast-1c",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed",
+              "kubernetes.io/role/internal-elb": "1"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-private-ap-northeast-1c",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed",
+              "kubernetes.io/role/internal-elb": "1"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9",
+          "dependencies": [
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_subnet",
+      "name": "public-subnets",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "index_key": 0,
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:subnet/subnet-0836e26b02828e6b7",
+            "assign_ipv6_address_on_creation": true,
+            "availability_zone": "ap-northeast-1a",
+            "availability_zone_id": "apne1-az4",
+            "cidr_block": "192.168.123.128/26",
+            "customer_owned_ipv4_pool": "",
+            "enable_dns64": false,
+            "enable_resource_name_dns_a_record_on_launch": true,
+            "enable_resource_name_dns_aaaa_record_on_launch": false,
+            "id": "subnet-0836e26b02828e6b7",
+            "ipv6_cidr_block": "2406:da14:ece:ed02::/64",
+            "ipv6_cidr_block_association_id": "subnet-cidr-assoc-0aab88c4cbb3f46a6",
+            "ipv6_native": false,
+            "map_customer_owned_ip_on_launch": false,
+            "map_public_ip_on_launch": false,
+            "outpost_arn": "",
+            "owner_id": "040216112220",
+            "private_dns_hostname_type_on_launch": "ip-name",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-public-ap-northeast-1a",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed",
+              "kubernetes.io/role/elb": "1"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-public-ap-northeast-1a",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed",
+              "kubernetes.io/role/elb": "1"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9",
+          "dependencies": [
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        },
+        {
+          "index_key": 1,
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:subnet/subnet-0269d50d924f5c3ad",
+            "assign_ipv6_address_on_creation": true,
+            "availability_zone": "ap-northeast-1c",
+            "availability_zone_id": "apne1-az1",
+            "cidr_block": "192.168.123.192/26",
+            "customer_owned_ipv4_pool": "",
+            "enable_dns64": false,
+            "enable_resource_name_dns_a_record_on_launch": true,
+            "enable_resource_name_dns_aaaa_record_on_launch": false,
+            "id": "subnet-0269d50d924f5c3ad",
+            "ipv6_cidr_block": "2406:da14:ece:ed03::/64",
+            "ipv6_cidr_block_association_id": "subnet-cidr-assoc-0eff3d18663a8bb79",
+            "ipv6_native": false,
+            "map_customer_owned_ip_on_launch": false,
+            "map_public_ip_on_launch": false,
+            "outpost_arn": "",
+            "owner_id": "040216112220",
+            "private_dns_hostname_type_on_launch": "ip-name",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-public-ap-northeast-1c",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed",
+              "kubernetes.io/role/elb": "1"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-public-ap-northeast-1c",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed",
+              "kubernetes.io/role/elb": "1"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9",
+          "dependencies": [
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_vpc",
+      "name": "vpc1",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:vpc/vpc-051d8405604cd730d",
+            "assign_generated_ipv6_cidr_block": true,
+            "cidr_block": "192.168.123.0/24",
+            "default_network_acl_id": "acl-0260219cc561ae7f6",
+            "default_route_table_id": "rtb-08e8cbe49390375f5",
+            "default_security_group_id": "sg-0b56a9c27e73084bb",
+            "dhcp_options_id": "dopt-090c9f839527a4c07",
+            "enable_classiclink": false,
+            "enable_classiclink_dns_support": false,
+            "enable_dns_hostnames": true,
+            "enable_dns_support": true,
+            "enable_network_address_usage_metrics": false,
+            "id": "vpc-051d8405604cd730d",
+            "instance_tenancy": "default",
+            "ipv4_ipam_pool_id": null,
+            "ipv4_netmask_length": null,
+            "ipv6_association_id": "vpc-cidr-assoc-00a8c007b42a44f67",
+            "ipv6_cidr_block": "2406:da14:ece:ed00::/56",
+            "ipv6_cidr_block_network_border_group": "ap-northeast-1",
+            "ipv6_ipam_pool_id": "",
+            "ipv6_netmask_length": 0,
+            "main_route_table_id": "rtb-08e8cbe49390375f5",
+            "owner_id": "040216112220",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-vpc1",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-vpc1",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            }
+          },
+          "sensitive_attributes": [],
+          "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
+          "dependencies": [
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_vpc_endpoint",
+      "name": "eks-vpcep",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:vpc-endpoint/vpce-0a37185de88ad0767",
+            "auto_accept": null,
+            "cidr_blocks": [],
+            "dns_entry": [
+              {
+                "dns_name": "vpce-0a37185de88ad0767-dyxcih00.eks.ap-northeast-1.vpce.amazonaws.com",
+                "hosted_zone_id": "Z2E726K9Y6RL4W"
+              },
+              {
+                "dns_name": "vpce-0a37185de88ad0767-dyxcih00-ap-northeast-1c.eks.ap-northeast-1.vpce.amazonaws.com",
+                "hosted_zone_id": "Z2E726K9Y6RL4W"
+              },
+              {
+                "dns_name": "vpce-0a37185de88ad0767-dyxcih00-ap-northeast-1a.eks.ap-northeast-1.vpce.amazonaws.com",
+                "hosted_zone_id": "Z2E726K9Y6RL4W"
+              },
+              {
+                "dns_name": "eks.ap-northeast-1.amazonaws.com",
+                "hosted_zone_id": "Z0423227199F7H6UENLXS"
+              }
+            ],
+            "dns_options": [
+              {
+                "dns_record_ip_type": "ipv4"
+              }
+            ],
+            "id": "vpce-0a37185de88ad0767",
+            "ip_address_type": "ipv4",
+            "network_interface_ids": [
+              "eni-04a27c78fb4bc730f",
+              "eni-08f40839bc1aeebde"
+            ],
+            "owner_id": "040216112220",
+            "policy": "{\"Statement\":[{\"Action\":\"*\",\"Effect\":\"Allow\",\"Principal\":\"*\",\"Resource\":\"*\"}]}",
+            "prefix_list_id": null,
+            "private_dns_enabled": true,
+            "requester_managed": false,
+            "route_table_ids": [],
+            "security_group_ids": [
+              "sg-0158a37b2b0205723"
+            ],
+            "service_name": "com.amazonaws.ap-northeast-1.eks",
+            "state": "available",
+            "subnet_ids": [
+              "subnet-03837a4f086fe607a",
+              "subnet-0a9f75c427054ca39"
+            ],
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-vpcep-eks",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-vpcep-eks",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_endpoint_type": "Interface",
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6NjAwMDAwMDAwMDAwLCJ1cGRhdGUiOjYwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_security_group.generic-ep-sg",
+            "aws_subnet.private-subnets",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    }
+  ],
+  "check_results": null
+}
diff --git a/examples/eks-lab-ip6/network/terraform.tfstate.backup b/examples/eks-lab-ip6/network/terraform.tfstate.backup
new file mode 100644
index 0000000..4e4054c
--- /dev/null
+++ b/examples/eks-lab-ip6/network/terraform.tfstate.backup
@@ -0,0 +1,958 @@
+{
+  "version": 4,
+  "terraform_version": "1.3.7",
+  "serial": 103,
+  "lineage": "65963b11-e76c-9a8d-95d5-827c62984fca",
+  "outputs": {
+    "private-subnet-ids": {
+      "value": [
+        "subnet-0a9f75c427054ca39",
+        "subnet-03837a4f086fe607a"
+      ],
+      "type": [
+        "tuple",
+        [
+          "string",
+          "string"
+        ]
+      ]
+    },
+    "public-subnet-ids": {
+      "value": [
+        "subnet-0836e26b02828e6b7",
+        "subnet-0269d50d924f5c3ad"
+      ],
+      "type": [
+        "tuple",
+        [
+          "string",
+          "string"
+        ]
+      ]
+    },
+    "vpc-cidr": {
+      "value": "192.168.123.0/24",
+      "type": "string"
+    },
+    "vpc-cidr6": {
+      "value": "2406:da14:ece:ed00::/56",
+      "type": "string"
+    },
+    "vpc-id": {
+      "value": "vpc-051d8405604cd730d",
+      "type": "string"
+    }
+  },
+  "resources": [
+    {
+      "mode": "data",
+      "type": "aws_availability_zones",
+      "name": "azs",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "all_availability_zones": null,
+            "exclude_names": null,
+            "exclude_zone_ids": null,
+            "filter": null,
+            "group_names": [
+              "ap-northeast-1"
+            ],
+            "id": "ap-northeast-1",
+            "names": [
+              "ap-northeast-1a",
+              "ap-northeast-1c",
+              "ap-northeast-1d"
+            ],
+            "state": "available",
+            "timeouts": null,
+            "zone_ids": [
+              "apne1-az4",
+              "apne1-az1",
+              "apne1-az2"
+            ]
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "data",
+      "type": "aws_caller_identity",
+      "name": "this",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "account_id": "040216112220",
+            "arn": "arn:aws:iam::040216112220:user/ken2026",
+            "id": "040216112220",
+            "user_id": "AIDAQSXIRFROOXYISSIEQ"
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_eip",
+      "name": "ngw-ip",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "address": null,
+            "allocation_id": "eipalloc-0f20fcbac83515afe",
+            "associate_with_private_ip": null,
+            "association_id": "eipassoc-078c7da22f4bbb437",
+            "carrier_ip": "",
+            "customer_owned_ip": "",
+            "customer_owned_ipv4_pool": "",
+            "domain": "vpc",
+            "id": "eipalloc-0f20fcbac83515afe",
+            "instance": "",
+            "network_border_group": "ap-northeast-1",
+            "network_interface": "eni-05bcb407c70c05922",
+            "private_dns": "ip-192-168-123-165.ap-northeast-1.compute.internal",
+            "private_ip": "192.168.123.165",
+            "public_dns": "ec2-35-72-134-157.ap-northeast-1.compute.amazonaws.com",
+            "public_ip": "35.72.134.157",
+            "public_ipv4_pool": "amazon",
+            "tags": {},
+            "tags_all": {},
+            "timeouts": null,
+            "vpc": true
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiZGVsZXRlIjoxODAwMDAwMDAwMDAsInJlYWQiOjkwMDAwMDAwMDAwMCwidXBkYXRlIjozMDAwMDAwMDAwMDB9fQ=="
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_internet_gateway",
+      "name": "igw",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:internet-gateway/igw-0aa724367074ec9ed",
+            "id": "igw-0aa724367074ec9ed",
+            "owner_id": "040216112220",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-igw",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-igw",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjEyMDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_vpc.vpc1",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_nat_gateway",
+      "name": "ngw",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "allocation_id": "eipalloc-0f20fcbac83515afe",
+            "connectivity_type": "public",
+            "id": "nat-0e71f2f627b948b71",
+            "network_interface_id": "eni-05bcb407c70c05922",
+            "private_ip": "192.168.123.165",
+            "public_ip": "35.72.134.157",
+            "subnet_id": "subnet-0836e26b02828e6b7",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-ngw",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-ngw",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            }
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "aws_eip.ngw-ip",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_route_table",
+      "name": "private-rtb",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:route-table/rtb-07c6f2df276e905ad",
+            "id": "rtb-07c6f2df276e905ad",
+            "owner_id": "040216112220",
+            "propagating_vgws": [],
+            "route": [
+              {
+                "carrier_gateway_id": "",
+                "cidr_block": "0.0.0.0/0",
+                "core_network_arn": "",
+                "destination_prefix_list_id": "",
+                "egress_only_gateway_id": "",
+                "gateway_id": "nat-0e71f2f627b948b71",
+                "instance_id": "",
+                "ipv6_cidr_block": "",
+                "local_gateway_id": "",
+                "nat_gateway_id": "",
+                "network_interface_id": "",
+                "transit_gateway_id": "",
+                "vpc_endpoint_id": "",
+                "vpc_peering_connection_id": ""
+              }
+            ],
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-private-rtb",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-private-rtb",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozMDAwMDAwMDAwMDAsImRlbGV0ZSI6MzAwMDAwMDAwMDAwLCJ1cGRhdGUiOjEyMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eip.ngw-ip",
+            "aws_nat_gateway.ngw",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_route_table",
+      "name": "public-rtb",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:route-table/rtb-034d9f535055a4176",
+            "id": "rtb-034d9f535055a4176",
+            "owner_id": "040216112220",
+            "propagating_vgws": [],
+            "route": [
+              {
+                "carrier_gateway_id": "",
+                "cidr_block": "0.0.0.0/0",
+                "core_network_arn": "",
+                "destination_prefix_list_id": "",
+                "egress_only_gateway_id": "",
+                "gateway_id": "igw-0aa724367074ec9ed",
+                "instance_id": "",
+                "ipv6_cidr_block": "",
+                "local_gateway_id": "",
+                "nat_gateway_id": "",
+                "network_interface_id": "",
+                "transit_gateway_id": "",
+                "vpc_endpoint_id": "",
+                "vpc_peering_connection_id": ""
+              }
+            ],
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-public-rtb",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-public-rtb",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozMDAwMDAwMDAwMDAsImRlbGV0ZSI6MzAwMDAwMDAwMDAwLCJ1cGRhdGUiOjEyMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_internet_gateway.igw",
+            "aws_vpc.vpc1",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_route_table_association",
+      "name": "private-rtb-asso",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "index_key": 0,
+          "schema_version": 0,
+          "attributes": {
+            "gateway_id": "",
+            "id": "rtbassoc-0dfc003a6278c114e",
+            "route_table_id": "rtb-07c6f2df276e905ad",
+            "subnet_id": "subnet-0a9f75c427054ca39"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "aws_eip.ngw-ip",
+            "aws_nat_gateway.ngw",
+            "aws_route_table.private-rtb",
+            "aws_subnet.private-subnets",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        },
+        {
+          "index_key": 1,
+          "schema_version": 0,
+          "attributes": {
+            "gateway_id": "",
+            "id": "rtbassoc-09392b94bd7f431e0",
+            "route_table_id": "rtb-07c6f2df276e905ad",
+            "subnet_id": "subnet-03837a4f086fe607a"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "aws_eip.ngw-ip",
+            "aws_nat_gateway.ngw",
+            "aws_route_table.private-rtb",
+            "aws_subnet.private-subnets",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_route_table_association",
+      "name": "public-rtb-asso",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "index_key": 0,
+          "schema_version": 0,
+          "attributes": {
+            "gateway_id": "",
+            "id": "rtbassoc-09ae17e308831a882",
+            "route_table_id": "rtb-034d9f535055a4176",
+            "subnet_id": "subnet-0836e26b02828e6b7"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "aws_internet_gateway.igw",
+            "aws_route_table.public-rtb",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        },
+        {
+          "index_key": 1,
+          "schema_version": 0,
+          "attributes": {
+            "gateway_id": "",
+            "id": "rtbassoc-07044aba885edbae2",
+            "route_table_id": "rtb-034d9f535055a4176",
+            "subnet_id": "subnet-0269d50d924f5c3ad"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "aws_internet_gateway.igw",
+            "aws_route_table.public-rtb",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_security_group",
+      "name": "generic-ep-sg",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:security-group/sg-0158a37b2b0205723",
+            "description": "HttpsAccessToVpcEndpoints",
+            "egress": [
+              {
+                "cidr_blocks": [
+                  "0.0.0.0/0"
+                ],
+                "description": "",
+                "from_port": 0,
+                "ipv6_cidr_blocks": [
+                  "::/0"
+                ],
+                "prefix_list_ids": [],
+                "protocol": "-1",
+                "security_groups": [],
+                "self": false,
+                "to_port": 0
+              }
+            ],
+            "id": "sg-0158a37b2b0205723",
+            "ingress": [
+              {
+                "cidr_blocks": [
+                  "192.168.123.0/24"
+                ],
+                "description": "TLS from VPC",
+                "from_port": 443,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "tcp",
+                "security_groups": [],
+                "self": false,
+                "to_port": 443
+              },
+              {
+                "cidr_blocks": [],
+                "description": "TLS from VPC",
+                "from_port": 443,
+                "ipv6_cidr_blocks": [
+                  "2406:da14:ece:ed00::/56"
+                ],
+                "prefix_list_ids": [],
+                "protocol": "tcp",
+                "security_groups": [],
+                "self": false,
+                "to_port": 443
+              }
+            ],
+            "name": "HttpsAccessToVpcEndpoints",
+            "name_prefix": "",
+            "owner_id": "040216112220",
+            "revoke_rules_on_delete": false,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "VpcEpAccess",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "VpcEpAccess",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=",
+          "dependencies": [
+            "aws_vpc.vpc1",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_subnet",
+      "name": "private-subnets",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "index_key": 0,
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:subnet/subnet-0a9f75c427054ca39",
+            "assign_ipv6_address_on_creation": true,
+            "availability_zone": "ap-northeast-1a",
+            "availability_zone_id": "apne1-az4",
+            "cidr_block": "192.168.123.0/26",
+            "customer_owned_ipv4_pool": "",
+            "enable_dns64": false,
+            "enable_resource_name_dns_a_record_on_launch": true,
+            "enable_resource_name_dns_aaaa_record_on_launch": false,
+            "id": "subnet-0a9f75c427054ca39",
+            "ipv6_cidr_block": "2406:da14:ece:ed00::/64",
+            "ipv6_cidr_block_association_id": "subnet-cidr-assoc-00cad72145ee3a291",
+            "ipv6_native": false,
+            "map_customer_owned_ip_on_launch": false,
+            "map_public_ip_on_launch": false,
+            "outpost_arn": "",
+            "owner_id": "040216112220",
+            "private_dns_hostname_type_on_launch": "ip-name",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-private-ap-northeast-1a",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-private-ap-northeast-1a",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9",
+          "dependencies": [
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        },
+        {
+          "index_key": 1,
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:subnet/subnet-03837a4f086fe607a",
+            "assign_ipv6_address_on_creation": true,
+            "availability_zone": "ap-northeast-1c",
+            "availability_zone_id": "apne1-az1",
+            "cidr_block": "192.168.123.64/26",
+            "customer_owned_ipv4_pool": "",
+            "enable_dns64": false,
+            "enable_resource_name_dns_a_record_on_launch": true,
+            "enable_resource_name_dns_aaaa_record_on_launch": false,
+            "id": "subnet-03837a4f086fe607a",
+            "ipv6_cidr_block": "2406:da14:ece:ed01::/64",
+            "ipv6_cidr_block_association_id": "subnet-cidr-assoc-07dded145177dd88e",
+            "ipv6_native": false,
+            "map_customer_owned_ip_on_launch": false,
+            "map_public_ip_on_launch": false,
+            "outpost_arn": "",
+            "owner_id": "040216112220",
+            "private_dns_hostname_type_on_launch": "ip-name",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-private-ap-northeast-1c",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-private-ap-northeast-1c",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9",
+          "dependencies": [
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_subnet",
+      "name": "public-subnets",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "index_key": 0,
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:subnet/subnet-0836e26b02828e6b7",
+            "assign_ipv6_address_on_creation": true,
+            "availability_zone": "ap-northeast-1a",
+            "availability_zone_id": "apne1-az4",
+            "cidr_block": "192.168.123.128/26",
+            "customer_owned_ipv4_pool": "",
+            "enable_dns64": false,
+            "enable_resource_name_dns_a_record_on_launch": true,
+            "enable_resource_name_dns_aaaa_record_on_launch": false,
+            "id": "subnet-0836e26b02828e6b7",
+            "ipv6_cidr_block": "2406:da14:ece:ed02::/64",
+            "ipv6_cidr_block_association_id": "subnet-cidr-assoc-0aab88c4cbb3f46a6",
+            "ipv6_native": false,
+            "map_customer_owned_ip_on_launch": false,
+            "map_public_ip_on_launch": false,
+            "outpost_arn": "",
+            "owner_id": "040216112220",
+            "private_dns_hostname_type_on_launch": "ip-name",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-public-ap-northeast-1a",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-public-ap-northeast-1a",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9",
+          "dependencies": [
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        },
+        {
+          "index_key": 1,
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:subnet/subnet-0269d50d924f5c3ad",
+            "assign_ipv6_address_on_creation": true,
+            "availability_zone": "ap-northeast-1c",
+            "availability_zone_id": "apne1-az1",
+            "cidr_block": "192.168.123.192/26",
+            "customer_owned_ipv4_pool": "",
+            "enable_dns64": false,
+            "enable_resource_name_dns_a_record_on_launch": true,
+            "enable_resource_name_dns_aaaa_record_on_launch": false,
+            "id": "subnet-0269d50d924f5c3ad",
+            "ipv6_cidr_block": "2406:da14:ece:ed03::/64",
+            "ipv6_cidr_block_association_id": "subnet-cidr-assoc-0eff3d18663a8bb79",
+            "ipv6_native": false,
+            "map_customer_owned_ip_on_launch": false,
+            "map_public_ip_on_launch": false,
+            "outpost_arn": "",
+            "owner_id": "040216112220",
+            "private_dns_hostname_type_on_launch": "ip-name",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-public-ap-northeast-1c",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-public-ap-northeast-1c",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMH0sInNjaGVtYV92ZXJzaW9uIjoiMSJ9",
+          "dependencies": [
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_vpc",
+      "name": "vpc1",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:vpc/vpc-051d8405604cd730d",
+            "assign_generated_ipv6_cidr_block": true,
+            "cidr_block": "192.168.123.0/24",
+            "default_network_acl_id": "acl-0260219cc561ae7f6",
+            "default_route_table_id": "rtb-08e8cbe49390375f5",
+            "default_security_group_id": "sg-0b56a9c27e73084bb",
+            "dhcp_options_id": "dopt-090c9f839527a4c07",
+            "enable_classiclink": false,
+            "enable_classiclink_dns_support": false,
+            "enable_dns_hostnames": true,
+            "enable_dns_support": true,
+            "enable_network_address_usage_metrics": false,
+            "id": "vpc-051d8405604cd730d",
+            "instance_tenancy": "default",
+            "ipv4_ipam_pool_id": null,
+            "ipv4_netmask_length": null,
+            "ipv6_association_id": "vpc-cidr-assoc-00a8c007b42a44f67",
+            "ipv6_cidr_block": "2406:da14:ece:ed00::/56",
+            "ipv6_cidr_block_network_border_group": "ap-northeast-1",
+            "ipv6_ipam_pool_id": "",
+            "ipv6_netmask_length": 0,
+            "main_route_table_id": "rtb-08e8cbe49390375f5",
+            "owner_id": "040216112220",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-vpc1",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-vpc1",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            }
+          },
+          "sensitive_attributes": [],
+          "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
+          "dependencies": [
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_vpc_endpoint",
+      "name": "eks-vpcep",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:vpc-endpoint/vpce-0a37185de88ad0767",
+            "auto_accept": null,
+            "cidr_blocks": [],
+            "dns_entry": [
+              {
+                "dns_name": "vpce-0a37185de88ad0767-dyxcih00.eks.ap-northeast-1.vpce.amazonaws.com",
+                "hosted_zone_id": "Z2E726K9Y6RL4W"
+              },
+              {
+                "dns_name": "vpce-0a37185de88ad0767-dyxcih00-ap-northeast-1c.eks.ap-northeast-1.vpce.amazonaws.com",
+                "hosted_zone_id": "Z2E726K9Y6RL4W"
+              },
+              {
+                "dns_name": "vpce-0a37185de88ad0767-dyxcih00-ap-northeast-1a.eks.ap-northeast-1.vpce.amazonaws.com",
+                "hosted_zone_id": "Z2E726K9Y6RL4W"
+              },
+              {
+                "dns_name": "eks.ap-northeast-1.amazonaws.com",
+                "hosted_zone_id": "Z0423227199F7H6UENLXS"
+              }
+            ],
+            "dns_options": [
+              {
+                "dns_record_ip_type": "ipv4"
+              }
+            ],
+            "id": "vpce-0a37185de88ad0767",
+            "ip_address_type": "ipv4",
+            "network_interface_ids": [
+              "eni-04a27c78fb4bc730f",
+              "eni-08f40839bc1aeebde"
+            ],
+            "owner_id": "040216112220",
+            "policy": "{\"Statement\":[{\"Action\":\"*\",\"Effect\":\"Allow\",\"Principal\":\"*\",\"Resource\":\"*\"}]}",
+            "prefix_list_id": null,
+            "private_dns_enabled": true,
+            "requester_managed": false,
+            "route_table_ids": [],
+            "security_group_ids": [
+              "sg-0158a37b2b0205723"
+            ],
+            "service_name": "com.amazonaws.ap-northeast-1.eks",
+            "state": "available",
+            "subnet_ids": [
+              "subnet-03837a4f086fe607a",
+              "subnet-0a9f75c427054ca39"
+            ],
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-vpcep-eks",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-vpcep-eks",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab-ip6/network",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_endpoint_type": "Interface",
+            "vpc_id": "vpc-051d8405604cd730d"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6NjAwMDAwMDAwMDAwLCJ1cGRhdGUiOjYwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_security_group.generic-ep-sg",
+            "aws_subnet.private-subnets",
+            "aws_subnet.public-subnets",
+            "aws_vpc.vpc1",
+            "data.aws_availability_zones.azs",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    }
+  ],
+  "check_results": null
+}
diff --git a/examples/eks-lab-ip6/network/terraform.tfvars b/examples/eks-lab-ip6/network/terraform.tfvars
new file mode 100644
index 0000000..e8f7cea
--- /dev/null
+++ b/examples/eks-lab-ip6/network/terraform.tfvars
@@ -0,0 +1,6 @@
+aws-region          = "ap-northeast-1"
+aws-region-short    = "apne1"
+customer-name       = "xpk"
+environment         = "lab"
+project             = "iac"
+application         = "eks"
\ No newline at end of file
diff --git a/examples/eks-lab-ip6/network/variables.tf b/examples/eks-lab-ip6/network/variables.tf
new file mode 100644
index 0000000..eb16380
--- /dev/null
+++ b/examples/eks-lab-ip6/network/variables.tf
@@ -0,0 +1,6 @@
+variable "aws-region" {}
+variable "aws-region-short" {}
+variable "customer-name" {}
+variable "environment" {}
+variable "project" {}
+variable "application" {}
\ No newline at end of file
diff --git a/examples/eks-lab/.terraform/modules/modules.json b/examples/eks-lab/.terraform/modules/modules.json
new file mode 100644
index 0000000..8fa1371
--- /dev/null
+++ b/examples/eks-lab/.terraform/modules/modules.json
@@ -0,0 +1 @@
+{"Modules":[{"Key":"vpc-subnets.vpc-ep","Source":"../vpc-endpoints","Dir":"../../modules/networking/vpc-endpoints"},{"Key":"vpc-subnets","Source":"../../modules/networking/vpc_subnets","Dir":"../../modules/networking/vpc_subnets"},{"Key":"","Source":"","Dir":"."}]}
\ No newline at end of file
diff --git a/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/aws/4.54.0/linux_amd64 b/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/aws/4.54.0/linux_amd64
new file mode 120000
index 0000000..d71d750
--- /dev/null
+++ b/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/aws/4.54.0/linux_amd64
@@ -0,0 +1 @@
+/home/kn/.terraform.d/plugin-cache/registry.terraform.io/hashicorp/aws/4.54.0/linux_amd64
\ No newline at end of file
diff --git a/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/local/2.3.0/linux_amd64 b/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/local/2.3.0/linux_amd64
new file mode 120000
index 0000000..2baf933
--- /dev/null
+++ b/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/local/2.3.0/linux_amd64
@@ -0,0 +1 @@
+/home/kn/.terraform.d/plugin-cache/registry.terraform.io/hashicorp/local/2.3.0/linux_amd64
\ No newline at end of file
diff --git a/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/null/3.2.1/linux_amd64 b/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/null/3.2.1/linux_amd64
new file mode 120000
index 0000000..4ecc9bb
--- /dev/null
+++ b/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/null/3.2.1/linux_amd64
@@ -0,0 +1 @@
+/home/kn/.terraform.d/plugin-cache/registry.terraform.io/hashicorp/null/3.2.1/linux_amd64
\ No newline at end of file
diff --git a/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/template/2.2.0/linux_amd64 b/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/template/2.2.0/linux_amd64
new file mode 120000
index 0000000..08cb098
--- /dev/null
+++ b/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/template/2.2.0/linux_amd64
@@ -0,0 +1 @@
+/home/kn/.terraform.d/plugin-cache/registry.terraform.io/hashicorp/template/2.2.0/linux_amd64
\ No newline at end of file
diff --git a/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/tls/4.0.4/linux_amd64 b/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/tls/4.0.4/linux_amd64
new file mode 120000
index 0000000..1f4330d
--- /dev/null
+++ b/examples/eks-lab/.terraform/providers/registry.terraform.io/hashicorp/tls/4.0.4/linux_amd64
@@ -0,0 +1 @@
+/home/kn/.terraform.d/plugin-cache/registry.terraform.io/hashicorp/tls/4.0.4/linux_amd64
\ No newline at end of file
diff --git a/examples/eks-lab/eks/.terraform.lock.hcl b/examples/eks-lab/eks/.terraform.lock.hcl
new file mode 100644
index 0000000..5e1c159
--- /dev/null
+++ b/examples/eks-lab/eks/.terraform.lock.hcl
@@ -0,0 +1,10 @@
+# This file is maintained automatically by "terraform init".
+# Manual edits may be lost in future updates.
+
+provider "registry.terraform.io/hashicorp/aws" {
+  version     = "4.55.0"
+  constraints = ">= 3.25.0"
+  hashes = [
+    "h1:VHfmrKCb4oTW/+rWGKKqipoMOPd4tPxlGwMp0/Flx/s=",
+  ]
+}
diff --git a/examples/eks-lab/eks/.terraform/providers/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64 b/examples/eks-lab/eks/.terraform/providers/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64
new file mode 120000
index 0000000..612bb8d
--- /dev/null
+++ b/examples/eks-lab/eks/.terraform/providers/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64
@@ -0,0 +1 @@
+/home/kn/.terraform.d/plugin-cache/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64
\ No newline at end of file
diff --git a/examples/eks-lab/eks/README.md b/examples/eks-lab/eks/README.md
new file mode 100644
index 0000000..6e1a1f1
--- /dev/null
+++ b/examples/eks-lab/eks/README.md
@@ -0,0 +1,94 @@
+# eks-lab
+This module creates the following resources
+- VPC
+- Public and private subnets
+- NAT gateway
+- EKS cluster
+- EKS nodegroup
+- EKS bastion
+- Install eksctl and kubectl on EKS bastion
+
+## How to use eksctl and kubectl
+By default, AWS EKS are installed with an aws-auth configmap which allows only the cluster creator
+to work with the cluster. Therefore, one must first assume to the creator IAM role before running eksctl or kubectl.
+For example, to create kube config, run these commands:
+
+```bash
+export AWS_ACCESS_KEY_ID=xxxx AWS_SECRET_ACCESS_KEY="yyyy" AWS_DEFAULT_REGION=ap-northeast-1
+aws eks update-kubeconfig --name lab-apne1-xpk-iac-cluster01
+```
+
+## Configure VPC CNI to use custom networking
+```bash
+kubectl set env daemonset aws-node -n kube-system AWS_VPC_K8S_CNI_CUSTOM_NETWORK_CFG=true
+kubectl set env daemonset aws-node -n kube-system ENI_CONFIG_LABEL_DEF=failure-domain.beta.kubernetes.io/zone
+
+cat <<EOF  | kubectl apply -f -
+apiVersion: crd.k8s.amazonaws.com/v1alpha1
+kind: ENIConfig
+metadata:
+ name: ap-northeast-1a
+spec:
+  subnet: subnet-0d015cc72715685ca
+EOF
+
+cat <<EOF | kubectl apply -f -
+apiVersion: crd.k8s.amazonaws.com/v1alpha1
+kind: ENIConfig
+metadata:
+ name: ap-northeast-1c
+spec:
+  subnet: subnet-030ee2c3e2b730fcc
+EOF
+```
+
+Then redeploy the nodegroup
+```bash
+terraform apply -replace="aws_eks_node_group.eks-nodegroup"
+```
+
+If successfully done, you will start to see 100.64.0.0 addresses being used on the EKS worker nodes. You can also see it with kubectl:
+
+
+```bash
+root@ip-192-168-123-48:~# kubectl  get pods --all-namespaces -o wide
+NAMESPACE     NAME                                READY   STATUS    RESTARTS   AGE     IP                NODE                                                 NOMINATED NODE   READINESS GATES
+kube-system   aws-node-5892k                      1/1     Running   0          4m9s    192.168.123.245   ip-192-168-123-245.ap-northeast-1.compute.internal   <none>           <none>
+kube-system   coredns-5fc8d4cdcf-c75z6            1/1     Running   0          13m     100.64.9.249      ip-192-168-123-245.ap-northeast-1.compute.internal   <none>           <none>
+kube-system   coredns-5fc8d4cdcf-h5lnl            1/1     Running   0          13m     100.64.13.41      ip-192-168-123-245.ap-northeast-1.compute.internal   <none>           <none>
+kube-system   ebs-csi-controller-d6bff959-8459z   6/6     Running   0          13m     100.64.8.74       ip-192-168-123-245.ap-northeast-1.compute.internal   <none>           <none>
+kube-system   ebs-csi-controller-d6bff959-vnwlf   6/6     Running   0          5m28s   100.64.11.124     ip-192-168-123-245.ap-northeast-1.compute.internal   <none>           <none>
+kube-system   ebs-csi-node-h7w8r                  3/3     Running   0          4m9s    100.64.11.188     ip-192-168-123-245.ap-northeast-1.compute.internal   <none>           <none>
+kube-system   kube-proxy-vgmdf                    1/1     Running   0          4m9s    192.168.123.245   ip-192-168-123-245.ap-northeast-1.compute.internal   <none>           <none>
+
+```
+
+## Edit configmap/aws-auth
+```
+kubectl edit -n kube-system configmap/aws-auth
+```
+Add a group with system:master role
+```yaml
+apiVersion: v1
+data:
+  mapRoles: |
+    - groups:
+      - system:bootstrappers
+      - system:nodes
+      rolearn: arn:aws:iam::040216112220:role/clusterCreator
+      username: system:node:Template:EC2PrivateDNSName
+    - groups:
+      - system:masters
+      rolearn: arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-bast-role
+      username: lab-apne1-xpk-iac-bast-role
+kind: ConfigMap
+metadata:
+  creationTimestamp: "2022-12-29T11:02:15Z"
+  name: aws-auth
+  namespace: kube-system
+  resourceVersion: "59670"
+  uid: 7cf9d889-8ed2-4c8d-ac0f-092184cede8a
+```
+
+## Addon updates
+When updating addons, please select advanced options and choose preserve settings.
\ No newline at end of file
diff --git a/examples/eks-lab/eks/eks-node-sshkey b/examples/eks-lab/eks/eks-node-sshkey
new file mode 100644
index 0000000..2cc109d
--- /dev/null
+++ b/examples/eks-lab/eks/eks-node-sshkey
@@ -0,0 +1,7 @@
+-----BEGIN OPENSSH PRIVATE KEY-----
+b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
+QyNTUxOQAAACDQnEGn3cwEav+pMKXYvP3KjDYpB+Po/wpcrmQZnh31wgAAAJDu9hUF7vYV
+BQAAAAtzc2gtZWQyNTUxOQAAACDQnEGn3cwEav+pMKXYvP3KjDYpB+Po/wpcrmQZnh31wg
+AAAEBcvMSW9eqRM2Kd3obuJfHma+nzrsMiRSHO09wjSg4KF9CcQafdzARq/6kwpdi8/cqM
+NikH4+j/ClyuZBmeHfXCAAAADWtuQGlzbS56b28ubG8=
+-----END OPENSSH PRIVATE KEY-----
diff --git a/examples/eks-lab/eks/eks-node-sshkey.pub b/examples/eks-lab/eks/eks-node-sshkey.pub
new file mode 100644
index 0000000..ca03027
--- /dev/null
+++ b/examples/eks-lab/eks/eks-node-sshkey.pub
@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINCcQafdzARq/6kwpdi8/cqMNikH4+j/ClyuZBmeHfXC kn@ism.zoo.lo
diff --git a/examples/eks-lab/eks/locals.tf b/examples/eks-lab/eks/locals.tf
new file mode 100644
index 0000000..8719f76
--- /dev/null
+++ b/examples/eks-lab/eks/locals.tf
@@ -0,0 +1,18 @@
+data "aws_caller_identity" "this" {}
+
+locals {
+  default-tags = merge({
+    ServiceProvider = "None"
+    Environment     = var.environment
+    Project         = var.project
+    Application     = var.application
+    TerraformMode   = "managed"
+    TerraformDir    = "${local.path-cwd-list[length(local.path-cwd-list) - 2]}/${local.path-cwd-list[length(local.path-cwd-list) - 1]}"
+
+    CreatedBy = data.aws_caller_identity.this.arn
+    BuildDate = formatdate("YYYYMMDD", timestamp())
+  })
+  resource-prefix = "${var.environment}-${var.aws-region-short}-${var.customer-name}-${var.project}"
+  path-cwd-list   = split("/", path.cwd)
+
+}
\ No newline at end of file
diff --git a/examples/eks-lab/eks/main.tf b/examples/eks-lab/eks/main.tf
new file mode 100644
index 0000000..9036f17
--- /dev/null
+++ b/examples/eks-lab/eks/main.tf
@@ -0,0 +1,261 @@
+data "terraform_remote_state" "vpc" {
+  backend = "local"
+  config = {
+    path = "../network/terraform.tfstate"
+  }
+}
+
+resource "aws_iam_role" "eks-cluster-role" {
+  name = "${local.resource-prefix}-cluster-role"
+  assume_role_policy = jsonencode({
+    "Version" : "2012-10-17",
+    "Statement" : [
+      {
+        "Effect" : "Allow",
+        "Principal" : {
+          "Service" : "eks.amazonaws.com"
+        },
+        "Action" : "sts:AssumeRole"
+      }
+    ]
+    }
+  )
+  managed_policy_arns = ["arn:aws:iam::aws:policy/AmazonEKSClusterPolicy", "arn:aws:iam::aws:policy/AmazonEKSVPCResourceController"]
+  tags                = local.default-tags
+}
+
+resource "aws_eks_cluster" "eks-cluster" {
+  name     = "${local.resource-prefix}-cluster01"
+  role_arn = aws_iam_role.eks-cluster-role.arn
+  vpc_config {
+    subnet_ids              = data.terraform_remote_state.vpc.outputs.private-subnet-ids
+    endpoint_private_access = true
+    endpoint_public_access  = false
+  }
+  enabled_cluster_log_types = ["api", "audit"]
+  kubernetes_network_config {
+    service_ipv4_cidr = "172.16.0.0/16"
+    ip_family         = "ipv4"
+  }
+  tags = local.default-tags
+}
+
+
+resource "aws_eks_addon" "eks-addons" {
+  # for_each     = toset(["vpc-cni", "coredns", "kube-proxy", "aws-ebs-csi-driver"])
+  # latest version as on 2023-02-17 failed to deploy
+  for_each = {
+    "aws-ebs-csi-driver" : {
+      "version" : "v1.15.0-eksbuild.1"
+    },
+    "vpc-cni" : {
+      "version" : "v1.12.2-eksbuild.1"
+    },
+    "coredns" : {
+      "version" : "v1.9.3-eksbuild.2"
+    },
+    "kube-proxy" : {
+      "version" : "v1.24.9-eksbuild.2"
+    }
+  }
+  cluster_name  = aws_eks_cluster.eks-cluster.name
+  addon_name    = each.key
+  # addon_version = each.value["version"]
+  tags          = local.default-tags
+}
+
+resource "aws_iam_role" "eks-nodegroup-role" {
+  name = "${local.resource-prefix}-nodegroup-role"
+  assume_role_policy = jsonencode({
+    "Version" : "2012-10-17",
+    "Statement" : [
+      {
+        "Effect" : "Allow",
+        "Principal" : {
+          "Service" : "ec2.amazonaws.com"
+        },
+        "Action" : "sts:AssumeRole"
+      }
+    ]
+    }
+  )
+  managed_policy_arns = [
+    "arn:aws:iam::aws:policy/AmazonEKSWorkerNodePolicy",
+    "arn:aws:iam::aws:policy/AmazonEKS_CNI_Policy",
+    "arn:aws:iam::aws:policy/AmazonEC2ContainerRegistryReadOnly",
+    "arn:aws:iam::aws:policy/CloudWatchAgentServerPolicy"
+  ]
+  tags = local.default-tags
+}
+
+data "aws_ssm_parameter" "eks_ami_release_version" {
+  name = "/aws/service/eks/optimized-ami/${aws_eks_cluster.eks-cluster.version}/amazon-linux-2/recommended/release_version"
+}
+
+# manually generate the key: ssh-keygen -ted25519 -f eks-node-sshkey
+# file() can only read pre-existing file
+resource "aws_key_pair" "eks-node-sshkey" {
+  key_name   = "${local.resource-prefix}-eks-node-sshkey"
+  public_key = file("${path.module}/eks-node-sshkey.pub")
+}
+
+resource "aws_security_group" "eks-node-sg" {
+  name        = "${local.resource-prefix}-eks-node-sg"
+  description = "Allow ssh to EKS nodes"
+  vpc_id      = data.terraform_remote_state.vpc.outputs.vpc-id
+
+  ingress {
+    description = "SSH from VPC"
+    from_port   = 22
+    to_port     = 22
+    protocol    = "tcp"
+    cidr_blocks = [data.terraform_remote_state.vpc.outputs.vpc-cidr]
+  }
+
+  egress {
+    from_port   = 0
+    to_port     = 0
+    protocol    = "-1"
+    cidr_blocks = ["0.0.0.0/0"]
+  }
+
+  tags = local.default-tags
+}
+
+resource "aws_eks_node_group" "eks-nodegroup" {
+  cluster_name           = aws_eks_cluster.eks-cluster.name
+  node_group_name_prefix = "${local.resource-prefix}-eks-ng"
+  node_role_arn          = aws_iam_role.eks-nodegroup-role.arn
+  subnet_ids             = data.terraform_remote_state.vpc.outputs.private-subnet-ids
+  version                = aws_eks_cluster.eks-cluster.version
+  release_version        = nonsensitive(data.aws_ssm_parameter.eks_ami_release_version.value)
+  instance_types         = ["t3.small"]
+  scaling_config {
+    desired_size = 1
+    max_size     = 2
+    min_size     = 1
+  }
+
+  update_config {
+    max_unavailable = 1
+  }
+  remote_access {
+    ec2_ssh_key               = aws_key_pair.eks-node-sshkey.key_name
+    source_security_group_ids = [aws_security_group.eks-node-sg.id]
+  }
+  tags = local.default-tags
+}
+
+# ec2 instance for EKS management
+data "aws_ami" "ubuntu" {
+  most_recent = true
+
+  filter {
+    name   = "name"
+    values = ["ubuntu/images/hvm-ssd/ubuntu-*-amd64-server-*"]
+  }
+
+  filter {
+    name   = "virtualization-type"
+    values = ["hvm"]
+  }
+
+  owners = ["099720109477"] # Canonical
+}
+
+resource "aws_security_group" "eks-bast-sg" {
+  name        = "${local.resource-prefix}-eks-bast-sg"
+  description = "Allow ssh to EKS bast"
+  vpc_id      = data.terraform_remote_state.vpc.outputs.vpc-id
+
+  ingress {
+    description = "SSH from VPC"
+    from_port   = 22
+    to_port     = 22
+    protocol    = "tcp"
+    cidr_blocks = ["223.18.148.85/32"]
+  }
+
+  egress {
+    from_port   = 0
+    to_port     = 0
+    protocol    = "-1"
+    cidr_blocks = ["0.0.0.0/0"]
+  }
+
+  tags = local.default-tags
+}
+
+
+resource "aws_iam_role" "eks-bast-role" {
+  name = "${local.resource-prefix}-bast-role"
+  assume_role_policy = jsonencode({
+    "Version" : "2012-10-17",
+    "Statement" : [
+      {
+        "Effect" : "Allow",
+        "Principal" : {
+          "Service" : "ec2.amazonaws.com"
+        },
+        "Action" : "sts:AssumeRole"
+      }
+    ]
+  })
+  inline_policy {
+    name = "eks-bast-policy"
+
+    policy = jsonencode({
+      Version = "2012-10-17"
+      Statement = [
+        {
+          Action   = ["eks:*", "ecr:*"]
+          Effect   = "Allow"
+          Resource = "*"
+        },
+      ]
+    })
+  }
+
+  managed_policy_arns = ["arn:aws:iam::aws:policy/ReadOnlyAccess"]
+  tags                = local.default-tags
+}
+
+
+resource "aws_iam_instance_profile" "eks-bast-iam-profile" {
+  name = "eksBastIamProfile"
+  role = aws_iam_role.eks-bast-role.name
+}
+
+resource "aws_instance" "eks-bast" {
+  ami                         = data.aws_ami.ubuntu.id
+  instance_type               = "t3.micro"
+  associate_public_ip_address = true
+  ebs_optimized               = true
+  key_name                    = aws_key_pair.eks-node-sshkey.key_name
+  vpc_security_group_ids      = [aws_security_group.eks-bast-sg.id, aws_eks_cluster.eks-cluster.vpc_config[0].cluster_security_group_id]
+  subnet_id                   = data.terraform_remote_state.vpc.outputs.public-subnet-ids[0]
+  iam_instance_profile        = aws_iam_instance_profile.eks-bast-iam-profile.name
+  root_block_device {
+    volume_size = 8
+    volume_type = "gp3"
+    tags        = local.default-tags
+  }
+  tags      = merge(local.default-tags, { "Name" : "${local.resource-prefix}-eks-bast" })
+  user_data = <<EOF
+#!/bin/bash
+echo "Install unzip"
+apt install unzip -y
+echo "Install eksctl"
+curl --silent --location "https://github.com/weaveworks/eksctl/releases/latest/download/eksctl_$(uname -s)_amd64.tar.gz" | tar xz -C /tmp
+mv /tmp/eksctl /usr/local/bin
+echo "Install kubectl"
+curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"
+mv kubectl /usr/local/bin/
+chmod 755 /usr/local/bin/kubectl
+echo "Install awscliv2"
+curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip"
+unzip awscliv2.zip
+sudo ./aws/install
+EOF
+
+}
\ No newline at end of file
diff --git a/examples/eks-lab/eks/outputs.tf b/examples/eks-lab/eks/outputs.tf
new file mode 100644
index 0000000..51f2685
--- /dev/null
+++ b/examples/eks-lab/eks/outputs.tf
@@ -0,0 +1,9 @@
+/*
+output eks-cluster-sg {
+  value = aws_eks_cluster.eks-cluster.vpc_config.*.cluster_security_group_id
+}
+*/
+
+output eks-bast-ip {
+  value = aws_instance.eks-bast.public_ip
+}
\ No newline at end of file
diff --git a/examples/eks-lab/eks/provider.tf b/examples/eks-lab/eks/provider.tf
new file mode 100644
index 0000000..a971ca5
--- /dev/null
+++ b/examples/eks-lab/eks/provider.tf
@@ -0,0 +1,13 @@
+provider "aws" {
+  region = var.aws-region
+}
+
+terraform {
+  required_version = ">= 1.0"
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = ">= 3.25"
+    }
+  }
+}
diff --git a/examples/eks-lab/eks/terraform.tfstate b/examples/eks-lab/eks/terraform.tfstate
new file mode 100644
index 0000000..987b656
--- /dev/null
+++ b/examples/eks-lab/eks/terraform.tfstate
@@ -0,0 +1,9 @@
+{
+  "version": 4,
+  "terraform_version": "1.3.7",
+  "serial": 113,
+  "lineage": "61b12344-3edc-e800-e200-edd57322a557",
+  "outputs": {},
+  "resources": [],
+  "check_results": null
+}
diff --git a/examples/eks-lab/eks/terraform.tfstate.backup b/examples/eks-lab/eks/terraform.tfstate.backup
new file mode 100644
index 0000000..8cc9c46
--- /dev/null
+++ b/examples/eks-lab/eks/terraform.tfstate.backup
@@ -0,0 +1,1101 @@
+{
+  "version": 4,
+  "terraform_version": "1.3.7",
+  "serial": 95,
+  "lineage": "61b12344-3edc-e800-e200-edd57322a557",
+  "outputs": {
+    "eks-bast-ip": {
+      "value": "52.199.225.16",
+      "type": "string"
+    }
+  },
+  "resources": [
+    {
+      "mode": "data",
+      "type": "aws_ami",
+      "name": "ubuntu",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "architecture": "x86_64",
+            "arn": "arn:aws:ec2:ap-northeast-1::image/ami-0778fde4cd5a48d8d",
+            "block_device_mappings": [
+              {
+                "device_name": "/dev/sda1",
+                "ebs": {
+                  "delete_on_termination": "true",
+                  "encrypted": "false",
+                  "iops": "0",
+                  "snapshot_id": "snap-0741d099f4894a808",
+                  "throughput": "0",
+                  "volume_size": "8",
+                  "volume_type": "gp2"
+                },
+                "no_device": "",
+                "virtual_name": ""
+              },
+              {
+                "device_name": "/dev/sdb",
+                "ebs": {},
+                "no_device": "",
+                "virtual_name": "ephemeral0"
+              },
+              {
+                "device_name": "/dev/sdc",
+                "ebs": {},
+                "no_device": "",
+                "virtual_name": "ephemeral1"
+              }
+            ],
+            "boot_mode": "",
+            "creation_date": "2023-02-16T02:48:34.000Z",
+            "deprecation_time": "2025-02-16T02:48:33.000Z",
+            "description": "Canonical, Ubuntu, 22.04 LTS, amd64 jammy image build on 2023-02-16",
+            "ena_support": true,
+            "executable_users": null,
+            "filter": [
+              {
+                "name": "name",
+                "values": [
+                  "ubuntu/images/hvm-ssd/ubuntu-*-amd64-server-*"
+                ]
+              },
+              {
+                "name": "virtualization-type",
+                "values": [
+                  "hvm"
+                ]
+              }
+            ],
+            "hypervisor": "xen",
+            "id": "ami-0778fde4cd5a48d8d",
+            "image_id": "ami-0778fde4cd5a48d8d",
+            "image_location": "amazon/ubuntu/images/hvm-ssd/ubuntu-jammy-22.04-amd64-server-20230216",
+            "image_owner_alias": "amazon",
+            "image_type": "machine",
+            "imds_support": "",
+            "include_deprecated": false,
+            "kernel_id": "",
+            "most_recent": true,
+            "name": "ubuntu/images/hvm-ssd/ubuntu-jammy-22.04-amd64-server-20230216",
+            "name_regex": null,
+            "owner_id": "099720109477",
+            "owners": [
+              "099720109477"
+            ],
+            "platform": "",
+            "platform_details": "Linux/UNIX",
+            "product_codes": [],
+            "public": true,
+            "ramdisk_id": "",
+            "root_device_name": "/dev/sda1",
+            "root_device_type": "ebs",
+            "root_snapshot_id": "snap-0741d099f4894a808",
+            "sriov_net_support": "simple",
+            "state": "available",
+            "state_reason": {
+              "code": "UNSET",
+              "message": "UNSET"
+            },
+            "tags": {},
+            "timeouts": null,
+            "tpm_support": "",
+            "usage_operation": "RunInstances",
+            "virtualization_type": "hvm"
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "data",
+      "type": "aws_caller_identity",
+      "name": "this",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "account_id": "040216112220",
+            "arn": "arn:aws:iam::040216112220:user/ken2026",
+            "id": "040216112220",
+            "user_id": "AIDAQSXIRFROOXYISSIEQ"
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "data",
+      "type": "aws_ssm_parameter",
+      "name": "eks_ami_release_version",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:ssm:ap-northeast-1::parameter/aws/service/eks/optimized-ami/1.24/amazon-linux-2/recommended/release_version",
+            "id": "/aws/service/eks/optimized-ami/1.24/amazon-linux-2/recommended/release_version",
+            "name": "/aws/service/eks/optimized-ami/1.24/amazon-linux-2/recommended/release_version",
+            "type": "String",
+            "value": "1.24.10-20230211",
+            "version": 7,
+            "with_decryption": true
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "data",
+      "type": "terraform_remote_state",
+      "name": "vpc",
+      "provider": "provider[\"terraform.io/builtin/terraform\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "backend": "local",
+            "config": {
+              "value": {
+                "path": "../network/terraform.tfstate"
+              },
+              "type": [
+                "object",
+                {
+                  "path": "string"
+                }
+              ]
+            },
+            "defaults": null,
+            "outputs": {
+              "value": {
+                "private-subnet-ids": [
+                  "subnet-0c37bcb8f45f4a246",
+                  "subnet-0f01efa6180f48b9d"
+                ],
+                "public-subnet-ids": [
+                  "subnet-0c3d3dfe9e4d353d1",
+                  "subnet-0226abaec8618c719"
+                ],
+                "vpc-cidr": "192.168.123.0/24",
+                "vpc-id": "vpc-0ea2750f798358708"
+              },
+              "type": [
+                "object",
+                {
+                  "private-subnet-ids": [
+                    "tuple",
+                    [
+                      "string",
+                      "string"
+                    ]
+                  ],
+                  "public-subnet-ids": [
+                    "tuple",
+                    [
+                      "string",
+                      "string"
+                    ]
+                  ],
+                  "vpc-cidr": "string",
+                  "vpc-id": "string"
+                }
+              ]
+            },
+            "workspace": null
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_eks_addon",
+      "name": "eks-addons",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "index_key": "aws-ebs-csi-driver",
+          "schema_version": 0,
+          "attributes": {
+            "addon_name": "aws-ebs-csi-driver",
+            "addon_version": "v1.15.0-eksbuild.1",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:addon/lab-apne1-xpk-iac-cluster01/aws-ebs-csi-driver/04c32ec3-c9be-2cdb-52c8-b9efb3b747fa",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "configuration_values": "",
+            "created_at": "2023-02-17T04:00:12Z",
+            "id": "lab-apne1-xpk-iac-cluster01:aws-ebs-csi-driver",
+            "modified_at": "2023-02-17T04:00:12Z",
+            "preserve": null,
+            "resolve_conflicts": null,
+            "service_account_role_arn": "",
+            "tags": {},
+            "tags_all": {},
+            "timeouts": null
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjI0MDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        },
+        {
+          "index_key": "coredns",
+          "schema_version": 0,
+          "attributes": {
+            "addon_name": "coredns",
+            "addon_version": "v1.8.7-eksbuild.3",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:addon/lab-apne1-xpk-iac-cluster01/coredns/72c32ec3-0abc-b44c-788c-c22f306a6923",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "configuration_values": "",
+            "created_at": "2023-02-17T03:58:34Z",
+            "id": "lab-apne1-xpk-iac-cluster01:coredns",
+            "modified_at": "2023-02-17T03:58:34Z",
+            "preserve": null,
+            "resolve_conflicts": null,
+            "service_account_role_arn": "",
+            "tags": {},
+            "tags_all": {},
+            "timeouts": null
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjI0MDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        },
+        {
+          "index_key": "kube-proxy",
+          "schema_version": 0,
+          "attributes": {
+            "addon_name": "kube-proxy",
+            "addon_version": "v1.24.7-eksbuild.2",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:addon/lab-apne1-xpk-iac-cluster01/kube-proxy/a8c32eab-1b69-816c-48bf-f065216d543f",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "configuration_values": "",
+            "created_at": "2023-02-17T03:06:17Z",
+            "id": "lab-apne1-xpk-iac-cluster01:kube-proxy",
+            "modified_at": "2023-02-17T03:24:08Z",
+            "preserve": null,
+            "resolve_conflicts": null,
+            "service_account_role_arn": "",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjI0MDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        },
+        {
+          "index_key": "vpc-cni",
+          "schema_version": 0,
+          "attributes": {
+            "addon_name": "vpc-cni",
+            "addon_version": "v1.11.4-eksbuild.1",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:addon/lab-apne1-xpk-iac-cluster01/vpc-cni/3ac32eab-1b6e-3d3f-7481-402306eaaf26",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "configuration_values": "",
+            "created_at": "2023-02-17T03:06:17Z",
+            "id": "lab-apne1-xpk-iac-cluster01:vpc-cni",
+            "modified_at": "2023-02-17T03:24:30Z",
+            "preserve": null,
+            "resolve_conflicts": null,
+            "service_account_role_arn": "",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxMjAwMDAwMDAwMDAwLCJkZWxldGUiOjI0MDAwMDAwMDAwMDAsInVwZGF0ZSI6MTIwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_eks_cluster",
+      "name": "eks-cluster",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:cluster/lab-apne1-xpk-iac-cluster01",
+            "certificate_authority": [
+              {
+                "data": "LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUMvakNDQWVhZ0F3SUJBZ0lCQURBTkJna3Foa2lHOXcwQkFRc0ZBREFWTVJNd0VRWURWUVFERXdwcmRXSmwKY201bGRHVnpNQjRYRFRJek1ESXhOekF6TURFME5sb1hEVE16TURJeE5EQXpNREUwTmxvd0ZURVRNQkVHQTFVRQpBeE1LYTNWaVpYSnVaWFJsY3pDQ0FTSXdEUVlKS29aSWh2Y05BUUVCQlFBRGdnRVBBRENDQVFvQ2dnRUJBTXJOCmxBWU02VjFxc090N1R1bVkvZ3l4bTZIL3hwSGxyeUlLRzVYa1ppQmJxWTRjcTJYeVFjd1M0bkpldW4wY2FQU0cKTFhJeEpNUGZId1h0TkxSRmRCdExiOFM5NHVWSzBhZEE0dkxVRXYzdmNOcUV5REN5Uno2SDd6N0xiZGdCbC82MQprQnpRZndNT3drL2lOdzE5S1A0OGluaStjOVVEY3J0Mm5yTVpqdUVUay8ybVNWTGNnUzFreEtmOFkwVmphUkpkCnpYYlVNazRvMkZia0x3UU5Dd0JYWG56VGZhakZHUXdRME45aVllZmxIaVZrUE84cmlWbW9ETm9KRzRaQVI0VVcKejNTVlhGbXB4dEcwbDN6QTdTZjdNQmx5M0w2dVNPbkc2M3VrQ2xQYUZ0VTF6ZUhreFZHM05wZko4NjQzUkJJRwovaDJHUXRiMUdVSFhzRFJFN0w4Q0F3RUFBYU5aTUZjd0RnWURWUjBQQVFIL0JBUURBZ0trTUE4R0ExVWRFd0VCCi93UUZNQU1CQWY4d0hRWURWUjBPQkJZRUZQYUI3aklubk05Y0paUERtK214cUE4NEVHMTlNQlVHQTFVZEVRUU8KTUF5Q0NtdDFZbVZ5Ym1WMFpYTXdEUVlKS29aSWh2Y05BUUVMQlFBRGdnRUJBSVJadjZhSGtQeS9mS21KaEx2RApxRWdEaEVJL2ZyaEc2U0lnY1FmVG1SN3U5bDRMOXJVTEg1RW9yMFFOcThKN3NMMFhwR3NZemk5MDUwY2RUS01PClBMMkZzYkZqODh6MFdnZEY1aTQzQlJTZk8wZ010b3d3Nm12YWc0S3JnUmZNT1VqNjNQNDFpMklzTFBBMjFPQWsKL3UrU1Y4bWFsWTAvUWkyTGhlbC9qSDdjeEN5Qmt3RGowY3Ivblk0ODZ6WUVMQ3J3bjBlYkNxemUrTTE3VG1FZwpjMTZhT1k0c0RpL3Y3eUMvZjlmSFN5SzVSMGpyUmlOcXYzc3FVdzlFOVZjNWFrNDErdU5ZWjREZGxLNWdhQTQwClR5M24wYlY3L0FlaHdrUHQySlVKWXRqUk1HY2xnS0JQd2h6bkV4djVUOFRDSXZVYVpBdkFqa0FERlZtSXU3dlUKb2pzPQotLS0tLUVORCBDRVJUSUZJQ0FURS0tLS0tCg=="
+              }
+            ],
+            "cluster_id": null,
+            "created_at": "2023-02-17 02:55:41.081 +0000 UTC",
+            "enabled_cluster_log_types": [
+              "api",
+              "audit"
+            ],
+            "encryption_config": [],
+            "endpoint": "https://1D439ECEEAD47B87B0B5FC392DC80939.gr7.ap-northeast-1.eks.amazonaws.com",
+            "id": "lab-apne1-xpk-iac-cluster01",
+            "identity": [
+              {
+                "oidc": [
+                  {
+                    "issuer": "https://oidc.eks.ap-northeast-1.amazonaws.com/id/1D439ECEEAD47B87B0B5FC392DC80939"
+                  }
+                ]
+              }
+            ],
+            "kubernetes_network_config": [
+              {
+                "ip_family": "ipv4",
+                "service_ipv4_cidr": "172.16.0.0/16",
+                "service_ipv6_cidr": ""
+              }
+            ],
+            "name": "lab-apne1-xpk-iac-cluster01",
+            "outpost_config": [],
+            "platform_version": "eks.4",
+            "role_arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-cluster-role",
+            "status": "ACTIVE",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "version": "1.24",
+            "vpc_config": [
+              {
+                "cluster_security_group_id": "sg-05e8bccfddf776e0a",
+                "endpoint_private_access": true,
+                "endpoint_public_access": false,
+                "public_access_cidrs": [],
+                "security_group_ids": [],
+                "subnet_ids": [
+                  "subnet-0c37bcb8f45f4a246",
+                  "subnet-0f01efa6180f48b9d"
+                ],
+                "vpc_id": "vpc-0ea2750f798358708"
+              }
+            ]
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjoxODAwMDAwMDAwMDAwLCJkZWxldGUiOjkwMDAwMDAwMDAwMCwidXBkYXRlIjozNjAwMDAwMDAwMDAwfX0=",
+          "dependencies": [
+            "aws_iam_role.eks-cluster-role",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_eks_node_group",
+      "name": "eks-nodegroup",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "ami_type": "AL2_x86_64",
+            "arn": "arn:aws:eks:ap-northeast-1:040216112220:nodegroup/lab-apne1-xpk-iac-cluster01/lab-apne1-xpk-iac-eks-ng20230217040714054300000001/eac32ec7-02e4-8f00-3efd-c887b5afc59e",
+            "capacity_type": "ON_DEMAND",
+            "cluster_name": "lab-apne1-xpk-iac-cluster01",
+            "disk_size": 20,
+            "force_update_version": null,
+            "id": "lab-apne1-xpk-iac-cluster01:lab-apne1-xpk-iac-eks-ng20230217040714054300000001",
+            "instance_types": [
+              "t3.small"
+            ],
+            "labels": null,
+            "launch_template": [],
+            "node_group_name": "lab-apne1-xpk-iac-eks-ng20230217040714054300000001",
+            "node_group_name_prefix": "lab-apne1-xpk-iac-eks-ng",
+            "node_role_arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-nodegroup-role",
+            "release_version": "1.24.10-20230211",
+            "remote_access": [
+              {
+                "ec2_ssh_key": "lab-apne1-xpk-iac-eks-node-sshkey",
+                "source_security_group_ids": [
+                  "sg-06a8c5e3172a511db"
+                ]
+              }
+            ],
+            "resources": [
+              {
+                "autoscaling_groups": [
+                  {
+                    "name": "eks-lab-apne1-xpk-iac-eks-ng20230217040714054300000001-eac32ec7-02e4-8f00-3efd-c887b5afc59e"
+                  }
+                ],
+                "remote_access_security_group_id": "sg-038dedcbc92537147"
+              }
+            ],
+            "scaling_config": [
+              {
+                "desired_size": 1,
+                "max_size": 2,
+                "min_size": 1
+              }
+            ],
+            "status": "ACTIVE",
+            "subnet_ids": [
+              "subnet-0c37bcb8f45f4a246",
+              "subnet-0f01efa6180f48b9d"
+            ],
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "taint": [],
+            "timeouts": null,
+            "update_config": [
+              {
+                "max_unavailable": 1,
+                "max_unavailable_percentage": 0
+              }
+            ],
+            "version": "1.24"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjozNjAwMDAwMDAwMDAwLCJkZWxldGUiOjM2MDAwMDAwMDAwMDAsInVwZGF0ZSI6MzYwMDAwMDAwMDAwMH19",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_role.eks-cluster-role",
+            "aws_iam_role.eks-nodegroup-role",
+            "aws_key_pair.eks-node-sshkey",
+            "aws_security_group.eks-node-sg",
+            "data.aws_caller_identity.this",
+            "data.aws_ssm_parameter.eks_ami_release_version",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_iam_instance_profile",
+      "name": "eks-bast-iam-profile",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:iam::040216112220:instance-profile/eksBastIamProfile",
+            "create_date": "2023-02-17T02:55:39Z",
+            "id": "eksBastIamProfile",
+            "name": "eksBastIamProfile",
+            "name_prefix": null,
+            "path": "/",
+            "role": "lab-apne1-xpk-iac-bast-role",
+            "tags": {},
+            "tags_all": {},
+            "unique_id": "AIPAQSXIRFROFORU4B5MF"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "aws_iam_role.eks-bast-role",
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_iam_role",
+      "name": "eks-bast-role",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-bast-role",
+            "assume_role_policy": "{\"Statement\":[{\"Action\":\"sts:AssumeRole\",\"Effect\":\"Allow\",\"Principal\":{\"Service\":\"ec2.amazonaws.com\"}}],\"Version\":\"2012-10-17\"}",
+            "create_date": "2023-02-17T02:55:37Z",
+            "description": "",
+            "force_detach_policies": false,
+            "id": "lab-apne1-xpk-iac-bast-role",
+            "inline_policy": [
+              {
+                "name": "eks-bast-policy",
+                "policy": "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Action\":[\"eks:*\",\"ecr:*\"],\"Effect\":\"Allow\",\"Resource\":\"*\"}]}"
+              }
+            ],
+            "managed_policy_arns": [
+              "arn:aws:iam::aws:policy/ReadOnlyAccess"
+            ],
+            "max_session_duration": 3600,
+            "name": "lab-apne1-xpk-iac-bast-role",
+            "name_prefix": "",
+            "path": "/",
+            "permissions_boundary": null,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "unique_id": "AROAQSXIRFROCI4Y2PX2F"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_iam_role",
+      "name": "eks-cluster-role",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-cluster-role",
+            "assume_role_policy": "{\"Statement\":[{\"Action\":\"sts:AssumeRole\",\"Effect\":\"Allow\",\"Principal\":{\"Service\":\"eks.amazonaws.com\"}}],\"Version\":\"2012-10-17\"}",
+            "create_date": "2023-02-17T02:55:37Z",
+            "description": "",
+            "force_detach_policies": false,
+            "id": "lab-apne1-xpk-iac-cluster-role",
+            "inline_policy": [],
+            "managed_policy_arns": [
+              "arn:aws:iam::aws:policy/AmazonEKSClusterPolicy",
+              "arn:aws:iam::aws:policy/AmazonEKSVPCResourceController"
+            ],
+            "max_session_duration": 3600,
+            "name": "lab-apne1-xpk-iac-cluster-role",
+            "name_prefix": "",
+            "path": "/",
+            "permissions_boundary": null,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "unique_id": "AROAQSXIRFROC4XGDRJVK"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_iam_role",
+      "name": "eks-nodegroup-role",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "arn": "arn:aws:iam::040216112220:role/lab-apne1-xpk-iac-nodegroup-role",
+            "assume_role_policy": "{\"Statement\":[{\"Action\":\"sts:AssumeRole\",\"Effect\":\"Allow\",\"Principal\":{\"Service\":\"ec2.amazonaws.com\"}}],\"Version\":\"2012-10-17\"}",
+            "create_date": "2023-02-17T02:55:37Z",
+            "description": "",
+            "force_detach_policies": false,
+            "id": "lab-apne1-xpk-iac-nodegroup-role",
+            "inline_policy": [],
+            "managed_policy_arns": [
+              "arn:aws:iam::aws:policy/AmazonEC2ContainerRegistryReadOnly",
+              "arn:aws:iam::aws:policy/AmazonEKSWorkerNodePolicy",
+              "arn:aws:iam::aws:policy/AmazonEKS_CNI_Policy",
+              "arn:aws:iam::aws:policy/CloudWatchAgentServerPolicy"
+            ],
+            "max_session_duration": 3600,
+            "name": "lab-apne1-xpk-iac-nodegroup-role",
+            "name_prefix": "",
+            "path": "/",
+            "permissions_boundary": null,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "unique_id": "AROAQSXIRFROK5J4CVB5B"
+          },
+          "sensitive_attributes": [],
+          "private": "bnVsbA==",
+          "dependencies": [
+            "data.aws_caller_identity.this"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_instance",
+      "name": "eks-bast",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "ami": "ami-0778fde4cd5a48d8d",
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:instance/i-0d4e4a016ecec1dbd",
+            "associate_public_ip_address": true,
+            "availability_zone": "ap-northeast-1a",
+            "capacity_reservation_specification": [
+              {
+                "capacity_reservation_preference": "open",
+                "capacity_reservation_target": []
+              }
+            ],
+            "cpu_core_count": 1,
+            "cpu_threads_per_core": 2,
+            "credit_specification": [
+              {
+                "cpu_credits": "unlimited"
+              }
+            ],
+            "disable_api_stop": false,
+            "disable_api_termination": false,
+            "ebs_block_device": [],
+            "ebs_optimized": true,
+            "enclave_options": [
+              {
+                "enabled": false
+              }
+            ],
+            "ephemeral_block_device": [],
+            "get_password_data": false,
+            "hibernation": false,
+            "host_id": "",
+            "host_resource_group_arn": null,
+            "iam_instance_profile": "eksBastIamProfile",
+            "id": "i-0d4e4a016ecec1dbd",
+            "instance_initiated_shutdown_behavior": "stop",
+            "instance_state": "running",
+            "instance_type": "t3.micro",
+            "ipv6_address_count": 0,
+            "ipv6_addresses": [],
+            "key_name": "lab-apne1-xpk-iac-eks-node-sshkey",
+            "launch_template": [],
+            "maintenance_options": [
+              {
+                "auto_recovery": "default"
+              }
+            ],
+            "metadata_options": [
+              {
+                "http_endpoint": "enabled",
+                "http_put_response_hop_limit": 1,
+                "http_tokens": "optional",
+                "instance_metadata_tags": "disabled"
+              }
+            ],
+            "monitoring": false,
+            "network_interface": [],
+            "outpost_arn": "",
+            "password_data": "",
+            "placement_group": "",
+            "placement_partition_number": 0,
+            "primary_network_interface_id": "eni-065996af75245c7b9",
+            "private_dns": "ip-192-168-123-40.ap-northeast-1.compute.internal",
+            "private_dns_name_options": [
+              {
+                "enable_resource_name_dns_a_record": false,
+                "enable_resource_name_dns_aaaa_record": false,
+                "hostname_type": "ip-name"
+              }
+            ],
+            "private_ip": "192.168.123.40",
+            "public_dns": "ec2-52-199-225-16.ap-northeast-1.compute.amazonaws.com",
+            "public_ip": "52.199.225.16",
+            "root_block_device": [
+              {
+                "delete_on_termination": true,
+                "device_name": "/dev/sda1",
+                "encrypted": false,
+                "iops": 3000,
+                "kms_key_id": "",
+                "tags": {
+                  "Application": "eks",
+                  "BuildDate": "20230217",
+                  "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+                  "Environment": "lab",
+                  "Project": "iac",
+                  "ServiceProvider": "None",
+                  "TerraformDir": "eks-lab/eks",
+                  "TerraformMode": "managed"
+                },
+                "throughput": 125,
+                "volume_id": "vol-06fc873304339e899",
+                "volume_size": 8,
+                "volume_type": "gp3"
+              }
+            ],
+            "secondary_private_ips": [],
+            "security_groups": [],
+            "source_dest_check": true,
+            "subnet_id": "subnet-0c3d3dfe9e4d353d1",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-eks-bast",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-apne1-xpk-iac-eks-bast",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "tenancy": "default",
+            "timeouts": null,
+            "user_data": "4a6d9befb39781498f40f4b04e833f7a1cccbbbf",
+            "user_data_base64": null,
+            "user_data_replace_on_change": false,
+            "volume_tags": null,
+            "vpc_security_group_ids": [
+              "sg-05e8bccfddf776e0a",
+              "sg-0d7880b7edd663ebf"
+            ]
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6MTIwMDAwMDAwMDAwMCwidXBkYXRlIjo2MDAwMDAwMDAwMDB9LCJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
+          "dependencies": [
+            "aws_eks_cluster.eks-cluster",
+            "aws_iam_instance_profile.eks-bast-iam-profile",
+            "aws_iam_role.eks-bast-role",
+            "aws_iam_role.eks-cluster-role",
+            "aws_key_pair.eks-node-sshkey",
+            "aws_security_group.eks-bast-sg",
+            "data.aws_ami.ubuntu",
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_key_pair",
+      "name": "eks-node-sshkey",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:key-pair/lab-apne1-xpk-iac-eks-node-sshkey",
+            "fingerprint": "TVzf3htvZnxMd+PpGafCtDQf8Fse5IHgH3Z6mY23CLg=",
+            "id": "lab-apne1-xpk-iac-eks-node-sshkey",
+            "key_name": "lab-apne1-xpk-iac-eks-node-sshkey",
+            "key_name_prefix": "",
+            "key_pair_id": "key-0a807f697a1a0c8a9",
+            "key_type": "ed25519",
+            "public_key": "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINCcQafdzARq/6kwpdi8/cqMNikH4+j/ClyuZBmeHfXC kn@ism.zoo.lo",
+            "tags": {},
+            "tags_all": {}
+          },
+          "sensitive_attributes": [],
+          "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjEifQ=="
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_security_group",
+      "name": "eks-bast-sg",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:security-group/sg-0d7880b7edd663ebf",
+            "description": "Allow ssh to EKS bast",
+            "egress": [
+              {
+                "cidr_blocks": [
+                  "0.0.0.0/0"
+                ],
+                "description": "",
+                "from_port": 0,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "-1",
+                "security_groups": [],
+                "self": false,
+                "to_port": 0
+              }
+            ],
+            "id": "sg-0d7880b7edd663ebf",
+            "ingress": [
+              {
+                "cidr_blocks": [
+                  "223.18.148.85/32"
+                ],
+                "description": "SSH from VPC",
+                "from_port": 22,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "tcp",
+                "security_groups": [],
+                "self": false,
+                "to_port": 22
+              }
+            ],
+            "name": "lab-apne1-xpk-iac-eks-bast-sg",
+            "name_prefix": "",
+            "owner_id": "040216112220",
+            "revoke_rules_on_delete": false,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-0ea2750f798358708"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=",
+          "dependencies": [
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_security_group",
+      "name": "eks-node-sg",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:security-group/sg-06a8c5e3172a511db",
+            "description": "Allow ssh to EKS nodes",
+            "egress": [
+              {
+                "cidr_blocks": [
+                  "0.0.0.0/0"
+                ],
+                "description": "",
+                "from_port": 0,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "-1",
+                "security_groups": [],
+                "self": false,
+                "to_port": 0
+              }
+            ],
+            "id": "sg-06a8c5e3172a511db",
+            "ingress": [
+              {
+                "cidr_blocks": [
+                  "192.168.123.0/24"
+                ],
+                "description": "SSH from VPC",
+                "from_port": 22,
+                "ipv6_cidr_blocks": [],
+                "prefix_list_ids": [],
+                "protocol": "tcp",
+                "security_groups": [],
+                "self": false,
+                "to_port": 22
+              }
+            ],
+            "name": "lab-apne1-xpk-iac-eks-node-sg",
+            "name_prefix": "",
+            "owner_id": "040216112220",
+            "revoke_rules_on_delete": false,
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/eks",
+              "TerraformMode": "managed"
+            },
+            "timeouts": null,
+            "vpc_id": "vpc-0ea2750f798358708"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6OTAwMDAwMDAwMDAwfSwic2NoZW1hX3ZlcnNpb24iOiIxIn0=",
+          "dependencies": [
+            "data.aws_caller_identity.this",
+            "data.terraform_remote_state.vpc"
+          ]
+        }
+      ]
+    }
+  ],
+  "check_results": null
+}
diff --git a/examples/eks-lab/eks/terraform.tfvars b/examples/eks-lab/eks/terraform.tfvars
new file mode 100644
index 0000000..e8f7cea
--- /dev/null
+++ b/examples/eks-lab/eks/terraform.tfvars
@@ -0,0 +1,6 @@
+aws-region          = "ap-northeast-1"
+aws-region-short    = "apne1"
+customer-name       = "xpk"
+environment         = "lab"
+project             = "iac"
+application         = "eks"
\ No newline at end of file
diff --git a/examples/eks-lab/eks/variables.tf b/examples/eks-lab/eks/variables.tf
new file mode 100644
index 0000000..eb16380
--- /dev/null
+++ b/examples/eks-lab/eks/variables.tf
@@ -0,0 +1,6 @@
+variable "aws-region" {}
+variable "aws-region-short" {}
+variable "customer-name" {}
+variable "environment" {}
+variable "project" {}
+variable "application" {}
\ No newline at end of file
diff --git a/examples/eks-lab/network/.terraform.lock.hcl b/examples/eks-lab/network/.terraform.lock.hcl
new file mode 100644
index 0000000..a8f2e9c
--- /dev/null
+++ b/examples/eks-lab/network/.terraform.lock.hcl
@@ -0,0 +1,25 @@
+# This file is maintained automatically by "terraform init".
+# Manual edits may be lost in future updates.
+
+provider "registry.terraform.io/hashicorp/aws" {
+  version     = "4.55.0"
+  constraints = ">= 3.25.0, >= 3.75.2"
+  hashes = [
+    "h1:VHfmrKCb4oTW/+rWGKKqipoMOPd4tPxlGwMp0/Flx/s=",
+    "zh:0866f25575bad3b9c313cd778c94fc65e79d335af2d20a3480f79d7731d93b7b",
+    "zh:2c05c16155cbc054622cf83e4b6614fef35935b00b238e4c21ee225e6c896770",
+    "zh:2efba66649fb12af0492c6cce4e2361fe9139df648734264f61a9a1ef754df53",
+    "zh:3c60bb53e3b65d7f86699fae0797a55a9aa41b8ba377aaff4daf23d1661393a9",
+    "zh:41f6dcd90b54b623d523df8fb4a30779cfe22e9ab59516bc05b29291a7af0946",
+    "zh:4b8330b154e9e2d035dd5488abcac25efec1fa6055d3a70894a8c0384f0579d6",
+    "zh:595f263706cf1fb6b8447e2ec343638de4360841a15e6bff6ccbb0ff86c7ce74",
+    "zh:5dfc5b858a43cf45fde5542eb673f6104c14cdc3d73843d1b87a9e44545cbad4",
+    "zh:7bbe05cf30521f0110603bb84995a4025ce7810626010276600e4b402143df27",
+    "zh:9b12af85486a96aedd8d7984b0ff811a4b42e3d88dad1a3fb4c0b580d04fa425",
+    "zh:a490e68c63504d3301d6dcb700c95778d93bb2baa6632a46c5a1d62862a7067c",
+    "zh:c4f9f6659148528375c8a822163925c9aae490ccce2e6301cefbbab009531971",
+    "zh:ef66070f957408f1c924ddfd5dbd0d34bce16efd9e36ccecbf699de72beb131f",
+    "zh:f7ba5e3e62a2b51b24e326797a89fdd86bafaea7d1912738d514c9903c14d7f2",
+    "zh:ffc20b7d9f7bd331fb6451d0fc92c68196383d7115e69380de6566cc268cb9b9",
+  ]
+}
diff --git a/examples/eks-lab/network/.terraform/modules/modules.json b/examples/eks-lab/network/.terraform/modules/modules.json
new file mode 100644
index 0000000..b9f4713
--- /dev/null
+++ b/examples/eks-lab/network/.terraform/modules/modules.json
@@ -0,0 +1 @@
+{"Modules":[{"Key":"","Source":"","Dir":"."},{"Key":"vpc-subnets","Source":"../../../modules/networking/vpc_subnets","Dir":"../../../modules/networking/vpc_subnets"},{"Key":"vpc-subnets.vpc-ep","Source":"../vpc-endpoints","Dir":"../../../modules/networking/vpc-endpoints"}]}
\ No newline at end of file
diff --git a/examples/eks-lab/network/.terraform/providers/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64 b/examples/eks-lab/network/.terraform/providers/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64
new file mode 120000
index 0000000..612bb8d
--- /dev/null
+++ b/examples/eks-lab/network/.terraform/providers/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64
@@ -0,0 +1 @@
+/home/kn/.terraform.d/plugin-cache/registry.terraform.io/hashicorp/aws/4.55.0/linux_amd64
\ No newline at end of file
diff --git a/examples/eks-lab/network/README.md b/examples/eks-lab/network/README.md
new file mode 100644
index 0000000..89c2daa
--- /dev/null
+++ b/examples/eks-lab/network/README.md
@@ -0,0 +1,8 @@
+# eks-lab/network
+This module creates the following resources
+- VPC
+- Public and private subnets
+- NAT gateway
+
+A secondary CIDR range is added to the VPC. Later on in the EKS layer, EKS will be configured to use the secondary CIDR. 
+See https://aws.amazon.com/premiumsupport/knowledge-center/eks-multiple-cidr-ranges/
\ No newline at end of file
diff --git a/examples/eks-lab/network/locals.tf b/examples/eks-lab/network/locals.tf
new file mode 100644
index 0000000..8719f76
--- /dev/null
+++ b/examples/eks-lab/network/locals.tf
@@ -0,0 +1,18 @@
+data "aws_caller_identity" "this" {}
+
+locals {
+  default-tags = merge({
+    ServiceProvider = "None"
+    Environment     = var.environment
+    Project         = var.project
+    Application     = var.application
+    TerraformMode   = "managed"
+    TerraformDir    = "${local.path-cwd-list[length(local.path-cwd-list) - 2]}/${local.path-cwd-list[length(local.path-cwd-list) - 1]}"
+
+    CreatedBy = data.aws_caller_identity.this.arn
+    BuildDate = formatdate("YYYYMMDD", timestamp())
+  })
+  resource-prefix = "${var.environment}-${var.aws-region-short}-${var.customer-name}-${var.project}"
+  path-cwd-list   = split("/", path.cwd)
+
+}
\ No newline at end of file
diff --git a/examples/eks-lab/network/main.tf b/examples/eks-lab/network/main.tf
new file mode 100644
index 0000000..6f4e0f3
--- /dev/null
+++ b/examples/eks-lab/network/main.tf
@@ -0,0 +1,55 @@
+# Create VPC and subnets
+
+module "vpc-subnets" {
+  source = "../../../modules/networking/vpc_subnets"
+
+  application                      = var.application
+  aws-region                       = var.aws-region
+  customer-name                    = var.customer-name
+  default-tags                     = local.default-tags
+  environment                      = var.environment
+  project                          = var.project
+  vpc-cidr                         = "192.168.123.0/24"
+  vpcflowlog-cwl-loggroup-key-arn  = ""
+  number-of-private-subnets-per-az = 1
+  number-of-public-subnets-per-az  = 1
+  create-nat-gateway               = true
+  create-free-vpc-endpoints        = true
+  enable-flow-log                  = false
+}
+
+# secondary CIDR for EKS
+# https://aws.amazon.com/premiumsupport/knowledge-center/eks-multiple-cidr-ranges/
+resource "aws_vpc_ipv4_cidr_block_association" "secondary_cidr" {
+  vpc_id     = module.vpc-subnets.vpc_id
+  cidr_block = "100.64.0.0/16"
+}
+
+resource "aws_subnet" "cidr2-subnet1a" {
+  vpc_id     = module.vpc-subnets.vpc_id
+  cidr_block = "100.64.0.0/21"
+  tags       = merge(local.default-tags, {"Name" : "${local.resource-prefix}-private-1a-eks"})
+}
+
+resource "aws_route_table_association" "cidr2-subnet1a-rtb-asso" {
+  subnet_id      = aws_subnet.cidr2-subnet1a.id
+  route_table_id = module.vpc-subnets.private-rtb-id
+}
+
+resource "aws_subnet" "cidr2-subnet1c" {
+  vpc_id     = module.vpc-subnets.vpc_id
+  cidr_block = "100.64.8.0/21"
+  tags       = merge(local.default-tags, {"Name" : "${local.resource-prefix}-private-1c-eks"})
+}
+
+resource "aws_route_table_association" "cidr2-subnet1c-rtb-asso" {
+  subnet_id      = aws_subnet.cidr2-subnet1c.id
+  route_table_id = module.vpc-subnets.private-rtb-id
+}
+
+resource "aws_vpc_endpoint" "eks-vpcep" {
+  vpc_id            = module.vpc-subnets.vpc_id
+  service_name      = "com.amazonaws.${var.aws-region}.eks"
+  vpc_endpoint_type = "Interface"
+  tags              = merge(local.default-tags, { "Name" : "${local.resource-prefix}-vpcep-eks" })
+}
\ No newline at end of file
diff --git a/examples/eks-lab/network/outputs.tf b/examples/eks-lab/network/outputs.tf
new file mode 100644
index 0000000..01d3a09
--- /dev/null
+++ b/examples/eks-lab/network/outputs.tf
@@ -0,0 +1,15 @@
+output vpc-cidr {
+  value = module.vpc-subnets.vpc-cidr
+}
+
+output vpc-id {
+  value = module.vpc-subnets.vpc_id
+}
+
+output private-subnet-ids {
+  value = module.vpc-subnets.private-subnet-ids
+}
+
+output public-subnet-ids {
+  value = module.vpc-subnets.public-subnet-ids
+}
\ No newline at end of file
diff --git a/examples/eks-lab/network/provider.tf b/examples/eks-lab/network/provider.tf
new file mode 100644
index 0000000..a971ca5
--- /dev/null
+++ b/examples/eks-lab/network/provider.tf
@@ -0,0 +1,13 @@
+provider "aws" {
+  region = var.aws-region
+}
+
+terraform {
+  required_version = ">= 1.0"
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = ">= 3.25"
+    }
+  }
+}
diff --git a/examples/eks-lab/network/terraform.tfstate b/examples/eks-lab/network/terraform.tfstate
new file mode 100644
index 0000000..dbc23ce
--- /dev/null
+++ b/examples/eks-lab/network/terraform.tfstate
@@ -0,0 +1,16 @@
+{
+  "version": 4,
+  "terraform_version": "1.3.7",
+  "serial": 70,
+  "lineage": "ee2778d9-f9d6-f368-21c3-1a1e2778fc15",
+  "outputs": {},
+  "resources": [],
+  "check_results": [
+    {
+      "object_kind": "resource",
+      "config_addr": "module.vpc-subnets.module.vpc-ep.data.aws_vpc.this-vpc",
+      "status": "unknown",
+      "objects": null
+    }
+  ]
+}
diff --git a/examples/eks-lab/network/terraform.tfstate.backup b/examples/eks-lab/network/terraform.tfstate.backup
new file mode 100644
index 0000000..b8a35bb
--- /dev/null
+++ b/examples/eks-lab/network/terraform.tfstate.backup
@@ -0,0 +1,125 @@
+{
+  "version": 4,
+  "terraform_version": "1.3.7",
+  "serial": 63,
+  "lineage": "ee2778d9-f9d6-f368-21c3-1a1e2778fc15",
+  "outputs": {},
+  "resources": [
+    {
+      "mode": "data",
+      "type": "aws_caller_identity",
+      "name": "this",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "account_id": "040216112220",
+            "arn": "arn:aws:iam::040216112220:user/ken2026",
+            "id": "040216112220",
+            "user_id": "AIDAQSXIRFROOXYISSIEQ"
+          },
+          "sensitive_attributes": []
+        }
+      ]
+    },
+    {
+      "mode": "managed",
+      "type": "aws_vpc_ipv4_cidr_block_association",
+      "name": "secondary_cidr",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 0,
+          "attributes": {
+            "cidr_block": "100.64.0.0/16",
+            "id": "vpc-cidr-assoc-023e2a1c53aa39448",
+            "ipv4_ipam_pool_id": null,
+            "ipv4_netmask_length": null,
+            "timeouts": null,
+            "vpc_id": "vpc-0ea2750f798358708"
+          },
+          "sensitive_attributes": [],
+          "private": "eyJlMmJmYjczMC1lY2FhLTExZTYtOGY4OC0zNDM2M2JjN2M0YzAiOnsiY3JlYXRlIjo2MDAwMDAwMDAwMDAsImRlbGV0ZSI6NjAwMDAwMDAwMDAwfX0=",
+          "dependencies": [
+            "data.aws_caller_identity.this",
+            "module.vpc-subnets.aws_vpc.vpc"
+          ]
+        }
+      ]
+    },
+    {
+      "module": "module.vpc-subnets",
+      "mode": "managed",
+      "type": "aws_vpc",
+      "name": "vpc",
+      "provider": "provider[\"registry.terraform.io/hashicorp/aws\"]",
+      "instances": [
+        {
+          "schema_version": 1,
+          "attributes": {
+            "arn": "arn:aws:ec2:ap-northeast-1:040216112220:vpc/vpc-0ea2750f798358708",
+            "assign_generated_ipv6_cidr_block": false,
+            "cidr_block": "192.168.123.0/24",
+            "default_network_acl_id": "acl-071f6e3e57003c3ea",
+            "default_route_table_id": "rtb-094b1da133f919558",
+            "default_security_group_id": "sg-00852e5eba267541f",
+            "dhcp_options_id": "dopt-090c9f839527a4c07",
+            "enable_classiclink": false,
+            "enable_classiclink_dns_support": false,
+            "enable_dns_hostnames": true,
+            "enable_dns_support": true,
+            "enable_network_address_usage_metrics": false,
+            "id": "vpc-0ea2750f798358708",
+            "instance_tenancy": "default",
+            "ipv4_ipam_pool_id": null,
+            "ipv4_netmask_length": null,
+            "ipv6_association_id": "",
+            "ipv6_cidr_block": "",
+            "ipv6_cidr_block_network_border_group": "",
+            "ipv6_ipam_pool_id": "",
+            "ipv6_netmask_length": 0,
+            "main_route_table_id": "rtb-094b1da133f919558",
+            "owner_id": "040216112220",
+            "tags": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-ap-xpk-iac-vpc",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/network",
+              "TerraformMode": "managed"
+            },
+            "tags_all": {
+              "Application": "eks",
+              "BuildDate": "20230217",
+              "CreatedBy": "arn:aws:iam::040216112220:user/ken2026",
+              "Environment": "lab",
+              "Name": "lab-ap-xpk-iac-vpc",
+              "Project": "iac",
+              "ServiceProvider": "None",
+              "TerraformDir": "eks-lab/network",
+              "TerraformMode": "managed"
+            }
+          },
+          "sensitive_attributes": [],
+          "private": "eyJzY2hlbWFfdmVyc2lvbiI6IjEifQ==",
+          "dependencies": [
+            "data.aws_caller_identity.this"
+          ],
+          "create_before_destroy": true
+        }
+      ]
+    }
+  ],
+  "check_results": [
+    {
+      "object_kind": "resource",
+      "config_addr": "module.vpc-subnets.module.vpc-ep.data.aws_vpc.this-vpc",
+      "status": "unknown",
+      "objects": null
+    }
+  ]
+}
diff --git a/examples/eks-lab/network/terraform.tfvars b/examples/eks-lab/network/terraform.tfvars
new file mode 100644
index 0000000..e8f7cea
--- /dev/null
+++ b/examples/eks-lab/network/terraform.tfvars
@@ -0,0 +1,6 @@
+aws-region          = "ap-northeast-1"
+aws-region-short    = "apne1"
+customer-name       = "xpk"
+environment         = "lab"
+project             = "iac"
+application         = "eks"
\ No newline at end of file
diff --git a/examples/eks-lab/network/variables.tf b/examples/eks-lab/network/variables.tf
new file mode 100644
index 0000000..eb16380
--- /dev/null
+++ b/examples/eks-lab/network/variables.tf
@@ -0,0 +1,6 @@
+variable "aws-region" {}
+variable "aws-region-short" {}
+variable "customer-name" {}
+variable "environment" {}
+variable "project" {}
+variable "application" {}
\ No newline at end of file
diff --git a/modules/networking/vpc-endpoints/main.tf b/modules/networking/vpc-endpoints/main.tf
index a9582ed..584c1b7 100644
--- a/modules/networking/vpc-endpoints/main.tf
+++ b/modules/networking/vpc-endpoints/main.tf
@@ -1,7 +1,7 @@
 resource "aws_vpc_endpoint" "vpc-interface-ep" {
   for_each = toset(var.interface-ep-services)
   vpc_id            = data.aws_vpc.this-vpc.id
-  service_name      = "com.amazonaws.ap-east-1.${each.value}"
+  service_name      = "com.amazonaws.${var.aws-region}.${each.value}"
   vpc_endpoint_type = "Interface"
 
   security_group_ids = [
@@ -41,7 +41,7 @@ resource "aws_security_group" "generic-ep-sg" {
 resource "aws_vpc_endpoint" "vpc-gateway-ep" {
   for_each = toset(var.gateway-ep-services)
   vpc_id            = data.aws_vpc.this-vpc.id
-  service_name      = "com.amazonaws.ap-east-1.${each.value}"
+  service_name      = "com.amazonaws.${var.aws-region}.${each.value}"
   vpc_endpoint_type = "Gateway"
 
   tags                =  merge({"Name": "${var.resource-prefix}-vpcep-${each.value}"},var.default-tags)
diff --git a/modules/networking/vpc-endpoints/variables.tf b/modules/networking/vpc-endpoints/variables.tf
index a6cb8c8..e74d5e5 100644
--- a/modules/networking/vpc-endpoints/variables.tf
+++ b/modules/networking/vpc-endpoints/variables.tf
@@ -8,4 +8,5 @@ variable gateway-ep-services {
   description = "Gateway endpoints are free, so deploy for all supported services by default."
 }
 variable default-tags {}
-variable resource-prefix {}
\ No newline at end of file
+variable resource-prefix {}
+variable aws-region {}
\ No newline at end of file
diff --git a/modules/networking/vpc_subnets/outputs.tf b/modules/networking/vpc_subnets/outputs.tf
index 7aec976..ad4d232 100644
--- a/modules/networking/vpc_subnets/outputs.tf
+++ b/modules/networking/vpc_subnets/outputs.tf
@@ -16,4 +16,16 @@ output public-subnet-ids {
 
 output private-subnet-ids {
   value = aws_subnet.private-subnets.*.id
+}
+
+output vpc-cidr {
+  value = aws_vpc.vpc.cidr_block
+}
+
+output private-rtb-id {
+  value = aws_route_table.private-route-table[0].id
+}
+
+output public-rtb-id {
+  value = aws_route_table.public-route-table[0].id
 }
\ No newline at end of file
diff --git a/modules/networking/vpc_subnets/vpc.tf b/modules/networking/vpc_subnets/vpc.tf
index a0c29a5..e4a3134 100644
--- a/modules/networking/vpc_subnets/vpc.tf
+++ b/modules/networking/vpc_subnets/vpc.tf
@@ -5,47 +5,47 @@ data "aws_availability_zones" "available-az" {
 locals {
   // subnet_start = cidrsubnets(var.vpc-cidr, 1, 1) # divide vpc into 2
   # no-az = length(data.aws_availability_zones.available-az.id)
-  no-az = 2 # hard-coding to 2AZ
-  vpc-cidr = var.vpc-cidr
+  no-az            = 2 # hard-coding to 2AZ
+  vpc-cidr         = var.vpc-cidr
   total-no-subnets = local.no-az * (var.number-of-private-subnets-per-az + var.number-of-public-subnets-per-az)
 
   # simple-divide = local.total-no-subnets >=8 ? cidrsubnets(local.vpc-cidr, 4,4,4,4,4,4,4,4) : local.total-no-subnets >=6 ? cidrsubnets(local.vpc-cidr, 3,3,3,3,3,3) : local.total-no-subnets >=4 ? cidrsubnets(local.vpc-cidr, 2,2,2,2) : local.total-no-subnets >=2 ? cidrsubnets(local.vpc-cidr, 1,1) : null
-  simple-divide   = local.total-no-subnets >= 12 ? cidrsubnets(local.vpc-cidr, 4,4,4,4, 4,4,4,4, 4,4,4,4) : local.total-no-subnets >= 8 ? cidrsubnets(local.vpc-cidr, 3,3,3,3, 3,3,3,3) : local.total-no-subnets >= 6 ? cidrsubnets(local.vpc-cidr, 3,3,3, 3,3,3) : local.total-no-subnets >= 4 ? cidrsubnets(local.vpc-cidr, 2,2,2,2) : local.total-no-subnets >= 2 ? cidrsubnets(local.vpc-cidr, 1, 1) : null
-  public-subnets = slice(local.simple-divide, 0, var.number-of-public-subnets-per-az * local.no-az)
-  private-subnets = slice(local.simple-divide, var.number-of-public-subnets-per-az * local.no-az , local.total-no-subnets)
+  simple-divide   = local.total-no-subnets >= 12 ? cidrsubnets(local.vpc-cidr, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4, 4) : local.total-no-subnets >= 8 ? cidrsubnets(local.vpc-cidr, 3, 3, 3, 3, 3, 3, 3, 3) : local.total-no-subnets >= 6 ? cidrsubnets(local.vpc-cidr, 3, 3, 3, 3, 3, 3) : local.total-no-subnets >= 4 ? cidrsubnets(local.vpc-cidr, 2, 2, 2, 2) : local.total-no-subnets >= 2 ? cidrsubnets(local.vpc-cidr, 1, 1) : null
+  public-subnets  = slice(local.simple-divide, 0, var.number-of-public-subnets-per-az * local.no-az)
+  private-subnets = slice(local.simple-divide, var.number-of-public-subnets-per-az * local.no-az, local.total-no-subnets)
 }
 
-resource aws_subnet private-subnets {
+resource "aws_subnet" "private-subnets" {
   count = length(local.private-subnets)
   # count = length(var.private-subnet-cidrs)
   # count = var.number-of-private-subnets-per-az * length(data.aws_availability_zones.available-az.names)
-  vpc_id = aws_vpc.vpc.id
+  vpc_id            = aws_vpc.vpc.id
   availability_zone = element(data.aws_availability_zones.available-az.names, count.index)
   # cidr_block = cidrsubnet(local.subnet_start[0], 2, count.index)
   # cidr_block = var.private-subnet-cidrs[count.index]
   cidr_block = local.private-subnets[count.index]
   tags = merge(
-  var.default-tags,
-  {
-    Name = "${local.resource-prefix}-private-${split("-",element(data.aws_availability_zones.available-az.names, count.index))[2]}-${count.index+1}"
-  },
+    var.default-tags,
+    {
+      Name = "${local.resource-prefix}-private-${split("-", element(data.aws_availability_zones.available-az.names, count.index))[2]}-${count.index + 1}"
+    },
   )
 }
 
-resource aws_subnet public-subnets {
+resource "aws_subnet" "public-subnets" {
   count = length(local.public-subnets)
   # count = length(var.public-subnet-cidrs)
   # count = var.number-of-public-subnets-per-az * length(data.aws_availability_zones.available-az.names)
-  vpc_id = aws_vpc.vpc.id
+  vpc_id            = aws_vpc.vpc.id
   availability_zone = element(data.aws_availability_zones.available-az.names, count.index)
   # cidr_block = cidrsubnet(local.subnet_start[1], 2, count.index)
   # cidr_block = var.public-subnet-cidrs[count.index]
   cidr_block = local.public-subnets[count.index]
   tags = merge(
-  var.default-tags,
-  {
-    Name = "${local.resource-prefix}-public-${split("-",element(data.aws_availability_zones.available-az.names, count.index))[2]}-${count.index+1}"
-  },
+    var.default-tags,
+    {
+      Name = "${local.resource-prefix}-public-${split("-", element(data.aws_availability_zones.available-az.names, count.index))[2]}-${count.index + 1}"
+    },
   )
 }
 
@@ -55,10 +55,10 @@ resource "aws_vpc" "vpc" {
   enable_dns_support   = true
 
   tags = merge(
-  var.default-tags,
-  {
-    Name = "${local.resource-prefix}-vpc"
-  },
+    var.default-tags,
+    {
+      Name = "${local.resource-prefix}-vpc"
+    },
   )
 
   lifecycle {
@@ -67,58 +67,58 @@ resource "aws_vpc" "vpc" {
 }
 
 resource "aws_internet_gateway" "igw" {
-  count = var.number-of-public-subnets-per-az > 0 ? 1 : 0
+  count  = var.number-of-public-subnets-per-az > 0 ? 1 : 0
   vpc_id = aws_vpc.vpc.id
 
   tags = merge(
-  var.default-tags,
-  {
-    Name = "${local.resource-prefix}-igw"
-  },
+    var.default-tags,
+    {
+      Name = "${local.resource-prefix}-igw"
+    },
   )
 }
 
 resource "aws_eip" "ngw-eip" {
-  count = var.create-nat-gateway ? 1 : 0
-  vpc = true
-  tags = var.default-tags
+  count      = var.create-nat-gateway ? 1 : 0
+  vpc        = true
+  tags       = var.default-tags
   depends_on = [aws_internet_gateway.igw]
 }
 
 resource "aws_nat_gateway" "ngw" {
-  count = var.create-nat-gateway ? 1 : 0
+  count         = var.create-nat-gateway ? 1 : 0
   allocation_id = aws_eip.ngw-eip[0].id
   subnet_id     = aws_subnet.public-subnets[0].id
 
   tags = merge(
-  var.default-tags,
-  {
-    Name = "${local.resource-prefix}-ngw"
-  },
+    var.default-tags,
+    {
+      Name = "${local.resource-prefix}-ngw"
+    },
   )
 
   depends_on = [aws_internet_gateway.igw]
 }
 
-resource aws_route_table public-route-table {
-  count = var.number-of-public-subnets-per-az > 0 ? 1 : 0
+resource "aws_route_table" "public-route-table" {
+  count  = var.number-of-public-subnets-per-az > 0 ? 1 : 0
   vpc_id = aws_vpc.vpc.id
   tags = merge(
-  var.default-tags,
-  {
-    Name = "${local.resource-prefix}-publicroutetable"
-  },
+    var.default-tags,
+    {
+      Name = "${local.resource-prefix}-publicroutetable"
+    },
   )
 }
 
-resource aws_route_table private-route-table {
-  count = var.number-of-private-subnets-per-az > 0 ? 1 : 0
+resource "aws_route_table" "private-route-table" {
+  count  = var.number-of-private-subnets-per-az > 0 ? 1 : 0
   vpc_id = aws_vpc.vpc.id
   tags = merge(
-  var.default-tags,
-  {
-    Name = "${local.resource-prefix}-privateroutetable"
-  },
+    var.default-tags,
+    {
+      Name = "${local.resource-prefix}-privateroutetable"
+    },
   )
 }
 
@@ -139,13 +139,13 @@ resource "aws_route" "private-routes" {
 }
 
 resource "aws_route_table_association" "public_route_association" {
-  count = length(aws_subnet.public-subnets)
+  count          = length(aws_subnet.public-subnets)
   route_table_id = aws_route_table.public-route-table[0].id
-  subnet_id = aws_subnet.public-subnets[count.index].id
+  subnet_id      = aws_subnet.public-subnets[count.index].id
 }
 
 resource "aws_route_table_association" "private_route_association" {
-  count = length(aws_subnet.private-subnets)
+  count          = length(aws_subnet.private-subnets)
   route_table_id = aws_route_table.private-route-table[0].id
   subnet_id      = aws_subnet.private-subnets[count.index].id
 }
@@ -155,38 +155,39 @@ harden default security group. the default sg created by aws allows all egress.
 this resource limits ingress and egress from and to itself
 */
 
-resource "aws_default_security_group" default-sg {
+resource "aws_default_security_group" "default-sg" {
   vpc_id = aws_vpc.vpc.id
   ingress {
-    protocol = -1
-    self = true
-    from_port = 0
-    to_port = 0
+    protocol    = -1
+    self        = true
+    from_port   = 0
+    to_port     = 0
     description = "Allow traffic coming from this SG"
   }
   egress {
-    from_port = 0
-    protocol = -1
-    to_port = 0
-    self = true
+    from_port   = 0
+    protocol    = -1
+    to_port     = 0
+    self        = true
     description = "Allow traffic going to this SG"
   }
   tags = merge(
-  var.default-tags,
-  {
-    Name = "${local.resource-prefix}-defaultsg"
-  },
+    var.default-tags,
+    {
+      Name = "${local.resource-prefix}-defaultsg"
+    },
   )
 }
 
 # Enable gateway endpoints which are free
-module vpc-ep {
-  count = var.create-free-vpc-endpoints ? 1 : 0
+module "vpc-ep" {
+  count  = var.create-free-vpc-endpoints ? 1 : 0
   source = "../vpc-endpoints"
 
   default-tags          = var.default-tags
-  gateway-ep-services   = ["s3","dynamodb"]
+  gateway-ep-services   = ["s3", "dynamodb"]
   interface-ep-services = []
   resource-prefix       = local.resource-prefix
   vpc-id                = aws_vpc.vpc.id
+  aws-region            = var.aws-region
 }
\ No newline at end of file