xpk/terraform.aws-baseline-infra
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

DOC: updated readme

Browse Source
This commit is contained in:
xpk 2023-07-12 23:11:21 +08:00
parent 2aa5e7c635
commit fdd28c892a
Signed by: xpk
GPG Key ID: CD4FF6793F09AB86
1 changed files with 20 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
modules/networking/vpc-endpoints/README.md
View File

@ -21,9 +21,14 @@ unless an empty list `[]` is provided as input.
* s3 * s3
* dynamodb * dynamodb
For gateway endpoints, all route tables in the VPC will be updated with routes to the private links.
Full documentation: https://docs.aws.amazon.com/vpc/latest/privatelink/gateway-endpoints.html Full documentation: https://docs.aws.amazon.com/vpc/latest/privatelink/gateway-endpoints.html
## Interface endpoints ## Interface endpoints
Interface endpoints are placed in one subnet for every AZ. Security group is created automatically
and allow access from the VPC's cidr, plus all additional CIDRs if applicable.
At time of writing, AWS provides 200+ interface endpoints: At time of writing, AWS provides 200+ interface endpoints:
* access-analyzer * access-analyzer
* account * account
@ -255,3 +260,18 @@ At time of writing, AWS provides 200+ interface endpoints:
Full documentation: https://docs.aws.amazon.com/vpc/latest/privatelink/aws-services-privatelink-support.html Full documentation: https://docs.aws.amazon.com/vpc/latest/privatelink/aws-services-privatelink-support.html
## Example
```hcl
module "vpc-ep" {
count = var.create-free-vpc-endpoints ? 1 : 0
source = "../vpc-endpoints"
gateway-ep-services = ["s3", "dynamodb"]
interface-ep-services = []
resource-prefix = var.resource-prefix
vpc-id = aws_vpc.vpc.id
secondary_cidrs = var.secondary_cidr_blocks
}
```