I’ve been trying to sort out the standard VPN Gateway module in the registry, but it doesn’t have things like the Client Endpoint, requisite certs, etc. My list of resource blocks is piling up to build a basic VPN, so I thought I’d ask if someone had a module or code block that does all this a little more automatically? I just need a simple VPN to gain access to EC2 subnets, with the Identity Center applications so it shows up on users SSO page. It’s Friday, and my brain is fried. I could use a simplified win.
This might help
Cloudposse usually have decent modules. GitHub - cloudposse/terraform-aws-ec2-client-vpn
This looks pretty good. I’m gonna test it out here in a bit. Thanks for pointing this out. Good way to kick off the week if I can put this issue to bed and get this working without creating a hundred resource blocks. Thank you.
You’re welcome. We’re fans of it and have been using it in multiple production deployments. Good luck!
Hey, I got distracted by another project for a bit but I’m coming back to this. I’m still trying to get my head around 3rd party modules like this. I’m getting an error about the s3 bucket policy it creates api error MalformedPolicy: Policy has invalid resource
It creates everything else fine, and I looked at the source code, and it’s kind of a weird Deny policy that seems a bit superfluous anyway. Have you seen this before? Do you happen to know if there’s a way to skip it in the config? Otherwise I’m gonna see this error every time I apply my config unless I figure out how to make it stop.
Hmm… I’m not quite sure, sorry. I’ll ask a colleague and see what he says (I’m on holiday atm)