Skip to content

Latest commit

 

History

History

dx-connection

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
README.md
README.md
 
 
main.tf
main.tf
 
 
outputs.tf
outputs.tf
 
 
resource-group.tf
resource-group.tf
 
 
variables.tf
variables.tf
 
 
versions.tf
versions.tf
 
 

README.md

dx-connection

This module creates following resources.

  • aws_dx_connection
  • aws_dx_macsec_key_association (optional)

Requirements

Name Version
terraform >= 1.5
aws >= 5.2

Providers

Name Version
aws 5.19.0

Modules

Name Source Version
resource_group tedilabs/misc/aws//modules/resource-group ~> 0.10.0

Resources

Name Type
aws_dx_connection.this resource
aws_dx_macsec_key_association.this resource
aws_dx_location.this data source

Inputs

Name Description Type Default Required
bandwidth (Required) The bandwidth of the DX connection. Valid values for dedicated connections: 1Gbps, 10Gbps. Valid values for hosted connections: 50Mbps, 100Mbps, 200Mbps, 300Mbps, 400Mbps, 500Mbps, 1Gbps, 2Gbps, 5Gbps, 10Gbps and 100Gbps. Case sensitive. string n/a yes
location_code (Required) The location code of AWS Direct Connect location where the connection is located. See DescribeLocations API for the list of AWS Direct Connect locations. string n/a yes
name (Required) The name of the DX connection. string n/a yes
encryption (Optional) The configuration for MACsec encryption of the AWS Direct Connect connection. MACsec is supported on 10 Gbps and 100 Gbps dedicated Direct Connect connections at selected points of presence. encryption as defined below.
(Optional) request_macsec_capable_port - Indicate whether you want the connection to support MAC Security (MACsec). MAC Security (MACsec) is only available on dedicated connections. See MACsec prerequisites for more information about MAC Security (MACsec) prerequisites. Defaults to false. Changing the value will cause the resource to be destroyed and re-created.
(Optional) mode - The connection MAC Security (MACsec) encryption mode. MAC Security (MACsec) is only available on dedicated connections. Valid values are NO_ENCRYPT, SHOULD_ENCRYPT and MUST_ENCRYPT. You can only specify the encryption_mode argument once the connection is in an Available state.
(Optional) macsec_key_pair - The values in this pair are used to generate the MACsec secret key. The MACsec secret key is generated by the devices at the ends of the connection using the CKN/CAK pair that you provide to AWS. macsec_key_pair as defined below.
(Required) ckn - The Connection Key Name (CKN) to associate with the dedicated connection. The valid values are 64 hexadecimal characters.
(Required) cak - The Connectivity Association Key (CAK) to associate with the dedicated connection. The valid values are 64 hexadecimal characters.		 
object({
    request_macsec_capable_port = optional(bool, false)
    mode                        = optional(string)
    macsec_key_pair = optional(object({
      ckn = string
      cak = string
    }))
  })
 {} no
module_tags_enabled (Optional) Whether to create AWS Resource Tags for the module informations. bool true no
resource_group_description (Optional) The description of Resource Group. string "Managed by Terraform." no
resource_group_enabled (Optional) Whether to create Resource Group to find and group AWS resources which are created by this module. bool true no
resource_group_name (Optional) The name of Resource Group. A Resource Group name can have a maximum of 127 characters, including letters, numbers, hyphens, dots, and underscores. The name cannot start with AWS or aws. string "" no
service_provider (Optional) The name of the service provider associated with the connection. string null no
skip_destroy (Optional) Set to true if you do not wish the connection to be deleted at destroy time, and instead just removed from the Terraform state. bool false no
tags (Optional) A map of tags to add to all resources. map(string) {} no

Outputs

Name Description
arn The ARN of the DX connection.
aws_device The Direct Connect endpoint on which the physical connection terminates.
bandwidth The bandwidth of the DX connection.
encryption The configuration for MACsec encryption of the AWS Direct Connect connection.
macsec_capable - Whether the connection supports MAC Security (MACsec).
mode - The connection MAC Security (MACsec) encryption mode.
status - The MAC Security (MACsec) port link status of the connection.
id The ID of the DX connection.
jumbo_frame_capable Whether jumbo frames (9001 MTU) are supported.
location The information of the AWS Direct Connect location where the connection is located.
logical_redundancy_capable Indicate whether the connection supports a secondary BGP peer in the same address family (IPv4/IPv6).
name The name of the DX connection.
partner The name of the AWS Direct Connect service provider associated with the connection.
service_provider The name of the service provider associated with the connection.
vlan The ID of the VLAN.