HC-vault-on-aws-FORK/ec2-bastion.tf

# Bastion Server
# Only active if operator mode is turned on.  Use this to SSH into 

resource "aws_instance" "bastion" {
  count = var.operator_mode ? 1 : 0

  ami = var.use_latest_ami ? data.aws_ssm_parameter.latest_ami.value : var.ami_id
  instance_type = var.bastion_instance_type
  key_name = var.ec2_key_pair_name
  vpc_security_group_ids = [aws_security_group.bastion.id]
  subnet_id = aws_subnet.public[0].id
  associate_public_ip_address = true

  tags = merge(
    { "Name" = "${var.main_project_tag}-bastion"},
    { "Project" = var.main_project_tag }
  )
}
bastion instance and actually associate subnets to the route tables 2020-04-11 01:21:07 +00:00			`# Bastion Server`
			`# Only active if operator mode is turned on. Use this to SSH into`

			`resource "aws_instance" "bastion" {`
			`count = var.operator_mode ? 1 : 0`

Fixing ami id, porting to debian 2024-02-29 18:29:13 +00:00			`ami = var.use_latest_ami ? data.aws_ssm_parameter.latest_ami.value : var.ami_id`
Bastion instance type to variable, defaulting t3.micro 2024-02-29 19:05:35 +00:00			`instance_type = var.bastion_instance_type`
bastion instance and actually associate subnets to the route tables 2020-04-11 01:21:07 +00:00			`key_name = var.ec2_key_pair_name`
			`vpc_security_group_ids = [aws_security_group.bastion.id]`
			`subnet_id = aws_subnet.public[0].id`
			`associate_public_ip_address = true`

			`tags = merge(`
			`{ "Name" = "${var.main_project_tag}-bastion"},`
			`{ "Project" = var.main_project_tag }`
			`)`
			`}`