kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
2c489cfd328cd038ea0bfc0adbbaf80713ba008e
hunfabric/modules/net-vpn-ha/recipe-vpn-aws-gcp
History
Simon Roberts 26dbaa2d6e Enable terraform_naming_convention in tflint (#3930) 
* Draft terraform_naming_convention

* Two fast/stages fixes for terraform_naming_convention

* Disable terraform_naming_convention for resources for now

* module fixes for terraform_naming_convention

* tfdoc

* Remove "moved" from recipe and needs-fixing

* Fix moved for spoke_ra

* fix tests

* Use default (snake_case) for resources

* factory.terraform_data.project-preconditions

* First-pass migration of resources + tests

* Fix tests/modules/organization

* Require snake_case for variables; Add annotations for _testing

* permit _fast_debug variable

* Fix net_vpc_factory and net_vpc_firewall tests

* tfdoc addons and recipe

* Fix more tests

* Fix some net-global -> net_global tests

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
2026-05-06 06:06:26 +00:00
..
aws.tf
Enable terraform_naming_convention in tflint (#3930)
2026-05-06 06:06:26 +00:00
diagram.png
Added recipe HA VPN between AWS and GCP (#3034)
2025-04-14 12:47:21 +02:00
gcp.tf
Enable terraform_naming_convention in tflint (#3930)
2026-05-06 06:06:26 +00:00
outputs.tf
Enable terraform_naming_convention in tflint (#3930)
2026-05-06 06:06:26 +00:00
providers.tf
Added recipe HA VPN between AWS and GCP (#3034)
2025-04-14 12:47:21 +02:00
README.md
Enable terraform_naming_convention in tflint (#3930)
2026-05-06 06:06:26 +00:00
variables.tf
Enable terraform_naming_convention in tflint (#3930)
2026-05-06 06:06:26 +00:00

README.md

HA VPN connections between Google Cloud and AWS

This recipe demonstrates how to create highly available VPN connections between Google Cloud and Amazon Web Services (AWS) for direct communication between VPC networks across the two cloud platforms using a Virtual Private Gateway in AWS. For more details on this architecture have a look here

The architecture deployed by this recipe is the one depicted below:

Architecture

Variables

name description type required default
aws_asn AWS ASN. string
aws_region AWS Region. string
aws_vpc_cidr_block CIDR block. string
gcp_asn Google ASN. string
gcp_region GCP Region. string
project_id Project ID. string
shared_secret Shared secret. string
_testing Populate this variable to avoid triggering the data source. object({…}) null
propagate_routes Flag indicating whether routed received by AWS's Virtual Private Gateway should be propagated to main route table. bool false

Outputs

name description sensitive
external_gateway External VPN gateway resource.
gateway VPN gateway resource (only if auto-created).
id Fully qualified VPN gateway id.

Test

module "gcp_vpn" {
  source     = "./fabric/modules/net-vpn-ha/recipe-vpn-aws-gcp"
  project_id = "project-1"
  _testing = {
    name   = "project-1"
    number = 1234567890
  }
  aws_asn            = 65001
  gcp_asn            = 65534
  aws_region         = "us-east-1"
  gcp_region         = "us-east1"
  aws_vpc_cidr_block = "10.0.0.0/16"
  shared_secret      = "test123456"
}
# tftest modules=4 resources=36