» vcd_edgegateway_vpn

Provides a vCloud Director IPsec VPN. This can be used to create, modify, and delete VPN settings and rules.

» Example Usage

resource "vcd_edgegateway_vpn" "vpn" {
  edge_gateway        = "Internet_01(nti0000bi2_123-456-2)"
  name                = "west-to-east"
  description         = "Description"
  encryption_protocol = "AES256"
  mtu                 = 1400
  peer_id             = "64.121.123.11"
  peer_ip_address     = "64.121.123.11"
  local_id            = "64.121.123.10"
  local_ip_address    = "64.121.123.10"
  shared_secret       = "***********************"

  peer_subnets {
    peer_subnet_name    = "DMZ_WEST"
    peer_subnet_gateway = "10.0.10.1"
    peer_subnet_mask    = "255.255.255.0"
  }

  peer_subnets {
    peer_subnet_name    = "WEB_WEST"
    peer_subnet_gateway = "10.0.20.1"
    peer_subnet_mask    = "255.255.255.0"
  }

  local_subnets {
    local_subnet_name    = "DMZ_EAST"
    local_subnet_gateway = "10.0.1.1"
    local_subnet_mask    = "255.255.255.0"
  }

  local_subnets {
    local_subnet_name    = "WEB_EAST"
    local_subnet_gateway = "10.0.22.1"
    local_subnet_mask    = "255.255.255.0"
  }
}

» Argument Reference

The following arguments are supported:

• edge_gateway - (Required) The name of the edge gateway on which to apply the Firewall Rules
• name - (Required) The name of the VPN
• description - (Required) A description for the VPN
• encryption_protocol - (Required) - E.g. AES256
• local_ip_address - (Required) - Local IP Address
• local_id - (Required) - Local ID
• mtu - (Required) - The MTU setting
• peer_ip_address - (Required) - Peer IP Address
• peer_id - (Required) - Peer ID
• shared_secret - (Required) - Shared Secret
• local_subnets - (Required) - List of Local Subnets see Local Subnets below for details.
• peer_subnets - (Required) - List of Peer Subnets see Peer Subnets below for details.
• org - (Optional; v2.0+) The name of organization to use, optional if defined at provider level. Useful when connected as sysadmin working across different organisations
• vdc - (Optional; v2.0+) The name of VDC to use, optional if defined at provider level

» Local Subnets

Each Local Subnet supports the following attributes:

• local_subnet_name - (Required) Name of the local subnet
• local_subnet_gateway - (Required) Gateway of the local subnet
• local_subnet_mask - (Required) Subnet mask of the local subnet

» Peer Subnets

Each Peer Subnet supports the following attributes:

• peer_subnet_name - (Required) Name of the peer subnet
• peer_subnet_gateway - (Required) Gateway of the peer subnet
• peer_subnet_mask - (Required) Subnet mask of the peer subnet