alicloud_vpn_route_entry
更新时间:
Provides a VPN Route Entry resource.
-> NOTE: Terraform will build vpn route entry instance while it uses alicloud_vpn_route_entry to build a VPN Route Entry resource.
-> NOTE: Available since v1.57.0+.
For information about VPN Route Entry and how to use it, see What is VPN Route Entry.
Example Usage
Basic Usage
variable "name" {
default = "terraform-example"
}
data "alicloud_vpn_gateways" "default" {
}
resource "alicloud_vpn_customer_gateway" "defaultCustomerGateway" {
description = "defaultCustomerGateway"
ip_address = "2.2.2.5"
asn = "2224"
customer_gateway_name = var.name
}
resource "alicloud_vpn_customer_gateway" "changeCustomerGateway" {
description = "changeCustomerGateway"
ip_address = "2.2.2.6"
asn = "2225"
customer_gateway_name = var.name
}
resource "alicloud_vpn_connection" "default" {
vpn_gateway_id = data.alicloud_vpn_gateways.default.ids.0
vpn_connection_name = var.name
local_subnet = [
"3.0.0.0/24"
]
remote_subnet = [
"10.0.0.0/24",
"10.0.1.0/24"
]
tags = {
Created = "TF"
For = "example"
}
enable_tunnels_bgp = "true"
tunnel_options_specification {
tunnel_ipsec_config {
ipsec_auth_alg = "md5"
ipsec_enc_alg = "aes256"
ipsec_lifetime = "16400"
ipsec_pfs = "group5"
}
customer_gateway_id = alicloud_vpn_customer_gateway.defaultCustomerGateway.id
role = "master"
tunnel_bgp_config {
local_asn = "1219002"
tunnel_cidr = "169.254.30.0/30"
local_bgp_ip = "169.254.30.1"
}
tunnel_ike_config {
ike_mode = "aggressive"
ike_version = "ikev2"
local_id = "localid_tunnel2"
psk = "12345678"
remote_id = "remote2"
ike_auth_alg = "md5"
ike_enc_alg = "aes256"
ike_lifetime = "3600"
ike_pfs = "group14"
}
}
tunnel_options_specification {
tunnel_ike_config {
remote_id = "remote24"
ike_enc_alg = "aes256"
ike_lifetime = "27000"
ike_mode = "aggressive"
ike_pfs = "group5"
ike_auth_alg = "md5"
ike_version = "ikev2"
local_id = "localid_tunnel2"
psk = "12345678"
}
tunnel_ipsec_config {
ipsec_lifetime = "2700"
ipsec_pfs = "group14"
ipsec_auth_alg = "md5"
ipsec_enc_alg = "aes256"
}
customer_gateway_id = alicloud_vpn_customer_gateway.defaultCustomerGateway.id
role = "slave"
tunnel_bgp_config {
local_asn = "1219002"
local_bgp_ip = "169.254.40.1"
tunnel_cidr = "169.254.40.0/30"
}
}
}
resource "alicloud_vpn_route_entry" "default" {
vpn_gateway_id = data.alicloud_vpn_gateways.default.ids.0
route_dest = "10.0.0.0/24"
next_hop = alicloud_vpn_connection.default.id
weight = 0
publish_vpc = false
}
Argument Reference
The following arguments are supported:
vpn_gateway_id- (Required, ForceNew) The id of the vpn gateway.next_hop- (Required, ForceNew) The next hop of the destination route.publish_vpc- (Required) Whether to issue the destination route to the VPC.route_dest- (Required, ForceNew) The destination network segment of the destination route.weight- (Required) The value should be 0 or 100.
Attributes Reference
The following attributes are exported:
id- The combination id of the vpn route entry.route_entry_type- (Available in 1.161.0+) The type of the vpn route entry.status- (Available in 1.161.0+) The status of the vpn route entry.
Timeouts
-> NOTE: Available in 1.161.0+.
The timeouts block allows you to specify timeouts for certain actions:
create- (Defaults to 5 mins) Used when create the vpn route entry.update- (Defaults to 5 mins) Used when update the vpn route entry.delete- (Defaults to 5 mins) Used when delete the vpn route entry.
Import
VPN route entry can be imported using the id(VpnGatewayId +":"+ NextHop +":"+ RouteDest), e.g.
$ terraform import alicloud_vpn_route_entry.example vpn-abc123456:vco-abc123456:10.0.0.10/24
文档内容是否对您有帮助?