-
Notifications
You must be signed in to change notification settings - Fork 0
/
r53.tf
65 lines (52 loc) · 1.34 KB
/
r53.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
resource "aws_route53_zone" "cloud" {
name = "cloud.example.com"
vpc {
vpc_id = aws_vpc.cloud.id
}
}
resource "aws_route53_record" "cloud" {
zone_id = aws_route53_zone.cloud.zone_id
name = "web.cloud.example.com"
type = "A"
ttl = "60"
records = [aws_instance.cloudapp.private_ip]
}
resource "aws_route53_resolver_endpoint" "inbound" {
name = "cloud-inbound"
direction = "INBOUND"
security_group_ids = [
aws_security_group.cloud.id
]
ip_address {
subnet_id = aws_subnet.cloud_a.id
}
ip_address {
subnet_id = aws_subnet.cloud_b.id
}
}
resource "aws_route53_resolver_endpoint" "outbound" {
name = "cloud-outbound"
direction = "OUTBOUND"
security_group_ids = [
aws_security_group.cloud.id
]
ip_address {
subnet_id = aws_subnet.cloud_a.id
}
ip_address {
subnet_id = aws_subnet.cloud_b.id
}
}
resource "aws_route53_resolver_rule" "forward_onprem" {
domain_name = "corp.example.com"
name = "forward-to-onprem"
rule_type = "FORWARD"
resolver_endpoint_id = aws_route53_resolver_endpoint.outbound.id
target_ip {
ip = aws_instance.onpremdns.private_ip
}
}
resource "aws_route53_resolver_rule_association" "outbound" {
resolver_rule_id = aws_route53_resolver_rule.forward_onprem.id
vpc_id = aws_vpc.cloud.id
}