Client_vpn inconsistencies

darkn3rd · October 9, 2020, 3:09am

AWS CLI and AWS Console web UI allow you to add a vpc-id and security groups. I couldn’t find any examples or documentation on this with aws_ec2_client_vpn_endpoint and
associated aws_ec2_client_vpn_network_association. Any further information on this?

Note: Fictitious values used below to redact private infra details…

{
    "ClientVpnEndpoints": [
        {
            "ClientVpnEndpointId": "cvpn-endpoint-01234567890abcdef",
            "Description": "",
            "Status": {
                "Code": "pending-associate"
            },
            "CreationTime": "2020-10-09T02:27:48",
            "DnsName": "*.cvpn-endpoint-01234567890abcdef.prod.clientvpn.us-east-2.amazonaws.com",
            "ClientCidrBlock": "192.168.0.0/16",
            "DnsServers": [
                "192.168.0.2"
            ],
            "SplitTunnel": false,
            "VpnProtocol": "openvpn",
            "TransportProtocol": "udp",
            "VpnPort": 1194,
            "ServerCertificateArn": "arn:aws:acm:us-east-2:166679463959:certificate/e854cdce-b077-4f33-a743-fcb1171f349e",
            "ServerCertificateArn": "arn:aws:acm:us-east-2:012345678912:certificate/abcdef01-abcd-abcd-abcd-abcdef012345",

            "AuthenticationOptions": [
                {
                    "Type": "certificate-authentication",
                    "MutualAuthentication": {
                        "ClientRootCertificateChain": "arn:aws:acm:us-east-2:012345678912:certificate/01234567-890a-bcde-f012-3456890abcde"
                    }
                }
            ],
            "ConnectionLogOptions": {
                "Enabled": true,
                "CloudwatchLogGroup": "my-amazonvpn",
                "CloudwatchLogStream": "my-amazonvpn"
            },
            "Tags": [
                {
                    "Key": "Name",
                    "Value": "my-happy-vpn"
                }
            ],
            "SecurityGroupIds": [
                "sg-0123456789abcdef0"

            ],
            "VpcId": "vpc-0123456789abcdef0"
        }
    ]
}

Topic		Replies	Views
AWS Client VPN Endpoint Terraform	2	2199	October 9, 2020
Is 'ingres' rule do something for aws_ec2_client_vpn_endpoint? AWS	0	179	August 3, 2023
AWS Client VPN with certificates using Vault + automate Vault vault	4	884	August 6, 2022
AWS VPN concurrency issues AWS	0	625	March 27, 2022
Getting a string in the `subnet_id` parameter with the AWS TF VPC Module AWS	1	2637	April 5, 2022

Client_vpn inconsistencies

Related topics