c12s-kubespray/contrib/terraform/aws/modules/elb/main.tf

resource "aws_security_group" "aws-elb" {
  name   = "kubernetes-${var.aws_cluster_name}-securitygroup-elb"
  vpc_id = "${var.aws_vpc_id}"

  tags = "${merge(var.default_tags, map(
      "Name", "kubernetes-${var.aws_cluster_name}-securitygroup-elb"
    ))}"
}

resource "aws_security_group_rule" "aws-allow-api-access" {
  type              = "ingress"
  from_port         = "${var.aws_elb_api_port}"
  to_port           = "${var.k8s_secure_api_port}"
  protocol          = "TCP"
  cidr_blocks       = ["0.0.0.0/0"]
  security_group_id = "${aws_security_group.aws-elb.id}"
}

resource "aws_security_group_rule" "aws-allow-api-egress" {
  type              = "egress"
  from_port         = 0
  to_port           = 65535
  protocol          = "TCP"
  cidr_blocks       = ["0.0.0.0/0"]
  security_group_id = "${aws_security_group.aws-elb.id}"
}

# Create a new AWS ELB for K8S API
resource "aws_elb" "aws-elb-api" {
  name            = "kubernetes-elb-${var.aws_cluster_name}"
  subnets         = "${var.aws_subnet_ids_public}"
  security_groups = ["${aws_security_group.aws-elb.id}"]

  listener {
    instance_port     = "${var.k8s_secure_api_port}"
    instance_protocol = "tcp"
    lb_port           = "${var.aws_elb_api_port}"
    lb_protocol       = "tcp"
  }

  health_check {
    healthy_threshold   = 2
    unhealthy_threshold = 2
    timeout             = 3
    target              = "TCP:${var.k8s_secure_api_port}"
    interval            = 30
  }

  cross_zone_load_balancing   = true
  idle_timeout                = 400
  connection_draining         = true
  connection_draining_timeout = 400

  tags = "${merge(var.default_tags, map(
    "Name", "kubernetes-${var.aws_cluster_name}-elb-api"
  ))}"
}
Rewrote AWS Terraform for Kargo Rewrote AWS Terraform deployment for AWS Kargo. It supports now multiple Availability Zones, AWS Loadbalancer for Kubernetes API, Bastion Host, ... For more information see README 2017-03-01 17:25:58 +00:00			`resource "aws_security_group" "aws-elb" {`
Run terraform fmt and add step to CI (#4405) * Run terraform fmt * Add terraform fmt to .terraform-validate CI step * Add tf-validate-aws CI step * Revert "Add tf-validate-aws CI step" This reverts commit e007225fac831d263613ae9ab2998d11c3e8673d. 2019-04-08 09:22:24 +00:00			`name = "kubernetes-${var.aws_cluster_name}-securitygroup-elb"`
			`vpc_id = "${var.aws_vpc_id}"`
Rewrote AWS Terraform for Kargo Rewrote AWS Terraform deployment for AWS Kargo. It supports now multiple Availability Zones, AWS Loadbalancer for Kubernetes API, Bastion Host, ... For more information see README 2017-03-01 17:25:58 +00:00
Run terraform fmt and add step to CI (#4405) * Run terraform fmt * Add terraform fmt to .terraform-validate CI step * Add tf-validate-aws CI step * Revert "Add tf-validate-aws CI step" This reverts commit e007225fac831d263613ae9ab2998d11c3e8673d. 2019-04-08 09:22:24 +00:00			`tags = "${merge(var.default_tags, map(`
update terraform, fix deprecated values add default_tags, fix ansible inventory (#1821) 2017-10-18 10:44:32 +00:00			`"Name", "kubernetes-${var.aws_cluster_name}-securitygroup-elb"`
			`))}"`
Rewrote AWS Terraform for Kargo Rewrote AWS Terraform deployment for AWS Kargo. It supports now multiple Availability Zones, AWS Loadbalancer for Kubernetes API, Bastion Host, ... For more information see README 2017-03-01 17:25:58 +00:00			`}`

			`resource "aws_security_group_rule" "aws-allow-api-access" {`
Run terraform fmt and add step to CI (#4405) * Run terraform fmt * Add terraform fmt to .terraform-validate CI step * Add tf-validate-aws CI step * Revert "Add tf-validate-aws CI step" This reverts commit e007225fac831d263613ae9ab2998d11c3e8673d. 2019-04-08 09:22:24 +00:00			`type = "ingress"`
			`from_port = "${var.aws_elb_api_port}"`
			`to_port = "${var.k8s_secure_api_port}"`
			`protocol = "TCP"`
			`cidr_blocks = ["0.0.0.0/0"]`
			`security_group_id = "${aws_security_group.aws-elb.id}"`
Rewrote AWS Terraform for Kargo Rewrote AWS Terraform deployment for AWS Kargo. It supports now multiple Availability Zones, AWS Loadbalancer for Kubernetes API, Bastion Host, ... For more information see README 2017-03-01 17:25:58 +00:00			`}`

Fixes for AWS Terraform Deployment 2017-03-20 11:06:07 +00:00			`resource "aws_security_group_rule" "aws-allow-api-egress" {`
Run terraform fmt and add step to CI (#4405) * Run terraform fmt * Add terraform fmt to .terraform-validate CI step * Add tf-validate-aws CI step * Revert "Add tf-validate-aws CI step" This reverts commit e007225fac831d263613ae9ab2998d11c3e8673d. 2019-04-08 09:22:24 +00:00			`type = "egress"`
			`from_port = 0`
			`to_port = 65535`
			`protocol = "TCP"`
			`cidr_blocks = ["0.0.0.0/0"]`
			`security_group_id = "${aws_security_group.aws-elb.id}"`
Fixes for AWS Terraform Deployment 2017-03-20 11:06:07 +00:00			`}`
Rewrote AWS Terraform for Kargo Rewrote AWS Terraform deployment for AWS Kargo. It supports now multiple Availability Zones, AWS Loadbalancer for Kubernetes API, Bastion Host, ... For more information see README 2017-03-01 17:25:58 +00:00
			`# Create a new AWS ELB for K8S API`
			`resource "aws_elb" "aws-elb-api" {`
Run terraform fmt and add step to CI (#4405) * Run terraform fmt * Add terraform fmt to .terraform-validate CI step * Add tf-validate-aws CI step * Revert "Add tf-validate-aws CI step" This reverts commit e007225fac831d263613ae9ab2998d11c3e8673d. 2019-04-08 09:22:24 +00:00			`name = "kubernetes-elb-${var.aws_cluster_name}"`
Update to TF v0.12.12 (#5267) 2019-12-04 15:20:58 +00:00			`subnets = "${var.aws_subnet_ids_public}"`
Rewrote AWS Terraform for Kargo Rewrote AWS Terraform deployment for AWS Kargo. It supports now multiple Availability Zones, AWS Loadbalancer for Kubernetes API, Bastion Host, ... For more information see README 2017-03-01 17:25:58 +00:00			`security_groups = ["${aws_security_group.aws-elb.id}"]`

			`listener {`
Run terraform fmt and add step to CI (#4405) * Run terraform fmt * Add terraform fmt to .terraform-validate CI step * Add tf-validate-aws CI step * Revert "Add tf-validate-aws CI step" This reverts commit e007225fac831d263613ae9ab2998d11c3e8673d. 2019-04-08 09:22:24 +00:00			`instance_port = "${var.k8s_secure_api_port}"`
Rewrote AWS Terraform for Kargo Rewrote AWS Terraform deployment for AWS Kargo. It supports now multiple Availability Zones, AWS Loadbalancer for Kubernetes API, Bastion Host, ... For more information see README 2017-03-01 17:25:58 +00:00			`instance_protocol = "tcp"`
Run terraform fmt and add step to CI (#4405) * Run terraform fmt * Add terraform fmt to .terraform-validate CI step * Add tf-validate-aws CI step * Revert "Add tf-validate-aws CI step" This reverts commit e007225fac831d263613ae9ab2998d11c3e8673d. 2019-04-08 09:22:24 +00:00			`lb_port = "${var.aws_elb_api_port}"`
			`lb_protocol = "tcp"`
Rewrote AWS Terraform for Kargo Rewrote AWS Terraform deployment for AWS Kargo. It supports now multiple Availability Zones, AWS Loadbalancer for Kubernetes API, Bastion Host, ... For more information see README 2017-03-01 17:25:58 +00:00			`}`

			`health_check {`
Run terraform fmt and add step to CI (#4405) * Run terraform fmt * Add terraform fmt to .terraform-validate CI step * Add tf-validate-aws CI step * Revert "Add tf-validate-aws CI step" This reverts commit e007225fac831d263613ae9ab2998d11c3e8673d. 2019-04-08 09:22:24 +00:00			`healthy_threshold = 2`
Rewrote AWS Terraform for Kargo Rewrote AWS Terraform deployment for AWS Kargo. It supports now multiple Availability Zones, AWS Loadbalancer for Kubernetes API, Bastion Host, ... For more information see README 2017-03-01 17:25:58 +00:00			`unhealthy_threshold = 2`
Run terraform fmt and add step to CI (#4405) * Run terraform fmt * Add terraform fmt to .terraform-validate CI step * Add tf-validate-aws CI step * Revert "Add tf-validate-aws CI step" This reverts commit e007225fac831d263613ae9ab2998d11c3e8673d. 2019-04-08 09:22:24 +00:00			`timeout = 3`
			`target = "TCP:${var.k8s_secure_api_port}"`
			`interval = 30`
Rewrote AWS Terraform for Kargo Rewrote AWS Terraform deployment for AWS Kargo. It supports now multiple Availability Zones, AWS Loadbalancer for Kubernetes API, Bastion Host, ... For more information see README 2017-03-01 17:25:58 +00:00			`}`

Run terraform fmt and add step to CI (#4405) * Run terraform fmt * Add terraform fmt to .terraform-validate CI step * Add tf-validate-aws CI step * Revert "Add tf-validate-aws CI step" This reverts commit e007225fac831d263613ae9ab2998d11c3e8673d. 2019-04-08 09:22:24 +00:00			`cross_zone_load_balancing = true`
			`idle_timeout = 400`
			`connection_draining = true`
Rewrote AWS Terraform for Kargo Rewrote AWS Terraform deployment for AWS Kargo. It supports now multiple Availability Zones, AWS Loadbalancer for Kubernetes API, Bastion Host, ... For more information see README 2017-03-01 17:25:58 +00:00			`connection_draining_timeout = 400`

update terraform, fix deprecated values add default_tags, fix ansible inventory (#1821) 2017-10-18 10:44:32 +00:00			`tags = "${merge(var.default_tags, map(`
			`"Name", "kubernetes-${var.aws_cluster_name}-elb-api"`
			`))}"`
Rewrote AWS Terraform for Kargo Rewrote AWS Terraform deployment for AWS Kargo. It supports now multiple Availability Zones, AWS Loadbalancer for Kubernetes API, Bastion Host, ... For more information see README 2017-03-01 17:25:58 +00:00			`}`