Adds routing for Transit Gateway VPN attachments

Flaconi · May 6, 2020 · 34819b6 · 34819b6
1 parent f61fe6c
commit 34819b6
Show file tree

Hide file tree

Showing 3 changed files with 27 additions and 5 deletions.
diff --git a/data.tf b/data.tf
@@ -19,3 +19,10 @@ data "aws_ec2_transit_gateway" "this" {
     values = [data.aws_ram_resource_share.this.tags.transit-gateway-id]
   }
 }
+
+data "aws_ec2_transit_gateway_route_table" "this" {
+  filter {
+    name   = "transit-gateway-id"
+    values = [data.aws_ec2_transit_gateway.this.id]
+  }
+}
diff --git a/examples/complete/variables.auto.tfvars b/examples/complete/variables.auto.tfvars
@@ -5,7 +5,11 @@ cgw_bgp_asn    = 65000
 cgw_ip_address = "1.1.1.1"
 
 transit_gateway_hub_name = "test-tgw-fixture"
-static_routes_only       = false
+static_routes_only       = true
+static_routes_destinations = [
+  "192.168.0.0/24",
+  "192.168.1.0/24"
+]
 
 tunnel1_inside_cidr   = "169.254.6.0/30"
 tunnel2_inside_cidr   = "169.254.7.0/30"

diff --git a/main.tf b/main.tf
@@ -19,8 +19,19 @@ resource "aws_vpn_connection" "this" {
   tags                  = merge(var.tags, map("Name", var.name))
 }
 
-resource "aws_vpn_connection_route" "this" {
-  count                  = var.static_routes_only ? length(var.static_routes_destinations) : 0
-  vpn_connection_id      = aws_vpn_connection.this.id
-  destination_cidr_block = element(var.static_routes_destinations, count.index)
+resource "aws_ec2_transit_gateway_route_table_association" "this" {
+  transit_gateway_attachment_id  = aws_vpn_connection.this.transit_gateway_attachment_id
+  transit_gateway_route_table_id = data.aws_ec2_transit_gateway_route_table.this.id
+}
+
+resource "aws_ec2_transit_gateway_route_table_propagation" "this" {
+  transit_gateway_attachment_id  = aws_vpn_connection.this.transit_gateway_attachment_id
+  transit_gateway_route_table_id = data.aws_ec2_transit_gateway_route_table.this.id
+}
+
+resource "aws_ec2_transit_gateway_route" "this" {
+  count                          = var.static_routes_only ? length(var.static_routes_destinations) : 0
+  destination_cidr_block         = element(var.static_routes_destinations, count.index)
+  transit_gateway_attachment_id  = aws_vpn_connection.this.transit_gateway_attachment_id
+  transit_gateway_route_table_id = data.aws_ec2_transit_gateway_route_table.this.id
 }