Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- resource "aws_subnet" "jbox" {
- vpc_id = "${aws_vpc.vpc-mitm.id}"
- #problem was
- map_public_ip_on_launch = true
- cidr_block = "${var.public_jbox_subnet_cidr}"
- availability_zone = "${var.aws_availability_zone}"
- tags {
- Name = "MITM: Public Jbox Subnet"
- }
- }
- resource "aws_route_table_association" "jbox" {
- subnet_id = "${aws_subnet.jbox.id}"
- route_table_id = "${aws_route_table.all_to_igw.id}"
- }
- #elastic IP for JBOX
- resource "aws_eip" "jbox" {
- vpc = true
- }
- resource "aws_eip_association" "jbox" {
- instance_id = "${aws_instance.jbox.id}"
- allocation_id = "${aws_eip.jbox.id}"
- }
- #security group only for SSH connection to JBOX
- resource "aws_security_group" "jbox" {
- tags {
- Name = "MITM: JBOX"
- }
- vpc_id = "${aws_vpc.vpc-mitm.id}"
- ingress {
- from_port = 22
- to_port = 22
- protocol = "tcp"
- cidr_blocks = ["0.0.0.0/0"]
- }
- #TODO: Remove Later
- egress {
- protocol = -1
- from_port = 0
- to_port = 0
- cidr_blocks = ["0.0.0.0/0"]
- }
- }
- #JBOX
- resource "aws_instance" "jbox" {
- ami = "${lookup(var.amis, var.aws_region)}" #ubuntu 16.04
- subnet_id = "${aws_subnet.jbox.id}"
- vpc_security_group_ids = ["${aws_security_group.jbox.id}"]
- instance_type = "t2.micro"
- key_name = "${aws_key_pair.aws-ssh-key.key_name}"
- tags {
- Name = "MITM: JBOX"
- }
- provisioner "file" {
- source = "${var.ssh_jbox_key_path}"
- destination = "${var.ssh_default_ubuntu_dir_path}"
- connection {
- type = "ssh"
- user = "ubuntu"
- private_key = "${file(var.ssh_jbox_key_path)}"
- agent = false
- }
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement