pulumi-alicloud-kotlin/com.pulumi.alicloud.cen.kotlin/TransitRouterVpnAttachmentArgs

TransitRouterVpnAttachmentArgs

data class TransitRouterVpnAttachmentArgs(val autoPublishRouteEnabled: Output<Boolean>? = null, val cenId: Output<String>? = null, val tags: Output<Map<String, Any>>? = null, val transitRouterAttachmentDescription: Output<String>? = null, val transitRouterAttachmentName: Output<String>? = null, val transitRouterId: Output<String>? = null, val vpnId: Output<String>? = null, val vpnOwnerId: Output<String>? = null, val zones: Output<List<TransitRouterVpnAttachmentZoneArgs>>? = null) : ConvertibleToJava<TransitRouterVpnAttachmentArgs>

Provides a Cloud Enterprise Network (CEN) Transit Router Vpn Attachment resource. For information about Cloud Enterprise Network (CEN) Transit Router Vpn Attachment and how to use it, see What is Transit Router Vpn Attachment.

NOTE: Available in v1.183.0+.

Example Usage

Basic Example

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.alicloud.cen.CenFunctions;
import com.pulumi.alicloud.cen.inputs.GetTransitRouterAvailableResourcesArgs;
import com.pulumi.alicloud.cen.Instance;
import com.pulumi.alicloud.cen.InstanceArgs;
import com.pulumi.alicloud.cen.TransitRouter;
import com.pulumi.alicloud.cen.TransitRouterArgs;
import com.pulumi.alicloud.vpn.CustomerGateway;
import com.pulumi.alicloud.vpn.CustomerGatewayArgs;
import com.pulumi.alicloud.vpn.GatewayVpnAttachment;
import com.pulumi.alicloud.vpn.GatewayVpnAttachmentArgs;
import com.pulumi.alicloud.vpn.inputs.GatewayVpnAttachmentIkeConfigArgs;
import com.pulumi.alicloud.vpn.inputs.GatewayVpnAttachmentIpsecConfigArgs;
import com.pulumi.alicloud.vpn.inputs.GatewayVpnAttachmentBgpConfigArgs;
import com.pulumi.alicloud.vpn.inputs.GatewayVpnAttachmentHealthCheckConfigArgs;
import com.pulumi.alicloud.cen.TransitRouterVpnAttachment;
import com.pulumi.alicloud.cen.TransitRouterVpnAttachmentArgs;
import com.pulumi.alicloud.cen.inputs.TransitRouterVpnAttachmentZoneArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        final var defaultTransitRouterAvailableResources = CenFunctions.getTransitRouterAvailableResources();
        var defaultInstance = new Instance("defaultInstance", InstanceArgs.builder()
            .cenInstanceName("tf-example")
            .build());
        var defaultTransitRouter = new TransitRouter("defaultTransitRouter", TransitRouterArgs.builder()
            .cenId(defaultInstance.id())
            .transitRouterDescription("tf-example-description")
            .transitRouterName("tf-example-name")
            .build());
        var defaultCustomerGateway = new CustomerGateway("defaultCustomerGateway", CustomerGatewayArgs.builder()
            .ipAddress("42.104.22.210")
            .asn("45014")
            .description("testAccVpnConnectionDesc")
            .build());
        var defaultGatewayVpnAttachment = new GatewayVpnAttachment("defaultGatewayVpnAttachment", GatewayVpnAttachmentArgs.builder()
            .customerGatewayId(defaultCustomerGateway.id())
            .networkType("public")
            .localSubnet("0.0.0.0/0")
            .remoteSubnet("0.0.0.0/0")
            .effectImmediately(false)
            .ikeConfig(GatewayVpnAttachmentIkeConfigArgs.builder()
                .ikeAuthAlg("md5")
                .ikeEncAlg("des")
                .ikeVersion("ikev2")
                .ikeMode("main")
                .ikeLifetime(86400)
                .psk("tf-testvpn2")
                .ikePfs("group1")
                .remoteId("testbob2")
                .localId("testalice2")
                .build())
            .ipsecConfig(GatewayVpnAttachmentIpsecConfigArgs.builder()
                .ipsecPfs("group5")
                .ipsecEncAlg("des")
                .ipsecAuthAlg("md5")
                .ipsecLifetime(86400)
                .build())
            .bgpConfig(GatewayVpnAttachmentBgpConfigArgs.builder()
                .enable(true)
                .localAsn(45014)
                .tunnelCidr("169.254.11.0/30")
                .localBgpIp("169.254.11.1")
                .build())
            .healthCheckConfig(GatewayVpnAttachmentHealthCheckConfigArgs.builder()
                .enable(true)
                .sip("192.168.1.1")
                .dip("10.0.0.1")
                .interval(10)
                .retry(10)
                .policy("revoke_route")
                .build())
            .enableDpd(true)
            .enableNatTraversal(true)
            .vpnAttachmentName("tf-example-name")
            .build());
        var defaultTransitRouterVpnAttachment = new TransitRouterVpnAttachment("defaultTransitRouterVpnAttachment", TransitRouterVpnAttachmentArgs.builder()
            .autoPublishRouteEnabled(false)
            .transitRouterAttachmentDescription("tf-example-description")
            .transitRouterAttachmentName("tf-example-name")
            .cenId(defaultTransitRouter.cenId())
            .transitRouterId(defaultTransitRouter.transitRouterId())
            .vpnId(defaultGatewayVpnAttachment.id())
            .zones(TransitRouterVpnAttachmentZoneArgs.builder()
                .zoneId(defaultTransitRouterAvailableResources.applyValue(getTransitRouterAvailableResourcesResult -> getTransitRouterAvailableResourcesResult.resources()[0].masterZones()[0]))
                .build())
            .build());
    }
}
Content copied to clipboard

Example Create a Transit Router Vpn Attachment with Transit Router Cidr

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.alicloud.cen.CenFunctions;
import com.pulumi.alicloud.cen.inputs.GetTransitRouterAvailableResourcesArgs;
import com.pulumi.alicloud.cen.Instance;
import com.pulumi.alicloud.cen.InstanceArgs;
import com.pulumi.alicloud.cen.TransitRouter;
import com.pulumi.alicloud.cen.TransitRouterArgs;
import com.pulumi.alicloud.cen.TransitRouterCidr;
import com.pulumi.alicloud.cen.TransitRouterCidrArgs;
import com.pulumi.alicloud.vpn.CustomerGateway;
import com.pulumi.alicloud.vpn.CustomerGatewayArgs;
import com.pulumi.alicloud.vpn.GatewayVpnAttachment;
import com.pulumi.alicloud.vpn.GatewayVpnAttachmentArgs;
import com.pulumi.alicloud.vpn.inputs.GatewayVpnAttachmentIkeConfigArgs;
import com.pulumi.alicloud.vpn.inputs.GatewayVpnAttachmentIpsecConfigArgs;
import com.pulumi.alicloud.vpn.inputs.GatewayVpnAttachmentBgpConfigArgs;
import com.pulumi.alicloud.vpn.inputs.GatewayVpnAttachmentHealthCheckConfigArgs;
import com.pulumi.alicloud.cen.TransitRouterVpnAttachment;
import com.pulumi.alicloud.cen.TransitRouterVpnAttachmentArgs;
import com.pulumi.alicloud.cen.inputs.TransitRouterVpnAttachmentZoneArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        final var defaultTransitRouterAvailableResources = CenFunctions.getTransitRouterAvailableResources();
        var defaultInstance = new Instance("defaultInstance", InstanceArgs.builder()
            .cenInstanceName("tf-example")
            .build());
        var defaultTransitRouter = new TransitRouter("defaultTransitRouter", TransitRouterArgs.builder()
            .cenId(defaultInstance.id())
            .build());
        var defaultTransitRouterCidr = new TransitRouterCidr("defaultTransitRouterCidr", TransitRouterCidrArgs.builder()
            .transitRouterId(defaultTransitRouter.transitRouterId())
            .cidr("192.168.0.0/16")
            .transitRouterCidrName("tf-example-name")
            .description("tf-example-description")
            .publishCidrRoute(true)
            .build());
        var defaultCustomerGateway = new CustomerGateway("defaultCustomerGateway", CustomerGatewayArgs.builder()
            .ipAddress("42.104.22.210")
            .asn("45014")
            .build());
        var defaultGatewayVpnAttachment = new GatewayVpnAttachment("defaultGatewayVpnAttachment", GatewayVpnAttachmentArgs.builder()
            .customerGatewayId(defaultCustomerGateway.id())
            .networkType("public")
            .localSubnet("0.0.0.0/0")
            .remoteSubnet("0.0.0.0/0")
            .effectImmediately(false)
            .ikeConfig(GatewayVpnAttachmentIkeConfigArgs.builder()
                .ikeAuthAlg("md5")
                .ikeEncAlg("des")
                .ikeVersion("ikev2")
                .ikeMode("main")
                .ikeLifetime(86400)
                .psk("tf-testvpn2")
                .ikePfs("group1")
                .remoteId("testbob2")
                .localId("testalice2")
                .build())
            .ipsecConfig(GatewayVpnAttachmentIpsecConfigArgs.builder()
                .ipsecPfs("group5")
                .ipsecEncAlg("des")
                .ipsecAuthAlg("md5")
                .ipsecLifetime(86400)
                .build())
            .bgpConfig(GatewayVpnAttachmentBgpConfigArgs.builder()
                .enable(true)
                .localAsn(45014)
                .tunnelCidr("169.254.11.0/30")
                .localBgpIp("169.254.11.1")
                .build())
            .healthCheckConfig(GatewayVpnAttachmentHealthCheckConfigArgs.builder()
                .enable(true)
                .sip("192.168.1.1")
                .dip("10.0.0.1")
                .interval(10)
                .retry(10)
                .policy("revoke_route")
                .build())
            .enableDpd(true)
            .enableNatTraversal(true)
            .vpnAttachmentName("tf-example-name")
            .build());
        var defaultTransitRouterVpnAttachment = new TransitRouterVpnAttachment("defaultTransitRouterVpnAttachment", TransitRouterVpnAttachmentArgs.builder()
            .autoPublishRouteEnabled(false)
            .transitRouterAttachmentDescription("tf-example-description")
            .transitRouterAttachmentName("tf-example-name")
            .cenId(defaultTransitRouter.cenId())
            .transitRouterId(defaultTransitRouterCidr.transitRouterId())
            .vpnId(defaultGatewayVpnAttachment.id())
            .zones(TransitRouterVpnAttachmentZoneArgs.builder()
                .zoneId(defaultTransitRouterAvailableResources.applyValue(getTransitRouterAvailableResourcesResult -> getTransitRouterAvailableResourcesResult.resources()[0].masterZones()[0]))
                .build())
            .build());
    }
}
Content copied to clipboard

Import

Cloud Enterprise Network (CEN) Transit Router Vpn Attachment can be imported using the id, e.g.

$ pulumi import alicloud:cen/transitRouterVpnAttachment:TransitRouterVpnAttachment example <id>
Content copied to clipboard

Constructors

Link copied to clipboard
fun TransitRouterVpnAttachmentArgs(autoPublishRouteEnabled: Output<Boolean>? = null, cenId: Output<String>? = null, tags: Output<Map<String, Any>>? = null, transitRouterAttachmentDescription: Output<String>? = null, transitRouterAttachmentName: Output<String>? = null, transitRouterId: Output<String>? = null, vpnId: Output<String>? = null, vpnOwnerId: Output<String>? = null, zones: Output<List<TransitRouterVpnAttachmentZoneArgs>>? = null)

Functions

Link copied to clipboard
open override fun toJava(): TransitRouterVpnAttachmentArgs

Properties

Link copied to clipboard
val autoPublishRouteEnabled: Output<Boolean>? = null

Whether to allow the forwarding router instance to automatically publish routing entries to IPsec connections.

Link copied to clipboard
val cenId: Output<String>? = null

The id of the cen.

Link copied to clipboard
val tags: Output<Map<String, Any>>? = null

A mapping of tags to assign to the resource.

Link copied to clipboard
val transitRouterAttachmentDescription: Output<String>? = null

The description of the VPN connection. The description can contain 2 to 256 characters. The description must start with English letters, but cannot start with http:// or https://.

Link copied to clipboard
val transitRouterAttachmentName: Output<String>? = null

The name of the VPN connection. The name must be 2 to 128 characters in length, and can contain digits, underscores (_), and hyphens (-). It must start with a letter.

Link copied to clipboard
val transitRouterId: Output<String>? = null

The ID of the forwarding router instance.

Link copied to clipboard
val vpnId: Output<String>? = null

The id of the vpn.

Link copied to clipboard
val vpnOwnerId: Output<String>? = null

The owner id of vpn. NOTE: You must set vpn_owner_id, if you want to connect the transit router to an IPsec-VPN connection that belongs to another Alibaba Cloud account.

Link copied to clipboard
val zones: Output<List<TransitRouterVpnAttachmentZoneArgs>>? = null

The list of zone mapping. See the following Block zone.