Files
dev-intel-v2/foxtrot-docs-v3/reference/terraform/network-core-modules-gcp-to-aws-ha-vpn.md
Jarvis Prime 0265ec7a60 feat: confluence benchmark, pattern extractor, agent KB, UX spec
- extract-patterns.js: mines layered arch, ArgoCD appsets, cloud regions,
  CIDR allocations, naming conventions, sync waves, tech stack from code
- agent-kb.js: token-efficient JSON rendering of same doc tree
- eval-confluence-ref-questions.json: 32 reference-only benchmark questions
- wiggum-v2.sh: Ralph Wiggum loop targeting confluence baseline (77.8%)
- docs/human-ux-spec.md: BMad UX designer spec for human doc structure
- Eval results: V2 at 28.7% vs confluence 77.8% baseline
- Hub/spoke ownership now correctly extracted (95% on that question)
- Naming conventions, regions, CIDRs surfaced in system-architecture.md
2026-03-10 14:20:35 +00:00

4.5 KiB

Terraform: network-core/modules/gcp-to-aws-ha-vpn

Requirements

Name Version
terraform ~> 1.6
aws >= 5.31
google ~> 5.10

Providers

Name Version
aws >= 5.31
google ~> 5.10

Modules

No modules.

Resources

Name Type
aws_customer_gateway.gwy resource
aws_networkmanager_site_to_site_vpn_attachment.core_network_vpn resource
aws_vpn_connection.vpn_conn resource
google_compute_external_vpn_gateway.ext_gwy resource
google_compute_firewall.block_cross_segment resource
google_compute_firewall.block_cross_segment_reverse resource
google_compute_firewall.block_untagged resource
google_compute_firewall.employee_access_to_gcp resource
google_compute_ha_vpn_gateway.gwy resource
google_compute_router.router resource
google_compute_router_interface.interface resource
google_compute_router_peer.peer resource
google_compute_vpn_tunnel.tunnel resource

Inputs

Name Description Type Default Required
aws_core_network_id AWS Core Network ID to attach VPN to string n/a yes
aws_router_asn n/a string n/a yes
gcp_network Name of the GCP network. string n/a yes
gcp_router_asn n/a string n/a yes
num_tunnels Total number of VPN tunnels. This needs to be in multiples of 2. number n/a yes
prefix Prefix used for all the resources. string n/a yes
project_id n/a string n/a yes
segments Map of segments with AWS segment names and GCP CIDR blocks to advertise
map(object({
aws_segment = string
gcp_cidrs = list(string)
}))
{
"gcpvpn": {
"aws_segment": "gcpvpn",
"gcp_cidrs": [
"10.128.0.0/10"
]
}
}
no
shared_secret n/a string n/a yes
vpn_gwy_region n/a string n/a yes

Outputs

Name Description
aws_core_network_attachment_ids AWS Core Network VPN Attachment IDs
aws_vpn_connection_ids AWS VPN Connection IDs