Files
dev-intel-v2/foxtrot-docs-v3/reference/terraform/ipam-core-netbox.md
Jarvis Prime 0265ec7a60 feat: confluence benchmark, pattern extractor, agent KB, UX spec
- extract-patterns.js: mines layered arch, ArgoCD appsets, cloud regions,
  CIDR allocations, naming conventions, sync waves, tech stack from code
- agent-kb.js: token-efficient JSON rendering of same doc tree
- eval-confluence-ref-questions.json: 32 reference-only benchmark questions
- wiggum-v2.sh: Ralph Wiggum loop targeting confluence baseline (77.8%)
- docs/human-ux-spec.md: BMad UX designer spec for human doc structure
- Eval results: V2 at 28.7% vs confluence 77.8% baseline
- Hub/spoke ownership now correctly extracted (95% on that question)
- Naming conventions, regions, CIDRs surfaced in system-architecture.md
2026-03-10 14:20:35 +00:00

10 KiB

Terraform: ipam-core/netbox

Requirements

Name Version
terraform ~> 1.10
aws ~> 5.24

Providers

Name Version
aws 5.99.0

Modules

Name Source Version
app terraform-aws-modules/ecs/aws//modules/service ~> 5.2
ci_iam_role ./modules/ci n/a
db terraform-aws-modules/rds/aws ~> 6.2
db_password terraform-aws-modules/secrets-manager/aws ~> 1.1
ecs_cluster_1 terraform-aws-modules/ecs/aws//modules/cluster ~> 5.2
lb terraform-aws-modules/alb/aws ~> 9.0
secret_key terraform-aws-modules/secrets-manager/aws ~> 1.1
vpc terraform-aws-modules/vpc/aws ~> 5.1

Resources

Name Type
aws_autoscaling_group.netbox_asg resource
aws_backup_plan.this resource
aws_backup_selection.netbox resource
aws_backup_vault.this resource
aws_elasticache_cluster.redis resource
aws_launch_configuration.netbox resource
aws_lb.netbox_nlb resource
aws_lb_listener.netbox_listener resource
aws_lb_listener.netbox_listener_80 resource
aws_lb_target_group.netbox_tg_443 resource
aws_lb_target_group.netbox_tg_80 resource
aws_lb_target_group_attachment.netbox_tg_attachment_443 resource
aws_lb_target_group_attachment.netbox_tg_attachment_80 resource
aws_security_group.alb resource
aws_security_group.netbox_nlb resource
aws_security_group.rds resource
aws_security_group.redis resource
aws_vpc_endpoint_service.netbox resource
aws_vpc_security_group_egress_rule.alb_egress_all resource
aws_vpc_security_group_egress_rule.netbox_nlb_egress resource
aws_vpc_security_group_egress_rule.rds_egress_all resource
aws_vpc_security_group_egress_rule.redis_egress_all resource
aws_vpc_security_group_ingress_rule.alb_ingress_443 resource
aws_vpc_security_group_ingress_rule.alb_ingress_80 resource
aws_vpc_security_group_ingress_rule.netbox_nlb_ingress resource
aws_vpc_security_group_ingress_rule.netbox_nlb_ingress_http resource
aws_vpc_security_group_ingress_rule.rds_ingress_5432 resource
aws_vpc_security_group_ingress_rule.redis_ingress_6379 resource
aws_iam_role.backup data source
aws_kms_key.aws_backup data source
aws_secretsmanager_secret.okta_openidconnect data source
aws_secretsmanager_secret_version.db_password data source
aws_secretsmanager_secret_version.okta_openidconnect data source
aws_ssm_parameter.ecs_optimized_ami data source

Inputs

Name Description Type Default Required
alb_ssl_policy The SSL policy for ALB string "ELBSecurityPolicy-2016-08" no
asg_instance_type Instance type for ECS string "t3.micro" no
availability_zones The availability zones to use list(string)
[
"us-east-1a",
"us-east-1b"
]
no
backup_vault_name Name of the AWS Backup vault. string "netbox" no
certificate_arn The ARN of the SSL certificate string "arn:aws:acm:us-east-1:442426861809:certificate/f19241b9-6514-4af4-b934-f6411e88502f" no
database_subnets Database subnets CIDR blocks list(string)
[
"10.254.0.192/27",
"10.254.0.224/27"
]
no
db_allocated_storage Allocated storage for RDS (in GB) string 20 no
db_engine Datbase Engine string "postgres" no
db_family Datbase Family string "postgres16" no
db_instance_class Instance class for RDS string "db.t4g.micro" no
db_name Database name string "netbox" no
db_storage_type Storage type for RDS string "gp3" no
db_username Database username string "netbox" no
ecs_cluster_name Name of the ECS cluster string "netbox-cluster" no
elasticache_subnets Elasticache subnets CIDR blocks list(string)
[
"10.254.0.128/27",
"10.254.0.160/27"
]
no
nat_gateway_enabled Enable NAT gateway bool true no
netbox The name used for various resources string "netbox" no
netbox_version The version of NetBox to use string "v4.0-2.9.1" no
private_subnets Private subnets CIDR blocks list(string)
[
"10.254.0.0/27",
"10.254.0.32/27"
]
no
public_subnets Public subnets CIDR blocks list(string)
[
"10.254.0.64/27",
"10.254.0.96/27"
]
no
redis_engine Redis Engine string "redis" no
redis_node_type Node type for Redis string "cache.t4g.micro" no
redis_parameter_group_name Parameter group name for Redis string "default.redis7" no
vpc_cidr The CIDR block for the VPC string "10.254.0.0/24" no

Outputs

No outputs.