IaC & Terraform
info
Ensure you've visited our marketplace page and accepted the terms & conditions, and any custom offers you may have been extended for your AWS account, first.
IMAGE IDENTIFIERS​
| key | value |
|---|---|
| owner-id | 679593333241 |
| product-code | a83las5cq95zkg3x8i17x6wyy |
| architecture | x86_64 |
These filters will result in all the historic versions too. The latest among these is recommended.
TERRAFORM MODULES​
You may want to consider our fully-working modules at the Terraform Registry, which include preconfigured high availability, load balancing and auto scaling. The examples within extend from the canonical terraform-aws-modules/vpc/aws module at the registry.
info
Contact us for expert help at devsecops@chasersystems.com at any stage of your journey – we'll jump on a screen-sharing call right away!
DEPLOYMENT ESSENTIALS​
For effective functioning, the DiscrimiNAT Firewall will need:
- A machine type with at least 2 vCPU and 2 GiB RAM. A
t3.smallshould suffice where throughput requirements are basic and allowlists small. Otherwise ac5.largemakes a good choice for constant throughput. Talk to our DevSecOps to get the sizing right! - An IAM policy that can read some EC2 metadata, write logs and set instance health (of itself). See the IAM Instance Profile page for details.
- Ability to forward IP packets with the
SourceDestCheckproperty of the network interface turned off. - A public IP with routing to the Internet via the AWS supplied Internet Gateway.
aws CLI EXAMPLE​
Lookup​
aws ec2 describe-images \
--query \
'sort_by(Images, &CreationDate)[-1].ImageId' \
--filters \
"Name=owner-id,Values=679593333241" \
"Name=product-code,Values=a83las5cq95zkg3x8i17x6wyy" \
"Name=architecture,Values=x86_64" \
--no-cli-pager --output text