|
|
@@ -4,27 +4,27 @@
|
|
|
|
|
|
## Folder Structure
|
|
|
|
|
|
-`00-cis-hardening` - CIS Hardening for MDR root - (Ryan D'Amour, how does this go to other accounts)
|
|
|
-`00-organizations-and-iam` - IAM Roles and Policies across accounts (NOTE: No workspaces, applies everywhere)
|
|
|
-`00-state-mgmt` - S3 buckets for state management (may be prerequisite for others)
|
|
|
-`01-eips` - Elastic IPs and Associated DNS Record (protection from accidentally deletion)
|
|
|
-`02-msoc_vpc` - Managed SOC VPC (msoc is old name) - Meat and potatoes of command and control
|
|
|
-`03-mgmt` - ? Maybe Unused ? - Most appears to be junk, tread carefully.
|
|
|
-`04-ghe` - GitHub Enterprise - May be junk, GHE may be created elsewehere. Tread carefully.
|
|
|
-`05-customer_portal` - Web App for Customers in Docker using ECR, in its own vpc, running on ec2 running docker, not in fargate)
|
|
|
-`10-custpod1` - Splunk Monitoring Console + junk (Could probably burn and update)
|
|
|
-`11-codebuild` - Code Build to make RPMs
|
|
|
-`12-fargate` - Fargate for syslog-ng that gets ghe logs into moose
|
|
|
-`100-moose` - Our splunk environment (watch for modules of modules of modules)
|
|
|
-`101-afs` - AFS Customer Environment
|
|
|
-`102-saf` - SAF ("Smart and Final") - Powered Down through console - DO NOT TOUCH THE TF
|
|
|
-`103-nga` - *FEDRAMP SPONSOR* NGA ("National Gallery of Art"), sometimes referred to as Gallery.
|
|
|
-`104-coalfire` - Our FedRAMP Auditors (Standard customer with kali box)
|
|
|
-`105-cf2` - Our FedRAMP Auditors 2nd Environment
|
|
|
-`106-ma-c19` - Massachusetts Covid-19 (Internal AFS customer)
|
|
|
-`107-la-c19` - Louisiana Covid-19 (Internal AFS customer)
|
|
|
-`common` - Common files that are symbolicly linked into other folders
|
|
|
-`modules` - Reusable code - Do not run terraform here! A mix of homebrewed and third party modules.
|
|
|
+`00-cis-hardening` - CIS Hardening for MDR root - (Ryan D'Amour, how does this go to other accounts)
|
|
|
+`00-organizations-and-iam` - IAM Roles and Policies across accounts (NOTE: No workspaces, applies everywhere)
|
|
|
+`00-state-mgmt` - S3 buckets for state management (may be prerequisite for others)
|
|
|
+`01-eips` - Elastic IPs and Associated DNS Record (protection from accidentally deletion)
|
|
|
+`02-msoc_vpc` - Managed SOC VPC (msoc is old name) - Meat and potatoes of command and control
|
|
|
+`03-mgmt` - ? Maybe Unused ? - Most appears to be junk, tread carefully.
|
|
|
+`04-ghe` - GitHub Enterprise - May be junk, GHE may be created elsewehere. Tread carefully.
|
|
|
+`05-customer_portal` - Web App for Customers in Docker using ECR, in its own vpc, running on ec2 running docker, not in fargate)
|
|
|
+`10-custpod1` - Splunk Monitoring Console + junk (Could probably burn and update)
|
|
|
+`11-codebuild` - Code Build to make RPMs
|
|
|
+`12-fargate` - Fargate for syslog-ng that gets ghe logs into moose
|
|
|
+`100-moose` - Our splunk environment (watch for modules of modules of modules)
|
|
|
+`101-afs` - AFS Customer Environment
|
|
|
+`102-saf` - SAF ("Smart and Final") - Powered Down through console - DO NOT TOUCH THE TF
|
|
|
+`103-nga` - *FEDRAMP SPONSOR* NGA ("National Gallery of Art"), sometimes referred to as Gallery.
|
|
|
+`104-coalfire` - Our FedRAMP Auditors (Standard customer with kali box)
|
|
|
+`105-cf2` - Our FedRAMP Auditors 2nd Environment
|
|
|
+`106-ma-c19` - Massachusetts Covid-19 (Internal AFS customer)
|
|
|
+`107-la-c19` - Louisiana Covid-19 (Internal AFS customer)
|
|
|
+`common` - Common files that are symbolicly linked into other folders
|
|
|
+`modules` - Reusable code - Do not run terraform here! A mix of homebrewed and third party modules.
|
|
|
|
|
|
## TFswitcher
|
|
|
|
Jeremy Cooper [AFS MBP]