|
|
@@ -2,7 +2,7 @@
|
|
|
# An external NLB for the indexers for splunk-2-splunk
|
|
|
#------------------------------------------------------------------------------
|
|
|
resource "aws_eip" "nlb" {
|
|
|
- count = "3"
|
|
|
+ count = "3" # Could be local.nlb_endpoint_count, but I'd rather reserve all 3
|
|
|
|
|
|
vpc = true
|
|
|
tags = merge(local.standard_tags, var.tags, { "Name" : "${var.prefix}-nlb" })
|
|
|
@@ -26,20 +26,15 @@ resource "aws_lb" "nlb" {
|
|
|
internal = false # tfsec:ignore:aws-elb-alb-not-public
|
|
|
load_balancer_type = "network"
|
|
|
#subnets = data.terraform_remote_state.infra.public_subnets
|
|
|
+ enable_cross_zone_load_balancing = true
|
|
|
|
|
|
- subnet_mapping {
|
|
|
- subnet_id = element(var.public_subnets, 0)
|
|
|
- allocation_id = element(aws_eip.nlb.*.id, 0)
|
|
|
- }
|
|
|
-
|
|
|
- subnet_mapping {
|
|
|
- subnet_id = element(var.public_subnets, 1)
|
|
|
- allocation_id = element(aws_eip.nlb.*.id, 1)
|
|
|
- }
|
|
|
-
|
|
|
- subnet_mapping {
|
|
|
- subnet_id = element(var.public_subnets, 2)
|
|
|
- allocation_id = element(aws_eip.nlb.*.id, 2)
|
|
|
+ dynamic "subnet_mapping" {
|
|
|
+ # create a subnet endpoint for each subnet where there's an asg group
|
|
|
+ for_each = [for n in local.splunk_asg_sizes : "yes" if n > 0]
|
|
|
+ content {
|
|
|
+ subnet_id = element(var.public_subnets, subnet_mapping.key) # subnet_mapping.key is the index of the list
|
|
|
+ allocation_id = element(aws_eip.nlb.*.id, subnet_mapping.key)
|
|
|
+ }
|
|
|
}
|
|
|
|
|
|
access_logs {
|
Frederick Damstra