AFS
/
xdr-terraform-modules


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116
							locals {
  # Customer External IPs
  # To increase flexibility and to provide better documentation,
  # break up the IPs based on on-prem and not on-prem.
  #
  # All of the "external" things that need access to publically
  # available C2 services, like Salt Masters, Repo Servers
  #
  # Structure is a list of maps, and the "description" value in the
  # map must be unique across the whole list or it will cause an error.
  #
  c2_services_external_ips = [
    {
      description = "Test LCPs"
      cidr_blocks = [
        "18.252.65.137/32", # Test LCP in Govcloud (EIP in common-services-gov)
        "54.224.56.231/32", # Test LCP in Commercial (EIP in common-services)
      ]
    },
    {
      description = "NGA"
      cidr_blocks = [
        "199.16.64.3/32", #  NGA
      ]
    },
    {
      description = "AFS OnPrem"
      cidr_blocks = [
        "170.248.172.0/23", #  AFS Onprem
      ]
    },
    {
      description = "AFS Azure"
      cidr_blocks = [
        "20.190.250.137/32", # EastUS2_External_Access
        "52.232.227.197/32", # Azure US-East Palo
        "52.185.64.173/32",  # CentralUS_External_Access
        "52.242.225.98/32",  # Azure US-Central Palo 20200721
        "52.177.84.83/32",   # Lab_External_Access
      ]
    },
    {
      description = "BAS-Commerce CMPS"
      cidr_blocks = [
        "52.61.137.158/32", # 2021-04-06 From Daniel Dicke <daniel.dicke@asmr.com>
        "52.61.70.43/32",   # 2021-04-15 yanked from VPC flow logs
      ]
    },
    {
      description = "FRTIB VDI"
      cidr_blocks = [
        "52.61.113.202/32", # 2021-04-15 From Brian Nguyen brian.a.nguyen@accenturefederal.com
      ]
    },
    {
      description = "FRTIB CMPS"
      cidr_blocks = [
        "15.200.226.57/32", # 2021-07-12 From Brian Nguyen brian.a.nguyen@accenturefederal.com
      ]
    },
    {
      description = "FRTIB ALIGHT"
      cidr_blocks = [
        "54.205.60.17/32", # 2021-05-04 From John Conrad john.conrad.2@alight.com
        "52.206.203.98/32",
        "34.233.188.131/32",
      ]
    },
    {
      description = "FRTIB ALIGHT 2"
      cidr_blocks = [
        "34.214.247.125/32", # 2022-01-20 From John Conrad john.conrad.2@alight.com
        "44.235.174.214/32",
        "52.89.203.9/32",
      ]
    },
    {
      description = "CA-C19"
      cidr_blocks = [
        "44.226.172.7/32",    # ca-c19-splunk-ds-1 2022-06-22 From Ben Troglia WEST MSOCI-2214
        "52.24.211.95/32",    # ca-c19-splunk-syslog-1
        "52.35.39.247/32",    # ca-c19-splunk-syslog-2
        "3.226.9.146/32",     # ca-c19-splunk-ds-2 2022-06-22 From Ben Troglia EAST MSOCI-2214
        "44.207.196.144/32",  # ca-c19-splunk-syslog-3
        "44.207.241.26/32",   # ca-c19-splunk-syslog-4
      ]
    },
    {
      description = "DGI"
      cidr_blocks = [
        "3.32.175.159/32", # 2021-06-24 From Angelita Crawley MSOCI-1776
        "15.200.13.143/32",
      ]
    },
    {
      description = "FRTIB Chaos test us-east-1"
      cidr_blocks = [
        "3.221.245.113/32",
        "34.237.100.242/32",
        "35.172.75.107/32",
        "54.164.205.89/32",
        "54.209.105.32/32",
        "54.224.69.136/32",
      ]
    },
    {
      description = "FRTIB Chaos prod us-east-1"
      cidr_blocks = [
        "34.237.183.65/32",
        "34.227.214.27/32",
        "3.232.76.136/32",
      ]
    },

  ]
}