forked from aliyun/ros-templates
-
Notifications
You must be signed in to change notification settings - Fork 0
/
vpc-endpoint.yml
174 lines (174 loc) · 5.09 KB
/
vpc-endpoint.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
ROSTemplateFormatVersion: '2015-09-01'
Description: PrivateLink VpcEndpointService/VpcEndpoint resource example
Parameters:
MasterZoneId:
Type: String
Description: The master zone id to create load balancer instance.
AssociationProperty: ALIYUN::ECS::Instance::ZoneId
SlaveZoneId:
Type: String
Description: The slave zone id to create load balancer instance.
AssociationProperty: ALIYUN::ECS::Instance::ZoneId
VpcId:
Type: String
Description: The VPC id to create load balancer instance. For VPC network only.
AssociationProperty: ALIYUN::ECS::VPC::VPCId
VSwitchId:
Type: String
Description: The VSwitch id to create load balancer instance. For VPC network
only.
AssociationProperty: ALIYUN::ECS::VSwitch::VSwitchId
AssociationPropertyMetadata:
VpcId: VpcId
ZoneId: MasterZoneId
SecurityGroupId:
Type: CommaDelimitedList
Description: The security group associated with the endpoint network interface.
The security group can control the data communication from the VPC to the endpoint
network interface.
MinLength: 1
MaxLength: 10
LoadBalancerSpec:
Type: String
Description: 'The specification of the Server Load Balancer instance. Allowed
value: slb.s1.small|slb.s2.small|slb.s2.medium|slb.s3.small|slb.s3.medium|slb.s3.large|slb.s3.xlarge|slb.s3.xxlarge.
Default value: slb.s1.small. The supported performance specification in each
region is different, two specifications are supported in the US East 1 region.
If the region does not support the performance-guaranteed instances, the value
will not take effect.'
Default: slb.s1.small
LoadBalancerName:
Type: String
Description: Name of created load balancer. Length is limited to 1-80 characters,
allowed to contain letters, numbers, '-, /, _,.' When not specified, a default
name will be assigned.
Default: mytest
User:
Type: Json
Description: Account IDs to the whitelist of an endpoint service.
Default: null
MinLength: 1
MaxLength: 20
ServiceDescription:
Type: String
Description: The description for the endpoint service.
Default: test service endpoint
MinLength: 2
MaxLength: 256
ConnectBandwidth:
Type: Number
Description: 'The default maximum bandwidth of the endpoint connection. Valid
values: 100 to 1024. Unit: Mbit/s.'
Default: 100
MinValue: 100
MaxValue: 1024
AutoAcceptEnabled:
Type: Boolean
Description: |-
Specifies whether to automatically accept endpoint connection requests. Valid values:
true: automatically accepts endpoint connection requests.
false: does not automatically accept endpoint connection requests.
Default: true
AllowedValues:
- true
- false
EndpointName:
Type: String
Description: |-
The name of the endpoint.
The name must be 2 to 128 characters in length and can contain digits, underscores
(_), and hyphens (-). The name must start with a letter.
Default: mytest
MinLength: 2
MaxLength: 128
Resources:
LoadBalancer:
Type: ALIYUN::SLB::LoadBalancer
Properties:
VpcId:
Ref: VpcId
VSwitchId:
Ref: VSwitchId
SupportPrivateLink: true
PayType: PayOnDemand
LoadBalancerSpec:
Ref: LoadBalancerSpec
LoadBalancerName:
Ref: LoadBalancerName
AddressType: intranet
MasterZoneId:
Ref: MasterZoneId
SlaveZoneId:
Ref: SlaveZoneId
VpcEndpointService:
Type: ALIYUN::PrivateLink::VpcEndpointService
Properties:
User:
Ref: User
ServiceDescription:
Ref: ServiceDescription
Resource:
- ZoneId:
Ref: MasterZoneId
ResourceId:
Ref: LoadBalancer
ResourceType: slb
ConnectBandwidth:
Ref: ConnectBandwidth
AutoAcceptEnabled:
Ref: AutoAcceptEnabled
DependsOn: LoadBalancer
VpcEndpoint:
Type: ALIYUN::PrivateLink::VpcEndpoint
Properties:
VpcId:
Ref: VpcId
SecurityGroupId:
Ref: SecurityGroupId
EndpointName:
Ref: EndpointName
Zone:
- ZoneId:
Ref: MasterZoneId
VSwitchId:
Ref: VSwitchId
ServiceId:
Ref: VpcEndpointService
DependsOn: VpcEndpointService
Outputs:
ServiceName:
Description: The name of the endpoint service.
Value:
Fn::GetAtt:
- VpcEndpointService
- ServiceName
ServiceDomain:
Description: The domain name of the endpoint service.
Value:
Fn::GetAtt:
- VpcEndpointService
- ServiceDomain
ServiceId:
Description: The ID of the endpoint service.
Value:
Fn::GetAtt:
- VpcEndpointService
- ServiceId
EndpointDomain:
Description: The domain name of the endpoint.
Value:
Fn::GetAtt:
- VpcEndpoint
- EndpointDomain
Bandwidth:
Description: The bandwidth of the endpoint.
Value:
Fn::GetAtt:
- VpcEndpoint
- Bandwidth
EndpointId:
Description: The ID of the endpoint.
Value:
Fn::GetAtt:
- VpcEndpoint
- EndpointId