Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ec2: Support for ClientVpnEndpoint resources #4206

Closed
1 of 2 tasks
caphrim007 opened this issue Sep 23, 2019 · 1 comment · Fixed by #12234
Closed
1 of 2 tasks

ec2: Support for ClientVpnEndpoint resources #4206

caphrim007 opened this issue Sep 23, 2019 · 1 comment · Fixed by #12234
Assignees
@rix0rrr
Labels
@aws-cdk/aws-ec2 Related to Amazon Elastic Compute Cloud effort/medium Medium work item – several days of effort feature-request A feature should be added or improved. p2

Comments

@caphrim007
Copy link

Today, there exists a VpnConnection Construct, but support for a ClientVpnEndpoint does not appear to exist.

The VpnConnection, "Specifies a VPN connection between a virtual private gateway and a VPN customer gateway or a transit gateway and a VPN customer gateway."

This feature is different from a ClientVpnEndpoint which requires less configuration on the customer side (for example, no coordination with IT departments to arrange VPN hardware/software internally)

ClientVpnEndpoint appears to have been added to CloudFormation in/around June 14th 2019

https://aws.amazon.com/about-aws/whats-new/2019/06/aws-client-vpn-includes-support-for-aws-cloudformation/

There are 4 resources that are related to this in CloudFormation

Ideally support for all of these are added. Perhaps different issues should be created for each?

Use Case

In our environment we make use of the ClientVpnEndpoint resource in CloudFormation because we do not have the ability to use other AWS VPN solutions. Additionally, we manage access to this VPN using certificates in ACM.

Proposed Solution

Propose that constructs be added to the EC2 package to support ClientVpn related constructs. Should the Constructs have a 1-to-1 relationship to the CloudFormation resources? or should the Construct present a more abstracted view of the resources?

I would be fine with a 1-to-1 relationship.

Other

  • 👋 I may be able to implement this feature request
  • ⚠️ This feature might incur a breaking change

This is a 🚀 Feature Request
@caphrim007 caphrim007 added feature-request A feature should be added or improved. needs-triage This issue or PR still needs to be triaged. labels Sep 23, 2019
@SomayaB SomayaB added the @aws-cdk/aws-ec2 Related to Amazon Elastic Compute Cloud label Sep 23, 2019
@nmussy nmussy mentioned this issue Sep 25, 2019
Closed
@rix0rrr rix0rrr removed the needs-triage This issue or PR still needs to be triaged. label Sep 25, 2019
@rix0rrr rix0rrr added the effort/medium Medium work item – several days of effort label Jan 23, 2020
@rix0rrr rix0rrr added the p2 label Aug 12, 2020
@jogold jogold mentioned this issue Dec 26, 2020
Merged
@mergify mergify bot closed this as completed in #12234 Mar 22, 2021
mergify bot pushed a commit that referenced this issue Mar 22, 2021
@jogold
feat(ec2): client vpn endpoint (#12234)
4fde59a 
Add support for client VPN endpoints with the following L2s: `ClientVpnEndpoint`,
`ClientVpnAuthorizationRule` and `ClientVpnRoute`.

Client VPN endpoints can be added to VPCs with the `addClientVpnEndpoint()`
method.

Both mutual and user-based authentication are supported.

The `ClientVpnEndpoint` class implements `IConnectable`.

Use a custom resource to import server and client certificates in ACM
for the integration test.

Close #4206

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
@github-actions
Copy link

⚠️COMMENT VISIBILITY WARNING⚠️

Comments on closed issues are hard for our team to see.
If you need more assistance, please either tag a team member or open a new issue that references this one.
If you wish to keep having a conversation with other community members under this issue feel free to do so.

eladb pushed a commit that referenced this issue Mar 24, 2021
@jogold
feat(ec2): client vpn endpoint (#12234)
c069ded 
Add support for client VPN endpoints with the following L2s: `ClientVpnEndpoint`,
`ClientVpnAuthorizationRule` and `ClientVpnRoute`.

Client VPN endpoints can be added to VPCs with the `addClientVpnEndpoint()`
method.

Both mutual and user-based authentication are supported.

The `ClientVpnEndpoint` class implements `IConnectable`.

Use a custom resource to import server and client certificates in ACM
for the integration test.

Close #4206

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
hollanddd pushed a commit to hollanddd/aws-cdk that referenced this issue Aug 26, 2021
@jogold @hollanddd
feat(ec2): client vpn endpoint (aws#12234)
1c88783 
Add support for client VPN endpoints with the following L2s: `ClientVpnEndpoint`,
`ClientVpnAuthorizationRule` and `ClientVpnRoute`.

Client VPN endpoints can be added to VPCs with the `addClientVpnEndpoint()`
method.

Both mutual and user-based authentication are supported.

The `ClientVpnEndpoint` class implements `IConnectable`.

Use a custom resource to import server and client certificates in ACM
for the integration test.

Close aws#4206

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rix0rrr rix0rrr

Labels
@aws-cdk/aws-ec2 Related to Amazon Elastic Compute Cloud effort/medium Medium work item – several days of effort feature-request A feature should be added or improved. p2
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat(ec2): client vpn endpoint jogold/aws-cdk
feat(ec2): ClientVpn support logicgram/aws-cdk
3 participants
@caphrim007 @rix0rrr @SomayaB