nemo
/
terraform-data-duo-ips
mirror of https://github.com/captn3m0/terraform-data-duo-ips.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
terraform-data-duo-ips/README.md

1.9 KiB
Raw Permalink Blame History

terraform-data-duo-ips License:MIT GitHub tag (latest SemVer) GitHub last commit

This module provides an updated list of Duo's public CIDRs. These are maintained against the Duo Documentation: https://help.duo.com/s/article/1337

Usage

module "duo-ips" {
  source  = "captn3m0/duo-ips/data"
  version = "1.2.0"
}

resource "aws_security_group_rule" "allow_all_to_duo" {
  type            = "egress"
  from_port       = 0
  to_port         = 443
  protocol        = "tcp"
  cidr_blocks     = ["${module.duo-ips.cidr}"]
  security_group_id = "sg-123456"
}

Changelog

1.2.0

  • Added new CIDRs

1.1.0

  • Removed http:// from hostname values.

1.0.3

  • Changed the terraform registry module name from duo-whitelist to duo-ips.
  • Renamed duo_ad_hostnames_us to ad_hostnames_us

Outputs

The following outputs are exported:

ad_hostnames_ca

Description: Map of Duo's Microsoft Azure Active Directory Conditional Access application for Canada deployments

ad_hostnames_eu

Description: Map of Duo's Microsoft Azure Active Directory Conditional Access application for Europe deployments

cidrs

Description: List of all Duo Service CIDRs. Allow for egress to Duo

ad_hostnames_us

Description: Map of Duo's Microsoft Azure Active Directory Conditional Access application for US deployments

trusted_endpoints_cidrs

Description: List of Duo's Trusted Endpoint CIDRs. Allow for ingress from Duo

LICENSE

Licensed under MIT. See nemo.mit-license.org for complete text.