setup a route 53 forwarder

main.tf

@@ -24,7 +24,7 @@ module "nodes" {
   open-nets        = ["76.14.80.208/32"]
   data-node-count  = 3
   re-volume-size   = 500
-  re-instance-type = "m5.4xlarge"
+  re-instance-type = "m5.xlarge"
   vpc-cidr         = var.vpc-cidr
   vpc-azs          = var.vpc-azs
   vpc-name         = var.vpc-name
@@ -45,16 +45,16 @@ module "tmuxer" {
   outpath = "."
 }
 
-module "dns-lb" {
-  source       = "../tfmodule-aws-dns-lb"
-  profile      = var.profile
-  region       = var.region
-  vpc-subnets  = module.vpc.subnets-public
-  vpc-id       = module.vpc.vpc-id
-  node-ids     = module.nodes.node-ids
-  cluster-name = "maguetest.redisdemo.com"
-  common-tags = {
-    "Owner"   = "maguec"
-    "Project" = "AWS Testing Environment"
-  }
-}
+#module "dns-lb" {
+#  source       = "../tfmodule-aws-dns-lb"
+#  profile      = var.profile
+#  region       = var.region
+#  vpc-subnets  = module.vpc.subnets-public
+#  vpc-id       = module.vpc.vpc-id
+#  node-ids     = module.nodes.node-ids
+#  cluster-name = "maguetest.redisdemo.com"
+#  common-tags = {
+#    "Owner"   = "maguec"
+#    "Project" = "AWS Testing Environment"
+#  }
+#}

route53.tf

@@ -0,0 +1,55 @@
+resource "aws_route53_resolver_endpoint" "re-dns-in-endpoint" {
+  name      = "re-dns-in-endpoint"
+  direction = "INBOUND"
+
+  security_group_ids = [
+    module.nodes.re-security-group,
+  ]
+
+  ip_address {
+    subnet_id = module.vpc.subnets-public[0]
+  }
+
+  ip_address {
+    subnet_id = module.vpc.subnets-public[1]
+  }
+
+  tags  = { Name = "INBOUND-MAGUE-EP" }
+
+}
+
+resource "aws_route53_resolver_endpoint" "re-dns-out-endpoint" {
+  name      = "re-dns-out-endpoint"
+  direction = "OUTBOUND"
+
+  security_group_ids = [
+    module.nodes.re-security-group,
+  ]
+
+  ip_address {
+    subnet_id = module.vpc.subnets-public[0]
+  }
+
+  ip_address {
+    subnet_id = module.vpc.subnets-public[1]
+  }
+
+  tags  = { Name = "OUTBOUND-MAGUE-EP" }
+
+}
+
+resource "aws_route53_resolver_rule" "forwarder" {
+  domain_name          = "example.com"
+  name                 = "example"
+  rule_type            = "FORWARD"
+  resolver_endpoint_id = aws_route53_resolver_endpoint.re-dns-out-endpoint.id
+
+  target_ip {
+    ip = module.nodes.node-internal-ips[0]
+  }
+}
+
+resource "aws_route53_resolver_rule_association" "myrule" {
+  resolver_rule_id = aws_route53_resolver_rule.forwarder.id
+  vpc_id           = module.vpc.vpc-id
+}