Client VPN Endpoint
OpenVPN-compatible client VPN backed by AWS.
Configuration
Section titled “Configuration”| Setting | Type | Required | Default |
|---|---|---|---|
| Description | Text | — | — |
| Client CIDR block | Text | Yes | — |
| Server cert ARN | Text | Yes | — |
| Authentication type Options: Mutual cert, AD, SAML federation | Choice | — | certificate-authentication |
| Client root cert chain ARN | Text | — | — |
| Directory ID (AD) | Text | — | — |
| SAML provider ARN | Text | — | — |
| Connection logging | Toggle | — | false |
| CloudWatch log group | Text | — | — |
| CloudWatch log stream | Text | — | — |
| Split tunnel | Toggle | — | false |
| Transport protocol Options: TCP, UDP | Choice | — | udp |
| VPN port | Number | — | 443 |
| Self-service portal Options: Enabled, Disabled | Choice | — | enabled |
| Session timeout (h) Options: 8, 10, 12, 24 | Choice | — | 24 |
| VPC ID | Text | — | — |
| Security group IDs | List | — | — |
| Tags | Key–value | — | — |
Connections
Section titled “Connections”| Socket | Direction | Accepts | Terraform arg |
|---|---|---|---|
| VPC | Input | aws.vpc | vpc_id |
| Associated subnets | Input | aws.subnet | — |
| Clients | Output | any | — |