terraform-aws-ec2-cardano-node
Terraform module that provisions a Cardano node on an EC2 instance.
This project has not be audited for security by a third-party. Use at your own discretion.
| Benchmark |
Description |
 |
Infrastructure Security Compliance |
 |
Center for Internet Security, KUBERNETES Compliance |
 |
Center for Internet Security, AWS Compliance |
 |
Center for Internet Security, AZURE Compliance |
 |
Payment Card Industry Data Security Standards Compliance |
 |
National Institute of Standards and Technology Compliance |
 |
Information Security Management System, ISO/IEC 27001 Compliance |
 |
Service Organization Control 2 Compliance |
 |
Center for Internet Security, GCP Compliance |
 |
Health Insurance Portability and Accountability Compliance |
This example my be using a version that is out-of-date, check the registry page for the most recent usage.
module "ec2-cardano-node" {
source = "leb4r/ec2-cardano-node/aws"
version = "0.0.2"
# insert the 4 required variables here
}
| Name |
Description |
Type |
Default |
Required |
| associate_public_ip_address |
Whether to associate a public IPv4 address for the node |
bool |
false |
no |
| backup_cold_storage_after |
Specifies the number of days after creation that a recovery point is moved to cold storage |
number |
30 |
no |
| backup_delete_after |
Specifies the number of days after creation that a recovery point is deleted. Must be 90 days greater than cold_storage_after |
number |
180 |
no |
| backup_schedule |
A CRON expression specifying when AWS Backup initiates a backup job |
string |
"cron(0 12 * * ? *)" |
no |
| cardano_network |
The cardano network to connect to, (e.g. mainnet or testnet) |
string |
"mainnet" |
no |
| cardano_node_image |
Container image to use for the node |
string |
"docker.io/inputoutput/cardano-node" |
no |
| cardano_node_port |
The port to listen for communication on |
number |
3001 |
no |
| cardano_node_version |
Version of cardano-node to run |
string |
"master" |
no |
| cardano_topology_json |
JSON string to be used as topology config |
string |
"" |
no |
| create_kms_key |
Set to false to use separate KMS key |
bool |
true |
no |
| create_route53_record |
Set to true to create an A record in Route 53 for the EC2 instance |
bool |
false |
no |
| data_volume_size |
Size of data volume of the node |
number |
30 |
no |
| ebs_optimized |
Whether the EC2 instance is EBS optimized |
bool |
true |
no |
| enable_monitoring |
Whether to enable detailed monitoring for the node |
bool |
true |
no |
| instance_type |
The type of instance to use for the node |
string |
"t3.large" |
no |
| kms_key_arn |
The ARN of the KMS CMK to use for Encryption |
string |
"" |
no |
| prometheus_ingress_cidrs |
Comma-delimited list of CIDR blocks from which to allow Prometheus traffic on |
string |
"0.0.0.0/0" |
no |
| root_volume_size |
Size of root volume of the node |
number |
8 |
no |
| route53_record_name |
Name of the record to create |
string |
"" |
no |
| route53_zone_id |
ID of the Route 53 Zone to create record in |
string |
"" |
no |
| subnet_id |
ID off Subnet to deploy node in |
string |
n/a |
yes |
| tags |
Map of tags to apply to resources |
map(string) |
{} |
no |
| vpc_id |
ID of VPC to deploy node in |
string |
n/a |
yes |