UNPKG

serverless-vpc-plugin

Version:

Serverless Plugin to generate a VPC

github.com/smoketurner/serverless-vpc-plugin

smoketurner/serverless-vpc-plugin

127 lines (107 loc) 2.97 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
const CIDR = require('cidr-split'); const { APP_SUBNET, PUBLIC_SUBNET, DB_SUBNET } = require('./constants'); /** * Split a /16 CIDR block into /20 CIDR blocks. * * @param {String} cidrBlock VPC CIDR block * @return {Array} */ function splitVpc(cidrBlock) { return CIDR.fromString(cidrBlock) .split() .map((cidr) => cidr.split()) .reduce((all, halves) => all.concat(...halves)) .map((cidr) => cidr.split()) .reduce((all, halves) => all.concat(...halves)) .map((cidr) => cidr.split()) .reduce((all, halves) => all.concat(...halves)); } /** * Splits the /16 VPC CIDR block into /20 subnets per AZ: * * Application subnet = /21 * Public subnet = /22 * Database subnet = /22 * * @param {String} cidrBlock VPC CIDR block * @param {Array} zones Array of availability zones * @return {Map} */ function splitSubnets(cidrBlock, zones = []) { const mapping = new Map(); if (!cidrBlock || !Array.isArray(zones) || zones.length < 1) { return mapping; } const azCidrBlocks = splitVpc(cidrBlock); // VPC subnet is a /16 const publicSubnets = []; const appSubnets = []; const dbSubnets = []; zones.forEach((zone, index) => { const azCidrBlock = azCidrBlocks[index]; // AZ subnet is a /20 const subnets = []; const azSubnets = CIDR.fromString(azCidrBlock) .split() .map((cidr) => cidr.toString()); subnets.push(azSubnets[0]); // Application subnet is a /21 const smallerSubnets = CIDR.fromString(azSubnets[1]) .split() .map((cidr) => cidr.toString()); subnets.push(...smallerSubnets); // Public and DB subnets are both /22 const parts = [ [APP_SUBNET, subnets[0]], [PUBLIC_SUBNET, subnets[1]], [DB_SUBNET, subnets[2]], ]; appSubnets.push(subnets[0]); publicSubnets.push(subnets[1]); dbSubnets.push(subnets[2]); mapping.set(zone, new Map(parts)); }); mapping.set(PUBLIC_SUBNET, publicSubnets); mapping.set(APP_SUBNET, appSubnets); mapping.set(DB_SUBNET, dbSubnets); return mapping; } /** * Create a subnet * * @param {String} name Name of subnet * @param {Number} position Subnet position * @param {String} zone Availability zone * @param {String} cidrBlock Subnet CIDR block * @return {Object} */ function buildSubnet(name, position, zone, cidrBlock) { const cfName = `${name}Subnet${position}`; const Tags = [ { Key: 'Name', Value: { 'Fn::Sub': `\${AWS::StackName}-${name.toLowerCase()}-${zone}`, }, }, ]; if (name === PUBLIC_SUBNET) { Tags.push({ Key: 'Network', Value: 'Public' }); } else { Tags.push({ Key: 'Network', Value: 'Private' }); } return { [cfName]: { Type: 'AWS::EC2::Subnet', Properties: { AvailabilityZone: zone, CidrBlock: cidrBlock, Tags, VpcId: { Ref: 'VPC', }, }, }, }; } module.exports = { splitVpc, splitSubnets, buildSubnet, };