{ "AWSTemplateFormatVersion": "2010-09-09", "Description": "Creates a VPC with public and private subnets for the Synapse stacks.", "Parameters": { "VpcSubnetPrefix": { "Description": "The VPC subnet prefix (i.e. 10.40)", "Type": "String" }, "VpnCidr": { "Description": "CIDR of the (sophos-utm) VPN", "Type": "String", "Default": "10.1.0.0/16" } }, "Resources": { "VPC": { "Type": "AWS::EC2::VPC", "Properties": { "EnableDnsSupport": "true", "EnableDnsHostnames": "true", "CidrBlock": "10.22.0.0/16", "Tags": [{ "Key": "Name", "Value": "synapse-prod-vpc" }] } }, "VpcPeeringConnection": { "Type": "AWS::EC2::VPCPeeringConnection", "Properties": { "PeerVpcId": "vpc-2135cc5a", "PeerOwnerId": "745159704268", "PeerRoleArn": "arn:aws:iam::745159704268:role/synapse-prod-vpc-auth-rol-VPCPeeringAuthorizerRole-1FX6IASIZNZAJ", "VpcId": {"Ref": "VPC"}, "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "synapse-prod-VPC-peering" } ] } }, "InternetGateway": { "Type": "AWS::EC2::InternetGateway", "Properties": {"Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "synapse-prod-internet-gateway" } ]} }, "InternetGatewayAttachment": { "Type": "AWS::EC2::VPCGatewayAttachment", "Properties": { "VpcId": {"Ref": "VPC"}, "InternetGatewayId": {"Ref": "InternetGateway"} } }, "VpnSecurityGroup": { "DependsOn": "VPC", "Type": "AWS::EC2::SecurityGroup", "Properties": { "GroupDescription": "Security Group for VPN", "VpcId": {"Ref": "VPC"}, "SecurityGroupIngress": [{ "CidrIp": {"Ref": "VpnCidr"}, "FromPort": "-1", "ToPort": "-1", "IpProtocol": "-1", "Description": "Allow all VPN traffic" }], "SecurityGroupEgress": [{ "CidrIp": "0.0.0.0/0", "FromPort": "-1", "ToPort": "-1", "IpProtocol": "-1" }] } }, "NetworkAcl": { "Type": "AWS::EC2::NetworkAcl", "Properties": { "VpcId": {"Ref": "VPC"}, "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "NetworkAcl" } ] } }, "InboundNetworkAclEntry": { "Type": "AWS::EC2::NetworkAclEntry", "Properties": { "NetworkAclId": {"Ref": "NetworkAcl"}, "RuleNumber": "100", "Protocol": "-1", "RuleAction": "allow", "Egress": "false", "CidrBlock": "0.0.0.0/0", "PortRange": { "From": "0", "To": "65535" } } }, "OutboundPublicNetworkAclEntry": { "Type": "AWS::EC2::NetworkAclEntry", "Properties": { "NetworkAclId": {"Ref": "NetworkAcl"}, "RuleNumber": "100", "Protocol": "-1", "RuleAction": "allow", "Egress": "true", "CidrBlock": "0.0.0.0/0", "PortRange": { "From": "0", "To": "65535" } } }, "PublicUsEast1a": { "Type": "AWS::EC2::Subnet", "Properties": { "MapPublicIpOnLaunch": true, "VpcId": {"Ref": "VPC"}, "CidrBlock": "10.22.0.0/20", "AvailabilityZone": "us-east-1a", "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "PublicUsEast1a" } ] } }, "PublicUsEast1aRouteTable": { "Type": "AWS::EC2::RouteTable", "Properties": { "VpcId": {"Ref": "VPC"}, "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "PublicUsEast1a" } ] } }, "PublicUsEast1aRouteVPN": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "PublicUsEast1aRouteTable"}, "DestinationCidrBlock": "10.1.0.0/16", "VpcPeeringConnectionId": {"Ref": "VpcPeeringConnection"} } }, "PublicUsEast1aPublicRoute": { "Type": "AWS::EC2::Route", "DependsOn": "InternetGatewayAttachment", "Properties": { "RouteTableId": {"Ref": "PublicUsEast1aRouteTable"}, "DestinationCidrBlock": "0.0.0.0/0", "GatewayId": {"Ref": "InternetGateway"} } }, "PublicUsEast1aRouteTableAssociation": { "Type": "AWS::EC2::SubnetRouteTableAssociation", "Properties": { "SubnetId": {"Ref": "PublicUsEast1a"}, "RouteTableId": {"Ref": "PublicUsEast1aRouteTable"} } }, "PublicUsEast1aNetworkAclAssociation": { "Type": "AWS::EC2::SubnetNetworkAclAssociation", "Properties": { "SubnetId": {"Ref": "PublicUsEast1a"}, "NetworkAclId": {"Ref": "NetworkAcl"} } }, "PublicUsEast1aNATGatwayEIP": { "Type": "AWS::EC2::EIP", "Properties": {"Domain": "vpc"} }, "PublicUsEast1aNATGatway": { "DependsOn": "InternetGatewayAttachment", "Type": "AWS::EC2::NatGateway", "Properties": { "AllocationId": {"Fn::GetAtt": [ "PublicUsEast1aNATGatwayEIP", "AllocationId" ]}, "SubnetId": {"Ref": "PublicUsEast1a"}, "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "PublicUsEast1a" } ] } }, "PublicUsEast1b": { "Type": "AWS::EC2::Subnet", "Properties": { "MapPublicIpOnLaunch": true, "VpcId": {"Ref": "VPC"}, "CidrBlock": "10.22.16.0/20", "AvailabilityZone": "us-east-1b", "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "PublicUsEast1b" } ] } }, "PublicUsEast1bRouteTable": { "Type": "AWS::EC2::RouteTable", "Properties": { "VpcId": {"Ref": "VPC"}, "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "PublicUsEast1b" } ] } }, "PublicUsEast1bRouteVPN": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "PublicUsEast1bRouteTable"}, "DestinationCidrBlock": "10.1.0.0/16", "VpcPeeringConnectionId": {"Ref": "VpcPeeringConnection"} } }, "PublicUsEast1bPublicRoute": { "Type": "AWS::EC2::Route", "DependsOn": "InternetGatewayAttachment", "Properties": { "RouteTableId": {"Ref": "PublicUsEast1bRouteTable"}, "DestinationCidrBlock": "0.0.0.0/0", "GatewayId": {"Ref": "InternetGateway"} } }, "PublicUsEast1bRouteTableAssociation": { "Type": "AWS::EC2::SubnetRouteTableAssociation", "Properties": { "SubnetId": {"Ref": "PublicUsEast1b"}, "RouteTableId": {"Ref": "PublicUsEast1bRouteTable"} } }, "PublicUsEast1bNetworkAclAssociation": { "Type": "AWS::EC2::SubnetNetworkAclAssociation", "Properties": { "SubnetId": {"Ref": "PublicUsEast1b"}, "NetworkAclId": {"Ref": "NetworkAcl"} } }, "PublicUsEast1bNATGatwayEIP": { "Type": "AWS::EC2::EIP", "Properties": {"Domain": "vpc"} }, "PublicUsEast1bNATGatway": { "DependsOn": "InternetGatewayAttachment", "Type": "AWS::EC2::NatGateway", "Properties": { "AllocationId": {"Fn::GetAtt": [ "PublicUsEast1bNATGatwayEIP", "AllocationId" ]}, "SubnetId": {"Ref": "PublicUsEast1b"}, "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "PublicUsEast1b" } ] } }, "RedPrivateUsEast1a": { "Type": "AWS::EC2::Subnet", "Properties": { "MapPublicIpOnLaunch": false, "VpcId": {"Ref": "VPC"}, "CidrBlock": "10.22.32.0/21", "AvailabilityZone": "us-east-1a", "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "RedPrivateUsEast1a" } ] } }, "RedPrivateUsEast1aRouteTable": { "Type": "AWS::EC2::RouteTable", "Properties": { "VpcId": {"Ref": "VPC"}, "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "RedPrivateUsEast1a" } ] } }, "RedPrivateUsEast1aRouteVPN": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "RedPrivateUsEast1aRouteTable"}, "DestinationCidrBlock": "10.1.0.0/16", "VpcPeeringConnectionId": {"Ref": "VpcPeeringConnection"} } }, "RedPrivateUsEast1aPrivateRoute": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "RedPrivateUsEast1aRouteTable"}, "DestinationCidrBlock": "0.0.0.0/0", "NatGatewayId": {"Ref": "PublicUsEast1aNATGatway"} } }, "RedPrivateUsEast1aRouteTableAssociation": { "Type": "AWS::EC2::SubnetRouteTableAssociation", "Properties": { "SubnetId": {"Ref": "RedPrivateUsEast1a"}, "RouteTableId": {"Ref": "RedPrivateUsEast1aRouteTable"} } }, "RedPrivateUsEast1aNetworkAclAssociation": { "Type": "AWS::EC2::SubnetNetworkAclAssociation", "Properties": { "SubnetId": {"Ref": "RedPrivateUsEast1a"}, "NetworkAclId": {"Ref": "NetworkAcl"} } }, "RedPrivateUsEast1b": { "Type": "AWS::EC2::Subnet", "Properties": { "MapPublicIpOnLaunch": false, "VpcId": {"Ref": "VPC"}, "CidrBlock": "10.22.40.0/21", "AvailabilityZone": "us-east-1b", "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "RedPrivateUsEast1b" } ] } }, "RedPrivateUsEast1bRouteTable": { "Type": "AWS::EC2::RouteTable", "Properties": { "VpcId": {"Ref": "VPC"}, "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "RedPrivateUsEast1b" } ] } }, "RedPrivateUsEast1bRouteVPN": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "RedPrivateUsEast1bRouteTable"}, "DestinationCidrBlock": "10.1.0.0/16", "VpcPeeringConnectionId": {"Ref": "VpcPeeringConnection"} } }, "RedPrivateUsEast1bPrivateRoute": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "RedPrivateUsEast1bRouteTable"}, "DestinationCidrBlock": "0.0.0.0/0", "NatGatewayId": {"Ref": "PublicUsEast1bNATGatway"} } }, "RedPrivateUsEast1bRouteTableAssociation": { "Type": "AWS::EC2::SubnetRouteTableAssociation", "Properties": { "SubnetId": {"Ref": "RedPrivateUsEast1b"}, "RouteTableId": {"Ref": "RedPrivateUsEast1bRouteTable"} } }, "RedPrivateUsEast1bNetworkAclAssociation": { "Type": "AWS::EC2::SubnetNetworkAclAssociation", "Properties": { "SubnetId": {"Ref": "RedPrivateUsEast1b"}, "NetworkAclId": {"Ref": "NetworkAcl"} } }, "BluePrivateUsEast1a": { "Type": "AWS::EC2::Subnet", "Properties": { "MapPublicIpOnLaunch": false, "VpcId": {"Ref": "VPC"}, "CidrBlock": "10.22.48.0/21", "AvailabilityZone": "us-east-1a", "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "BluePrivateUsEast1a" } ] } }, "BluePrivateUsEast1aRouteTable": { "Type": "AWS::EC2::RouteTable", "Properties": { "VpcId": {"Ref": "VPC"}, "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "BluePrivateUsEast1a" } ] } }, "BluePrivateUsEast1aRouteVPN": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "BluePrivateUsEast1aRouteTable"}, "DestinationCidrBlock": "10.1.0.0/16", "VpcPeeringConnectionId": {"Ref": "VpcPeeringConnection"} } }, "BluePrivateUsEast1aPrivateRoute": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "BluePrivateUsEast1aRouteTable"}, "DestinationCidrBlock": "0.0.0.0/0", "NatGatewayId": {"Ref": "PublicUsEast1aNATGatway"} } }, "BluePrivateUsEast1aRouteTableAssociation": { "Type": "AWS::EC2::SubnetRouteTableAssociation", "Properties": { "SubnetId": {"Ref": "BluePrivateUsEast1a"}, "RouteTableId": {"Ref": "BluePrivateUsEast1aRouteTable"} } }, "BluePrivateUsEast1aNetworkAclAssociation": { "Type": "AWS::EC2::SubnetNetworkAclAssociation", "Properties": { "SubnetId": {"Ref": "BluePrivateUsEast1a"}, "NetworkAclId": {"Ref": "NetworkAcl"} } }, "BluePrivateUsEast1b": { "Type": "AWS::EC2::Subnet", "Properties": { "MapPublicIpOnLaunch": false, "VpcId": {"Ref": "VPC"}, "CidrBlock": "10.22.56.0/21", "AvailabilityZone": "us-east-1b", "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "BluePrivateUsEast1b" } ] } }, "BluePrivateUsEast1bRouteTable": { "Type": "AWS::EC2::RouteTable", "Properties": { "VpcId": {"Ref": "VPC"}, "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "BluePrivateUsEast1b" } ] } }, "BluePrivateUsEast1bRouteVPN": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "BluePrivateUsEast1bRouteTable"}, "DestinationCidrBlock": "10.1.0.0/16", "VpcPeeringConnectionId": {"Ref": "VpcPeeringConnection"} } }, "BluePrivateUsEast1bPrivateRoute": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "BluePrivateUsEast1bRouteTable"}, "DestinationCidrBlock": "0.0.0.0/0", "NatGatewayId": {"Ref": "PublicUsEast1bNATGatway"} } }, "BluePrivateUsEast1bRouteTableAssociation": { "Type": "AWS::EC2::SubnetRouteTableAssociation", "Properties": { "SubnetId": {"Ref": "BluePrivateUsEast1b"}, "RouteTableId": {"Ref": "BluePrivateUsEast1bRouteTable"} } }, "BluePrivateUsEast1bNetworkAclAssociation": { "Type": "AWS::EC2::SubnetNetworkAclAssociation", "Properties": { "SubnetId": {"Ref": "BluePrivateUsEast1b"}, "NetworkAclId": {"Ref": "NetworkAcl"} } }, "GreenPrivateUsEast1a": { "Type": "AWS::EC2::Subnet", "Properties": { "MapPublicIpOnLaunch": false, "VpcId": {"Ref": "VPC"}, "CidrBlock": "10.22.64.0/21", "AvailabilityZone": "us-east-1a", "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "GreenPrivateUsEast1a" } ] } }, "GreenPrivateUsEast1aRouteTable": { "Type": "AWS::EC2::RouteTable", "Properties": { "VpcId": {"Ref": "VPC"}, "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "GreenPrivateUsEast1a" } ] } }, "GreenPrivateUsEast1aRouteVPN": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "GreenPrivateUsEast1aRouteTable"}, "DestinationCidrBlock": "10.1.0.0/16", "VpcPeeringConnectionId": {"Ref": "VpcPeeringConnection"} } }, "GreenPrivateUsEast1aPrivateRoute": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "GreenPrivateUsEast1aRouteTable"}, "DestinationCidrBlock": "0.0.0.0/0", "NatGatewayId": {"Ref": "PublicUsEast1aNATGatway"} } }, "GreenPrivateUsEast1aRouteTableAssociation": { "Type": "AWS::EC2::SubnetRouteTableAssociation", "Properties": { "SubnetId": {"Ref": "GreenPrivateUsEast1a"}, "RouteTableId": {"Ref": "GreenPrivateUsEast1aRouteTable"} } }, "GreenPrivateUsEast1aNetworkAclAssociation": { "Type": "AWS::EC2::SubnetNetworkAclAssociation", "Properties": { "SubnetId": {"Ref": "GreenPrivateUsEast1a"}, "NetworkAclId": {"Ref": "NetworkAcl"} } }, "GreenPrivateUsEast1b": { "Type": "AWS::EC2::Subnet", "Properties": { "MapPublicIpOnLaunch": false, "VpcId": {"Ref": "VPC"}, "CidrBlock": "10.22.72.0/21", "AvailabilityZone": "us-east-1b", "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "GreenPrivateUsEast1b" } ] } }, "GreenPrivateUsEast1bRouteTable": { "Type": "AWS::EC2::RouteTable", "Properties": { "VpcId": {"Ref": "VPC"}, "Tags": [ { "Key": "Application", "Value": {"Ref": "AWS::StackName"} }, { "Key": "Name", "Value": "GreenPrivateUsEast1b" } ] } }, "GreenPrivateUsEast1bRouteVPN": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "GreenPrivateUsEast1bRouteTable"}, "DestinationCidrBlock": "10.1.0.0/16", "VpcPeeringConnectionId": {"Ref": "VpcPeeringConnection"} } }, "GreenPrivateUsEast1bPrivateRoute": { "Type": "AWS::EC2::Route", "Properties": { "RouteTableId": {"Ref": "GreenPrivateUsEast1bRouteTable"}, "DestinationCidrBlock": "0.0.0.0/0", "NatGatewayId": {"Ref": "PublicUsEast1bNATGatway"} } }, "GreenPrivateUsEast1bRouteTableAssociation": { "Type": "AWS::EC2::SubnetRouteTableAssociation", "Properties": { "SubnetId": {"Ref": "GreenPrivateUsEast1b"}, "RouteTableId": {"Ref": "GreenPrivateUsEast1bRouteTable"} } }, "GreenPrivateUsEast1bNetworkAclAssociation": { "Type": "AWS::EC2::SubnetNetworkAclAssociation", "Properties": { "SubnetId": {"Ref": "GreenPrivateUsEast1b"}, "NetworkAclId": {"Ref": "NetworkAcl"} } } }, "Outputs": { "VPCId": { "Description": "VPCId of the newly created VPC", "Value": {"Ref": "VPC"}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "VPCId" ] ]}} }, "VpcCidr": { "Description": "VPC CIDR of the newly created VPC", "Value": {"Fn::GetAtt": [ "VPC", "CidrBlock" ]}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "VpcCidr" ] ]}} }, "VpnCidr": { "Description": "VPN CIDR used to create this VPC", "Value": {"Ref": "VpnCidr"}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "VpnCidr" ] ]}} }, "VpcDefaultSecurityGroup": { "Description": "VPC DefaultSecurityGroup Id ", "Value": {"Fn::GetAtt": [ "VPC", "DefaultSecurityGroup" ]}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "VpcDefaultSecurityGroup" ] ]}} }, "VpnSecurityGroup": { "Description": "VPN Security Group Id ", "Value": {"Ref": "VpnSecurityGroup"}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "VpnSecurityGroup" ] ]}} }, "AvailabilityZones": { "Description": "The availability zones used for this vpc", "Value": "us-east-1a,us-east-1b", "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "AvailabilityZones" ] ]}} }, "RedSubnetGroupCIDR": { "Description": "Red subnet group CIDR", "Value": "10.22.32.0/20", "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "Red-CIDR" ] ]}} }, "RedPrivateUsEast1aId": { "Description": "Export subnet's ID", "Value": {"Ref": "RedPrivateUsEast1a"}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "RedPrivateUsEast1a-ID" ] ]}} }, "RedPrivateUsEast1aCidr": { "Description": "Export subnet's CIDR", "Value": "10.22.32.0/21", "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "RedPrivateUsEast1a-CIDR" ] ]}} }, "RedPrivateUsEast1bId": { "Description": "Export subnet's ID", "Value": {"Ref": "RedPrivateUsEast1b"}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "RedPrivateUsEast1b-ID" ] ]}} }, "RedPrivateUsEast1bCidr": { "Description": "Export subnet's CIDR", "Value": "10.22.40.0/21", "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "RedPrivateUsEast1b-CIDR" ] ]}} }, "BlueSubnetGroupCIDR": { "Description": "Blue subnet group CIDR", "Value": "10.22.48.0/20", "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "Blue-CIDR" ] ]}} }, "BluePrivateUsEast1aId": { "Description": "Export subnet's ID", "Value": {"Ref": "BluePrivateUsEast1a"}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "BluePrivateUsEast1a-ID" ] ]}} }, "BluePrivateUsEast1aCidr": { "Description": "Export subnet's CIDR", "Value": "10.22.48.0/21", "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "BluePrivateUsEast1a-CIDR" ] ]}} }, "BluePrivateUsEast1bId": { "Description": "Export subnet's ID", "Value": {"Ref": "BluePrivateUsEast1b"}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "BluePrivateUsEast1b-ID" ] ]}} }, "BluePrivateUsEast1bCidr": { "Description": "Export subnet's CIDR", "Value": "10.22.56.0/21", "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "BluePrivateUsEast1b-CIDR" ] ]}} }, "GreenSubnetGroupCIDR": { "Description": "Green subnet group CIDR", "Value": "10.22.64.0/20", "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "Green-CIDR" ] ]}} }, "GreenPrivateUsEast1aId": { "Description": "Export subnet's ID", "Value": {"Ref": "GreenPrivateUsEast1a"}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "GreenPrivateUsEast1a-ID" ] ]}} }, "GreenPrivateUsEast1aCidr": { "Description": "Export subnet's CIDR", "Value": "10.22.64.0/21", "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "GreenPrivateUsEast1a-CIDR" ] ]}} }, "GreenPrivateUsEast1bId": { "Description": "Export subnet's ID", "Value": {"Ref": "GreenPrivateUsEast1b"}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "GreenPrivateUsEast1b-ID" ] ]}} }, "GreenPrivateUsEast1bCidr": { "Description": "Export subnet's CIDR", "Value": "10.22.72.0/21", "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "GreenPrivateUsEast1b-CIDR" ] ]}} }, "PublicSubnets": { "Description": "Comma separated list of all public sub-nets", "Value": {"Fn::Join": [ ", ", [ {"Ref": "PublicUsEast1a"}, {"Ref": "PublicUsEast1b"} ] ]}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "Public-Subnets" ] ]}} }, "RedPrivateSubnets": { "Description": "Comma separated list of all private sub-nets that belong to the Red", "Value": {"Fn::Join": [ ", ", [ {"Ref": "RedPrivateUsEast1a"}, {"Ref": "RedPrivateUsEast1b"} ] ]}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "Red-Private-Subnets" ] ]}} }, "BluePrivateSubnets": { "Description": "Comma separated list of all private sub-nets that belong to the Blue", "Value": {"Fn::Join": [ ", ", [ {"Ref": "BluePrivateUsEast1a"}, {"Ref": "BluePrivateUsEast1b"} ] ]}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "Blue-Private-Subnets" ] ]}} }, "GreenPrivateSubnets": { "Description": "Comma separated list of all private sub-nets that belong to the Green", "Value": {"Fn::Join": [ ", ", [ {"Ref": "GreenPrivateUsEast1a"}, {"Ref": "GreenPrivateUsEast1b"} ] ]}, "Export": {"Name": {"Fn::Join": [ "-", [ {"Ref": "AWS::Region"}, {"Ref": "AWS::StackName"}, "Green-Private-Subnets" ] ]}} } } }