Skip to content

feat(network): add conditional VPC endpoints creation #13

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
axel-ippon merged 3 commits into from
Jan 5, 2026
Merged

feat(network): add conditional VPC endpoints creation #13

axel-ippon merged 3 commits into from
Jan 5, 2026

Conversation

@axel-ippon
Copy link
Contributor

@axel-ippon axel-ippon commented Dec 22, 2025

Purpose of this PR

Introduces create_vpc_endpoints variable to make VPC endpoint resources optional, allowing users to choose between VPC endpoints and NAT gateway approaches for private subnet internet access.

All VPC endpoint-related resources now use count-based conditional creation, improving infrastructure flexibility and cost optimization options.

Reference issues or tasks

307

@axel-ippon
feat(network): add conditional VPC endpoints creation
7e9bd67 
Introduces create_vpc_endpoints variable to make VPC endpoint resources optional, allowing users to choose between VPC endpoints and NAT gateway approaches for private subnet internet access.

All VPC endpoint-related resources now use count-based conditional creation, improving infrastructure flexibility and cost optimization options.
@axel-ippon
refactor(network): switch from VPC endpoints to NAT gateway egress
4df6cd4 
Conditionally creates allow-all egress rules when VPC endpoints are disabled
and restricts prefix list rules to only when VPC endpoints are enabled.
This change supports the migration from VPC endpoints to NAT gateway
for internet access while maintaining security group rule consistency.
Donovan1905
Donovan1905 reviewed Dec 22, 2025
View reviewed changes
@axel-ippon
refactor(network): switch from VPC endpoints to NAT gateway by default
682fd58 
Changes network configuration to use NAT gateway as the default networking solution
instead of VPC endpoints. Removes manual NAT gateway variables and implements
automatic conditional logic where NAT gateway is enabled when VPC endpoints are
disabled.
@axel-ippon axel-ippon merged commit 3742a33 into main Jan 5, 2026
6 checks passed
@axel-ippon axel-ippon deleted the feature/307-nat-gateway-instead-of-vpc-endpoints branch January 6, 2026 12:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Donovan1905 Donovan1905 Donovan1905 approved these changes

@sroulon-ippon sroulon-ippon sroulon-ippon approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@axel-ippon @Donovan1905 @sroulon-ippon