- name: Gather Route tables ec2_vpc_route_table_facts: region: "{{ region }}" filters: vpc-id: "{{ myvpcint.vpc.id }}" register: inttables tags: gatherroutes - name: Set Route out ec2_vpc_route_table: vpc_id: "{{ myvpcint.vpc.id }}" region: "{{ region }}" route_table_id: "{{ inttables.route_tables[0].id }}" tags: Name: "{{ netname }}-int" subnets: - "{{ mysubnetint.subnet.id }}" routes: - dest: 172.25.0.0/28 vpc_peering_connection_id: "{{ myvpcpeering.peering_id }}" register: outboundroutetable tags: routeout - name: Set Route in ec2_vpc_route_table: vpc_id: "{{ myvpcext.vpc.id }}" region: "{{ region }}" tags: name: "{{ netname }}-ext" subnets: - "{{ mysubnetext.subnet.id }}" routes: - dest: "{{ subnet }}" vpc_peering_connection_id: "{{ myvpcpeering.peering_id }}" - dest: 0.0.0.0/0 gateway_id: igw register: outboundroutetable tags: routein - name: internal Secgroup ec2_group: name: "{{ netname }}-int-secgroup" vpc_id: "{{ myvpcint.vpc.id }}" region: "{{ region }}" purge_rules: true description: Ansible-Generated internal rule rules: - proto: udp from_port: 12345 to_port: 12345 cidr_ip: 0.0.0.0/0 - proto: tcp from_port: 22 to_port: 22 cidr_ip: 0.0.0.0/0 - proto: tcp from_port: 443 to_port: 443 cidr_ip: 0.0.0.0/0 register: intsecg tags: internalsec - name: external Secgroup ec2_group: name: "{{ netname }}-ext-secgroup" vpc_id: "{{ myvpcext.vpc.id }}" region: "{{ region }}" purge_rules: true description: Ansible-Generated internal rule rules: - proto: udp from_port: 12345 to_port: 12345 cidr_ip: 0.0.0.0/0 - proto: tcp from_port: 22 to_port: 22 cidr_ip: 0.0.0.0/0 - proto: tcp from_port: 443 to_port: 443 cidr_ip: 0.0.0.0/0 - proto: tcp from_port: 3128 to_port: 3128 cidr_ip: "{{ subnet }}" register: extsecg tags: externalsec - name: Update Auto ec2_auto_assign_public_ip_for_subnet: subnet: "{{ mysubnetext.subnet.id }}" region: "{{ region }}" state: present