Skip to content

cristian-rivera/skyhole

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
config
config
 
 
.gitignore
.gitignore
 
 
LICENSE.txt
LICENSE.txt
 
 
README.md
README.md
 
 
keys.tf
keys.tf
 
 
main.tf
main.tf
 
 
openvpn.tf
openvpn.tf
 
 
outputs.tf
outputs.tf
 
 
pi-hole.tf
pi-hole.tf
 
 
variables.tf
variables.tf
 
 
vpc.tf
vpc.tf
 
 

Repository files navigation

SkyHole

The goal of this project is to provide cloud resources consisting of OpenVPN and Pi-hole. When applying this configuration on your AWS account, within minutes, you will have a dedicated VPC running a hardened OpenVPN server, which directs its clients to use a newly created Pi-hole server for all DNS queries.

Both OpenVPN and Pi-hole servers inherit dedicated IP addresses along with pre-configured firewall rules. Also, if you would like to SSH into either server, the SSH keys are provided in this directory upon successful creation. These keys should not be checked in to source control and are ignored by default along with Terraform state files.

Getting Started

Configure AWS:

$ export AWS_ACCESS_KEY_ID=""
$ export AWS_SECRET_ACCESS_KEY=""

Run Terraform:

This project supports the Terraform versions starting to 0.12.

$ terraform init && terraform apply

Once Terraform has successfully applied the configuration, a client.ovpn file will appear in this directory. Import this file to any OpenVPN client. That's it.

Connecting via SSH

When connected using an OpenVPN client:

OpenVPN:

$ ssh -i "private_key.pem" [email protected]

Pi-hole:

$ ssh -i "private_key.pem" [email protected]

Accessing the Pi-hole Web Interface

When connected using an OpenVPN client, navigate to http://pi.hole.

Inputs

Name Description Type Default Required
domain_name_servers n/a list(string) 
[
  "1.1.1.1",
  "1.0.0.1"
]
 no
name n/a string "SkyHole" no
openvpn_ami n/a string "ami-04b9e92b5572fa0d1" no
openvpn_instance_type n/a string "t3.nano" no
openvpn_private_ip n/a string "10.0.1.0" no
openvpn_subnet_cidr_block n/a string "10.0.2.0/24" no
pi-hole_ami n/a string "ami-04b9e92b5572fa0d1" no
pi-hole_instance_type n/a string "t3.nano" no
pi-hole_private_ip n/a string "10.0.1.1" no
region n/a string "us-east-1" no
subnet_cidr_block n/a string "10.0.0.0/20" no
vpc_cidr_block n/a string "10.0.0.0/16" no

Outputs

Name Description
openvpn_private_ip n/a
openvpn_public_ip n/a
pi-hole_private_ip n/a
pi-hole_public_ip n/a

Contributing

Everyone is encouraged to help improve this project. Here are a few ways you can help:

About

No description or website provided.

Topics

dns aws openvpn terraform vpn pihole

Resources

Readme

License

MIT license
Activity

Stars

13 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages