roles:
- name: eks
- name: ec2
policiyAttachments:
- name: cluster
  arn: AmazonEKSClusterPolicy
  role: eks
- name: service
  arn: AmazonEKSServicePolicy
  role: eks
- name: vpccontroller
  arn: AmazonEKSVPCResourceController
  role: eks
- name: worker
  arn: AmazonEKSWorkerNodePolicy
  role: ec2
- name: cni
  arn: AmazonEKS_CNI_Policy
  role: ec2
- name: registry
  arn: AmazonEC2ContainerRegistryReadOnly
  role: ec2
zones:
- zone: a
  cidr: "10.10.0.0/24"
  access: public
- zone: b
  cidr: "10.10.1.0/24"
  access: public
- zone: a
  cidr: "10.10.2.0/24"
  access: private
- zone: b
  cidr: "10.10.3.0/24"
  access: private
routetables:
- name: public
- name: private
# sshkey: key_pair_name