It looks like you have a comprehensive plan for deploying Tanzu Cluster Environment (TCE) on VMware Cloud on AWS (VMC) using Terraform. Your plan includes the following phases:

1. Preparation: In this phase, you will prepare the environment by creating a VPN tunnel between your on-premises workstation and the VMC environment, and applying network policies to the compute gateway and management gateway in VMC.

2. OVA deployment: In this phase, you will upload the necessary OVA files into your vSphere environment, including the focal server cloud image and the Ubuntu TCE OVA image. You will also convert the TCE OVA file into a template using a powerCLI script.

3. Jumpbox deployment: In this phase, you will deploy a jumpbox VM using the focal server cloud image, and provision it with the necessary configuration files to further deploy TCE.

4. TCE deployment: In this phase, you will deploy the TCE clusters, including two two-noded clusters for the management control plane and shared services cluster. You will also install some of the Tanzu packages, such as cert-manager, contour, harbor, prometheus, and grafana.

Your plan also includes using a powerCLI script to create a VPN tunnel between your on-premises workstation and the VMC environment, and another script to deploy the TCE clusters and install the Tanzu packages. You have also mentioned that you are open to suggestions for improving the script.

Overall, it looks like you have a well-thought-out plan for deploying TCE on VMC using Terraform. Good luck with your project!