diff options
author | Spike <avlampson+git@gmail.com> | 2019-05-09 11:11:39 +0100 |
---|---|---|
committer | Spike <avlampson+git@gmail.com> | 2019-05-09 11:11:39 +0100 |
commit | 3057ba38e7d47b79bd7872e12e70a9f46057a4bc (patch) | |
tree | 30cac368aa975667e025f8b7c2317c6dee5b55e9 /terraform/sg.tf | |
parent | c71b2c2c4231df0486322ad7113084d23fc2c35a (diff) | |
download | sensyne_demo-3057ba38e7d47b79bd7872e12e70a9f46057a4bc.zip sensyne_demo-3057ba38e7d47b79bd7872e12e70a9f46057a4bc.tar.gz sensyne_demo-3057ba38e7d47b79bd7872e12e70a9f46057a4bc.tar.bz2 |
Adding iam role, and security group
Diffstat (limited to 'terraform/sg.tf')
-rw-r--r-- | terraform/sg.tf | 27 |
1 files changed, 27 insertions, 0 deletions
diff --git a/terraform/sg.tf b/terraform/sg.tf new file mode 100644 index 0000000..6aff1d6 --- /dev/null +++ b/terraform/sg.tf @@ -0,0 +1,27 @@ +resource "aws_security_group" "sensyne_demo_cluster" { + name = "sensyne-demo-cluster-sg" + description = "Cluster communication with worker nodes" + vpc_id = "${aws_vpc.sensyne_demo_vpc.id}" + + egress { + from_port = 0 + to_port = 0 + protocol = "-1" + cidr_blocks = ["0.0.0.0/0"] + } + + tags = { + Name = "sensyne_demo_cluster_sg" + } +} + +resource "aws_security_group_rule" "sensyne_demo_cluster_remote_access" { + cidr_blocks = ["81.187.12.210/32"] + description = "Allow external comms with cluster" + from_port = 443 + protocol = "tcp" + security_group_id = "${aws_security_group.sensyne_demo_cluster.id}" + to_port = 443 + type = "ingress" +} + |