Merge pull request #11 from HideyoshiNakazone/fixes-security-ports

Fixes Security Groups Ports
2023-10-09 02:26:18 -03:00
parent 05fa3fb0e5 4aee499d7a
commit 9be56f02ef
1 changed files with 8 additions and 6 deletions
--- a/instances/instance.tf
+++ b/instances/instance.tf
@@ -35,12 +35,13 @@ resource "aws_key_pair" "ssh_key_ci_cd" {

 locals {
    rules_in = [
-        { "port": 22, "protocol": "tcp" },
-        { "port": 80, "protocol": "tcp" },
-        { "port": 443, "protocol": "tcp" },
-        { "port": 6080, "protocol": "tcp" },
-        { "port": 6443, "protocol": "tcp" },
-        { "port": 10250, "protocol": "tcp" },
+        # { "port": 22, "protocol": "tcp" },
+        # { "port": 80, "protocol": "tcp" },
+        # { "port": 443, "protocol": "tcp" },
+        # { "port": 6080, "protocol": "tcp" },
+        # { "port": 6443, "protocol": "tcp" },
+        # { "port": 10250, "protocol": "tcp" },
+        { "port": 0, "protocol": "-1" },
    ]
 }

@@ -55,6 +56,7 @@ resource "aws_security_group" "project_pool" {
            to_port = ingress.value["port"]
            protocol = ingress.value["protocol"]
            cidr_blocks = ["0.0.0.0/0"]
+            ipv6_cidr_blocks = ["::/0"]
        }
    }