3 年之前 · 97c08faa0c
--- a/GovCloud.md
+++ b/GovCloud.md
@@ -787,33 +787,32 @@ Run `terragrunt-local apply` to apply the changes to `xdr-terraform-live/common/
 
				 
			
 
				 ### Steps to allow LCP nodes through SG
			
 
				 
			
 
				-#### Customer Slice Splunk
			
 
				-Add the IPs to `account.hcl` and reapply `160-splunk-indexer-cluster` to add the customer IPs for the Splunk environment. 
			
 
				+#### Splunk IPs
			
 
				+
			
 
				+*** NOTICE: add the IPs to TWO locations in splunk_data_sources.tf. One for Moose and one for customer account. ***
			
 
				+
			
 
				+Look for afs-mdr-prod-c2-gov AND the customer account. Add the customer account if not found.
			
 
				 ```
			
 
				-CUSTOMERPREFIX=modelclient
			
 
				-cd xdr-terraform-live/prod/aws-us-gov/mdr-prod-$CUSTOMERPREFIX/
			
 
				-vim account.hcl # Look for splunk_data_sources
			
 
				-cd 160-splunk-indexer-cluster
			
 
				-terragrunt-local plan
			
 
				+cd xdr-terraform-modules/variables
			
 
				+vim splunk_data_sources.tf  
			
 
				 ```
			
 
				 
			
 
				 #### Add IPs for Salt, etc
			
 
				+
			
 
				 The IPs also need to be allowed for the salt-master, sensu, etc.     
			
 
				-`vim xdr-terraform-live/globals.hcl`    
			
 
				-`vim ../../../../globals.hcl`   
			
 
				+`vim xdr-terraform-modules/variables/customer_ips.tf`    
			
 
				+`vim customer_ips.tf`   
			
 
				 Edit the `c2_services_external_ips` map and be sure to add a description.   
			
 
				 
			
 
				-#### Add IPs for Moose Splunk
			
 
				-Allow LCP nodes through the Moose SG. Open PR and get merged to master. 
			
 
				+#### Git Merge
			
 
				+
			
 
				+Open PR and get merged to master. 
			
 
				 ```
			
 
				-cd xdr-terraform-live/prod/aws-us-gov/mdr-prod-c2
			
 
				-vim account.hcl # Look for splunk_data_sources
			
 
				-cd 160-splunk-indexer-cluster
			
 
				 terragrunt apply
			
 
				 ```
			
 
				 
			
 
				-#### Apply IPs for Salt, etc
			
 
				-Apply in `095-instance-sensu`, `080-instance-repo-server`, `071-instance-salt-master`, `275-nessus-security-managers` or `terragrunt-apply-all`.
			
 
				+#### Apply IPs for Salt, Splunk, etc
			
 
				+Apply in `prod/aws-us-gov/mdr-prod-c2/160-splunk-indexer-cluster` for Moose,`/mdr-prod-$CUSTOMERPREFIX/160-splunk-indexer-cluster` for customer splunk,  `095-instance-sensu`, `080-instance-repo-server`, `071-instance-salt-master`, `275-nessus-security-managers` or `terragrunt-apply-all`.
			
 
				 ```
			
 
				 cd ../../mdr-prod-c2/095-instance-sensu/
			
 
				 terragrunt apply