|
|
@@ -225,6 +225,16 @@ resource "aws_security_group_rule" "splunk-api-in" {
|
|
|
security_group_id = aws_security_group.heavy_forwarder_security_group.id
|
|
|
}
|
|
|
|
|
|
+resource "aws_security_group_rule" "syslog-in" {
|
|
|
+ description = "Syslog-ng"
|
|
|
+ type = "ingress"
|
|
|
+ from_port = 1514
|
|
|
+ to_port = 1514
|
|
|
+ protocol = "tcp"
|
|
|
+ cidr_blocks = toset(concat(var.cidr_map["vpc-access"], var.cidr_map["vpc-private-services"], var.cidr_map["vpc-public"], var.cidr_map["vpc-splunk"]))
|
|
|
+ security_group_id = aws_security_group.heavy_forwarder_security_group.id
|
|
|
+}
|
|
|
+
|
|
|
# Egress
|
|
|
resource "aws_security_group_rule" "ssh-out" {
|
|
|
count = length(var.splunk_legacy_cidr) > 0 ? 1 : 0
|
Brad Poulton