Home Explore Help
Register Sign In
AFS
/
xdr-terraform-modules
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Allows Access to Legacy Phantom via SSH

Allows access over port 22 to legacy phantom.

This rule should be removed following the migration.

To be tagged v1.23.5
Fred Damstra 4 years ago
parent
326fdc35df
commit
babf334217
1 changed files with 10 additions and 0 deletions
Split View Show Diff Stats
  1. 10 0
      base/phantom/securitygroup-server.tf

+ 10 - 0
base/phantom/securitygroup-server.tf
View File 

@@ -104,3 +104,13 @@ resource "aws_security_group_rule" "phantom_server_outbound_https" {
 
   protocol                 = "tcp"
 
   description              = "Outbound https anywhere (required for saleforce and others)"
 
 }
 
+
 
+resource "aws_security_group_rule" "phantom_server_outbound_ssh_to_legacy" {
 
+  security_group_id        = aws_security_group.phantom_server.id
 
+  type                     = "egress"
 
+  cidr_blocks               = var.environment == "prod" ? [ "10.80.101.221/32" ] : [ "10.96.101.186/32" ]
 
+  from_port                = 22
 
+  to_port                  = 22
 
+  protocol                 = "tcp"
 
+  description              = "Outbound ssh to legacy. Remove after migration."
 
+}