Allows Access to Legacy Phantom via SSH

Allows access over port 22 to legacy phantom.

This rule should be removed following the migration.

To be tagged v1.23.5

base/phantom/securitygroup-server.tf

@@ -104,3 +104,13 @@ resource "aws_security_group_rule" "phantom_server_outbound_https" {
   protocol                 = "tcp"
   description              = "Outbound https anywhere (required for saleforce and others)"
 }
+
+resource "aws_security_group_rule" "phantom_server_outbound_ssh_to_legacy" {
+  security_group_id        = aws_security_group.phantom_server.id
+  type                     = "egress"
+  cidr_blocks               = var.environment == "prod" ? [ "10.80.101.221/32" ] : [ "10.96.101.186/32" ]
+  from_port                = 22
+  to_port                  = 22
+  protocol                 = "tcp"
+  description              = "Outbound ssh to legacy. Remove after migration."
+}