|
|
@@ -251,6 +251,17 @@ resource "aws_security_group_rule" "splunk-api-in-moose" {
|
|
|
security_group_id = aws_security_group.cluster_master_security_group.id
|
|
|
}
|
|
|
|
|
|
+resource "aws_security_group_rule" "ssh-out" {
|
|
|
+ count = length(var.splunk_legacy_cidr) > 0 ? 1 : 0
|
|
|
+ description = "SSH to legacy splunk"
|
|
|
+ type = "egress"
|
|
|
+ from_port = 22
|
|
|
+ to_port = 22
|
|
|
+ protocol = "tcp"
|
|
|
+ cidr_blocks = var.splunk_legacy_cidr
|
|
|
+ security_group_id = aws_security_group.cluster_master_security_group.id
|
|
|
+}
|
|
|
+
|
|
|
resource "aws_security_group_rule" "splunk-api-out" {
|
|
|
description = "Splunk API Outbound to talk to indexers"
|
|
|
type = "egress"
|
Fred Damstra [afs macbook]