Etusivu Tutki Apua
Rekisteröidy Kirjaudu sisään
AFS
/
xdr-terraform-modules
2
0
Haarauta 0
Tiedostot Esitykset 0 Vetopyynnöt 0 Wiki
Puu: 42219a4ea9
Haarat Tunnisteet
xdr-terraform-m...
/
base
/
threatquotient
/
security-groups.tf

security-groups.tf 1.2 KB
Historia Raaka

12345678910111213141516171819202122232425262728293031323334 
  1. # Rather than pass in the aws security group, we just look it up. This will
    2. 

  2. # probably be useful other places, as well.
    3. 

  3. #----------------------------------------------------------------------------
    4. 

  4. # TQ Security Group
    5. 

  5. #----------------------------------------------------------------------------
    6. 

  6. data "aws_security_group" "typical-host" {
    7. 

  7.   name   = "typical-host"
    8. 

  8.   vpc_id = var.vpc_id
    9. 

  9. }
    10. 

  10. 

  11. data "aws_security_group" "aws_endpoints" {
    12. 

  12.   name   = "aws_endpoints"
    13. 

  13.   vpc_id = var.vpc_id
    14. 

  14. }
    15. 

  15. 

  16. resource "aws_security_group" "instance" {
    17. 

  17.   name        = local.server_name_stem
    18. 

  18.   description = "${local.server_name_stem} Instances"
    19. 

  19.   vpc_id      = var.vpc_id
    20. 

  20.   tags        = merge(local.standard_tags, var.tags)
    21. 

  21. }
    22. 

  22. 

  23. #----------------------------------------------------------------------------
    24. 

  24. # INGRESS
    25. 

  25. #----------------------------------------------------------------------------
    26. 

  26. resource "aws_security_group_rule" "instance-https-in" {
    27. 

  27.   type              = "ingress"
    28. 

  28.   description       = "Access TQ/TQ API from internal IPs"
    29. 

  29.   from_port         = "443"
    30. 

  30.   to_port           = "443"
    31. 

  31.   protocol          = "tcp"
    32. 

  32.   cidr_blocks       = local.supernets
    33. 

  33.   security_group_id = aws_security_group.instance.id
    34. 

  34. }
    35.