Skip to content

T
tf_mod_aws_bastion
Commit a31c1967 authored by A-Gordon's avatar A-Gordon
Browse files
Options

Added Security group rule to allow OpenVPN client traffic

parent 3ce8da81
Show whitespace changes
Inline Side-by-side
Showing with 13 additions and 0 deletions
main.tf
View file @ a31c1967
...@@ -39,6 +39,14 @@ resource "aws_security_group" "bastion" { ...@@ -39,6 +39,14 @@ resource "aws_security_group" "bastion" {
cidr_blocks = ["0.0.0.0/0"] cidr_blocks = ["0.0.0.0/0"]
} }
ingress {
from_port = 1194
to_port = 1194
protocol = "udp"
cidr_blocks = ["0.0.0.0/0"]
}
egress { egress {
from_port = 0 from_port = 0
to_port = 0 to_port = 0
...@@ -84,6 +92,11 @@ resource "aws_autoscaling_group" "bastion" { ...@@ -84,6 +92,11 @@ resource "aws_autoscaling_group" "bastion" {
value = "Bastion" value = "Bastion"
propagate_at_launch = true propagate_at_launch = true
} }
tag {
key = "service"
value = "bastion"
propagate_at_launch = true
}
lifecycle { create_before_destroy = true } lifecycle { create_before_destroy = true }
} }
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment