Commit 0254aaf1 authored by Michal Wasilewski's avatar Michal Wasilewski

open ES egress port on web nodes

parent 159a0d15
......@@ -513,6 +513,11 @@ variable "egress_ports" {
default = []
}
variable "web_egress_ports" {
type = "list"
default = []
}
variable "deploy_egress_ports" {
type = "list"
default = []
......
......@@ -506,6 +506,11 @@ variable "egress_ports" {
default = ["80", "443"]
}
variable "web_egress_ports" {
type = "list"
default = ["80", "443", "9243"]
}
# TODO: This is a temporary variable as we're still rolling
# the egress rules to staging first and we don't want it in production yet.
# It should be removed in favor of appending port 22 to `egress_ports` in main.tf directly.
......
......@@ -101,7 +101,7 @@ module "web" {
chef_provision = "${var.chef_provision}"
chef_run_list = "\"role[${var.environment}-base-fe-web]\""
dns_zone_name = "${var.dns_zone_name}"
egress_ports = "${var.egress_ports}"
egress_ports = "${var.web_egress_ports}"
environment = "${var.environment}"
health_check = "tcp"
ip_cidr_range = "${var.subnetworks["web"]}"
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment