mirrors/external-secrets
1
0
Fork 0
mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00
Code Activity

fix: allow control plane ingress to webhook

Browse source
This commit is contained in:
Docs 2022-04-11 19:38:03 +02:00
parent db48b12d08
commit ac1c696fdb
1 changed files with 18 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

18
terraform/aws/modules/cluster/main.tf
View file

@ -112,6 +112,24 @@ resource "aws_security_group" "additional" {
] ]
} }
# allow control-plane to access webhook
ingress {
from_port = 9443
to_port = 9443
protocol = "tcp"
cidr_blocks = ["0.0.0.0/0"]
ipv6_cidr_blocks = ["::/0"]
}
ingress {
from_port = 443
to_port = 443
protocol = "tcp"
cidr_blocks = ["0.0.0.0/0"]
ipv6_cidr_blocks = ["::/0"]
}
# 443, 53, 123 is already allowed # 443, 53, 123 is already allowed
egress { egress {
from_port = 80 from_port = 80