Skip to content
Snippets Groups Projects
Verified Commit 3c471d9d authored by Sheogorath's avatar Sheogorath :european_castle:
Browse files

calico: Add firewall rules for wireguard in terraform

parent 061b0c3a
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 7 additions and 0 deletions
terraform/firewall.tf
+ 7
0
View file @ 3c471d9d
...@@ -59,6 +59,13 @@ resource "hcloud_firewall" "k8s-node" { ...@@ -59,6 +59,13 @@ resource "hcloud_firewall" "k8s-node" {
port = "5473" port = "5473"
source_ips = [for s in concat(module.nodes.ipv4_addresses) : "${s}/32"] source_ips = [for s in concat(module.nodes.ipv4_addresses) : "${s}/32"]
} }
rule {
description = "Calico Wireguard"
direction = "in"
protocol = "udp"
port = "51820"
source_ips = [for s in concat(module.nodes.ipv4_addresses) : "${s}/32"]
}
# Host level services, including the node exporter on ports 9100-9101. # Host level services, including the node exporter on ports 9100-9101.
rule { rule {
description = "Host level services" description = "Host level services"
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment