Added firewall rules to block external traffic on os_compat instances

2020-03-18 12:39:47 +02:00 · 2020-03-18 12:39:47 +02:00 · f349d1a43c
parent 6fe93cd81b
commit f349d1a43c
2 changed files with 2 additions and 1 deletions
--- a/envs/os_compatibility/README.md
+++ b/envs/os_compatibility/README.md
@ -60,6 +60,7 @@ A quick reference for usernames on different machines (if in doubt check officia
 - Everything else: ec2-user

 To manually verify the machine is compatible use commands to download and execute the monkey.
+Also, add your IP to `os_compat_instance` security group.

 Example commands:
 - Powershell:
--- a/envs/os_compatibility/terraform/infra.tf
+++ b/envs/os_compatibility/terraform/infra.tf
@ -76,7 +76,7 @@ resource "aws_security_group" "os_compat_instance" {
    from_port   = 0
    to_port     = 0
    protocol    = "-1"
-    cidr_blocks = ["0.0.0.0/0"]
+    cidr_blocks = ["10.0.0.0/24"]
  }

  egress {