From f349d1a43c212a95df6e338c9d34ab41fe4ba4f3 Mon Sep 17 00:00:00 2001
From: VakarisZ <vakarisz@yahoo.com>
Date: Wed, 18 Mar 2020 12:39:47 +0200
Subject: [PATCH] Added firewall rules to block external traffic on os_compat
 instances

---
 envs/os_compatibility/README.md          | 1 +
 envs/os_compatibility/terraform/infra.tf | 2 +-
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/envs/os_compatibility/README.md b/envs/os_compatibility/README.md
index 11653e4a3..6b97b6612 100644
--- a/envs/os_compatibility/README.md
+++ b/envs/os_compatibility/README.md
@@ -60,6 +60,7 @@ A quick reference for usernames on different machines (if in doubt check officia
 - Everything else: ec2-user
 
 To manually verify the machine is compatible use commands to download and execute the monkey.
+Also, add your IP to `os_compat_instance` security group.
 
 Example commands:
  - Powershell:
diff --git a/envs/os_compatibility/terraform/infra.tf b/envs/os_compatibility/terraform/infra.tf
index c9296d888..f4b458694 100644
--- a/envs/os_compatibility/terraform/infra.tf
+++ b/envs/os_compatibility/terraform/infra.tf
@@ -76,7 +76,7 @@ resource "aws_security_group" "os_compat_instance" {
     from_port   = 0
     to_port     = 0
     protocol    = "-1"
-    cidr_blocks = ["0.0.0.0/0"]
+    cidr_blocks = ["10.0.0.0/24"]
   }
 
   egress {