Skip to content

Commit

Permalink
Try to fix security groups rules for fargate nodes
Browse files Browse the repository at this point in the history
  • Loading branch information
Valentin Khramtsov committed Aug 25, 2024
1 parent e0bf35a commit 727917a
Showing 1 changed file with 22 additions and 0 deletions.
22 changes: 22 additions & 0 deletions terraform/modules/aws-eks/main.tf
Original file line number Diff line number Diff line change
Expand Up @@ -42,6 +42,28 @@ module "eks" {

node_security_group_tags = { "karpenter.sh/discovery" = var.name }

node_security_group_additional_rules = {
ingress_allow_all_traffic_inside = {
description = "Allow all traffic inside security group"
protocol = "all"
from_port = 0
to_port = 0
type = "ingress"
self = true
}

}
cluster_security_group_additional_rules = {
ingress_node_to_cluster = {
description = "Node to cluster"
protocol = "all"
from_port = 0
to_port = 0
type = "ingress"
source_node_security_group = true
}
}

self_managed_node_group_defaults = {
ami_type = "AL2023_ARM_64_STANDARD"
block_device_mappings = {
Expand Down

0 comments on commit 727917a

Please sign in to comment.