-
-
Notifications
You must be signed in to change notification settings - Fork 0
/
locals.tf
60 lines (51 loc) · 1.49 KB
/
locals.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
# Local Values
# https://www.terraform.io/docs/configuration/locals.html
locals {
rules = [
{
# This rule is to support the Google Cloud Load Balancer health check probes.
# https://cloud.google.com/load-balancing/docs/health-checks#firewall_rules
allow = [
{
ports = []
protocol = "tcp"
}
]
deny = []
description = "Allow Google cloud probers"
direction = "INGRESS"
log_config_enabled = true
log_config_metadata = "INCLUDE_ALL_METADATA"
name = "allow-google-cloud-probers"
priority = null
ranges = [
"130.211.0.0/22",
"35.191.0.0/16",
"209.85.152.0/22",
"209.85.204.0/22"
]
source_tags = null
target_tags = null
},
{
# This rule is to support remote SSH access via Google Cloud IAP.
# https://cloud.google.com/iap/docs/using-tcp-forwarding
allow = [
{
ports = ["22"]
protocol = "tcp"
}
]
deny = []
description = "Allow SSH ingress from IAP"
direction = "INGRESS"
name = "allow-ssh-ingress-from-iap"
log_config_enabled = true
log_config_metadata = "INCLUDE_ALL_METADATA"
priority = null
ranges = ["35.235.240.0/20"]
source_tags = null
target_tags = null
}
]
}