diff options
| author |   Alec Warner <antarus@gentoo.org> | 2018-12-27 12:49:44 -0500 |
|---|---|---|
| committer | Alec Warner <antarus@gentoo.org> | 2018-12-27 12:49:44 -0500 |
| commit | cfbf76a18532bd7929f1e88ec68c5ad9c2e674c1 (patch) | |
| tree | ff8ec7619c04d739480e74ae3d0439eaa2bd05fa | |
| parent | gce-container... not gcs. (diff) | |
| download | antarus-cfbf76a18532bd7929f1e88ec68c5ad9c2e674c1.tar.gz antarus-cfbf76a18532bd7929f1e88ec68c5ad9c2e674c1.tar.bz2 antarus-cfbf76a18532bd7929f1e88ec68c5ad9c2e674c1.zip | |
Add firewall rule.
Tag our rsync nodes and add a firewall rule to allow tcp/873.
Signed-off-by: Alec Warner <antarus@gentoo.org>
| -rw-r--r-- | src/infra.gentoo.org/rsync.tf | 11 |
1 files changed, 10 insertions, 1 deletions
diff --git a/src/infra.gentoo.org/rsync.tf b/src/infra.gentoo.org/rsync.tf index 85eaec9..2e278ac 100644 --- a/src/infra.gentoo.org/rsync.tf +++ b/src/infra.gentoo.org/rsync.tf @@ -2,7 +2,7 @@ resource "google_compute_instance_template" "rsync-node-template" { name = "rsync-node-template" description = "This template is used to create rsync node instances." - tags = [] + tags = ["rsync"] labels = { container-vm = "cos-stable-71-11151-60-0" @@ -70,3 +70,12 @@ resource "google_compute_region_autoscaler" "rsync-autoscaler" { } } } + +resource "google_compute_firewall" "rsync-in" { + name = "rsync-in" + allow { + protocol = "tcp" + ports = ["873"] + } + target_tags = ["rsync"] +} |