matrix-ops/IaC-test/securitygroup-k8s-external.tf

# Security groups for external acccess k8s control nodes in dco.
resource "openstack_networking_secgroup_v2" "k8s-external-control-dco" {
  name        = "k8s-external"
  description = "External ingress traffic to k8s control nodes."
  provider=openstack.dco
}

# Security groups for external acccess k8s control nodes in sto3.
resource "openstack_networking_secgroup_v2" "k8s-external-control-sto3" {
  name        = "k8s-external"
  description = "External ingress traffic to k8s control nodes."
  provider=openstack.sto3
}
# Security groups for external acccess k8s control nodes in sto4.
resource "openstack_networking_secgroup_v2" "k8s-external-control-sto4" {
  name        = "k8s-external"
  description = "External ingress traffic to k8s control nodes."
  provider=openstack.sto4
}

# Rules dco
resource "openstack_networking_secgroup_rule_v2" "k8s_external_ingress_control_rule_v4_dco" {
  direction         = "ingress"
  ethertype         = "IPv4"
  protocol          = "tcp"
  port_range_min    = "16443"
  port_range_max    = "16443"
  provider          = openstack.dco
  remote_ip_prefix  = "89.47.191.43/32"
  security_group_id = openstack_networking_secgroup_v2.k8s-external-control-dco.id
}

# Rules sto3
resource "openstack_networking_secgroup_rule_v2" "k8s_external_ingress_control_rule1_v4_sto3" {
  direction         = "ingress"
  ethertype         = "IPv4"
  protocol          = "tcp"
  port_range_min    = "16443"
  port_range_max    = "16443"
  provider          = openstack.sto3
  remote_ip_prefix  = "89.47.191.43/32"
  security_group_id = openstack_networking_secgroup_v2.k8s-external-control-sto3.id
}

# Rules dco
resource "openstack_networking_secgroup_rule_v2" "k8s_external_ingress_control_rule1_v4_sto4" {
  direction         = "ingress"
  ethertype         = "IPv4"
  protocol          = "tcp"
  port_range_min    = "16443"
  port_range_max    = "16443"
  provider          = openstack.sto4
  remote_ip_prefix  = "89.47.191.43/32"
  security_group_id = openstack_networking_secgroup_v2.k8s-external-control-sto4.id
}
Create security group for k8s external access. 2024-10-30 13:56:05 +00:00			`# Security groups for external acccess k8s control nodes in dco.`
			`resource "openstack_networking_secgroup_v2" "k8s-external-control-dco" {`
			`name = "k8s-external"`
			`description = "External ingress traffic to k8s control nodes."`
			`provider=openstack.dco`
			`}`

			`# Security groups for external acccess k8s control nodes in sto3.`
			`resource "openstack_networking_secgroup_v2" "k8s-external-control-sto3" {`
			`name = "k8s-external"`
			`description = "External ingress traffic to k8s control nodes."`
			`provider=openstack.sto3`
			`}`
			`# Security groups for external acccess k8s control nodes in sto4.`
			`resource "openstack_networking_secgroup_v2" "k8s-external-control-sto4" {`
			`name = "k8s-external"`
			`description = "External ingress traffic to k8s control nodes."`
			`provider=openstack.sto4`
			`}`

			`# Rules dco`
			`resource "openstack_networking_secgroup_rule_v2" "k8s_external_ingress_control_rule_v4_dco" {`
			`direction = "ingress"`
			`ethertype = "IPv4"`
			`protocol = "tcp"`
			`port_range_min = "16443"`
			`port_range_max = "16443"`
			`provider = openstack.dco`
			`remote_ip_prefix = "89.47.191.43/32"`
			`security_group_id = openstack_networking_secgroup_v2.k8s-external-control-dco.id`
			`}`

			`# Rules sto3`
			`resource "openstack_networking_secgroup_rule_v2" "k8s_external_ingress_control_rule1_v4_sto3" {`
			`direction = "ingress"`
			`ethertype = "IPv4"`
			`protocol = "tcp"`
			`port_range_min = "16443"`
			`port_range_max = "16443"`
			`provider = openstack.sto3`
			`remote_ip_prefix = "89.47.191.43/32"`
			`security_group_id = openstack_networking_secgroup_v2.k8s-external-control-sto3.id`
			`}`

			`# Rules dco`
			`resource "openstack_networking_secgroup_rule_v2" "k8s_external_ingress_control_rule1_v4_sto4" {`
			`direction = "ingress"`
			`ethertype = "IPv4"`
			`protocol = "tcp"`
			`port_range_min = "16443"`
			`port_range_max = "16443"`
			`provider = openstack.sto4`
			`remote_ip_prefix = "89.47.191.43/32"`
			`security_group_id = openstack_networking_secgroup_v2.k8s-external-control-sto4.id`
			`}`