Vereto/ephemeral-jamulus
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Node exporter allowed by security group to monitoring.vereto.net

Browse source
This commit is contained in:
spengreb 2022-02-04 16:49:49 +01:00
parent fc179cb288
commit 608fccea38
1 changed files with 16 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

18
main.tf
View file

@ -15,7 +15,7 @@ resource "aws_instance" "jamulus" {
ami = "${data.aws_ami.image.id}" ami = "${data.aws_ami.image.id}"
instance_type = "c5.large" instance_type = "c5.large"
key_name = "jamulus" key_name = "jamulus"
security_groups = [ aws_security_group.ssh.name, aws_security_group.jamulus.name ] # Add your own IP to this group security_groups = [ aws_security_group.ssh.name, aws_security_group.jamulus.name, aws_security_group.node-exporter.name ] # Add your own IP to this group
provisioner "file" { provisioner "file" {
source = "scripts/server-start.sh" source = "scripts/server-start.sh"
@ -44,7 +44,7 @@ resource "aws_instance" "jamulus" {
} }
tags = { tags = {
Name = "jamulus-tester" Name = "ejam.vereto.net"
} }
} }
@ -99,6 +99,20 @@ resource "aws_security_group_rule" "jamulus" {
security_group_id = aws_security_group.jamulus.id security_group_id = aws_security_group.jamulus.id
} }
resource "aws_security_group" "node-exporter" {
name = "node-exporter-port-access"
description = "Allow jamulus inbound traffic"
}
resource "aws_security_group_rule" "node-exporter" {
type = "ingress"
to_port = 9100
from_port = 9100
protocol = "tcp"
cidr_blocks = [ "142.132.191.61/32"]
security_group_id = aws_security_group.node-exporter.id
}
output "instance_ip" { output "instance_ip" {
value = "${aws_instance.jamulus.public_ip}" value = "${aws_instance.jamulus.public_ip}"