search

F5Networks / f5-aws-cloudformation-v2

AWS Cloudformation Templates for quickly deploying BIG-IP services in AWS
13 stars 22 forks source link

Autoscale Templates: restrictedSrcAddressApp only allows 0.0.0.0/0 #2

Closed f5-applebaum closed 3 years ago

f5-applebaum commented 3 years ago

Do you already have an issue opened with F5 support?

Description

BigipExternalSecurityGroup in DAG module needs VPC CIDR added as well so the LB can access VIP.

        - IpProtocol: tcp
          FromPort: 80
          ToPort: 80
          CidrIp: !Ref vpcCidr
        - IpProtocol: tcp
          FromPort: 443
          ToPort: 443
          CidrIp: !Ref vpcCidr

As a result, 0.0.0.0/0 is only value that can be used for restrictedSrcAddressApp

Template

https://github.com/F5Networks/f5-aws-cloudformation-v2/blob/main/examples/autoscale/payg/autoscale.yaml

Severity Level

Severity: 3

shyawnkarim commented 3 years ago

We are now tracking this issue internally with ESECLDTPLT-2690.

shyawnkarim commented 3 years ago

Closing.

This bug fix was included with Release 1.1.0.0.