Restrict SSH access to cluster VMs - Githubissues

appuio / terraform-openshift4-exoscale

OpenShift 4 Terraform setup for Exoscale

2 stars 0 forks source link

Restrict SSH access to cluster VMs #89

Closed simu closed 7 months ago

simu commented 7 months ago

We remove the SSH access from anywhere for the cluster VMs by updating the all_machines security group to only allow SSH from other machines in the all_machines security group.

This PR requires https://github.com/appuio/terraform-modules/pull/51 in order to ensure that the LBs remain accessible from anywhere via SSH and can act as SSH jumphosts for SSH access to the cluster VMs.

Resolves #78

Checklist

[x] Keep pull requests small so they can be easily reviewed.
[x] Categorize the PR by setting a good title and adding one of the labels: bug, enhancement, documentation, change, breaking, dependency as they show up in the changelog
[x] Link this PR to related issues.

simu commented 7 months ago

We've upgraded terraform-modules/vshn-lbaas-exoscale to v6.0.0 (which includes https://github.com/appuio/terraform-modules/pull/51) in #91