Add firewall rules to locked down Isolation Segment

vmware-archive / terraforming-gcp

use terraform, deploy yourself a pcf

Apache License 2.0

71 stars 87 forks source link

Add firewall rules to locked down Isolation Segment #109

Closed heycait closed 5 years ago

heycait commented 5 years ago

Open up/lock down ports according to the documentation: https://docs.pivotal.io/pivotalcf/2-3/adminguide/routing-is.html#config-firewall

[161933469] Harden terraforming-gcp for PAS Isolation Segments

cc @evanfarrar @genevieve

cf-gitbot commented 5 years ago

We have created an issue in Pivotal Tracker to manage this. Unfortunately, the Pivotal Tracker project is private so you may be unable to view the contents of the story.

The labels on this github issue will be updated when the story is started.

genevieve commented 5 years ago

@evanfarrar Updated this PR to make the firewall rules an opt-in feature for users for now.

genevieve commented 5 years ago

@evanfarrar So that we don't diverge from this repo again too much, could we xtm pair to help get this PR merged?

ciphercules commented 5 years ago

We'll update the read me with the new variable

genevieve commented 5 years ago

Sorry we forgot the docs! Thanks for updating them