added dynamic rule and var extra_firewall_rules

2022-02-27 23:15:46 +01:00
parent adca2a0e0b
commit 4fe79625b1
4 changed files with 150 additions and 118 deletions
--- a/terraform.tfvars.example
+++ b/terraform.tfvars.example
@@ -50,3 +50,17 @@ agent_nodepools = {

 # Allows you to specify either stable, latest, or testing (defaults to stable), see https://rancher.com/docs/k3s/latest/en/upgrades/basic/
 # initial_k3s_channel = "latest"
+
+# Adding extra firewall rules, like opening a port
+# In this example with allow port TCP 5432 for a Postgres service we will open via a nodeport
+# More info on the format here https://registry.terraform.io/providers/hetznercloud/hcloud/latest/docs/resources/firewall
+extra_firewall_rules = [
+  {
+    direction = "in"
+    protocol  = "tcp"
+    port      = "5432"
+    source_ips = [
+      "0.0.0.0/0"
+    ]
+  },
+]