mirrors/blockstream-satellite-api
1
0
Fork 0
mirror of https://github.com/Blockstream/satellite-api.git synced 2025-02-24 14:10:36 +01:00
Code Issues Projects Releases Packages Wiki Activity
blockstream-satellite-api/terraform/modules/blc/firewall.tf

56 lines
1.2 KiB
HCL
Raw Blame History

resource "google_compute_firewall" "blc" {
name = "${var.name}-${var.net}-fw-rule-${var.env}"
network = data.google_compute_network.blc.self_link
project = var.project
count = var.create_resources
allow {
protocol = "tcp"
ports = ["18333", "8333", "9735"]
}
target_service_accounts = [
google_service_account.blc[0].email,
]
}
resource "google_compute_firewall" "api-internal" {
name = "${var.name}-${var.net}-lb-internal-fw-rule-${var.env}"
network = data.google_compute_network.blc.self_link
project = var.project
count = var.create_resources
allow {
protocol = "tcp"
ports = ["9292", "4500"]
}
source_service_accounts = [
var.lb_svc_acct,
]
target_service_accounts = [
google_service_account.blc[0].email,
]
}
resource "google_compute_firewall" "blc-prom" {
name = "${var.name}-${var.net}-prometheus-access-${var.env}"
network = data.google_compute_network.blc.self_link
project = var.project
count = var.create_resources
allow {
protocol = "tcp"
ports = ["9100", "9900"]
}
source_service_accounts = [
var.prom_service_acct,
]
target_service_accounts = [
google_service_account.blc[0].email,
]
}
Reference in a new issue View git blame Copy permalink