From a1a643468fa987190d12eaad07af2768ceec9af9 Mon Sep 17 00:00:00 2001 From: Hui Kang Date: Mon, 16 May 2022 16:37:45 -0400 Subject: [PATCH] fix insecure cidr_blocks in load test --- test/load/terraform/consul.tf | 8 ++++---- test/load/terraform/test-servers.tf | 6 +++--- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/test/load/terraform/consul.tf b/test/load/terraform/consul.tf index b9de8de552..8a4fc97bd6 100644 --- a/test/load/terraform/consul.tf +++ b/test/load/terraform/consul.tf @@ -37,9 +37,9 @@ module "consul_servers" { vpc_id = module.vpc.vpc_id subnet_ids = module.vpc.public_subnets - allowed_ssh_cidr_blocks = ["0.0.0.0/0"] + allowed_ssh_cidr_blocks = ["10.0.0.0/16"] - allowed_inbound_cidr_blocks = ["0.0.0.0/0"] + allowed_inbound_cidr_blocks = ["10.0.0.0/16"] ssh_key_name = module.keys.key_name } @@ -57,9 +57,9 @@ module "consul_clients" { vpc_id = module.vpc.vpc_id subnet_ids = module.vpc.public_subnets - allowed_ssh_cidr_blocks = ["0.0.0.0/0"] + allowed_ssh_cidr_blocks = ["10.0.0.0/16"] - allowed_inbound_cidr_blocks = ["0.0.0.0/0"] + allowed_inbound_cidr_blocks = ["10.0.0.0/16"] ssh_key_name = module.keys.key_name } diff --git a/test/load/terraform/test-servers.tf b/test/load/terraform/test-servers.tf index 5db03d14ad..9265e9d531 100644 --- a/test/load/terraform/test-servers.tf +++ b/test/load/terraform/test-servers.tf @@ -31,19 +31,19 @@ resource "aws_security_group" "test-servers" { to_port = 8500 security_groups = [module.consul_clients.security_group_id] protocol = "6" - cidr_blocks = ["0.0.0.0/0"] + cidr_blocks = ["10.0.0.0/16"] } ingress { from_port = 22 to_port = 22 protocol = "6" - cidr_blocks = ["0.0.0.0/0"] + cidr_blocks = ["10.0.0.0/16"] } egress { from_port = 0 to_port = 0 protocol = "-1" - cidr_blocks = ["0.0.0.0/0"] + cidr_blocks = ["10.0.0.0/16"] } }