security-group: add ingress rule for port 9100 for prometheus
In order to allow prometheus monitoring of servers in AWS,
we need to allow traffic on port 9100 for our prometheus
server IPs.
Signed-off-by: Kelley Spoon <kelley.spoon@linaro.org>
Change-Id: Ic1d353d2ea7b3c329ba85c9f4d539f5383fc3a8a
diff --git a/main.tf b/main.tf
index 80dd182..4471b52 100644
--- a/main.tf
+++ b/main.tf
@@ -228,3 +228,20 @@
to_port = 0
type = "egress"
}
+
+resource "aws_security_group_rule" "ci-sg-10" {
+ cidr_blocks = [
+ "95.217.117.19/32",
+ "3.80.150.227/32",
+ ]
+ from_port = 9100
+ ipv6_cidr_blocks = []
+ prefix_list_ids = []
+ protocol = "tcp"
+ security_group_id = "sg-05f5a50eee7a51e40"
+ self = false
+ to_port = 9100
+ type = "ingress"
+}
+
+