Skip to content

Commit

Permalink
adding bastion outbound rule
Browse files Browse the repository at this point in the history
  • Loading branch information
@xpillons
xpillons committed Mar 29, 2024
1 parent 7567a04 commit 48ba273
Show file tree
Hide file tree
Showing 2 changed files with 4 additions and 2 deletions.
3 changes: 2 additions & 1 deletion bicep/azhop.bicep
View file
Original file line number Diff line number Diff line change
Expand Up @@ -630,7 +630,8 @@ var config = {
AllowLustreSubnetAnyOutbound: ['430', 'Outbound', 'Allow', '*', 'All', 'subnet', 'lustre', 'subnet', 'lustre']
}
bastion: {
AllowBastionIn : ['530', 'Inbound', 'Allow', 'Tcp', 'Bastion', 'subnet', 'bastion', 'tag', 'VirtualNetwork']
AllowBastionIn : ['530', 'Inbound' , 'Allow', 'Tcp', 'Bastion', 'subnet', 'bastion', 'tag', 'VirtualNetwork']
AllowBastionOut : ['531', 'Outbound', 'Allow', 'Tcp', 'Bastion', 'subnet', 'bastion', 'tag', 'VirtualNetwork']
}
gateway: {
AllowInternalWebUsersIn : ['540', 'Inbound', 'Allow', 'Tcp', 'Web', 'subnet', 'gateway', 'asg', 'asg-ondemand']
Expand Down
3 changes: 2 additions & 1 deletion tf/variables_local.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -529,7 +529,8 @@ locals {
}

bastion_nsg_rules = {
AllowBastionIn = ["530", "Inbound", "Allow", "Tcp", "Bastion", "subnet/bastion", "tag/VirtualNetwork"],
AllowBastionIn = ["530", "Inbound" , "Allow", "Tcp", "Bastion", "subnet/bastion", "tag/VirtualNetwork"],
AllowBastionOu = ["531", "Outbound", "Allow", "Tcp", "Bastion", "subnet/bastion", "tag/VirtualNetwork"],
}

gateway_nsg_rules = {
Expand Down

0 comments on commit 48ba273

Please sign in to comment.