Skip to content

Commit

Permalink
check that allow all is fine
Browse files Browse the repository at this point in the history 
Signed-off-by: denis-tingaikin <denis.tingajkin@xored.com>
  • Loading branch information
@denis-tingaikin
denis-tingaikin committed Jul 11, 2022
1 parent 3037247 commit b95fa38
Showing 1 changed file with 13 additions and 12 deletions.
25 changes: 13 additions & 12 deletions scripts/aws/aws-start.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,18 +26,19 @@ eksctl create cluster \
## Setup security group rules
sg=$(aws ec2 describe-security-groups --filter Name=tag:aws:eks:cluster-name,Values=testing --query 'SecurityGroups[0].GroupId' --output text)

### authorize wireguard
aws ec2 authorize-security-group-ingress --group-id $sg --protocol tcp --port 51820 --cidr 0.0.0.0/0
aws ec2 authorize-security-group-ingress --group-id $sg --protocol udp --port 51820 --cidr 0.0.0.0/0
### authorize vxlan
aws ec2 authorize-security-group-ingress --group-id $sg --protocol tcp --port 4789 --cidr 0.0.0.0/0
aws ec2 authorize-security-group-ingress --group-id $sg --protocol udp --port 4789 --cidr 0.0.0.0/0
### authorize nsmgr-proxy
aws ec2 authorize-security-group-ingress --group-id $sg --protocol tcp --port 5004 --cidr 0.0.0.0/0
### authorize registry
aws ec2 authorize-security-group-ingress --group-id $sg --protocol tcp --port 5002 --cidr 0.0.0.0/0
### authorize vl3-ipam
aws ec2 authorize-security-group-ingress --group-id $sg --protocol tcp --port 5006 --cidr 0.0.0.0/0
aws ec2 authorize-security-group-ingress --group-id $sg --protocol all --port all --cidr 0.0.0.0/0
# ### authorize wireguard
# aws ec2 authorize-security-group-ingress --group-id $sg --protocol tcp --port 51820 --cidr 0.0.0.0/0
# aws ec2 authorize-security-group-ingress --group-id $sg --protocol udp --port 51820 --cidr 0.0.0.0/0
# ### authorize vxlan
# aws ec2 authorize-security-group-ingress --group-id $sg --protocol tcp --port 4789 --cidr 0.0.0.0/0
# aws ec2 authorize-security-group-ingress --group-id $sg --protocol udp --port 4789 --cidr 0.0.0.0/0
# ### authorize nsmgr-proxy
# aws ec2 authorize-security-group-ingress --group-id $sg --protocol tcp --port 5004 --cidr 0.0.0.0/0
# ### authorize registry
# aws ec2 authorize-security-group-ingress --group-id $sg --protocol tcp --port 5002 --cidr 0.0.0.0/0
# ### authorize vl3-ipam
# aws ec2 authorize-security-group-ingress --group-id $sg --protocol tcp --port 5006 --cidr 0.0.0.0/0


kubectl version --client

0 comments on commit b95fa38

Please sign in to comment.