Skip to content
Snippets Groups Projects
Commit 14ecff22 authored by Radosław Piliszek's avatar Radosław Piliszek :flag_ua:
Browse files

Use the right security groups

parent 17b14ff9
No related branches found
No related tags found
No related merge requests found
...@@ -18,10 +18,6 @@ data "openstack_networking_network_v2" "external" { ...@@ -18,10 +18,6 @@ data "openstack_networking_network_v2" "external" {
name = "external" name = "external"
} }
data "openstack_networking_secgroup_v2" "default" {
name = "default"
}
# Create virtual machine # Create virtual machine
resource "openstack_compute_instance_v2" "nginx" { resource "openstack_compute_instance_v2" "nginx" {
name = "nginx-host" name = "nginx-host"
...@@ -71,7 +67,8 @@ resource "openstack_networking_port_v2" "nginx" { ...@@ -71,7 +67,8 @@ resource "openstack_networking_port_v2" "nginx" {
network_id = openstack_networking_network_v2.generic.id network_id = openstack_networking_network_v2.generic.id
admin_state_up = true admin_state_up = true
security_group_ids = [ security_group_ids = [
data.openstack_networking_secgroup_v2.default.id #default flavour id resource.openstack_networking_secgroup_v2.ssh.id,
resource.openstack_networking_secgroup_v2.http.id,
] ]
fixed_ip { fixed_ip {
subnet_id = openstack_networking_subnet_v2.nginx.id subnet_id = openstack_networking_subnet_v2.nginx.id
...@@ -89,7 +86,7 @@ resource "openstack_networking_router_interface_v2" "nginx" { ...@@ -89,7 +86,7 @@ resource "openstack_networking_router_interface_v2" "nginx" {
subnet_id = openstack_networking_subnet_v2.nginx.id subnet_id = openstack_networking_subnet_v2.nginx.id
} }
resource "openstack_compute_secgroup_v2" "http" { resource "openstack_networking_secgroup_v2" "http" {
name = "http" name = "http"
description = "Open input http port" description = "Open input http port"
rule { rule {
...@@ -100,7 +97,7 @@ resource "openstack_compute_secgroup_v2" "http" { ...@@ -100,7 +97,7 @@ resource "openstack_compute_secgroup_v2" "http" {
} }
} }
resource "openstack_compute_secgroup_v2" "ssh" { resource "openstack_networking_secgroup_v2" "ssh" {
name = "ssh" name = "ssh"
description = "Open input ssh port" description = "Open input ssh port"
rule { rule {
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment