blob: b0a435af8bb80d8800a348e6969671f56d9c3b28 (
plain) (
tree)
|
|
resource "digitalocean_firewall" "this" {
name = var.name
droplet_ids = var.droplet_ids
inbound_rule {
protocol = "icmp"
source_addresses = ["0.0.0.0/0", "::/0"]
}
outbound_rule {
protocol = "icmp"
destination_addresses = ["0.0.0.0/0", "::/0"]
}
dynamic "inbound_rule" {
for_each = var.open_ports
content {
protocol = "tcp"
port_range = inbound_rule.value
source_addresses = ["0.0.0.0/0", "::/0"]
}
}
dynamic "inbound_rule" {
for_each = var.open_ports
content {
protocol = "udp"
port_range = inbound_rule.value
source_addresses = ["0.0.0.0/0", "::/0"]
}
}
outbound_rule {
protocol = "tcp"
port_range = "1-65535"
destination_addresses = ["0.0.0.0/0", "::/0"]
}
outbound_rule {
protocol = "udp"
port_range = "1-65535"
destination_addresses = ["0.0.0.0/0", "::/0"]
}
}
|
