github-personal/firezone
1
0
Fork 0
mirror of https://github.com/outbackdingo/firezone.git synced 2026-01-27 18:18:55 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(infra): Remove unused ingress Relay UDP ports (#8166)

Browse Source 
These are redundant since we explicitly allow STUN/TURN traffic a few
lines up.
This commit is contained in:
Jamil
2025-02-17 14:50:02 -08:00
committed by GitHub
parent 33c707dbf6
commit 7eebc04118
1 changed files with 0 additions and 31 deletions
Download Patch File Download Diff File Expand all files Collapse all files

31
terraform/modules/google-cloud/apps/relay/main.tf
View File

@@ -404,37 +404,6 @@ resource "google_compute_firewall" "http-health-checks" {
}
}
# Allow inbound traffic
resource "google_compute_firewall" "ingress-ipv4" {
project = var.project_id
name = "${local.application_name}-ingress-ipv4"
network = var.network
direction = "INGRESS"
target_tags = ["app-${local.application_name}"]
source_ranges = ["0.0.0.0/0"]
allow {
protocol = "udp"
}
}
resource "google_compute_firewall" "ingress-ipv6" {
project = var.project_id
name = "${local.application_name}-ingress-ipv6"
network = var.network
direction = "INGRESS"
target_tags = ["app-${local.application_name}"]
source_ranges = ["::/0"]
allow {
protocol = "udp"
}
}
# Allow outbound traffic
resource "google_compute_firewall" "egress-ipv4" {
project = var.project_id