From 32115607331a7a0a94fb006b44ed3c91c9d6bca1 Mon Sep 17 00:00:00 2001 From: Stephen James Date: Wed, 17 Jan 2024 17:06:13 +0000 Subject: [PATCH] Removed the vpc endpoint security from the rds bastion config (#255) This was not required for the access to the endpoints. --- bastion-rds-admin.tf | 2 +- bastion-rds-servers.tf | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/bastion-rds-admin.tf b/bastion-rds-admin.tf index 1bab8d0..3bc0b60 100644 --- a/bastion-rds-admin.tf +++ b/bastion-rds-admin.tf @@ -10,7 +10,7 @@ module "rds_admin_bastion" { vpc_id = module.admin_vpc.vpc.vpc_id vpc_cidr_block = module.admin_vpc.vpc.vpc_cidr_block private_subnets = module.admin_vpc.public_subnets - security_group_ids = [module.admin.security_group_ids.admin_ecs, module.admin_vpc.endpoints_sg.id] + security_group_ids = [module.admin.security_group_ids.admin_ecs] ami_name = "diso-devops/bastion/rds-admin/ubuntu-jammy-22.04-amd64-server-1.0.1" number_of_bastions = 1 assume_role = local.s3-mojo_file_transfer_assume_role_arn diff --git a/bastion-rds-servers.tf b/bastion-rds-servers.tf index 3423660..5cdd9b7 100644 --- a/bastion-rds-servers.tf +++ b/bastion-rds-servers.tf @@ -10,7 +10,7 @@ module "rds_servers_bastion" { vpc_id = module.radius_vpc.vpc.vpc_id vpc_cidr_block = module.radius_vpc.vpc.vpc_cidr_block private_subnets = module.radius_vpc.private_subnets - security_group_ids = [module.radius.security_group_ids.radius_server, module.radius_vpc.endpoints_sg.id] + security_group_ids = [module.radius.security_group_ids.radius_server] ami_name = "diso-devops/bastion/rds-admin/ubuntu-jammy-22.04-amd64-server-1.0.1" number_of_bastions = 1 assume_role = local.s3-mojo_file_transfer_assume_role_arn