External-Mirrors/kubespray
2
0
Fork 0
mirror of https://github.com/kubernetes-sigs/kubespray.git synced 2026-03-04 10:11:10 -03:30
Code Issues Packages Projects Releases Wiki Activity

Change from Nova security groups to Neutron (#2910)

Browse Source 
* Replace `openstack_compute_secgroup_v2` with `openstack_networking_secgroup_v2`

The `openstack_networking_secgroup_v2` resource allow specifications of
both ingress and egress. Nova security groups define ingress rules only.

This change will also allow for more user-friendly specified security
rules, as the different security group resources have different HCL
syntax.
This commit is contained in:
Andreas Holmsten
2018-09-28 11:35:02 +02:00
committed by Antoine Legrand
parent 0232e755f3
commit 0a9a42b544
6 changed files with 74 additions and 72 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
contrib/terraform/openstack/README.md
View File

@@ -224,6 +224,7 @@ For your cluster, edit `inventory/$CLUSTER/cluster.tf`.
| `gfs_volume_size_in_gb` | Size of the non-ephemeral volumes to be attached to store the GlusterFS bricks |
|`supplementary_master_groups` | To add ansible groups to the masters, such as `kube-node` for tainting them as nodes, empty by default. |
|`supplementary_node_groups` | To add ansible groups to the nodes, such as `kube-ingress` for running ingress controller pods, empty by default. |
|`bastion_allowed_remote_ips` | List of CIDR allowed to initiate a SSH connection, `["0.0.0.0/0"]` by default |
#### Terraform state files