Adding port 19530 for direct ingress from the ECS api that's in the s…

…ame vpc
thisisqubika · Apr 5, 2024 · 8476aaa · 8476aaa
1 parent 4c81e3c
commit 8476aaa
Showing 1 changed file with 10 additions and 2 deletions.
diff --git a/terraform/main.tf b/terraform/main.tf
@@ -129,18 +129,26 @@ resource "aws_security_group" "milvus_sg_api" {
     from_port   = 22
     to_port     = 22
     protocol    = "tcp"
-    cidr_blocks = ["186.141.232.131/32"] // Replace ONLY your public IP address
+    cidr_blocks = ["186.141.232.131/32"]  # SSH access from your IP
+  }
+
+  ingress {
+    from_port   = 19530
+    to_port     = 19530
+    protocol    = "tcp"
+    security_groups = ["sg-0a1df98d80c5fbfa9"]  # ECS tasks security group ID >> Direct ingress from ECS app
   }
 
   egress {
     from_port   = 0
     to_port     = 0
     protocol    = "-1"
-    cidr_blocks = ["0.0.0.0/0"]
+    cidr_blocks = ["0.0.0.0/0"]  # Allow all outbound traffic
   }
 }
 
 
+
 # Modify your EC2 instance security group to only allow traffic from the NLB security group
 resource "aws_security_group_rule" "allow_nlb_to_ec2" {
   type                     = "ingress"