add firewall in terraform

2022-06-19 19:04:15 +02:00 · 2022-06-19 19:04:15 +02:00 · 7031c95a6c
commit 7031c95a6c
parent 59c3c79170
2 changed files with 58 additions and 0 deletions
--- a/infra/firewall.tf
+++ b/infra/firewall.tf
@ -0,0 +1,57 @@
+resource "hcloud_firewall" "HomeLab" {
+  name= "firewall-1"
+  rule {
+    direction ="in"
+    protocol = "tcp"
+    port = "80"
+    source_ips = [
+      "0.0.0.0/0",
+      "::/0"
+    ]
+  }
+  rule {
+    direction ="in"
+    protocol = "tcp"
+    port = "443"
+    source_ips = [
+      "0.0.0.0/0",
+      "::/0"
+    ]
+  }
+  rule {
+    direction ="in"
+    protocol = "tcp"
+    port = "6881"
+    source_ips = [
+      "0.0.0.0/0",
+      "::/0"
+    ]
+  }
+  rule {
+    direction ="in"
+    protocol = "udp"
+    port = "51820"
+    source_ips = [
+      "0.0.0.0/0",
+      "::/0"
+    ]
+
+  }
+  rule {
+    direction ="in"
+    protocol = "icmp"
+    source_ips = [
+      "0.0.0.0/0",
+      "::/0"
+    ]
+  }
+  rule {
+    direction = "in"
+    protocol = "tcp"
+    port = "22"
+    source_ips = [
+      "0.0.0.0/0",
+      "::/0"
+    ]
+  }
+}
--- a/infra/server.tf
+++ b/infra/server.tf
@ -5,6 +5,7 @@ resource "hcloud_server" "HomeLab" {
  server_type = var.server_type
  location    = var.location
  ssh_keys     = [hcloud_ssh_key.default.id]
+  firewall_ids = [hcloud_firewall.HomeLab.id]
  labels = {
  }