喜欢。不要通过Lightsail将5601暴露给世界。我至少会设置一个反向代理来使用SSL,但是最好为Kibana配置Xpack
,
到目前为止,最新的 terraform-provider-aws 2.50.0
不支持我们为lightail实例创建防火墙规则。
但是我们可以通过将local-exec
与内置的aws cli put-instance-public-ports
结合使用来作弊。它将在配置实例之后在运行terraform的计算机中运行:
resource "aws_lightsail_instance" "worker" {
...
name = "worker-${count.index+1}"
availability_zone = "ap-southeast-1a"
blueprint_id = "ubuntu_18_04"
bundle_id = "nano_2_0"
...
provisioner "local-exec" {
command = "aws lightsail put-instance-public-ports --instance-name=worker-${count.index+1} --port-infos fromPort=22,toPort=22,protocol=tcp fromPort=5601,toPort=5601,protocol=tcp"
}
}
,
resource "aws_lightsail_instance_public_ports" "test" {
instance_name = aws_lightsail_instance.test.name
port_info {
protocol = "tcp"
from_port = 80
to_port = 80
}
}
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/lightsail_instance_public_ports
添加到 AWS 提供商 3.34.0(2021 年 3 月 26 日)https://github.com/hashicorp/terraform-provider-aws/blob/v3.34.0/CHANGELOG.md
本文链接:https://www.f2er.com/3142704.html