From ce5c40694f432418eed2f415102fb23315a31263 Mon Sep 17 00:00:00 2001 From: Taylor Nation Date: Thu, 17 Aug 2017 09:58:03 -0400 Subject: [PATCH] Remove port 8080 from firewall rules --- deployment/cfn/application.py | 3 +-- deployment/cfn/utils/constants.py | 1 - deployment/cfn/vpc.py | 5 ++--- 3 files changed, 3 insertions(+), 6 deletions(-) diff --git a/deployment/cfn/application.py b/deployment/cfn/application.py index 38665d9e6..2d14258f8 100644 --- a/deployment/cfn/application.py +++ b/deployment/cfn/application.py @@ -20,7 +20,6 @@ EC2_INSTANCE_TYPES, GRAPHITE, HTTP, - HTTP_ALT, HTTPS, POSTGRESQL, REDIS, @@ -332,7 +331,7 @@ def create_security_groups(self): IpProtocol='tcp', CidrIp=ALLOW_ALL_CIDR, FromPort=p, ToPort=p ) - for p in [HTTP, HTTP_ALT, HTTPS] + for p in [HTTP, HTTPS] ], Tags=self.get_tags(Name=app_server_security_group_name) )) diff --git a/deployment/cfn/utils/constants.py b/deployment/cfn/utils/constants.py index f1225c2d1..7b1f93fcd 100644 --- a/deployment/cfn/utils/constants.py +++ b/deployment/cfn/utils/constants.py @@ -23,7 +23,6 @@ GRAPHITE = 2003 GRAPHITE_WEB = 8080 HTTP = 80 -HTTP_ALT = 8080 HTTPS = 443 KIBANA = 5601 POSTGRESQL = 5432 diff --git a/deployment/cfn/vpc.py b/deployment/cfn/vpc.py index 2b80f6941..2ba504175 100644 --- a/deployment/cfn/vpc.py +++ b/deployment/cfn/vpc.py @@ -17,7 +17,6 @@ ALLOW_ALL_CIDR, EC2_INSTANCE_TYPES, HTTP, - HTTP_ALT, HTTPS, VPC_CIDR ) @@ -254,14 +253,14 @@ def nat_security_group(self): IpProtocol='tcp', CidrIp=VPC_CIDR, FromPort=p, ToPort=p ) - for p in [HTTP, HTTP_ALT, HTTPS] + for p in [HTTP, HTTPS] ], SecurityGroupEgress=[ ec2.SecurityGroupRule( IpProtocol='tcp', CidrIp=ALLOW_ALL_CIDR, FromPort=port, ToPort=port - ) for port in [HTTP, HTTP_ALT, HTTPS] + ) for port in [HTTP, HTTPS] ], Tags=self.get_tags(Name=nat_security_group_name)), # NOQA 'NATSecurityGroup'