Ensure NAT-GW IP is in CIDR format for sec-list. (#43)

rancher-plugins · Jul 24, 2021 · 68cddb2 · 68cddb2
1 parent e3cc585
commit 68cddb2
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/oke/oke_manager_client.go b/oke/oke_manager_client.go
@@ -1464,9 +1464,10 @@ func (mgr *ClusterManagerClient) CreateVCNAndNetworkResources(state *State) (str
 				Source:   common.String(vcnCIDRBlock),
 			})
 			// Allow internal traffic from NAT gateway to the bastion by default
+			natCIDR := *ngResp.NatIp + "/32"
 			bastionSecList.IngressSecurityRules = append(bastionSecList.IngressSecurityRules, core.IngressSecurityRule{
 				Protocol: common.String("all"),
-				Source:   ngResp.NatIp,
+				Source:   &natCIDR,
 			})
 
 			// Allow outgoing traffic to VCN from the bastion by default