Terraform-provider-aws: aws_lightsail provider should support open port management

Created on 13 Jun 2017  路  7Comments  路  Source: hashicorp/terraform-provider-aws

_This issue was originally opened by @sean-brandt as hashicorp/terraform#13759. It was migrated here as part of the provider split. The original body of the issue is below._

Hi there,

Thank you for opening an issue. Please note that we try to keep the Terraform issue tracker reserved for bug reports and feature requests. For general usage questions, please see: https://www.terraform.io/community.html.

Terraform Version

Run terraform -v to show the version. If you are not running the latest version of Terraform, please upgrade because your issue may have already been fixed.

Terraform v0.9.3

Affected Resource(s)

Please list the resources as a list, for example:

  • aws_lightsail

If this issue appears to affect multiple resources, it may be an issue with Terraform's core, so please mention this.

Expected Behavior

What should have happened?

aws_lightsail provider should allow for managing open ports

enhancement serviclightsail
Source
picture hashibot
👍25

Most helpful comment

@radeksimko - are there plans to address this anytime in the near future? i could take a stab at implementing it and submit a pr if we can agree on a schema. 

resource "aws_lightsail_firewall" "www" {
  instance_name = "${aws_lightsail_instance.app.name}"
  port_rules = [{
     fromPort = 443
     toPort      = 443
     protocol  = "tcp | all | udp"
  }]
}

thoughts?

picture n3integration on 31 Jan 2019
👍11

All 7 comments

https://docs.aws.amazon.com/cli/latest/reference/lightsail/put-instance-public-ports.html should be the API to use for this

xeraa picture xeraa on 19 Aug 2017
👍1

Hi! Will this be done?

PlugIN73 picture PlugIN73 on 26 Jun 2018

:+1:
@radeksimko, is there any plan to acomplish this? or any other aws resource that can be used to this? Thanks

alambike picture alambike on 10 Jul 2018

@radeksimko - are there plans to address this anytime in the near future? i could take a stab at implementing it and submit a pr if we can agree on a schema. 

resource "aws_lightsail_firewall" "www" {
  instance_name = "${aws_lightsail_instance.app.name}"
  port_rules = [{
     fromPort = 443
     toPort      = 443
     protocol  = "tcp | all | udp"
  }]
}

thoughts?

n3integration picture n3integration on 31 Jan 2019
👍11

@n3integration - Did you ever build on this? I'm using a local-exec with aws CLI to solve for now, but this pretty royally sucks as it relies on local tooling.

steve-gray picture steve-gray on 10 Mar 2019

There's a PR #8611 open for this currently.

blckct picture blckct on 9 Jul 2019
🎉3 👀1 🚀1

So far the latest terraform-provider-aws 2.50.0 does not support us to create firewall rule for lightsail instance. We can wait for PR.

But we can cheat it by using local-exec with built-in aws cli put-instance-public-ports. It will be executed after provisioned instance, in the machine that run terraform:

resource "aws_lightsail_instance" "worker" {
  ...
  name              = "worker-${count.index+1}"
  availability_zone = "ap-southeast-1a"
  blueprint_id      = "ubuntu_18_04"
  bundle_id         = "nano_2_0"
  ...
  provisioner "local-exec" {
    command = "aws lightsail put-instance-public-ports --instance-name=worker-${count.index+1} --port-infos fromPort=22,toPort=22,protocol=tcp fromPort=5601,toPort=5601,protocol=tcp"
  }
}
hieuhtr picture hieuhtr on 25 Feb 2020
👍1
Was this page helpful?
0 / 5 - 0 ratings

Related issues

joelittlejohn picture joelittlejohn  路  3Comments
hashibot picture hashibot  路  3Comments
ghost picture ghost  路  3Comments
reedloden picture reedloden  路  3Comments
andywirv picture andywirv  路  3Comments