fixing security rule, previously couldn't fetch image

unity-sds · Oct 12, 2024 · 52ed304 · 52ed304
1 parent a5c6d03
commit 52ed304
Showing 1 changed file with 9 additions and 0 deletions.
diff --git a/terraform-unity/ecs.tf b/terraform-unity/ecs.tf
@@ -179,6 +179,15 @@ resource "aws_vpc_security_group_ingress_rule" "ecs_alb_ingress_sg_rule" {
   referenced_security_group_id = aws_security_group.ecs_alb_sg.id
 }
 
+# Add a new egress rule to the ECS's security group, allowing ECS to fetch the container image
+resource "aws_vpc_security_group_egress_rule" "ecs_alb_egress_sg_rule" {
+  security_group_id = aws_security_group.ecs_sg.id
+  to_port           = 443
+  from_port         = 443
+  ip_protocol       = "tcp"
+  cidr_ipv4         = "0.0.0.0/0"
+}
+
 # Add a new ingress rule to the ECS ALB's security group, opening it up to other connections
 #tfsec:ignore:AVD-AWS-0107
 resource "aws_vpc_security_group_ingress_rule" "alb_all_ingress_sg_rule" {