diff --git a/modules/app_eks/main.tf b/modules/app_eks/main.tf index af6be069..d58211b4 100644 --- a/modules/app_eks/main.tf +++ b/modules/app_eks/main.tf @@ -64,19 +64,21 @@ module "eks" { node_groups = { primary = { - version = var.cluster_version, - desired_capacity = 2, - max_capacity = 5, - min_capacity = 2, - instance_types = var.instance_types, - iam_role_arn = aws_iam_role.node.arn, - create_launch_template = local.encrypt_ebs_volume, - disk_encrypted = local.encrypt_ebs_volume, - disk_kms_key_id = var.kms_key_arn, - force_update_version = local.encrypt_ebs_volume, # IMDsv2 - metadata_http_tokens = "required", + create_launch_template = local.encrypt_ebs_volume, + desired_capacity = 2, + disk_encrypted = local.encrypt_ebs_volume, + disk_kms_key_id = var.kms_key_arn, + disk_type = "gp3" + enable_monitoring = true + force_update_version = local.encrypt_ebs_volume, + iam_role_arn = aws_iam_role.node.arn, + instance_types = var.instance_types, + max_capacity = 5, metadata_http_put_response_hop_limit = 2 + metadata_http_tokens = "required", + min_capacity = 2, + version = var.cluster_version, } } diff --git a/modules/app_eks/variables.tf b/modules/app_eks/variables.tf index 35ef7701..6f0f5898 100644 --- a/modules/app_eks/variables.tf +++ b/modules/app_eks/variables.tf @@ -62,8 +62,8 @@ variable "kms_key_arn" { variable "instance_types" { description = "EC2 Instance type for primary node group." + nullable = false type = list(string) - default = ["m4.large"] } variable "lb_security_group_inbound_id" {