Security group setup with changing public IP

Question

Security group setup with changing public IP

pratiksha opened this issue 5 years ago · 1 comments

Flintrock version: 1.0.0-dev0
Python version: 3.6
OS: Ubuntu 18.04

Hi, thanks for the great work on this tool. I've been having some trouble using Flintrock if my client's public IP changes as I lose SSH access to the cluster. Is there an existing way to push IP updates to all the relevant security groups using Flintrock?

Answer 1 · 2019-11-16T17:12:27.000Z

Hi @pratiksha. I'm glad that Flintrock is useful to you.

Flintrock does not have a way to push security rule updates to an existing cluster.

You can specify additional security groups on launch with flintrock launch --ec2-security-group. You can configure one of those additional groups with a more permissive rule based on a CIDR range that will tolerate the changes in your public IP address, as opposed to a single, specific IP address rule that will block you the moment your address changes. That may work well enough for your needs.