Channels
announcements
automation-api
aws
azure
blog-posts
built-with-pulumi
cloudengineering
cloudengineering-support
content-share
contribex
contribute
docs
dotnet
finops
general
getting-started
gitlab
golang
google-cloud
hackathon-03-19-2020
hacktoberfest
install
java
jobs
kubernetes
learn-pulumi-events
linen
localstack
multi-language-hackathon
office-hours
oracle-cloud-infrastructure
plugin-framework
pulumi-ai
pulumi-cdk
pulumi-cloud
pulumi-crosscode
pulumi-deployments
pulumi-kubernetes-operator
pulumiverse
python
registry
status
testingtesting123
testingtesting321
typescript
welcome
workshops
yaml
Title
w
wide-photographer-21993
05/01/2023, 11:38 PMif so, can anyone explain why:
const alb = new awsx.classic.lb.ApplicationLoadBalancer(
"net-lb", { external: true, securityGroups: cluster.securityGroups });This adds 443 to the cluster sg, which then is also the lb sg, and leaves the
0.0.0.0/0ALL0.0.0.0/022m
millions-furniture-75402
05/02/2023, 2:46 PMI can you you that I've had issues with this and I can show you my solution
const alb = new awsx.lb.ApplicationLoadBalancer(
`${appName}-lb`,
{
loadBalancer: new aws.lb.LoadBalancer(`${appName}-alb`, {
accessLogs: {
bucket: logBucketId,
enabled: true,
prefix: appName,
},
dropInvalidHeaderFields: true,
internal: false,
securityGroups: [albSecurityGroup.id],
subnets: publicSubnetIds,
}),
securityGroups: [],
vpc: vpc.vpc,
},
{
dependsOn: albSecurityGroup,
},
);