remove redundant firewall rules and subnets

2022-02-16 12:54:49 +01:00 · 2022-02-16 12:54:49 +01:00 · d5d0554972
parent 728f6485ae
commit d5d0554972
8 changed files with 11 additions and 47 deletions
--- a/fast/stages/02-networking-vpn/data/firewall-rules/dev/rules.yaml
+++ b/fast/stages/02-networking-vpn/data/firewall-rules/dev/rules.yaml
@ -7,7 +7,7 @@ allow-dataflow-load-ingress-traffic:
  sources: []
  ranges:
    - 10.10.0.0/24
-    - 10.10.1.0/24    
+    - 10.10.1.0/24
  targets: []
  use_service_accounts: false
  rules:
@ -15,19 +15,3 @@ allow-dataflow-load-ingress-traffic:
      ports:
        - 12345
        - 12346
-
-allow-composer-health-checks:
-  description: "Allow Health Checks"
-  direction: INGRESS
-  action: allow
-  sources: []
-  ranges:
-    - 130.211.0.0/22
-    - 35.191.0.0/16    
-  targets: []
-  use_service_accounts: false
-  rules:
-    - protocol: tcp
-      ports:
-        - 80
-        - 443        
--- a/fast/stages/02-networking-vpn/data/subnets/dev/dev-dataplatform-ew1.yaml
+++ b/fast/stages/02-networking-vpn/data/subnets/dev/dev-dataplatform-ew1.yaml
@ -1,8 +1,8 @@
 # skip boilerplate check

 region: europe-west1
-description: Default subnet for dev Data Platform - Orchestration layer Composer
+description: Default subnet for dev Data Platform
 ip_cidr_range: 172.18.16.0/24
-secondary_ip_range :
+secondary_ip_range:
   pods: 172.18.24.0/22
   services: 172.18.28.0/24
--- a/fast/stages/02-networking-vpn/data/subnets/dev/dev-dp-lod-ew1.yaml
+++ b/fast/stages/02-networking-vpn/data/subnets/dev/dev-dp-lod-ew1.yaml
@ -1,5 +0,0 @@
-# skip boilerplate check
-
-region: europe-west1
-description: Default subnet for dev Data Platform - Load layer Dataflow
-ip_cidr_range: 10.10.0.0/24
--- a/fast/stages/02-networking-vpn/data/subnets/dev/dev-dp-trf-ew1.yaml
+++ b/fast/stages/02-networking-vpn/data/subnets/dev/dev-dp-trf-ew1.yaml
@ -1,5 +0,0 @@
-# skip boilerplate check
-
-region: europe-west1
-description: Default subnet for dev Data Platform - Transformation layer Dataflow
-ip_cidr_range: 10.10.1.0/24
--- a/fast/stages/02-networking-vpn/data/subnets/prod/prod-dataplatform-ew1.yaml
+++ b/fast/stages/02-networking-vpn/data/subnets/prod/prod-dataplatform-ew1.yaml
@ -0,0 +1,8 @@
+# skip boilerplate check
+
+region: europe-west1
+description: Default subnet for prod Data Platform
+ip_cidr_range: 10.20.2.0/24
+secondary_ip_range:
+   pods: 10.20.8.0/22
+   services: 10.20.12.0/24
--- a/fast/stages/02-networking-vpn/data/subnets/prod/prod-dp-lod-ew1.yaml
+++ b/fast/stages/02-networking-vpn/data/subnets/prod/prod-dp-lod-ew1.yaml
@ -1,5 +0,0 @@
-# skip boilerplate check
-
-region: europe-west1
-description: Default subnet for dev Data Platform - Load layer Dataflow
-ip_cidr_range: 10.20.0.0/24
--- a/fast/stages/02-networking-vpn/data/subnets/prod/prod-dp-orc-ew1.yaml
+++ b/fast/stages/02-networking-vpn/data/subnets/prod/prod-dp-orc-ew1.yaml
@ -1,8 +0,0 @@
-# skip boilerplate check
-
-region: europe-west1
-description: Default subnet for dev Data Platform - Orchestration layer Composer
-ip_cidr_range: 10.20.2.0/24
-secondary_ip_range :
-   pods: 10.20.8.0/22
-   services: 10.20.12.0/24
--- a/fast/stages/02-networking-vpn/data/subnets/prod/prod-dp-trf-ew1.yaml
+++ b/fast/stages/02-networking-vpn/data/subnets/prod/prod-dp-trf-ew1.yaml
@ -1,5 +0,0 @@
-# skip boilerplate check
-
-region: europe-west1
-description: Default subnet for dev Data Platform - Transformation layer Dataflow
-ip_cidr_range: 10.20.1.0/24